last executing test programs:

17m41.842422891s ago: executing program 2 (id=960):
sched_setscheduler(0x0, 0x1, 0x0)
syz_open_dev$usbfs(&(0x7f0000000140), 0x77, 0x1501)
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x4}]})
socket(0x80000000000000a, 0x2, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

17m40.788118741s ago: executing program 2 (id=966):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$wireguard(&(0x7f0000000400), r0)
sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB="180000002500010324bd5502ffdbdf25010000000400ae"], 0x18}, 0x1, 0x0, 0x0, 0x20004888}, 0x0)
recvmsg(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000380)=[{&(0x7f00000010c0)=""/237, 0xed}, {&(0x7f0000000240)=""/44, 0x2c}, {&(0x7f0000002700)=""/4094, 0xffe}, {&(0x7f0000000080)=""/42, 0x2a}, {&(0x7f0000003dc0)=""/4080, 0xff0}, {&(0x7f0000000540)=""/249, 0x157}], 0x6}, 0x20002)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r0)

17m40.652856364s ago: executing program 2 (id=968):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl802154(&(0x7f0000001440), r0)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000001480)={'wpan0\x00', <r3=>0x0})
sendmsg$NL802154_CMD_DEL_SEC_KEY(r1, &(0x7f0000001740)={0x0, 0x0, &(0x7f0000001700)={&(0x7f00000014c0)={0x1c, r2, 0x1, 0x70bd27, 0x25dfdbfe, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x2004c001}, 0x24000000)

17m40.557965012s ago: executing program 2 (id=971):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$inet6(0xa, 0x3, 0x7)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000440), r0)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000480)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_GET_KEY(r0, &(0x7f0000007240)={0x0, 0x0, &(0x7f0000007200)={&(0x7f0000007180)={0x24, r2, 0x1, 0x70bd2d, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_KEY_IDX={0x5, 0x8, 0x4}]}, 0x24}, 0x1, 0x0, 0x0, 0x4040040}, 0x0)

17m40.482334336s ago: executing program 2 (id=972):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x42, 0x0)
write$P9_RREADLINK(r0, &(0x7f0000000000)={0x10, 0x17, 0x2, {0x7, './file0'}}, 0xfffffdab)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='.\x00', 0x0, 0x83)
ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r1, 0x40086602, &(0x7f0000000000))
unlinkat(0xffffffffffffff9c, &(0x7f00000001c0)='./file1\x00', 0x0)

17m40.024063528s ago: executing program 2 (id=974):
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x12, 0x4, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e22, 0x9, @ipv4={'\x00', '\xff\xff', @remote}, 0x6}, 0x1c)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e22, 0x7, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
syz_emit_ethernet(0x42, &(0x7f0000000180)={@local, @broadcast, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x2, 0x3, 0x34, 0x64, 0x0, 0x7, 0x6, 0x0, @remote, @remote}, {{0x4e22, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x8, 0xc2, 0x6071, 0x0, 0xe7, {[@sack_perm={0x4, 0x2}, @timestamp={0x8, 0xa, 0xd98d, 0x7}]}}}}}}}, 0x0)

17m24.601554368s ago: executing program 32 (id=974):
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x12, 0x4, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e22, 0x9, @ipv4={'\x00', '\xff\xff', @remote}, 0x6}, 0x1c)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e22, 0x7, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
syz_emit_ethernet(0x42, &(0x7f0000000180)={@local, @broadcast, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x2, 0x3, 0x34, 0x64, 0x0, 0x7, 0x6, 0x0, @remote, @remote}, {{0x4e22, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x8, 0xc2, 0x6071, 0x0, 0xe7, {[@sack_perm={0x4, 0x2}, @timestamp={0x8, 0xa, 0xd98d, 0x7}]}}}}}}}, 0x0)

13m25.597433787s ago: executing program 3 (id=2189):
r0 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
ioctl$SG_IO(r0, 0x2285, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
write$sndseq(r1, &(0x7f0000000180)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @raw32}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @quote}], 0x38)
write$sndseq(r1, &(0x7f0000000200)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @raw32}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @ext={0x0, 0x0}}, {0x0, 0x0, 0x0, 0x20, @time, {}, {}, @time=@time}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @control}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @connect}, {0x0, 0x0, 0x0, 0x0, @time, {0xfc}, {}, @raw8={"448cc880fe353ca0f2c2e953"}}, {0x0, 0x0, 0x0, 0x0, @time, {0xfd}, {}, @connect}], 0xc4)
write$sndseq(r1, &(0x7f0000000640)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {0x8}, @ext={0x0, 0x0}}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @addr}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @connect}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @raw32}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @connect}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @control={0x6, 0x7fff, 0x8}}, {0x0, 0x0, 0x0, 0x0, @time={0xffffff81}, {}, {}, @time=@time}], 0xc4)
write$sndseq(r1, &(0x7f0000002840)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @raw32}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @control}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @addr}], 0x54)
write$sndseq(r1, &(0x7f0000000300)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @result}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @raw32}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @queue}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x0, 0x0}}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @time}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @connect}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @control}], 0xc4)
write$sndseq(r1, &(0x7f0000000a40)=[{0x0, 0x0, 0x0, 0x0, @time={0x0, 0xfffffffd}, {0x0, 0x10}, {}, @quote}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @queue}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @queue}], 0x54)
write$sndseq(r0, &(0x7f0000000000)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @addr}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @raw32}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @control}], 0x54)
write$sndseq(r1, &(0x7f0000000f80)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @queue}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @quote}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @quote}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @addr}, {}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @quote}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @quote}], 0xc4)
write$sndseq(r1, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @queue}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @time=@time}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @control}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @result}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time}], 0x8c)
write$sndseq(r1, &(0x7f0000000740)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @time=@time}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @queue}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @raw32}, {}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @result}], 0x8c)
write$sndseq(r1, &(0x7f0000000b00)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @result}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {0x0, 0x2}}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @raw8={"b5f8fbe8c20c855083221c33"}}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @addr}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @control}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @raw32}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x0, 0x0}}], 0xc4)
write$sndseq(r1, &(0x7f0000000900)=[{0x81, 0x80, 0x2, 0x4, @time={0x8, 0x5}, {0x3, 0x31}, {0xff, 0x7f}, @queue={0x80, {0x8, 0x9}}}, {0x8, 0x2, 0x8f, 0x6, @time={0x3, 0x1cddab93}, {0x0, 0x6e}, {0xf2, 0x30}, @addr={0x9, 0x1}}, {0x8, 0x7, 0x0, 0xe3, @time={0x200, 0x9}, {0x8}, {0x6, 0x1}, @raw8={"7aa27555b79e43403e7fa600"}}, {0x0, 0x7, 0x3, 0x6, @time={0x0, 0x7}, {0x8, 0xfd}, {0x93, 0x80}, @queue={0x14, {0x10, 0x80}}}, {0x6, 0x8, 0x3, 0x40, @tick=0xf6, {0x2, 0x8}, {0x3}, @ext={0x0, 0x0}}, {0xba, 0x6, 0x54, 0x7, @tick=0x94b, {0x80, 0x8}, {0x2, 0x7f}, @control={0x5, 0x40, 0x5}}, {0x3, 0xc, 0x4, 0x6, @time={0x6, 0x1}, {0x10, 0x4}, {0x8, 0xa}, @raw8={"80408bcf99ee1216e4e59519"}}, {0xd2, 0x6, 0xd9, 0x0, @time={0x8, 0x4}, {0x54, 0x6}, {0x8, 0x8}, @result={0x5, 0x6}}, {0xcf, 0x1, 0xff, 0x5, @tick=0x9, {0x4, 0xb3}, {0x80, 0xd}, @control={0x66, 0x800, 0x3}}], 0xfc)
write$sndseq(r1, &(0x7f0000000400)=[{0x8, 0x53, 0x7, 0x65, @time={0x4, 0x8}, {0x7, 0x1}, {0x6, 0x5}, @raw8={"424a46f27d2a45434e135bda"}}, {0x7, 0x2, 0x64, 0x8, @tick=0x5, {0xc5, 0xf9}, {0x9, 0x16}, @addr={0x7, 0x40}}, {0x88, 0xfd, 0x7a, 0xd, @tick=0x1158, {0x9, 0x6}, {0x4, 0x4}, @connect={{}, {0xf, 0x6}}}], 0x54)
write$sndseq(r1, &(0x7f0000000800)=[{0x0, 0x0, 0x0, 0x0, @time={0xb, 0x3}, {}, {}, @connect}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @ext={0x0, 0x0}}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @control}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @quote}, {0x0, 0x0, 0x0, 0x0, @time}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @time=@time}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @raw8={"ce274516c7da5b6da0b16993"}}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @raw8={"b134b141793d8609365bda4d"}}, {}], 0xfc)

13m25.460636216s ago: executing program 3 (id=2191):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = syz_clone(0xa1302400, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r3)
ptrace(0x8, r3)
r4 = syz_pidfd_open(r3, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000e40), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_ENABLE(r5, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000001080)={&(0x7f0000000000)={0x6c, r6, 0x1, 0x0, 0x25dfdbfe, {}, [@TIPC_NLA_BEARER={0x58, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x0, 0x0, @loopback}}, {0x20, 0x2, @in6={0xa, 0x0, 0x1, @remote}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz0\x00'}]}]}, 0x6c}}, 0x0)
process_mrelease(r4, 0x700000000000000)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)=@newlink={0x48, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x3f}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x18, 0x2, 0x0, 0x1, [@IFLA_BR_MULTI_BOOLOPT={0xc, 0x2e, {0x1, 0x3}}, @IFLA_BR_NF_CALL_ARPTABLES={0x5, 0x26, 0xff}]}}}]}, 0x48}, 0x1, 0x0, 0x0, 0x840}, 0x0)

13m23.468484402s ago: executing program 3 (id=2194):
r0 = socket$packet(0x11, 0x3, 0x300)
dup(r0)
r1 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000400)='/sys/power/resume', 0x159a82, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x80001f00, 0x12)
ioctl$int_in(r1, 0x40000000af01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000240)={0x1, 0x1, 0x0, &(0x7f0000000200)=""/51, 0x0})
r3 = socket$packet(0x11, 0x3, 0x300)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'macsec0\x00'})
sendto$packet(0xffffffffffffffff, &(0x7f0000000280)="a99c383d33c9c607b1b9d496a1bfff045203651c235bba32756dc21104a9b8d80b053f187a6f25a05dc97ea608617f682bb20d9791d173fcc0a1c43f69d0a9", 0x3f, 0x0, 0x0, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r1, 0x4008af03, &(0x7f0000000340))
r5 = dup(r3)
ioctl$VHOST_NET_SET_BACKEND(r1, 0x4008af30, &(0x7f0000000000)={0x1, r5})
ioctl$VHOST_SET_FEATURES(r1, 0x4008af00, &(0x7f00000001c0)=0x304008000)

13m21.70552453s ago: executing program 4 (id=2196):
socket$alg(0x26, 0x5, 0x0)
r0 = socket$inet6(0xa, 0x80003, 0xff)
setsockopt$inet6_int(r0, 0x29, 0x16, &(0x7f0000fcb000), 0x4)
sendmsg$IPCTNL_MSG_CT_DELETE(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="e40000000201010800000000000000000a000000d00001800c000280050001"], 0xe4}}, 0x4000005)
seccomp$SECCOMP_GET_NOTIF_SIZES(0x3, 0x11, 0x0)
mprotect(&(0x7f0000000000/0x2000)=nil, 0x2000, 0xc)
r1 = socket$inet6(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000005c0)={0x0, 0x50}}, 0x0)
sendto$inet6(r1, &(0x7f0000000000)='s', 0x10a73, 0x800, 0x0, 0x4b6ae4f95a5de35b)
setsockopt$inet6_int(r0, 0x29, 0x16, &(0x7f0000000000)=0xfffffffe, 0x4)
ioctl$AUTOFS_IOC_ASKUMOUNT(r1, 0x80049370, &(0x7f0000000280))
setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000040)={0x0, 0x2}, 0x8)
close(0x3)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000640)={0x26, 'hash\x00', 0x0, 0x0, 'cryptd(xcbc(camellia-generic))\x00'}, 0x58)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000180)={0xffffffffffffffff, &(0x7f0000000200)="df2f137af57073b905476edeafcc9fd48a756d6c426071f63408d507d970e956255f615cb01afcf182be8885b5d93d78ca885daae6c5d828211df7e88f3d7f73ad91702c614c1ad7cab214cda001e2135e8329fdd7fb96b7ec0e607d814b977ca7c7930a3de6f31c2feead97492cf581bc2f29a9e70cf2bb48", &(0x7f00000006c0)=""/4096}, 0x20)
getdents(0xffffffffffffffff, &(0x7f0000001fc0)=""/184, 0xb8)
accept4$alg(r2, 0x0, 0x0, 0x0)
r3 = socket(0x25, 0x1, 0x0)
sendmmsg$unix(r3, &(0x7f0000004400), 0x400000000000203, 0x0)

13m21.703526664s ago: executing program 3 (id=2198):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(aes)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000340)="71e67a15cdf0311cfcf33a52a7d86bd1", 0x20)
r1 = accept4$alg(r0, 0x0, 0x0, 0x80000)
io_setup(0x42, &(0x7f0000000100)=<r2=>0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff7000/0x1000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045)
r3 = io_uring_setup(0xd9f, &(0x7f0000000040)={0x0, 0xc8df, 0xc000, 0xa, 0x20002f7})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000093c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@deltfilter={0x24, 0x2d, 0x10, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x1}, {}, {0xe, 0x5}}}, 0x24}, 0x1, 0x0, 0x0, 0x40005}, 0x0)
r4 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r4, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x43)
io_uring_enter(r3, 0x2219, 0x7721, 0x16, 0x0, 0x0)
io_submit(r2, 0x1, &(0x7f0000000140)=[&(0x7f0000000200)={0x1000000, 0x0, 0x700000000000000, 0x0, 0x0, r1, &(0x7f0000000600)="a5", 0x1, 0x0, 0x0, 0x2}])
write$vhost_msg_v2(r1, &(0x7f00000003c0)={0x2, 0x0, {0x0, 0x0, 0x0, 0x1, 0x3}}, 0x48)

13m21.246250613s ago: executing program 4 (id=2200):
socket$nl_route(0x10, 0x3, 0x0)
add_key$keyring(&(0x7f0000000100), 0x0, 0x0, 0x0, 0xfffffffffffffffd)
socket$netlink(0x10, 0x3, 0x0)
syz_open_dev$video(&(0x7f0000000100), 0x3, 0x2000)
socket$nl_xfrm(0x10, 0x3, 0x6)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmmsg$unix(r0, &(0x7f00000bd000), 0x318, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0x6, 0xfa11, 0xffffffff}, 0x0)
r1 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000040), 0xa0201, 0x0)
write$dsp(r1, &(0x7f00000012c0)="a52876830a602214f6b4e928d758f38a5a7cb4b31c4c09289e9ebb6286784ca3", 0x4000)
syz_open_dev$hiddev(&(0x7f0000000140), 0x2cc0, 0x18000)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0)
sendmsg$key(0xffffffffffffffff, 0x0, 0x0)
sendmsg$key(0xffffffffffffffff, 0x0, 0x0)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000140)='/sys/power/wakeup_count', 0x1, 0x50)
io_setup(0x4fe, &(0x7f00000009c0)=<r3=>0x0)
io_submit(r3, 0x1, &(0x7f0000000400)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x1, 0x40, r2, &(0x7f0000000200)='8', 0x1, 0x10000000005971}])

13m20.50029819s ago: executing program 3 (id=2201):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x0, &(0x7f0000000340)={&(0x7f0000000180)={0x2, 0x2, 0x0, 0x2, 0x2}, 0x10}, 0x1, 0x7}, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x4cc00)
syz_emit_ethernet(0x46, &(0x7f0000000380)={@broadcast, @empty, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x38, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @empty}, @dest_unreach={0x5, 0x0, 0x0, 0x0, 0x0, 0x0, {0x7, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11, 0x3, @dev, @local, {[@ssrr={0x89, 0x3}, @timestamp_addr={0x44, 0x4}]}}}}}}}, 0x0)
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x10000005)
prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
connect$bt_l2cap(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x2042, 0x0)
ioctl$AUTOFS_IOC_FAIL(r4, 0x4c80, 0x7000000)
ioctl$MON_IOCT_RING_SIZE(0xffffffffffffffff, 0x9204, 0x8082022)

13m17.861136402s ago: executing program 4 (id=2208):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$l2tp6(0xa, 0x2, 0x73)
recvfrom$l2tp6(r1, 0x0, 0x0, 0x141, 0x0, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff000000000200000009000100"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)={{0x14}, [], {0x14}}, 0x28}, 0x1, 0x0, 0x0, 0x20000080}, 0x0)
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, 0x0)
keyctl$clear(0x7, 0xfffffffffffffffb)
mount$9p_virtio(&(0x7f00000001c0), 0x0, 0x0, 0x0, 0x0)
chdir(0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuset.memory_pressure_enabled\x00', 0x275a, 0x0)
close(r2)
r3 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x400, 0x0)
ioctl$COMEDI_DEVCONFIG(r3, 0x40946400, &(0x7f00000001c0)={'mpc624\x00', [0x408, 0x7ff, 0xffffffff, 0x0, 0x0, 0x1, 0x8, 0x7, 0xa, 0xfc, 0x2, 0x1, 0x684b, 0x4000004, 0x6, 0x93, 0x1, 0x1a447, 0x3, 0x40000006, 0x100, 0x2, 0xf24, 0x6, 0xb, 0xa, 0x5, 0xc, 0x4004, 0x10000, 0x6]})
read$FUSE(r2, 0x0, 0x0)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
timer_create(0x2, &(0x7f0000533fa0)={0x0, 0x21}, &(0x7f0000bbdffc)=<r4=>0x0)
timer_settime(r4, 0x1, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
r5 = socket$kcm(0x10, 0x2, 0x0)
ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r5, 0x8982, 0x0)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x48000)

13m16.758320967s ago: executing program 4 (id=2212):
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00')
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB], 0x0, 0x3c}, 0x28)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x88}, 0x0)
ioctl$PIO_SCRNMAP(r0, 0x4b41, &(0x7f0000019080)="cf9a8cf978aba19ca9e32c98ba3fa3229808fef52c53088afae6c1aa95759e9bf231b1d53111ec5ed82534d3888cebb35a9b8a62f8548e87aa42c338daeb1e7dc04aafd7790a2783fc8c799546fb19b606f2bed86701daa66f524699856a0be5cf2c506d88d9b672136c2d8c31f935a683121bb114a650ec15824c78bbf36f0c399ca19fdc17303d48bb")
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
ioctl$USBDEVFS_DISCONNECT_CLAIM(r4, 0x8108551b, &(0x7f0000000380)={0x0, 0x0, "5a77bd318786aeb879ca62cdab2a0000000086d85b25a5665a3247e500f61681905db88235f8a5447dd2a2ed6e91626f068881e50f6853772b21a100efb76cba37ff3111d6847e8b9398a646717af75fc008daefba68e6222103472bc55704cdb72b4b996ed831f3b802549db3a8ffff7d34171113d806726615380fe65a6a0a72e1ac2b60bd6276fd8bb6363d10f70da60fd53ded22c87eb2be010e4a62fb73c33424b437bb192c9d06ea6ed04983fe5c5ca033dfce0a82575ef14eee686be0fc58e384f93a13f4e8bbf599394baea3a9ca1864f0a35d6cc38fca32ad6b39905a9727d2001457df7be7e1aefe363590d1f600"})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)=@newqdisc={0x24, 0x24, 0x4ee4e6a52ff56541, 0x1000, 0x3, {0x0, 0x0, 0x0, 0x0, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff5, 0xffff}}}, 0x24}, 0x1, 0x0, 0x0, 0x20000001}, 0x0)
ioctl$USBDEVFS_CLEAR_HALT(r4, 0xc0105502, &(0x7f0000000300)={0x1, 0x1})
openat$comedi(0xffffff9c, &(0x7f0000000040)='/dev/comedi2\x00', 0xa400, 0x0)
pread64(r0, &(0x7f0000000080)=""/102356, 0x18fd4, 0x200)

13m14.030855496s ago: executing program 4 (id=2215):
r0 = fanotify_init(0x200, 0x40000)
fanotify_mark(r0, 0x1, 0x8000018, 0xffffffffffffffff, 0x0)
r1 = getpgrp(0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000000)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r3 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r3, 0x1, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
mkdirat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x100)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mkdir(0x0, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x1b, &(0x7f00000000c0)={@remote={0xfe, 0x80, '\x00', 0xffffffffffffffff}}, 0x20)

13m12.278368852s ago: executing program 4 (id=2216):
openat$mice(0xffffff9c, &(0x7f00000002c0), 0x212240)
openat$nullb(0xffffffffffffff9c, 0x0, 0x84042, 0x0)
syz_open_dev$loop(0x0, 0x1, 0x122c42)
socket$kcm(0x10, 0x6, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f00000002c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0x6, 0xfa11, 0xffffffff}, 0x0)
syz_open_dev$video(0x0, 0x101, 0xab02)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
r2 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x8002, 0x0)
write$P9_RSTATu(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="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", @ANYRES32, @ANYRES32=0x0, @ANYRES32=0x0], 0x4d6)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x200000a, 0x204031, r2, 0xffffd000)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x800)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)

13m11.802449167s ago: executing program 3 (id=2218):
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
sched_setattr(0x0, 0x0, 0x0)
name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1c0000008100"], &(0x7f0000001500), 0x200)
r3 = socket(0x15, 0x5, 0x0)
getsockopt(r3, 0x200000000114, 0x2718, 0x0, &(0x7f0000000040))
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1000, 0x0)
brk(0x200000ffc000)
mount$fuse(0x0, &(0x7f0000000280)='./file0\x00', 0x0, 0x100000, 0x0)
open_tree(0xffffffffffffff9c, 0x0, 0x89901)
socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, 0x0, 0x20040040)
sendmsg$IPSET_CMD_RENAME(r4, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000100)={&(0x7f0000000040)={0x1c, 0x5, 0x6, 0x3, 0x0, 0x0, {0x7, 0x0, 0x8}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}}, 0x8150)

12m56.513851278s ago: executing program 33 (id=2216):
openat$mice(0xffffff9c, &(0x7f00000002c0), 0x212240)
openat$nullb(0xffffffffffffff9c, 0x0, 0x84042, 0x0)
syz_open_dev$loop(0x0, 0x1, 0x122c42)
socket$kcm(0x10, 0x6, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f00000002c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0x6, 0xfa11, 0xffffffff}, 0x0)
syz_open_dev$video(0x0, 0x101, 0xab02)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
r2 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x8002, 0x0)
write$P9_RSTATu(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="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", @ANYRES32, @ANYRES32=0x0, @ANYRES32=0x0], 0x4d6)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x200000a, 0x204031, r2, 0xffffd000)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x800)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)

12m55.282345776s ago: executing program 34 (id=2218):
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
sched_setattr(0x0, 0x0, 0x0)
name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1c0000008100"], &(0x7f0000001500), 0x200)
r3 = socket(0x15, 0x5, 0x0)
getsockopt(r3, 0x200000000114, 0x2718, 0x0, &(0x7f0000000040))
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1000, 0x0)
brk(0x200000ffc000)
mount$fuse(0x0, &(0x7f0000000280)='./file0\x00', 0x0, 0x100000, 0x0)
open_tree(0xffffffffffffff9c, 0x0, 0x89901)
socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, 0x0, 0x20040040)
sendmsg$IPSET_CMD_RENAME(r4, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000100)={&(0x7f0000000040)={0x1c, 0x5, 0x6, 0x3, 0x0, 0x0, {0x7, 0x0, 0x8}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}}, 0x8150)

7m58.871158796s ago: executing program 0 (id=3749):
socket$inet(0x2, 0x1, 0x100)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_pidfd_open(0x0, 0x0)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r4, 0x29, 0x20, &(0x7f0000000040)={@loopback, 0x10000, 0x0, 0x2, 0xb, 0x4, 0x9fd}, 0x20)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r3, 0x29, 0x20, &(0x7f00000000c0)={@private2={0xfc, 0x2, '\x00', 0x1}, 0x10000, 0x2, 0x0, 0x9, 0x6, 0x3}, 0x20)

7m57.578813639s ago: executing program 0 (id=3750):
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x18, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], 0x0}, 0x94)
openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
sendmsg$IPSET_CMD_FLUSH(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)=ANY=[], 0x1c}, 0x1, 0x0, 0x0, 0x8000}, 0x4)
bind$alg(0xffffffffffffffff, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg(r0, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000640)="3013f93f6a23826aeaa571d88a1fc628ec108a5ce411744d4e3ae79c53", 0x1d}, {&(0x7f00000006c0)="ac5bf07dfbe37df362733fa6e33fcfe007a76905029bf5f167a7418ebe47895ee8a38f7c4ae25d6ae91633bc0b5bcd5572d067fa7af73dfb4605ec2b21cbe0ca844c8033fe927cd5f154695e5c65c966e80d4a08ff27a975d2ae54226a99", 0x5e}, {&(0x7f0000001400)="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", 0xd08}], 0x3, &(0x7f0000002400)=[{0x10, 0x1, 0x8}], 0x10}, 0x40000)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
sendmsg$IPVS_CMD_GET_DEST(r0, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x10805}, 0x44049)
r2 = accept4(r1, 0x0, 0x0, 0x800)
sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000001380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000dc0)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r3, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r4, @ANYBLOB="d50633008000009effffffffffff080211000001"], 0x6f4}}, 0x0)

7m54.569951432s ago: executing program 0 (id=3754):
r0 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000100)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$sock_qrtr_SIOCGIFADDR(r0, 0x8915, 0x0)
getsockopt$inet_mreqsrc(r0, 0x0, 0x25, &(0x7f0000000180)={@loopback, @multicast2, @broadcast}, 0x0)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f0000000000)={'syz_tun\x00', &(0x7f0000002fc0)=@ethtool_link_settings={0x4d, 0x40034, 0xf7, 0x2, 0x80, 0x3, 0x7, 0xc, 0x66, 0x4, [0x20040, 0x9, 0x10, 0x40, 0x6, 0x8, 0x5, 0x2174]}})
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x5, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
r3 = syz_open_dev$vbi(&(0x7f0000000000), 0x0, 0x2)
socket$kcm(0x2b, 0x1, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$VIDIOC_SUBDEV_QUERY_DV_TIMINGS(r3, 0x80845663, 0x0)
r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x40001, 0x0)
ioctl$BLKZEROOUT(r4, 0x127f, &(0x7f0000000240)={0x0, 0x1000000})

7m44.970070645s ago: executing program 0 (id=3773):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x121301, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xd)
socket$inet6_tcp(0xa, 0x1, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x3, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r1 = syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xaee2, 0x800, 0xffffffff, 0xbfdffffc}, 0x0, &(0x7f0000000280))
io_uring_enter(r1, 0x47f6, 0x0, 0x2, 0x0, 0x300)
sched_setattr(0x0, 0x0, 0x0)
r2 = fsopen(&(0x7f0000000340)='omfs\x00', 0x1)
ioctl$IOMMU_TEST_OP_MD_CHECK_MAP(0xffffffffffffffff, 0x3ba0, &(0x7f0000000380)={0x48, 0x16, 0x0, 0x0, 0xe160, 0x0, 0x0})
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000000)='source', &(0x7f0000000180)='%(,c\xbe\r\xcc:', 0x0)
userfaultfd(0x1)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r3, 0x0, 0x40000)
close(0x3)
openat$adsp1(0xffffffffffffff9c, &(0x7f0000000040), 0xa0201, 0x0)
r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
ioctl$SNDCTL_DSP_SPEED(r4, 0xc0045002, &(0x7f00000001c0)=0x2)

7m44.686697409s ago: executing program 0 (id=3775):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = syz_io_uring_setup(0x10f, &(0x7f00000000c0)={0x0, 0x211a, 0x80, 0x4, 0x306}, &(0x7f0000000340)=<r4=>0x0, &(0x7f0000000280)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000040)=0xffefffdc, 0x0, 0x4)
sendmsg$IPSET_CMD_TYPE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYBLOB='>'], 0x38}}, 0x80)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r6, &(0x7f0000000180)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r6, 0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_ACCEPT={0xd, 0x8, 0x6, 0xffffffffffffffff, 0x0})
io_uring_enter(r3, 0x3516, 0x7dd6, 0x8, 0x0, 0x0)

7m43.584454732s ago: executing program 0 (id=3779):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000240)={0x38, 0x0, 0x10000044, 0x7, 0x0, 0x22000000000000b3, 0x4, 0xfffffe0000000001, 0x7, 0x3}, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe)
socket$inet_udp(0x2, 0x2, 0x0)
syz_emit_ethernet(0xbe, &(0x7f0000000000)={@dev={'\xaa\xaa\xaa\xaa\xaa', 0x23}, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xc}, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x66, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x9c, 0x0, @wg=@initiation={0x1, 0x0, "7b4b142b7461fd777b1c012bd14efb9f49fcdb8f080c26a04883ad5c8c82b8af", "584cbf2649a50f2dbc43efa8698d0a881c51852e4451b57d037ad3c04594282423424d00", "bcfd56f1375461caaa2f19935e6996c7096ffeeb0300000000000064", {"9a3bfbc1f39cb307b3472eb9cdb042d2", "643fcbb2c5a57df67d544af6e8dafe09"}}}}}}}, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x2003}, 0x94)
pselect6(0x40, &(0x7f0000000040)={0x9, 0xffffffffffff7fff, 0xa38, 0xdd43, 0x2, 0x800, 0x4a, 0x5}, 0x0, 0x0, 0x0, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f0000000200)='syzkaller\x00', 0x9}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
recvmmsg(0xffffffffffffffff, &(0x7f0000004080), 0x0, 0x2, 0x0)

7m43.19214594s ago: executing program 7 (id=3781):
r0 = syz_open_dev$video4linux(&(0x7f0000000080), 0x2, 0x0)
ioctl$VIDIOC_QUERYMENU(r0, 0xc040564a, &(0x7f0000000140)={0x0, 0x1, @value=0x1013})
sendmsg$MPTCP_PM_CMD_GET_LIMITS(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0xffffffffffffffb4, 0x0, 0x1, 0x0, 0x0, 0x41}, 0x809d)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0)
write$binfmt_script(r3, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r3, 0x0)
preadv(r3, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000499000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f320f300f20e06635800000000f22e02b6aa6c8", 0x4a}], 0x1, 0x0, 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f00000025c0)=[{{&(0x7f0000000000)={0xa, 0x4e22, 0x0, @private1, 0xc10}, 0x1c, 0x0}}, {{0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000140)='i', 0x1}], 0x1}}], 0x2, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x4e, &(0x7f0000000080)=0x3, 0x4)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

7m39.609311102s ago: executing program 7 (id=3784):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
bpf$BPF_PROG_QUERY(0x10, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000400)=@abs={0x0, 0x0, 0x4e25}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000540)=@base={0x7, 0x0, 0x4, 0xff, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x2}, 0x50)
move_mount(0xffffffffffffffff, 0x0, 0xffffffffffffff9c, 0x0, 0x0)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$bt_hci_HCI_TIME_STAMP(r3, 0x0, 0x3, &(0x7f0000000000)=0xf, 0x4)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
pipe2(0x0, 0x0)
rt_sigtimedwait(&(0x7f0000000000)={[0x86]}, 0x0, &(0x7f0000000040)={0x0, 0x989680}, 0x8)

7m36.264185087s ago: executing program 7 (id=3788):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, 0x0, &(0x7f0000000340)='GPL\x00', 0x6, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
ptrace$PTRACE_SETSIGMASK(0x420b, 0x0, 0x8, &(0x7f00000005c0)={[0x8]})
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
keyctl$session_to_parent(0x12)
keyctl$session_to_parent(0x12)
keyctl$session_to_parent(0x12)
setgroups(0x0, 0x0)
r3 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
ioctl$VIDIOC_TRY_FMT(r3, 0xc0d05640, &(0x7f0000000500)={0xa, @sdr={0x35303553, 0x1000}})
shmget$private(0x0, 0x4000, 0x800, &(0x7f0000007000/0x4000)=nil)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_open_dev$tty1(0xc, 0x4, 0x1)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, 0x0, 0x0)

7m34.428733157s ago: executing program 7 (id=3792):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x3000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file1\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/tty/drivers\x00', 0x0, 0x0)
sendfile(0xffffffffffffffff, r4, 0x0, 0x106f)
close_range(r0, 0xffffffffffffffff, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x34, 0x34, 0x6, [@var={0x4, 0x0, 0x0, 0xe, 0x4}, @func_proto, @typedef={0x0, 0x0, 0x0, 0x10, 0x4}, @volatile={0x0, 0x0, 0x0, 0x9, 0x3}]}, {0x0, [0x0, 0x0, 0x0, 0x61]}}, 0x0, 0x52}, 0x20)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f00000000c0)}], 0x1, 0x0, 0x0, 0x7400}, 0x0)

7m31.757908271s ago: executing program 7 (id=3794):
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
fanotify_mark(0xffffffffffffffff, 0x455, 0x8000008, r0, 0x0)
ioctl$XFS_IOC_FREE_EOFBLOCKS(r0, 0x8080583a, &(0x7f0000000000)={0x2, 0x26d, 0x89, 0x80, 0x800, 0x0, 0x9})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
prlimit64(0x0, 0xe, &(0x7f0000000080)={0x8, 0x9}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
semctl$SETALL(0x0, 0x0, 0x11, 0x0)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r4, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r4, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000080)=[@in={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, &(0x7f0000000180)=0x10)

7m30.524155139s ago: executing program 7 (id=3797):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f00000000c0)=@file={0x0, './bus\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0)
r3 = fsmount(r2, 0x0, 0x0)
fchdir(r3)
r4 = open(&(0x7f0000000040)='./bus\x00', 0x143142, 0x80)
ftruncate(r4, 0x2007ffb)
close(r4)
openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0xc8a02, 0x0)
r5 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
creat(&(0x7f0000000300)='./bus\x00', 0x0)

7m27.187201871s ago: executing program 35 (id=3779):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000240)={0x38, 0x0, 0x10000044, 0x7, 0x0, 0x22000000000000b3, 0x4, 0xfffffe0000000001, 0x7, 0x3}, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe)
socket$inet_udp(0x2, 0x2, 0x0)
syz_emit_ethernet(0xbe, &(0x7f0000000000)={@dev={'\xaa\xaa\xaa\xaa\xaa', 0x23}, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xc}, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x66, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x9c, 0x0, @wg=@initiation={0x1, 0x0, "7b4b142b7461fd777b1c012bd14efb9f49fcdb8f080c26a04883ad5c8c82b8af", "584cbf2649a50f2dbc43efa8698d0a881c51852e4451b57d037ad3c04594282423424d00", "bcfd56f1375461caaa2f19935e6996c7096ffeeb0300000000000064", {"9a3bfbc1f39cb307b3472eb9cdb042d2", "643fcbb2c5a57df67d544af6e8dafe09"}}}}}}}, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x2003}, 0x94)
pselect6(0x40, &(0x7f0000000040)={0x9, 0xffffffffffff7fff, 0xa38, 0xdd43, 0x2, 0x800, 0x4a, 0x5}, 0x0, 0x0, 0x0, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f0000000200)='syzkaller\x00', 0x9}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
recvmmsg(0xffffffffffffffff, &(0x7f0000004080), 0x0, 0x2, 0x0)

7m9.16949115s ago: executing program 36 (id=3797):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f00000000c0)=@file={0x0, './bus\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0)
r3 = fsmount(r2, 0x0, 0x0)
fchdir(r3)
r4 = open(&(0x7f0000000040)='./bus\x00', 0x143142, 0x80)
ftruncate(r4, 0x2007ffb)
close(r4)
openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0xc8a02, 0x0)
r5 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
creat(&(0x7f0000000300)='./bus\x00', 0x0)

6m19.217540178s ago: executing program 5 (id=3951):
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
syz_open_dev$usbfs(0x0, 0x401, 0x0)
syz_usb_connect$uac1(0x0, 0xa5, &(0x7f00000002c0)=ANY=[@ANYBLOB="12010000000000106b1d01114000010203010902930003010000020904000000010100000a24010000000201021324060000060000000000000000020000000009240300000000030009240500070000000009240300ff010404000624050400fd0904010000010200000904010101010200000905010940000000000725010307000009040200000102000009040201010102400009058209ff"], 0x0)

6m16.045756204s ago: executing program 5 (id=3955):
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x19, 0x1, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_trace_dev_match', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x20008b}, 0x0)
r0 = syz_init_net_socket$ax25(0x3, 0x5, 0xc4)
ioctl$SIOCAX25DELFWD(r0, 0x89eb, &(0x7f0000000000)={@default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}})
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x1)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x4008032, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x45, &(0x7f0000000000)={@link_local={0x3}, @multicast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x37, 0x0, 0x0, 0x9, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0x3, 0x4, 0x0, 0x12, 0x9, 0x3f18, {0x5, 0x2, 0x0, 0x0, 0x0, 0x68, 0x0, 0x0, 0x1, 0x0, @loopback=0xac14140a, @loopback=0xac141437}, "00186371ae9b1c"}}}}}, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)
sendmsg$RDMA_NLDEV_CMD_RES_CQ_GET(0xffffffffffffffff, 0x0, 0x4000040)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f0000000340), 0x0, 0x0)
read$msr(r1, &(0x7f000001aa40)=""/102400, 0x19000)
socket$inet6_tcp(0xa, 0x1, 0x0)
pipe(&(0x7f0000000400))
r2 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'veth0\x00', <r3=>0x0})
setsockopt$packet_int(r2, 0x107, 0xf, &(0x7f0000000000)=0xf3f, 0x4)
sendto$packet(r2, &(0x7f00000000c0)="3f03fe7f0302140006001e0089e9aaa911d7c2290f0086dd1327c9167c642b4a1b7880610cc96655b1b141ab059b24d0fbc50df71548a3f6c5609063382a0c153cfdf9435e3ffe46", 0xe90c, 0x0, &(0x7f0000000540)={0xc9, 0x0, r3, 0x1, 0x0, 0x6, @multicast}, 0x14)

6m14.852789285s ago: executing program 5 (id=3957):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000fc0)={&(0x7f00000001c0)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000000200000008000300", @ANYRES32=r1], 0x3c}}, 0x0)

6m14.319936014s ago: executing program 5 (id=3961):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000540)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_KEY(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000080)={0x48, r0, 0x801, 0x0, 0x3, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_KEY={0x20, 0x50, 0x0, 0x1, [@NL80211_KEY_IDX={0x5}, @NL80211_KEY_CIPHER={0x8, 0x3, 0xfac01}, @NL80211_KEY_DATA_WEP40={0x9, 0x1, "f8ff00fa08"}]}]}, 0x48}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)

6m13.102523082s ago: executing program 5 (id=3967):
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r1=>0x0})
connect$can_bcm(r0, &(0x7f00000000c0)={0x1d, r1}, 0x10)
sendmsg$can_bcm(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000400)=ANY=[@ANYBLOB="01000000010900000000008000000000", @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYBLOB="0000000001"], 0x80}, 0x1, 0x0, 0x0, 0x40}, 0x40000)

6m11.111573543s ago: executing program 5 (id=3973):
r0 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$ipvs(&(0x7f0000000000), r0)
getsockname$packet(r0, &(0x7f0000000600)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000280)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000340)=@newlink={0x48, 0x10, 0x503, 0x0, 0x0, {0x0, 0x0, 0x0, r1, 0x0, 0x20040}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @vxcan={{0xa}, {0x18, 0x2, 0x0, 0x1, @val={0x14, 0x1, {{0x0, 0x0, 0x0, r1, 0x201, 0x68320}}}}}}]}, 0x48}, 0x1, 0x2000, 0x0, 0x40}, 0x4048800)

5m55.868302674s ago: executing program 37 (id=3973):
r0 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$ipvs(&(0x7f0000000000), r0)
getsockname$packet(r0, &(0x7f0000000600)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000280)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000340)=@newlink={0x48, 0x10, 0x503, 0x0, 0x0, {0x0, 0x0, 0x0, r1, 0x0, 0x20040}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @vxcan={{0xa}, {0x18, 0x2, 0x0, 0x1, @val={0x14, 0x1, {{0x0, 0x0, 0x0, r1, 0x201, 0x68320}}}}}}]}, 0x48}, 0x1, 0x2000, 0x0, 0x40}, 0x4048800)

3m54.555239386s ago: executing program 1 (id=4146):
mount$tmpfs(0x0, 0x0, 0x0, 0x0, &(0x7f0000000380)={[{@mpol={'mpol', 0x3d, {'interleave', '=static', @void}}}]})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = userfaultfd(0x801)
ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f0000000040)={0xaa, 0x45e})
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000100)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_dev$MSR(0x0, 0x0, 0x0)
shmget(0x0, 0x2000, 0x800, &(0x7f0000168000/0x2000)=nil)
read$msr(r3, 0x0, 0x0)
preadv2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x10)
ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_PORT(0xffffffffffffffff, 0xc0a85352, &(0x7f0000000200)={{0x80, 0x7f}, 'port1\x00', 0x80, 0x14, 0x4, 0xfffffeff, 0x0, 0xc, 0x200000, 0x0, 0x4875c99660ff2b2d})
r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000002040)='oom_score_adj\x00')
write$FUSE_NOTIFY_RETRIEVE(r4, 0x0, 0x0)
write$cgroup_int(r4, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r5 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000040)={[0x4, 0x2, 0xe9b, 0xc, 0xd, 0x7f, 0x44233, 0x7, 0x81, 0x941, 0x8001, 0x1005, 0xc, 0x5, 0x0, 0xfffffdfffffffffd], 0x2, 0x80300})
ioctl$KVM_SET_VCPU_EVENTS(r5, 0x4400ae8f, &(0x7f0000000140)=@arm64={0x9, 0xe, 0xb0, '\x00', 0x8000000000000000})
ioctl$KVM_RUN(r5, 0xae80, 0x0)

3m48.56824524s ago: executing program 1 (id=4149):
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r0, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r0, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000040)=[<r1=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_GETPLANE(r0, 0xc02064b6, &(0x7f00000001c0)={r1, <r2=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
bpf$MAP_CREATE(0x0, 0x0, 0x0)
mremap(&(0x7f0000006000/0x3000)=nil, 0x3000, 0x3000, 0x7, &(0x7f0000ffd000/0x3000)=nil)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x6, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000500)=0x6)
r3 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r3, 0x107, 0x12, &(0x7f0000000080)={0x2, 0x4}, 0x4)
syz_emit_ethernet(0xd2, &(0x7f0000000080)={@link_local, @multicast, @void, {@ipv6={0x86dd, @udp={0xa, 0x6, '@\x00', 0x9c, 0x11, 0x0, @local, @mcast2, {[], {0x4e1d, 0x4e20, 0x9c, 0x0, @wg=@initiation={0x1, 0x7, "a098f75bcd9a5516f311a8eaa9ce4a38b900", "674e20c1c38da0a452bae176e96e2b1e08fcde1ee4805fe36ef556ff6cb46fd595915c864cafe26107bc517193b48ef7", "5e34272cb58a0edc78aea033a347974dea840918d802fa5f8a1c7c9a", {"75d450fb18d042893597291d77675a63", "867fef542bcf00"}}}}}}}}, 0x0)
io_setup(0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_open_dev$I2C(&(0x7f0000000000), 0x0, 0x189802)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x29, 0x46, 0x0, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000002dc0)={0x0, 0x0, 0x0}, 0x41)
setxattr$system_posix_acl(0x0, &(0x7f0000000000)='system.posix_acl_default\x00', 0x0, 0x0, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=@newqdisc={0x54, 0x10, 0x1, 0x0, 0x0, {0x6, 0x0, 0x8100, 0x0, {0xc3}, {}, {0xe, 0x10}}, [@TCA_RATE={0x6}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x11, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}}, {0x8, 0x1b, [0x0, 0x0]}}]}]}, 0x54}}, 0x4c014)
ioctl$DRM_IOCTL_MODE_ATOMIC(r0, 0xc03864bc, &(0x7f0000000580)={0x401, 0x1, &(0x7f0000000180)=[r2], &(0x7f00000000c0)=[0x3], &(0x7f0000000640)=[0x0, 0x0, 0x0], &(0x7f0000000340), 0x0, 0xffffffffffffffff})

3m46.081581927s ago: executing program 1 (id=4150):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x3, &(0x7f0000000000)=[{0x7f, 0x5, 0x5, 0x6b1}, {0x0, 0x7, 0xf, 0xa}, {0x7ff, 0x0, 0x85, 0x401}]})
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
r1 = epoll_create1(0x80000)
r2 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_TX_RING(r2, 0x11b, 0x3, &(0x7f0000000140)=0x40, 0x4)
r3 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r3, 0x11b, 0x4, &(0x7f0000000340)={&(0x7f0000000000)=""/74, 0x328000, 0x1000}, 0x20)
setsockopt$XDP_UMEM_COMPLETION_RING(r3, 0x11b, 0x6, &(0x7f0000000080)=0x1, 0x4)
r4 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$XDP_RX_RING(r3, 0x11b, 0x2, &(0x7f0000001980)=0x100, 0x4)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r4, 0x8933, &(0x7f0000000580)={'batadv_slave_1\x00', <r5=>0x0})
r6 = socket$igmp6(0xa, 0x3, 0x3a)
setsockopt$MRT6_ADD_MFC(r6, 0x29, 0x22, &(0x7f0000000000)={{0xa, 0x0, 0x101, @mcast1, 0x8}, {0xa, 0x0, 0xfffffffd, @private1, 0x6}, 0xffff, {[0x6, 0x200, 0x1, 0xe1, 0x2d, 0xffffff01, 0x800, 0x240003]}}, 0x5c)
setsockopt$XDP_UMEM_FILL_RING(r3, 0x11b, 0x5, &(0x7f0000000300)=0x1, 0x4)
bind$xdp(r3, &(0x7f0000000100)={0x2c, 0x0, r5}, 0x18)
bind$xdp(r2, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r7, &(0x7f0000000040)={0x8000001f})
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r8, &(0x7f00000000c0)={0xb0002015})
futex(0x0, 0xc, 0x1, 0x0, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)

3m41.616940863s ago: executing program 1 (id=4151):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r3, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_SIOCSIFVLAN_GET_VLAN_REALDEV_NAME_CMD(r4, 0x8983, &(0x7f00000000c0)={0x8, 'ipvlan0\x00', {'lo\x00'}, 0x6})
sendto$inet(r3, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000300)='westwood', 0x8)
r5 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$TCPDIAG_GETSOCK(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="4c00000012000126000000000700074e23000000000000000000194b1cec000000000001000000fdffffff00000100"/56, @ANYRES32=0x0, @ANYBLOB="00000000ff7f0000070000"], 0x4c}, 0x1, 0x0, 0x0, 0x20000193}, 0x40000)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = syz_usb_connect(0x5, 0x36, &(0x7f0000000200)=ANY=[@ANYBLOB="1201000092ecc620ac0500773aeb010203010902240001000020000904c40102fffd018009050202100202000009058202"], 0x0)
syz_usb_control_io$uac1(r7, &(0x7f0000000000)={0x14, 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="0003060000000603"]}, 0x0)
syz_usb_control_io$uac1(r7, 0x0, &(0x7f0000000500)={0x44, &(0x7f0000000040)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
sendmsg$nl_route(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@ipv4_newroute={0x38, 0x18, 0x1, 0x0, 0x0, {0x2, 0x0, 0x20, 0x0, 0x0, 0x3, 0xc8, 0x9, 0x1b00}, [@RTA_ENCAP_TYPE={0x6, 0x15, 0x4}, @RTA_ENCAP={0x14, 0x16, 0x0, 0x1, @LWTUNNEL_IP_OPTS={0x10, 0x8, 0x0, 0x1, @LWTUNNEL_IP_OPTS_GENEVE={0xc, 0x1, 0x0, 0x1, @LWTUNNEL_IP_OPT_GENEVE_CLASS={0x6, 0x1, 0x4}}}}]}, 0x83}}, 0x0)
syz_usb_control_io$lan78xx(0xffffffffffffffff, 0x0, 0x0)

3m38.390243913s ago: executing program 1 (id=4154):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x218, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000200)={0x4, 0x0, 0x25000, 0x2000, &(0x7f0000000000/0x2000)=nil})
r2 = socket$inet6(0xa, 0x80002, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f00000004c0)=@updpolicy={0xfc, 0x19, 0x1, 0x0, 0x0, {{@in6=@rand_addr=' \x01\x00', @in=@dev={0xac, 0x14, 0x14, 0x15}, 0x0, 0x5, 0x0, 0x3, 0xa, 0x20, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0xac, 0xfff, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x7fffffff}, {0x2, 0xa00, 0x40800000000000, 0x800000000000000}, 0x0, 0x0, 0x1, 0x0, 0x0, 0x3}, [@tmpl={0x44, 0x5, [{{@in=@empty, 0x4d2, 0x3c}, 0x0, @in=@broadcast, 0x0, 0x0, 0x3, 0x0, 0x49}]}]}, 0xfc}}, 0x0)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f00000004c0)=ANY=[@ANYBLOB="fc000000190001002dbd70000000000064010100000000000000000000000000fc01000000000000000000000000000000000000000000000a0000"], 0xfc}}, 0x0)
socket$key(0xf, 0x3, 0x2)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x20000081)
connect$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e21, 0x0, @mcast2, 0xb}, 0x1c)
sendmmsg$inet6(r2, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4001c00)

3m33.462000359s ago: executing program 1 (id=4157):
socket$rxrpc(0x21, 0x2, 0xa)
r0 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x8400, 0x0)
syz_open_dev$sg(0x0, 0x0, 0x8002)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
r2 = getpgrp(r1)
sched_setaffinity(r2, 0x8, &(0x7f0000000040)=0x5)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xf5c5d000)
r3 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r3, 0x1, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$FS_IOC_SETFLAGS(r0, 0x40186f40, &(0x7f0000000440)=0x1f)

3m17.797656389s ago: executing program 38 (id=4157):
socket$rxrpc(0x21, 0x2, 0xa)
r0 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x8400, 0x0)
syz_open_dev$sg(0x0, 0x0, 0x8002)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
r2 = getpgrp(r1)
sched_setaffinity(r2, 0x8, &(0x7f0000000040)=0x5)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xf5c5d000)
r3 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r3, 0x1, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$FS_IOC_SETFLAGS(r0, 0x40186f40, &(0x7f0000000440)=0x1f)

2.718593299s ago: executing program 6 (id=4293):
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x18, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], 0x0}, 0x94)
openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
sendmsg$IPSET_CMD_FLUSH(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0x1c}, 0x1, 0x0, 0x0, 0x8000}, 0x4)
bind$alg(0xffffffffffffffff, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg(r0, &(0x7f0000000740)={0x0, 0x0, 0x0, 0x0, &(0x7f0000002400)=[{0x10, 0x1, 0x8}], 0x10}, 0x40000)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
sendmsg$IPVS_CMD_GET_DEST(r0, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x10805}, 0x44049)
r2 = accept4(r1, 0x0, 0x0, 0x800)
sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000001380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000dc0)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r3, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r4, @ANYBLOB="d50633008000009effffffffffff080211000001"], 0x6f4}}, 0x0)

2.153556037s ago: executing program 6 (id=4294):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000003e40)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0x26, 0x0, &(0x7f0000000100)="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", 0x0, 0xfe, 0x60000000}, 0x2c)

1.824889483s ago: executing program 6 (id=4295):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x22)
openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x6c6882, 0x13d)
r1 = landlock_create_ruleset(&(0x7f0000000040)={0x2, 0x3, 0x3}, 0x18, 0x0)
landlock_restrict_self(r1, 0x0)
landlock_restrict_self(r1, 0x9)
landlock_restrict_self(r1, 0x0)
landlock_restrict_self(r1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)

1.350192118s ago: executing program 6 (id=4296):
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
fcntl$setlease(r0, 0x400, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000040)={0x2, &(0x7f0000000000)=[{0x15, 0x0, 0x1, 0x7f}, {0x24, 0x0, 0x5, 0x4}]})
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[@ANYBLOB="3c0000000000000000007000ffdbdf250210140e890000060100000008000e000902000008000100e000000108000f0090ca00000800020064010100"], 0x3c}, 0x1, 0x0, 0x0, 0x80}, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r2 = fanotify_init(0x4, 0x2)
fanotify_mark(r2, 0x1, 0x8000071, 0xffffffffffffffff, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000200)={'batadv_slave_0\x00', <r3=>0x0})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000140), 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@getchain={0x34, 0x66, 0x400, 0x70bd29, 0x25dfdbff, {0x0, 0x0, 0x0, r3, {0xffff, 0x6}, {0x8, 0x515be8d43e4fcec1}, {0x5, 0x6}}, [{0x8, 0xb, 0x7}, {0x8, 0xb, 0x80}]}, 0x34}, 0x1, 0x0, 0x0, 0x1}, 0xc5)
r4 = openat$vimc0(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$VIDIOC_DQBUF(r4, 0xc0585611, &(0x7f0000000040)=@mmap={0x6, 0xa, 0x4, 0x20, 0x7, {}, {0x1, 0x0, 0x7, 0xc, 0x0, 0x9, "f9122618"}, 0x9})
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000100)={{0x1, 0x1, 0x18, <r5=>0xffffffffffffffff, {0x4}}, './cgroup\x00'})
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x3, 0x32, r5, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f0000001640)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000001600)={&(0x7f0000000440)={{0x14, 0x10, 0x1, 0x0, 0x0, {0xb}}, [@NFT_MSG_DELSET={0x2c, 0xb, 0xa, 0x401, 0x0, 0x0, {0x3, 0x0, 0x8}, [@NFTA_SET_OBJ_TYPE={0x8, 0xf, 0x1, 0x0, 0xa}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0xad}, @NFTA_SET_KEY_TYPE={0x8, 0x4, 0x1, 0x0, 0x4}]}, @NFT_MSG_NEWSETELEM={0x115c, 0xc, 0xa, 0x101, 0x0, 0x0, {0x0, 0x0, 0x5}, [@NFTA_SET_ELEM_LIST_ELEMENTS={0x670, 0x3, 0x0, 0x1, [{0x100, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_OBJREF={0x9, 0x9, 'syz1\x00'}, @NFTA_SET_ELEM_USERDATA={0xae, 0x6, 0x1, 0x0, "3f81059fe509fe26b22aab8239033d3ed5c337c833935ad9a91f21ef07b61a978113b3f60c4aa7ff12e8dc7fc5fe8a28b50b980789510fe9de62caa1d9680d16b12829255d9d802f51dfb0be669b00b8742d441272223799db2dacebbdd341c53a55f44701fa50b7eec2cbc8618f01663d03f3cb190978d3612bc904542d6221501cbdbaf2383551acc75fb194590884d2cca78a9877a999bea6e853c24742b4f6295eba29e8de5e7eb5"}, @NFTA_SET_ELEM_EXPR={0x40, 0x7, 0x0, 0x1, @rt={{0x7}, @val={0x34, 0x2, 0x0, 0x1, [@NFTA_RT_KEY={0x8, 0x2, 0x1, 0x0, 0x3}, @NFTA_RT_DREG={0x8, 0x1, 0x1, 0x0, 0x14}, @NFTA_RT_DREG={0x8}, @NFTA_RT_KEY={0x8}, @NFTA_RT_KEY={0x8, 0x2, 0x1, 0x0, 0x4}, @NFTA_RT_DREG={0x8, 0x1, 0x1, 0x0, 0x1c}]}}}]}, {0x1e8, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_DATA={0x1e4, 0x2, 0x0, 0x1, [@NFTA_DATA_VALUE={0x8e, 0x1, "340ae9ba51023a73da2745712ff092d6ce91fe98f7d67ae47f2184caf6db40a25db812c5874f2bfe0ae89553533d2b80156eaa724eb66466d66d61c41237a6ba279c7bfe367e78d4451e653af9bfe27950bda888aa029082900372412e7a5c034ce2ee3263ddb3aa1c9717698a4530d4d060790dbacea0cb4b5b5d58c9c720a49ebb3d28e53b80207148"}, @NFTA_DATA_VERDICT={0x60, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xffffffffffffffff}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}]}, @NFTA_DATA_VERDICT={0x4c, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xffffffffffffffff}]}, @NFTA_DATA_VERDICT={0x48, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x3}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}]}, @NFTA_DATA_VALUE={0x1b, 0x1, "94a53ce254c258a60458dbb0fc2364bac8519b471928fa"}, @NFTA_DATA_VERDICT={0x40, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xffffffffffffffff}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x3}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}]}]}]}, {0x114, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_USERDATA={0x2b, 0x6, 0x1, 0x0, "91fe256fc68006b4db31524e263b5e7727f2e567bb1cb130fb1d2e5b68712d9959fe390f0e203b"}, @NFTA_SET_ELEM_USERDATA={0x82, 0x6, 0x1, 0x0, "31af6309b4767e1433274b0a9b092713fc579b3afebffa13671b1379e4fff2d0e27606674c06482859ecfaf5bdc64c30c64903929449e9919fe1b3827b6fff494cb5564c503a6f1bc2c05612b2094cba13b138f60e985270ce04b7a540034ca98301c0984a6e7b9c38acd308a37daf6fb57ac06e4b654b0aa2b9c1231db8"}, @NFTA_SET_ELEM_EXPRESSIONS={0x60, 0xb, 0x0, 0x1, [{0x30, 0x1, 0x0, 0x1, @synproxy={{0xd}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_SYNPROXY_FLAGS={0x8, 0x3, 0x1, 0x0, 0x8}, @NFTA_SYNPROXY_FLAGS={0x8, 0x3, 0x1, 0x0, 0x17}, @NFTA_SYNPROXY_MSS={0x6, 0x1, 0x1, 0x0, 0xe}]}}}, {0x2c, 0x1, 0x0, 0x1, @queue={{0xa}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_QUEUE_SREG_QNUM={0x8, 0x4, 0x1, 0x0, 0x11}, @NFTA_QUEUE_SREG_QNUM={0x8, 0x4, 0x1, 0x0, 0xc}, @NFTA_QUEUE_FLAGS={0x6, 0x3, 0x1, 0x0, 0x7}]}}}]}]}, {0x120, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_USERDATA={0xdb, 0x6, 0x1, 0x0, "14044db2a35dc74b020f22b279279cc7afc554a18a9140357f2090fdf2beee8edbfee1289fe25ae1a440f46623027cacf9086400f6b70661b780a412142b6e728e1a694d3177ffb03dd093ac4c0ce098bd3b9ff34f7baef27f3273d7df3575fa90d0a99b1a94e69aa9cebd8f5882a66b4c662df979c7863b366fcd0777c03e987ad1a1c5cb11a2e3767910d755f681f2b93bfd376d4618f17bbc4bf96e810b433f2cf93dcd13e85dd1870e83a85056172ef4de0cf10e3adca21a80e71064ef02e802be578bcaafdbe8331f6cbe29a1ccec8173a5a540d9"}, @NFTA_SET_ELEM_OBJREF={0x9, 0x9, 'syz2\x00'}, @NFTA_SET_ELEM_TIMEOUT={0xc, 0x4, 0x1, 0x0, 0xb}, @NFTA_SET_ELEM_KEY={0x4}, @NFTA_SET_ELEM_TIMEOUT={0xc, 0x4, 0x1, 0x0, 0x935}, @NFTA_SET_ELEM_OBJREF={0x9, 0x9, 'syz2\x00'}, @NFTA_SET_ELEM_TIMEOUT={0xc, 0x4, 0x1, 0x0, 0x4}]}, {0x130, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_KEY={0x120, 0x1, 0x0, 0x1, [@NFTA_DATA_VALUE={0x87, 0x1, "28db1641c6b5100f28566c829b99e7f6a091536f5420ee06e92dcd0f281e637df4b75d3b691050adfcd408ba85654871422dffbd3f3249062d9d16f8cb05f992298e3f4b646b60d267226b6aecab861befb8f96b335fefd9a9efb0e1d6e193abf30fc3f7f5a6b69d0eada62659c95641a17fb48140735ec6780c18e5d36fc3c786c1d3"}, @NFTA_DATA_VERDICT={0x44, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CODE={0x8}]}, @NFTA_DATA_VALUE={0x4e, 0x1, "9daddfdb098fecd68f3a34c9c3f915b3a9011571cfd9c52b5eded7a144215f0832097593c5ffd5c27ae7dc7cfc8775677df3a5a24a21f85a0ab931f48798839ec831ef82fb3f2247be63"}]}, @NFTA_SET_ELEM_EXPIRATION={0xc, 0x5, 0x1, 0x0, 0x7}]}, {0x20, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_EXPR={0x10, 0x7, 0x0, 0x1, @range={{0xa}, @void}}, @NFTA_SET_ELEM_TIMEOUT={0xc, 0x4, 0x1, 0x0, 0xf}]}]}, @NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_ELEM_LIST_SET_ID={0x8, 0x4, 0x1, 0x0, 0x3}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_SET_ID={0x8, 0x4, 0x1, 0x0, 0x2}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x854, 0x3, 0x0, 0x1, [{0x4a4, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_KEY_END={0x2a8, 0xa, 0x0, 0x1, [@NFTA_DATA_VALUE={0x84, 0x1, "aed495cf2187f2f1eb97d70098424fa10d495b45033aa9e3b578f87abf7ef9b02bfafedd3655a12a21ef12b93a15bfa7ea0e204b82fda6234c6c2d68db3549ae9f51d7bcb94d4b089d07e5361ac703d57491c92023350eb4f6715d396d48f5532d9201bef34c3c40e57aa30212bfd85b7402d55dfc4928d4c6a77ae1b474d2fe"}, @NFTA_DATA_VALUE={0x1d, 0x1, "f2259babea89a1f2e717b6b2c5e9dc2ec9a087d8ebb6d9298f"}, @NFTA_DATA_VERDICT={0xc, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}]}, @NFTA_DATA_VERDICT={0x34, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xffffffffffffffff}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_VERDICT_CODE={0x8}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}]}, @NFTA_DATA_VALUE={0x8a, 0x1, "35f6a52104d897bd6fa2a8ffd15a0241f9e0b6ca0ae7df1e2461bbe4cb895225d9a8cd3712c3d9e42e5bfce884fc6c4a09277292cd88313a6623e7c1fea75c94f17c30f39107c595ec8f8c50e5215c80299495953b3a3af61257ac5c0612cbe62b8580e583b0c91042fd43bd8244c86d2a2f3de80ac1a2ea90f569cf23b17960db269d56c845"}, @NFTA_DATA_VALUE={0x8, 0x1, "7bf126fc"}, @NFTA_DATA_VALUE={0xcc, 0x1, "80a24586819031f8ef3c45a0ea2e54f7721adf76eb2b07beb9d7205e306aae92642ac136390afd3d5e4fab28e45edcfceb2aa9abc1734403ad1d659d10faa8109fbcddef2ecc148b7803b53c4ab273973588309b31bc0f45e65edcf40243ea5a1e9450864239bbe23ca734545f68772aac630a906c37f4a6d67cb82479a161262056204b3eba465a0408b6aa335f050a0c5d86868bf868c64407ff09c8aec11093ec989cc8e1f75c844baeebc13ec59f54f2fbde904e563a00dc6583fde0b03835a188db51befbba"}, @NFTA_DATA_VERDICT={0x44, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xffffffffffffffff}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x3}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}]}, @NFTA_DATA_VERDICT={0x1c, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}]}]}, @NFTA_SET_ELEM_TIMEOUT={0xc, 0x4, 0x1, 0x0, 0x8000}, @NFTA_SET_ELEM_OBJREF={0x9, 0x9, 'syz2\x00'}, @NFTA_SET_ELEM_EXPRESSIONS={0x11c, 0xb, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, @tunnel={{0xb}, @void}}, {0x14, 0x1, 0x0, 0x1, @immediate={{0xe}, @void}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0xc, 0x1, 0x0, 0x1, @fib={{0x8}, @void}}, {0xa0, 0x1, 0x0, 0x1, @range={{0xa}, @val={0x90, 0x2, 0x0, 0x1, [@NFTA_RANGE_SREG={0x8, 0x1, 0x1, 0x0, 0x3}, @NFTA_RANGE_SREG={0x8, 0x1, 0x1, 0x0, 0x15}, @NFTA_RANGE_TO_DATA={0x7c, 0x4, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x10, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}]}, @NFTA_DATA_VERDICT={0x10, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}]}, @NFTA_DATA_VERDICT={0x30, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xffffffffffffffff}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}]}, @NFTA_DATA_VERDICT={0x28, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}]}]}]}}}, {0xc, 0x1, 0x0, 0x1, @osf={{0x8}, @void}}, {0x10, 0x1, 0x0, 0x1, @hash={{0x9}, @void}}, {0xc, 0x1, 0x0, 0x1, @dup_ipv6={{0x8}, @void}}, {0x10, 0x1, 0x0, 0x1, @socket={{0xb}, @void}}]}, @NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_SET_ELEM_EXPRESSIONS={0xbc, 0xb, 0x0, 0x1, [{0x60, 0x1, 0x0, 0x1, @limit={{0xa}, @val={0x50, 0x2, 0x0, 0x1, [@NFTA_LIMIT_RATE={0xc, 0x1, 0x1, 0x0, 0x6}, @NFTA_LIMIT_BURST={0x8, 0x3, 0x1, 0x0, 0xa}, @NFTA_LIMIT_TYPE={0x8, 0x4, 0x1, 0x0, 0x1}, @NFTA_LIMIT_BURST={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_LIMIT_FLAGS={0x8}, @NFTA_LIMIT_TYPE={0x8}, @NFTA_LIMIT_BURST={0x8, 0x3, 0x1, 0x0, 0x10}, @NFTA_LIMIT_BURST={0x8, 0x3, 0x1, 0x0, 0xff}, @NFTA_LIMIT_BURST={0x8, 0x3, 0x1, 0x0, 0x632}]}}}, {0x18, 0x1, 0x0, 0x1, @cmp={{0x8}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CMP_SREG={0x8, 0x1, 0x1, 0x0, 0x9}]}}}, {0x10, 0x1, 0x0, 0x1, @masq={{0x9}, @void}}, {0x30, 0x1, 0x0, 0x1, @fwd={{0x8}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_FWD_NFPROTO={0x8, 0x3, 0x1, 0x0, 0xa}, @NFTA_FWD_NFPROTO={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_FWD_NFPROTO={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_FWD_SREG_DEV={0x8, 0x1, 0x1, 0x0, 0x13}]}}}]}]}, {0x39c, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_USERDATA={0xb7, 0x6, 0x1, 0x0, "06b13bb5b5ddbdd120ab9a354556ad1adb84bebc11f93da7cc876dddd9b9b6c40ebe88532bcbf660107aae39d520258bc99b20a49d79eeb8f43caec08c368e143db0e80b5922d355f09b8a16e79018d884e26d3eac8205f96bad5f4c40faa2fa78b860490c87767cb56e39fb6f9359cf1b32e5fd952210cfe68b1ef70a675b667ae71f0a9ac39ca51b8230aded83024a0ea03990363cc801b15f512c314d5c3da724008395854d209c651989c7acb46a23b15b"}, @NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_SET_ELEM_KEY_END={0x1a0, 0xa, 0x0, 0x1, [@NFTA_DATA_VALUE={0x31, 0x1, "33f878049d6f49e83af3104225fadc6af1dc1987e3ba09037266e0f7cce98cf436ed20708915d50be659e93a43"}, @NFTA_DATA_VERDICT={0x34, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}, @NFTA_VERDICT_CODE={0x8}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffa}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}]}, @NFTA_DATA_VERDICT={0x38, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x3}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}]}, @NFTA_DATA_VALUE={0xfc, 0x1, "699ae878fdbd649e8d7745a46bc062f4ca81a522a680bdb2960aa666a118a5f54c5ef503e7fa7f8f6cc2f0afb31774c4a2555859cb86026d41dd645fd7ff6ca627161d3f67e9bb50b731fdb58b8ded7a87295bf60a985b992966ad9bb4a7b41c51aaf01d41eb9d5b79fbcbef687cf1ad5ad46c1b89fff4d465cb947f2d640f6a6576d144cf00e8ca4087d93b62b247e98fccec717e56316030164efcdbe5643bb2dfe128a52391a4a662c6a321478ae51273cd0c9ffcc7357823fac47d981de09a7f4138d37563634faf13953556bec5a80d2f65945cd7dfbc96ccc190b1454581a97269c82a80a427807fc08365f96ce157520b1844b8b3"}]}, @NFTA_SET_ELEM_DATA={0x10c, 0x2, 0x0, 0x1, [@NFTA_DATA_VALUE={0xbe, 0x1, "58a862c33b3be175bb9d7cf007a304d02dceabd83f224c34569ea9682e7b375e7fdc5c45cb711f5ed2329778b570fb97ca240d85482a8d668e28a1cf68005016e58f5a9a401e2ae8be82aa545d41b22d04cf80c24033246faa3791875928e7759bf1ad92d45189afb9222b23698b8aa65fb19abbb88e5ef86011784cd83878cc7783e5656ebb85d52f42c90a2bec9624bfc8d14bf76a7a1710782ab3f949e1f91dbfdb94d9843199e381290501a0cc69a8d55a8db45501d85b8e"}, @NFTA_DATA_VERDICT={0x48, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}]}]}, @NFTA_SET_ELEM_DATA={0x2c, 0x2, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x28, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x3}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}]}]}]}, {0x10, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_TIMEOUT={0xc, 0x4, 0x1, 0x0, 0xa1d7}]}]}, @NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x244, 0x3, 0x0, 0x1, [{0x22c, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_EXPRESSIONS={0xd8, 0xb, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, @queue={{0xa}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_QUEUE_FLAGS={0x6}, @NFTA_QUEUE_FLAGS={0x6}, @NFTA_QUEUE_TOTAL={0x6, 0x2, 0x1, 0x0, 0x8}]}}}, {0x54, 0x1, 0x0, 0x1, @redir={{0xa}, @val={0x44, 0x2, 0x0, 0x1, [@NFTA_REDIR_REG_PROTO_MAX={0x8, 0x2, 0x1, 0x0, 0x16}, @NFTA_REDIR_REG_PROTO_MAX={0x8, 0x2, 0x1, 0x0, 0x11}, @NFTA_REDIR_REG_PROTO_MAX={0x8, 0x2, 0x1, 0x0, 0xc}, @NFTA_REDIR_REG_PROTO_MIN={0x8, 0x1, 0x1, 0x0, 0x1}, @NFTA_REDIR_FLAGS={0x8, 0x3, 0x1, 0x0, 0x47}, @NFTA_REDIR_REG_PROTO_MAX={0x8, 0x2, 0x1, 0x0, 0x10}, @NFTA_REDIR_FLAGS={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_REDIR_REG_PROTO_MIN={0x8, 0x1, 0x1, 0x0, 0xd}]}}}, {0xc, 0x1, 0x0, 0x1, @cmp={{0x8}, @void}}, {0x48, 0x1, 0x0, 0x1, @log={{0x8}, @val={0x3c, 0x2, 0x0, 0x1, [@NFTA_LOG_SNAPLEN={0x8, 0x3, 0x1, 0x0, 0x9}, @NFTA_LOG_SNAPLEN={0x8}, @NFTA_LOG_FLAGS={0x8, 0x6, 0x1, 0x0, 0x14}, @NFTA_LOG_QTHRESHOLD={0x6, 0x4, 0x1, 0x0, 0x3}, @NFTA_LOG_GROUP={0x6, 0x1, 0x1, 0x0, 0x9}, @NFTA_LOG_LEVEL={0x8, 0x5, 0x1, 0x0, 0x2}, @NFTA_LOG_GROUP={0x6, 0x1, 0x1, 0x0, 0x5}]}}}]}, @NFTA_SET_ELEM_OBJREF={0x9, 0x9, 'syz2\x00'}, @NFTA_SET_ELEM_KEY={0x40, 0x1, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x3c, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xffffffffffffffff}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}]}]}, @NFTA_SET_ELEM_KEY={0x60, 0x1, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x38, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}]}, @NFTA_DATA_VERDICT={0x24, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x3}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}]}]}, @NFTA_SET_ELEM_EXPIRATION={0xc, 0x5, 0x1, 0x0, 0x140}, @NFTA_SET_ELEM_KEY_END={0x54, 0xa, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x40, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}]}, @NFTA_DATA_VERDICT={0x10, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}]}]}, @NFTA_SET_ELEM_EXPRESSIONS={0x44, 0xb, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, @socket={{0xb}, @void}}, {0x1c, 0x1, 0x0, 0x1, @dynset={{0xb}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_DYNSET_FLAGS={0x8, 0x9, 0x1, 0x0, 0x2}]}}}, {0x14, 0x1, 0x0, 0x1, @quota={{0xa}, @val={0x4}}}]}]}, {0x14, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x3}, @NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x2}]}]}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x5}}}, 0x11b0}, 0x1, 0x0, 0x0, 0x844}, 0x4040000)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
getpid()
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="12000000070000000400000002"], 0x50)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0)
setsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(0xffffffffffffffff, 0x84, 0x75, &(0x7f00000001c0)={0x0, 0x8}, 0x8)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r8, <r9=>0xffffffffffffffff}, &(0x7f0000000080), &(0x7f0000000380)=r7}, 0x20)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000300)={r9, &(0x7f00000001c0), 0x0}, 0x20)
mount(&(0x7f00000000c0)=@loop={'/dev/loop', 0x0}, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000000080)='xfs\x00', 0x208059, 0x0)
r10 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_IP_XFRM_POLICY(r10, 0x0, 0x11, &(0x7f00000002c0)={{{@in6=@ipv4={'\x00', '\xff\xff', @multicast1}, @in=@local, 0x4e23, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0xee01}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x1}, {0x1, 0x0, 0x8}, 0x0, 0x0, 0x1, 0x0, 0x2, 0x3}, {{@in6=@ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x38}}, 0x10, 0x32}, 0x0, @in=@empty, 0x0, 0x0, 0x0, 0xb7, 0xc4, 0x9}}, 0xe8)
pipe(&(0x7f0000000000)={0x0, 0x0})
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000001680)={[{0x2d, 'rdma'}, {0x2d, 'pids'}, {0x2d, 'net'}, {0x2d, 'blkio'}, {0x0, 'cpuset'}, {0x2b, 'freezer'}, {0x2d, 'pids'}, {0x2b, 'freezer'}, {0x2b, 'net_cls'}, {0x38, 'blkio'}]}, 0x48)

199.241691ms ago: executing program 6 (id=4297):
openat$uinput(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
setsockopt$SO_VM_SOCKETS_BUFFER_MIN_SIZE(0xffffffffffffffff, 0x28, 0x8, &(0x7f0000000040)=0xffffffffffffffff, 0x57)
r0 = syz_open_procfs(0x0, 0x0)
ioctl$sock_inet6_tcp_SIOCINQ(r0, 0x541b, 0x0)

0s ago: executing program 6 (id=4298):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
listen(r0, 0x2)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB], 0x50)
r1 = socket(0x2c, 0x3, 0x1000)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_genetlink_get_family_id$ethtool(0x0, r1)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x100000001, 0xfffffe0000000001, 0xfa11, 0x65aa}, 0x0)
mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x81c0, 0x0)
execveat(0xffffffffffffff9c, &(0x7f0000000280)='./file2\x00', 0x0, 0x0, 0x0)
syz_io_uring_setup(0x3af2, &(0x7f00000000c0)={0x0, 0xa5f5, 0x80, 0x2, 0x131}, &(0x7f0000000140), &(0x7f0000000180))
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x2, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="b70000001f000000bca30000000000002403000020feffff620af0fff8ffffff71a4f2ff000000001f03000000000000e5000500000000002604fdffff02000014010000033800001d13f8ff000000007a0af0ff0000001f0f14000000000000b503f7fff80000009500000000000000033bc065b78111c6dfa041b63af4a3912435f1a864a7aad58db6a693002e7f3be361917adef6ee1c8a2a4f8ef1e50becb19bc461e91a7168e5181554a090f300020000fe275daf51efd601b6bf01c8e8b1b526375ee4dd6fcd82e4fee5bef7af9aa0d7d600c095199fe3ff3128e599b0eaebbdbd732c9cc00eec363e4a8f6456e2cc21557c0afc646cb7798b3e6440c2fbdb00a3e35208b0bb0d2cd829e65440000000000000000028610643a98d9ec21ead2ed51b104d4d91af25b845b9f7d08d123deda88c658d42ecbf28bf7076c15b463bebc72f526dd70252e79166d858fcd0e06dd31af9612fa402d0b11008e59a5923906f88b53987ad1714e72ba7a54f0c33d39000d06a59ff61623604000000000000006a89adaf17b0a6041bdeebdfd1f5089048ddff6da40f9411fe7226a40409d6e37c4f46756d31cb467600ade70063e5291569b33d21dae356e1c51f03a801be8189679a16da18ec0ae564163427afea62d84f3a10076443d643649393bf52d2105bd901128c7e0ec82701c8204a1deeed4155617572652d950ad31928b0b036dc2869f478341d02d0f5ad94b081fcd507acb4b9c67382f13d000000225d85ae49cee383dc5049076b98fb6853ab39a21514da60d2ae20cfb91d6a49964757cdf538f9ce2bdbb9893a5de817101a3062cd54f9ff51d355d84ce97bb0c6b6a595e487a2cc47c0efbb2d71cde2c10f0bc6980fe78683ac5c0c31032599dd273863be9261eee52216d009f4c52048ef8c126aeef5f510a8f1aded94a129e4aec6e8d9ab06faffc3a15d91c2ea3e2e04cfe031b287539d0540059fe6c7fe7cd8697502c7596566d674e425da5e7f009602a9f61d3804b3e0a1053abdc31282dfb15eb6841bb64a1b3045024a982f3c48153baae244e7bf573eac34b781337ad5905c6bbf1137548c7f1a4cad2422ee965a38f7defbd2960242b104e20dc2d9b0c35608d402ccdd9069bd50b994fda7a90144022a579dfc0229cc0dc98816106dec28eaeb883418f562ae00003ea96d10f172c0374d6eed826416050000000bfe9b4a9c5a90ff59d54d1f92ecc48899b212c55318294270a1ad10c80fef7c24d47afcc829ba0f85da6d888f18ea40ab959f6074ab2a40d85d1501783a7ab540b8d7b4ead35a385e0b4a26b702396df7e0c1e02b88c114f244a9bf93f04bf072f0861f5c0b000000000000eedcf2ba1a9508f9d6aba582a896a9f1ffa968eacea75caf822a7a63ba3401e6a52acb11883ad2a3b1832371fe5bc621426d1ed01b389708165b9cdbae2ed9dc7358f0ebadde0b727f27feeb7464dcd857ab15e355713767c536cbae2f5c7d951680f6f2f9a6a8346962a350845ffa0d82884f79adc287906943408e6df3c391e97ba48db0a5adbfd03aac93df8866fb010ae20e92bed1fe39af169d2a466f0db6f3d9436a7d55fc30511d00000000c95265b2bd83d64a532869d701723fedcbada1ee7baa19faf67256b56a41fd355b6a686b50f0937f778af083e055f6138a757ebd0ed91124a6b244f9acf41ac5d73a008364e0606a594817031fc2f52c8785fe0721719b3d654026c6ea08b83b123145ab5703dad844ced301efeb6dc5f6a9037d2283c42efc54fa84323afc4c10eff462c8843187f1dd48ef0981000000000000ff0f40b1888e1cdba94a6ea80c33ead5722c3293a493f1479531dd88261458f40d31fe8df15efaaeea831555877f9538c6ee6ba65893ff1f908ba7554ba583ec7932f5954f31a878e2fae6691d1aee1da02ba516467df3e7d1daac43738612e4fee18a22da19fc08001011e32f80fb60e14b9eee094277bbc170882c8890205f3a6da2819d2f9e77c7c64affa54fec0136cbafa5f62e3f753b639a924599c1f69219927ea5301fff0a6063d427180d61542c2571f983e96635600000554f327a3535e7c7542799493c31ac05a7b57f03ca91a01ba2a30ca99e969d6fd09dc28ebc15edb4d91675767999d146aef7799738b292fd64bb25b2969e2b15f36b788bce5ccdbaf75c94cb93499f6947a967a794963342aece449a0d80010f5c653d22d49030a8c2a4ab595bf4238f18ca428dafc7ac96d404607a0000000051a2104f22e6db5a62b5089c1b45282d38864daa3ae81d6b0968d1d2867b6ef9d12096833d6864da40b54783a17aaeb6737c323f9f98e354cc98dcfe23ad01bd1c61563e69ffe1c2c73e1661261173f359e93d2c5e424c17998809ec8f0232b3955e052a4cecd89008f70314a0bdd491ec035d232f89fe0120f64c62e8e3ed8bcb45202c204bbec8d722824c0ebca8db1ea4a05e41f6016ab5bbe4fe7ff5d785d0128171c90d9900ca2532b0f9d01c4b45294fbba468df3e1b393cb4e62e753b4172ba7ac1f2b51c94bc5d047899fd219f448bf9189c65c9d91eda6b52a373803a9efe44f86909bc90addb7b9aee813df534aac4b3093c91b8068cd849904568916694d461b76a58d88cf0f520310a1e9fdc18cde98d662eee077515d0a881192292ffff5392ab3d1311b82432662806add87047f601fa888400000000000000000000000000006acc19808d7cf29bc974b0ea92499a41b9b9a7c2bca311a28ee4952f2d325a56397c78f12205db653a536f9f3322405d1efd78e578dc6b3fb84f3738a4b6caa800000087efa51c5d95ecba4e50e529d1e8c89600e809dc3d0a2f65579e23457949a50f2d0455cf79a43746979f99f6a1527f004f1e37a3926937e84fb478199dc1020f4beb98b8074bf7df8b5e783637da740800000000000000c55a4385e9a617aa6c8e10d4202c5afeb06e2f9115558ea12f92d7ae633d44086b3f03b20d546fa66a72e38207c9d20035abc46271a30f1240de52536941242d23896ab74a3c6670fdc49c14f34fc4eadd6db8d80eba439772bf60a1db18c472dafc5569adc282928d2a1ffe29f1a57d3f18f4edaeb5d37918e6fddcd821da67a0785585a4443440dc65600e64a6a2740000000000000000000000000000000000000000000a0009dd14b38f2f4426d7cf5075047c31f6ce6adddfe3ac649c0643c8bfbeb14ba1fd7a485aa893915cf81e29aaf375e904bbe52691a4100260ffcd8f1d04166d291ebcef893e1b9ccb6797d0646fe0e7274434f28efb43e06e64f0698caca42f4e6018a455736c482a017e2b13dac4a90faa109f0e87cc94e3efb649692456463ca74aa6ad4bf50c1acb0000000000000005375e528285544d0064b98646f3109e9a4942ce42c6e7ec84b664f6c2770803f10baa804a707f0a1fcbfc309381aeba191950bae71f37f1eb7ceeffb3c0547ac6571603adbfde4c8b5f8d7f4b854441613633b48865b65bdc415e1e0dcf672d68cf4cebf04f4bc1eebf560a26d34d3757b1450fdb0a9a69f432e277f3a0386eb2bd3305c821c64757f786b79fef54dbe64c67d73934bc80b2133fb3c04cc7ea48bf97a6243c9f95dcbddecf45f008f1822c7868e1ff5a3cff5d6b6898335792749df7b1f51e91f8c1c3b1b93b33aaa3fab69cef08a9f6f6cf39dea3d878b2ed42545421970cc426e644332bc956d1c6adefdf0ede2c5c94aa632646ae225accdf031f611d01622921f1b922a5ac887cca3136133dce8d9f5f4da7bed2ea5d94362200000000000000000000f296b0c1484e5f781ad26bff696b05ff0a5e2270e07618b04273bd4075ea38ab463bfa6a38e7c537498ba3e4df8dfc9e040000003c3ffad44d2a376def42e41e9fc31678257e040fa7cf32c221aaac08000000000000001a00000000000000000000173570f0c11ae694b0f7a4f9c2f6790044a357e785af6e153d5f1ea460af92c7cbbd6295afe740f5e154346d483e0d641ef02e4d5295d756e110522a7a945b93fb705b95b6aae27a8fb33732ce1da1c0b1af8eb9222a06e984ab1e6984c8bdc12360627137ab67b6b68ab08acb29a74dc36b51209cfbc87f61182bbeb2772e9d5a1ffc477179be481efe46a4ce86be0b1d8eee42a611a3d44ca450b14586ed63dd92005c79e4a8ab8a94f0c6cb4bed8594a39bd76d3ef8a7ab014e787596db796bd93a36c2880423291e3bccc86f66ba792ff4d87b3f80e5908779e51c5e9055fc5b23605cd000c723187ef09dcf4b07b06a9342f3f62ee7acddff292082c1f4d8eb9561f80873a09a1ae0c9af1121175e5600f43a1179484502009759264a5729f07c2b218fa36ba2316a99aaad0130df83d0bda1e711290f78c143ea143967b00adcd77e6ad5e48d839ea61aadb83e4d071c54691924a3830d3e7b5c198bb0ed623153590000000000000000004b985ea1702f34f2f85b168c083e810ed567e3f1979b9ed1a4bf6a10dac825c96a0828b335de445a4880bb6474157efd1a72ca46ae4cbe3ab648c9bc4867a5a4cb87d7d6d55475b34b3cb6aa9e2337d4e04a37e35109752522ac9b186ddd80c47da6a2f4ef7bb909c975520000000000000000000000219cf5c1376ab33786f6b856d354e90a2733f78f2d188057cead3480eade49d55b770fad7fa000d23da6275768810b6b2df91d3a991ea98d929d271696c258d5b735d5db11df434e7dd1b7c1ca05cea3977df564115f4ec6ffab1d2ff8a642ca50934b3fbe44b0abeba9df209566984a29dfc0466e439a94e177b3c4d5f6e92b8176b9d6ddeeeb196fa964217f88e1acc180aaa4"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1f, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffff97, 0x10, &(0x7f00000000c0), 0xfffffffffffffd27}, 0x48)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x15)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
r4 = socket(0x10, 0x3, 0x0)
r5 = syz_open_dev$dri(&(0x7f0000000040), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r5, 0xc04064a0, &(0x7f0000000180)={0x0, &(0x7f00000000c0)=[<r6=>0x0], 0x0, 0x0, 0x0, 0x1})
r7 = syz_open_dev$dri(&(0x7f0000000c00), 0x1ff, 0x80800)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r7, 0xc04064a0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000240)=[<r8=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCONNECTOR(r7, 0xc05064a7, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000002c0)=[<r9=>0x0], &(0x7f0000000cc0), 0x0, 0x1, 0x0, 0x0, r8})
ioctl$DRM_IOCTL_MODE_SETPROPERTY(r5, 0xc01064ab, &(0x7f0000000380)={0x5, r9, r8})
ioctl$DRM_IOCTL_MODE_GETCRTC(r5, 0xc06864a1, &(0x7f0000000580)={0x0, 0xffffff20, r6, <r10=>0x0})
ioctl$DRM_IOCTL_MODE_PAGE_FLIP(r5, 0xc01864b0, &(0x7f0000000000)={r6, r10, 0x1, 0x0, 0x1000000000000})
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'lo\x00', <r11=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000440)=@newqdisc={0x44, 0x24, 0xd0f, 0x70bd2d, 0x0, {0x60, 0x0, 0x0, r11, {0x0, 0xa}, {0xffff, 0xffff}, {0xd, 0xffff}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_FSC={0x10, 0x2, {0xa, 0x0, 0x6}}}}]}, 0x44}}, 0x44080)

kernel console output (not intermixed with test programs):

x81 has invalid maxpacket 8241, setting to 1024
[  774.492225][  T809] usb 7-1: New USB device found, idVendor=05ac, idProduct=9226, bcdDevice=b2.89
[  774.492252][  T809] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  774.492270][  T809] usb 7-1: Product: syz
[  774.492282][  T809] usb 7-1: Manufacturer: syz
[  774.492295][  T809] usb 7-1: SerialNumber: syz
[  774.500811][  T809] usb 7-1: config 0 descriptor??
[  774.851397][T16265] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3434'.
[  774.957605][   T10] usb 1-1: new high-speed USB device number 28 using dummy_hcd
[  775.025127][  T809] appledisplay 7-1:0.0: Error while getting initial brightness: -71
[  775.032591][  T809] appledisplay 7-1:0.0: probe with driver appledisplay failed with error -71
[  775.110365][   T10] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  775.110389][   T10] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  775.111936][   T10] usb 1-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  775.111960][   T10] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  775.111974][   T10] usb 1-1: SerialNumber: syz
[  775.134496][  T809] usb 7-1: USB disconnect, device number 9
[  775.399357][   T10] usb 1-1: 0:2 : does not exist
[  775.615213][   T10] usb 1-1: USB disconnect, device number 28
[  775.802587][T13076] udevd[13076]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  776.537643][ T5113] Bluetooth: hci5: command 0x1003 tx timeout
[  776.537893][ T5809] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  778.585915][T16311] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3451'.
[  779.530109][T16313] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3452'.
[  780.201872][T16318] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3452'.
[  785.159418][T16386] pimreg: entered allmulticast mode
[  785.240134][T16386] pimreg: left allmulticast mode
[  786.226739][T16411] netlink: 3 bytes leftover after parsing attributes in process `syz.5.3480'.
[  786.233790][T16411] 0ªX¹¦À: renamed from caif0
[  786.725000][T16411] 0ªX¹¦À: entered allmulticast mode
[  786.725021][T16411] A link change request failed with some changes committed already. Interface 
60ªX¹¦À may have been left with an inconsistent configuration, please check.
[  786.779711][ T5113] Bluetooth: hci4: command 0x0405 tx timeout
[  787.047297][T16419] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  787.597964][T16439] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3492'.
[  790.035246][T16502] tipc: Started in network mode
[  790.035275][T16502] tipc: Node identity 0670975f5f25, cluster identity 4711
[  790.035439][T16502] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  790.064257][T16502] syzkaller0: MTU too low for tipc bearer
[  790.064284][T16502] tipc: Disabling bearer <eth:syzkaller0>
[  790.737612][    C0] vcan0: j1939_tp_rxtimer: 0xffff88805dadbc00: rx timeout, send abort
[  791.243562][    C0] vcan0: j1939_tp_rxtimer: 0xffff88805dada800: rx timeout, send abort
[  791.243803][    C0] vcan0: j1939_tp_rxtimer: 0xffff88805dadbc00: abort rx timeout. Force session deactivation
[  792.345736][    C0] vcan0: j1939_tp_rxtimer: 0xffff88805dada800: abort rx timeout. Force session deactivation
[  794.395733][T16579] netlink: 28 bytes leftover after parsing attributes in process `syz.5.3547'.
[  794.583891][T16585] tipc: Failed to remove unknown binding: 66,0,0/0:1866247024/1866247025
[  794.584732][T16585] tipc: Failed to remove unknown binding: 66,0,0/0:1866247024/1866247025
[  794.760275][T16588] overlayfs: failed to clone upperpath
[  797.798815][T16638] netlink: 'syz.0.3566': attribute type 1 has an invalid length.
[  797.922657][T16638] 8021q: adding VLAN 0 to HW filter on device bond3
[  798.093922][T16641] vlan2: entered allmulticast mode
[  798.093954][T16641] veth0_to_bond: entered allmulticast mode
[  798.184553][T16641] bond3: (slave vlan2): making interface the new active one
[  798.306680][T16641] bond3: (slave vlan2): Enslaving as an active interface with an up link
[  800.597576][T13782] usb 2-1: new high-speed USB device number 32 using dummy_hcd
[  800.787793][T13782] usb 2-1: Using ep0 maxpacket: 8
[  802.141817][T13782] usb 2-1: unable to get BOS descriptor or descriptor too short
[  802.146838][T13782] usb 2-1: unable to read config index 0 descriptor/start: -71
[  802.146873][T13782] usb 2-1: can't read configurations, error -71
[  802.304562][   T37] kauditd_printk_skb: 1 callbacks suppressed
[  802.304579][   T37] audit: type=1326 audit(2000000594.139:2164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16697 comm="syz.0.3587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52a633c799 code=0x7fc00000
[  802.304691][   T37] audit: type=1326 audit(2000000594.139:2165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16697 comm="syz.0.3587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f52a633c799 code=0x7fc00000
[  802.304817][   T37] audit: type=1326 audit(2000000594.139:2166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16697 comm="syz.0.3587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52a633c799 code=0x7fc00000
[  802.304947][   T37] audit: type=1326 audit(2000000594.139:2167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16697 comm="syz.0.3587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52a633c799 code=0x7fc00000
[  802.305076][   T37] audit: type=1326 audit(2000000594.139:2168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16697 comm="syz.0.3587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52a633c799 code=0x7fc00000
[  802.305206][   T37] audit: type=1326 audit(2000000594.139:2169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16697 comm="syz.0.3587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52a633c799 code=0x7fc00000
[  802.305332][   T37] audit: type=1326 audit(2000000594.139:2170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16697 comm="syz.0.3587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52a633c799 code=0x7fc00000
[  802.305455][   T37] audit: type=1326 audit(2000000594.139:2171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16697 comm="syz.0.3587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52a633c799 code=0x7fc00000
[  802.305585][   T37] audit: type=1326 audit(2000000594.139:2172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16697 comm="syz.0.3587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52a633c799 code=0x7fc00000
[  802.305718][   T37] audit: type=1326 audit(2000000594.139:2173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16697 comm="syz.0.3587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52a633c799 code=0x7fc00000
[  803.837575][ T5887] usb 2-1: new high-speed USB device number 34 using dummy_hcd
[  804.171903][ T5887] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  804.171958][ T5887] usb 2-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  804.171976][ T5887] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  804.204250][ T5887] usb 2-1: config 0 descriptor??
[  804.241608][ T5887] pwc: Askey VC010 type 2 USB webcam detected.
[  804.679336][ T5887] pwc: recv_control_msg error -32 req 02 val 2b00
[  804.680468][ T5887] pwc: recv_control_msg error -32 req 02 val 2700
[  804.681139][ T5887] pwc: recv_control_msg error -32 req 02 val 2c00
[  804.682096][ T5887] pwc: recv_control_msg error -32 req 04 val 1000
[  804.682928][ T5887] pwc: recv_control_msg error -32 req 04 val 1300
[  804.683735][ T5887] pwc: recv_control_msg error -32 req 04 val 1400
[  804.686001][ T5887] pwc: recv_control_msg error -32 req 02 val 2000
[  804.700972][ T5887] pwc: recv_control_msg error -32 req 02 val 2100
[  804.912675][ T5887] pwc: recv_control_msg error -71 req 02 val 2500
[  804.913134][ T5887] pwc: recv_control_msg error -71 req 02 val 2400
[  804.913594][ T5887] pwc: recv_control_msg error -71 req 02 val 2600
[  804.914023][ T5887] pwc: recv_control_msg error -71 req 02 val 2900
[  804.914459][ T5887] pwc: recv_control_msg error -71 req 02 val 2800
[  804.915073][ T5887] pwc: recv_control_msg error -71 req 04 val 1100
[  804.915513][ T5887] pwc: recv_control_msg error -71 req 04 val 1200
[  804.982581][ T5887] pwc: Registered as video103.
[  804.986276][ T5887] input: PWC snapshot button as /devices/platform/dummy_hcd.1/usb2/2-1/input/input21
[  805.038041][ T5887] usb 2-1: USB disconnect, device number 34
[  805.281790][T16748] syz_tun: entered allmulticast mode
[  806.525986][T16753] team0 (unregistering): Failed to send port change of device team_slave_0 via netlink (err -105)
[  806.526268][T16753] team0 (unregistering): Port device team_slave_0 removed
[  806.562049][T16753] team0 (unregistering): Failed to send options change via netlink (err -105)
[  806.562533][T16753] team0 (unregistering): Failed to send port change of device team_slave_1 via netlink (err -105)
[  806.563117][T16753] team0 (unregistering): Port device team_slave_1 removed
[  808.936233][T16780] kvm: emulating exchange as write
[  809.450845][ T5809] Bluetooth: hci0: unexpected event for opcode 0x1004
[  810.974565][T16809] IPv6: NLM_F_CREATE should be specified when creating new route
[  811.336972][T16820] usb usb7: usbfs: process 16820 (syz.0.3627) did not claim interface 0 before use
[  811.740048][T16828] usb usb7: usbfs: process 16828 (syz.1.3629) did not claim interface 0 before use
[  813.503205][ T5809] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[  813.503413][ T5809] Bluetooth: hci0: Injecting HCI hardware error event
[  813.506509][ T5809] Bluetooth: hci0: hardware error 0x00
[  813.826320][ T1322] ieee802154 phy0 wpan0: encryption failed: -22
[  813.826406][ T1322] ieee802154 phy1 wpan1: encryption failed: -22
[  813.939392][    C0] vxcan0: j1939_tp_rxtimer: 0xffff88804ccbb800: rx timeout, send abort
[  814.879193][    C0] vxcan0: j1939_tp_rxtimer: 0xffff88804ccbb800: abort rx timeout. Force session deactivation
[  815.592999][ T5809] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  816.337349][T16855] netlink: 12 bytes leftover after parsing attributes in process `syz.6.3638'.
[  816.430480][T16855] vlan3: entered promiscuous mode
[  816.430500][T16855] ip6gretap0: entered promiscuous mode
[  822.890707][T16914] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3654'.
[  828.795912][T16961] kAFS: unable to lookup cell '('
[  828.886662][T16962] kAFS: unable to lookup cell '(,c¾ûL'
[  829.386071][T16976] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  829.467599][   T10] usb 2-1: new high-speed USB device number 35 using dummy_hcd
[  829.622270][T16971] kvm: pic: level sensitive irq not supported
[  829.622831][T16971] kvm: pic: non byte read
[  829.628861][T16971] kvm: pic: level sensitive irq not supported
[  829.628997][T16971] kvm: pic: non byte read
[  829.629216][T16971] kvm: pic: level sensitive irq not supported
[  829.629376][T16971] kvm: pic: non byte read
[  829.629582][T16971] kvm: pic: level sensitive irq not supported
[  829.629634][T16971] kvm: pic: non byte read
[  829.629836][T16971] kvm: pic: level sensitive irq not supported
[  829.632468][T16971] kvm: pic: non byte read
[  829.632803][T16971] kvm: pic: level sensitive irq not supported
[  829.632858][T16971] kvm: pic: non byte read
[  829.633065][T16971] kvm: pic: level sensitive irq not supported
[  829.633182][T16971] kvm: pic: non byte read
[  829.636196][T16971] kvm: pic: level sensitive irq not supported
[  829.636256][T16971] kvm: pic: non byte read
[  829.636474][T16971] kvm: pic: level sensitive irq not supported
[  829.636614][T16971] kvm: pic: non byte read
[  829.652697][   T10] usb 2-1: Using ep0 maxpacket: 32
[  829.653437][T16971] kvm: pic: level sensitive irq not supported
[  829.653573][T16971] kvm: pic: non byte read
[  829.771956][   T10] usb 2-1: New USB device found, idVendor=1964, idProduct=0001, bcdDevice=d4.15
[  829.771984][   T10] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  829.772001][   T10] usb 2-1: Product: syz
[  829.772013][   T10] usb 2-1: Manufacturer: syz
[  829.772026][   T10] usb 2-1: SerialNumber: syz
[  829.804638][   T10] usb 2-1: config 0 descriptor??
[  830.170820][   T10] RobotFuzz Open Source InterFace, OSIF 2-1:0.0: version d4.15 found at bus 002 address 035
[  830.660241][T16985] kvm: requested 16761 ns i8254 timer period limited to 200000 ns
[  830.663901][T16985] kvm: requested 65371 ns i8254 timer period limited to 200000 ns
[  830.664360][T16985] kvm: requested 130742 ns i8254 timer period limited to 200000 ns
[  830.664668][T16985] kvm: requested 72076 ns i8254 timer period limited to 200000 ns
[  830.664958][T16985] kvm: requested 177676 ns i8254 timer period limited to 200000 ns
[  830.665243][T16985] kvm: requested 65371 ns i8254 timer period limited to 200000 ns
[  830.752320][T16985] kvm: requested 16761 ns i8254 timer period limited to 200000 ns
[  830.752807][T16985] kvm: requested 122361 ns i8254 timer period limited to 200000 ns
[  830.763660][T16985] kvm: requested 25142 ns i8254 timer period limited to 200000 ns
[  831.036802][   T10] usb 2-1: USB disconnect, device number 35
[  835.600350][T13782] usb 6-1: new high-speed USB device number 19 using dummy_hcd
[  835.847484][T13782] usb 6-1: Using ep0 maxpacket: 16
[  835.852460][T13782] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  835.852492][T13782] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[  835.852512][T13782] usb 6-1: config 0 interface 0 has no altsetting 0
[  835.852542][T13782] usb 6-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[  835.852563][T13782] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  836.543359][T13782] usb 6-1: config 0 descriptor??
[  836.950450][T13782] usbhid 6-1:0.0: can't add hid device: -71
[  836.950571][T13782] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[  836.999614][T13782] usb 6-1: USB disconnect, device number 19
[  838.937667][T12806] Bluetooth: hci4: command 0x0405 tx timeout
[  839.917645][T13782] usb 6-1: new high-speed USB device number 20 using dummy_hcd
[  840.097940][T13782] usb 6-1: Using ep0 maxpacket: 32
[  840.101097][T13782] usb 6-1: config index 0 descriptor too short (expected 35577, got 27)
[  840.101122][T13782] usb 6-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[  840.101139][T13782] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  840.101155][T13782] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 92
[  840.101174][T13782] usb 6-1: config 1 has no interface number 0
[  840.101217][T13782] usb 6-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[  840.101238][T13782] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  840.213197][T13782] snd_usb_pod 6-1:1.1: Line 6 Pocket POD found
[  840.681948][T13782] snd_usb_pod 6-1:1.1: set_interface failed
[  840.747797][T13782] snd_usb_pod 6-1:1.1: Line 6 Pocket POD now disconnected
[  840.748043][T13782] snd_usb_pod 6-1:1.1: probe with driver snd_usb_pod failed with error -71
[  840.755289][T13782] usb 6-1: USB disconnect, device number 20
[  846.747953][T17104] netlink: 64 bytes leftover after parsing attributes in process `syz.1.3705'.
[  848.786340][T17119] netlink: 12 bytes leftover after parsing attributes in process `syz.6.3712'.
[  850.166231][T17119] bridge1: entered promiscuous mode
[  850.166413][T17119] macsec2: entered promiscuous mode
[  857.177649][ T5809] Bluetooth: hci4: command 0x0405 tx timeout
[  859.066152][T13782] usb 2-1: new high-speed USB device number 36 using dummy_hcd
[  859.841360][T13782] usb 2-1: config 0 has an invalid interface number: 1 but max is 0
[  859.841395][T13782] usb 2-1: config 0 has no interface number 0
[  859.849108][T13782] usb 2-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b
[  859.849134][T13782] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  859.849152][T13782] usb 2-1: Product: syz
[  859.849166][T13782] usb 2-1: Manufacturer: syz
[  859.849178][T13782] usb 2-1: SerialNumber: syz
[  859.901184][T13782] usb 2-1: config 0 descriptor??
[  860.161670][T13782] usb 2-1: dvb_usb_v2: found a 'E3C EC168 reference design' in warm state
[  860.196313][T13782] usb 2-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  860.196721][T13782] dvbdev: DVB: registering new adapter (E3C EC168 reference design)
[  860.196777][T13782] usb 2-1: media controller created
[  860.419577][T13782] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  860.692140][T13782] i2c i2c-1: ec100: i2c rd failed=-71 reg=33
[  860.870493][T13782] usb 2-1: USB disconnect, device number 36
[  861.738458][ T5886] page_pool_release_retry() stalled pool shutdown: id 183, 1 inflight 60 sec
[  863.324620][T17232] ptrace attach of "./syz-executor exec"[17233] was attempted by "./syz-executor exec"[17232]
[  864.266294][T17227] kvm: kvm [17226]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc1) = 0x967b00000000
[  864.343160][T17227] kvm: kvm [17226]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x187) = 0xae7900000000
[  864.345118][T17227] kvm: kvm [17226]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x187) = 0xfab800000000
[  864.347077][T17227] kvm: kvm [17226]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x187) = 0xdc000000000
[  875.097590][T16338] usb 6-1: new high-speed USB device number 21 using dummy_hcd
[  875.286135][T16338] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  875.286190][T16338] usb 6-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  875.286212][T16338] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  875.289367][ T1322] ieee802154 phy0 wpan0: encryption failed: -22
[  875.289431][ T1322] ieee802154 phy1 wpan1: encryption failed: -22
[  875.362993][T16338] usb 6-1: config 0 descriptor??
[  875.382792][T16338] pwc: Askey VC010 type 2 USB webcam detected.
[  876.557306][T16338] pwc: recv_control_msg error -32 req 02 val 2b00
[  876.565370][T16338] pwc: recv_control_msg error -32 req 02 val 2700
[  876.623538][T16338] pwc: recv_control_msg error -32 req 02 val 2c00
[  876.625437][T16338] pwc: recv_control_msg error -32 req 04 val 1000
[  876.626785][T16338] pwc: recv_control_msg error -32 req 04 val 1300
[  876.638042][T16338] pwc: recv_control_msg error -32 req 04 val 1400
[  876.664187][T16338] pwc: recv_control_msg error -32 req 02 val 2000
[  876.682885][T16338] pwc: recv_control_msg error -32 req 02 val 2100
[  876.683522][T16338] pwc: recv_control_msg error -32 req 04 val 1500
[  876.684170][T16338] pwc: recv_control_msg error -32 req 02 val 2500
[  876.689193][T16338] pwc: recv_control_msg error -32 req 02 val 2400
[  876.717644][T16338] pwc: recv_control_msg error -32 req 02 val 2600
[  876.850532][T17305] Bluetooth: hci0: invalid length 0, exp 2 for type 16
[  876.919881][T16338] pwc: recv_control_msg error -71 req 02 val 2800
[  876.920585][T16338] pwc: recv_control_msg error -71 req 04 val 1100
[  876.921060][T16338] pwc: recv_control_msg error -71 req 04 val 1200
[  876.998090][T16338] pwc: Registered as video103.
[  877.042256][T16338] input: PWC snapshot button as /devices/platform/dummy_hcd.5/usb6/6-1/input/input23
[  878.156421][T16338] usb 6-1: USB disconnect, device number 21
[  879.441132][T17316] Bluetooth: hci0: invalid length 0, exp 2 for type 12
[  880.189615][ T5886] IPVS: starting estimator thread 0...
[  880.277712][T17333] IPVS: using max 15 ests per chain, 36000 per kthread
[  884.104761][T17366] kvm: kvm [17364]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc1) = 0x72bd00000000
[  884.104866][T17366] kvm: kvm [17364]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc2) = 0x562500000000
[  884.110008][T17366] kvm: kvm [17364]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x11e) = 0x162000000000
[  884.110080][T17366] kvm: kvm [17364]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0x11e) = 0xbe702111
[  884.116062][T17366] kvm: kvm [17364]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x186) = 0x29e300000000
[  884.116191][T17366] kvm: kvm [17364]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x187) = 0xed8e00000000
[  891.287489][ T5849] usb 2-1: new high-speed USB device number 37 using dummy_hcd
[  891.287769][    C0] raw-gadget.0 gadget.1: ignoring, device is not running
[  891.441037][ T5849] usb 2-1: device descriptor read/64, error -32
[  893.657705][ T5849] usb 2-1: new high-speed USB device number 38 using dummy_hcd
[  893.817593][ T5849] usb 2-1: Using ep0 maxpacket: 16
[  893.821621][ T5849] usb 2-1: config 0 has no interfaces?
[  893.824212][ T5849] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a0, bcdDevice=2b.f1
[  893.824238][ T5849] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  893.824256][ T5849] usb 2-1: Product: syz
[  893.824268][ T5849] usb 2-1: Manufacturer: syz
[  893.824281][ T5849] usb 2-1: SerialNumber: syz
[  893.871808][ T5849] usb 2-1: config 0 descriptor??
[  894.875746][T16337] usb 2-1: USB disconnect, device number 38
[  898.180098][   T37] kauditd_printk_skb: 13 callbacks suppressed
[  898.180118][   T37] audit: type=1800 audit(2000000689.979:2187): pid=17440 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.7.3797" name="bus" dev="ramfs" ino=92271 res=0 errno=0
[  899.670277][T17456] usb usb8: usbfs: process 17456 (syz.5.3802) did not claim interface 0 before use
[  899.974298][ T5113] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  900.036391][ T5113] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  900.045244][ T5113] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  900.047311][ T5113] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  900.064557][ T5113] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  900.355626][T17456] netdevsim netdevsim5: loading /lib/firmware/. failed with error -22
[  900.355666][T17456] netdevsim netdevsim5: Direct firmware load for . failed with error -22
[  900.355684][T17456] netdevsim netdevsim5: Falling back to sysfs fallback for: .
[  900.598994][T17467] overlayfs: failed to clone lowerpath
[  902.158026][ T5809] Bluetooth: hci5: command tx timeout
[  904.217524][ T5809] Bluetooth: hci5: command tx timeout
[  906.340953][ T5809] Bluetooth: hci5: command tx timeout
[  910.708427][T17461] chnl_net:caif_netlink_parms(): no params data found
[  916.678144][ T5809] Bluetooth: hci5: command tx timeout
[  916.900087][ T5113] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  916.948825][ T5113] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  916.950588][ T5113] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  916.979209][ T5113] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  916.980229][ T5113] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  917.202225][T17527] netlink: 12 bytes leftover after parsing attributes in process `syz.6.3815'.
[  919.149165][ T5809] Bluetooth: hci1: command tx timeout
[  920.381468][T17461] bridge0: port 1(bridge_slave_0) entered blocking state
[  920.381563][T17461] bridge0: port 1(bridge_slave_0) entered disabled state
[  920.381728][T17461] bridge_slave_0: entered allmulticast mode
[  920.465324][T17461] bridge_slave_0: entered promiscuous mode
[  920.479822][T17461] bridge0: port 2(bridge_slave_1) entered blocking state
[  920.479941][T17461] bridge0: port 2(bridge_slave_1) entered disabled state
[  920.480245][T17461] bridge_slave_1: entered allmulticast mode
[  920.507514][T17461] bridge_slave_1: entered promiscuous mode
[  920.680794][ T5886] usb 6-1: new high-speed USB device number 22 using dummy_hcd
[  920.857512][ T5886] usb 6-1: Using ep0 maxpacket: 16
[  920.873030][ T5886] usb 6-1: config index 0 descriptor too short (expected 526, got 367)
[  920.873046][ T5886] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  920.873056][ T5886] usb 6-1: config 0 has no interfaces?
[  920.887611][ T5886] usb 6-1: New USB device found, idVendor=0424, idProduct=cf19, bcdDevice=a4.96
[  920.887640][ T5886] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  920.887659][ T5886] usb 6-1: Product: syz
[  920.887672][ T5886] usb 6-1: Manufacturer: syz
[  920.887684][ T5886] usb 6-1: SerialNumber: syz
[  920.899189][ T5886] usb 6-1: config 0 descriptor??
[  921.187689][ T5809] Bluetooth: hci1: command tx timeout
[  922.390980][T17461] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  922.462233][T17461] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  922.653330][T16337] usb 6-1: USB disconnect, device number 22
[  923.146998][T17461] team0: Port device team_slave_0 added
[  923.157230][T17461] team0: Port device team_slave_1 added
[  923.257523][ T5809] Bluetooth: hci1: command tx timeout
[  925.476824][ T5809] Bluetooth: hci1: command tx timeout
[  925.654875][ T1164] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  925.977490][   T10] usb 6-1: new high-speed USB device number 23 using dummy_hcd
[  926.192840][T17461] batman_adv: batadv0: Adding interface: batadv_slave_0
[  926.192856][T17461] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  926.192873][T17461] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  926.499583][   T10] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  926.499624][   T10] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  926.499659][   T10] usb 6-1: New USB device found, idVendor=1e7d, idProduct=2cf6, bcdDevice= 0.00
[  926.499679][   T10] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  926.511965][   T10] usb 6-1: config 0 descriptor??
[  926.515922][T17461] batman_adv: batadv0: Adding interface: batadv_slave_1
[  926.515937][T17461] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  926.515963][T17461] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  927.346267][   T10] pyra 0003:1E7D:2CF6.002A: unknown main item tag 0x2
[  927.350459][   T10] pyra 0003:1E7D:2CF6.002A: hidraw0: USB HID v0.00 Device [HID 1e7d:2cf6] on usb-dummy_hcd.5-1/input0
[  927.678609][ T1164] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  927.737301][ T5809] Bluetooth: hci2: unexpected event for opcode 0x0428
[  928.009547][T17461] hsr_slave_0: entered promiscuous mode
[  928.018104][T17461] hsr_slave_1: entered promiscuous mode
[  928.019760][T17461] debugfs: 'hsr0' already exists in 'hsr'
[  928.019785][T17461] Cannot create hsr debugfs directory
[  928.233639][T17580] zonefs (nullb0) ERROR: Not a zoned block device
[  928.756564][   T10] pyra 0003:1E7D:2CF6.002A: couldn't init struct pyra_device
[  928.756619][   T10] pyra 0003:1E7D:2CF6.002A: couldn't install mouse
[  928.825787][   T10] pyra 0003:1E7D:2CF6.002A: probe with driver pyra failed with error -71
[  928.877578][   T10] usb 6-1: USB disconnect, device number 23
[  930.184734][ T1164] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  930.218319][T17590] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  930.257888][T17590] batadv_slave_0: entered promiscuous mode
[  930.626633][ T1164] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  930.955208][T17514] chnl_net:caif_netlink_parms(): no params data found
[  931.008885][T17611] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3837'.
[  934.004346][T17514] bridge0: port 1(bridge_slave_0) entered blocking state
[  934.004414][T17514] bridge0: port 1(bridge_slave_0) entered disabled state
[  934.004587][T17514] bridge_slave_0: entered allmulticast mode
[  934.046847][T17514] bridge_slave_0: entered promiscuous mode
[  934.985717][T17514] bridge0: port 2(bridge_slave_1) entered blocking state
[  934.985785][T17514] bridge0: port 2(bridge_slave_1) entered disabled state
[  934.985956][T17514] bridge_slave_1: entered allmulticast mode
[  935.023003][T17617] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  935.039902][T17514] bridge_slave_1: entered promiscuous mode
[  935.171225][ T1164] bridge_slave_1: left allmulticast mode
[  935.171253][ T1164] bridge_slave_1: left promiscuous mode
[  935.171484][ T1164] bridge0: port 2(bridge_slave_1) entered disabled state
[  935.260777][ T1164] bridge_slave_0: left allmulticast mode
[  935.260795][ T1164] bridge_slave_0: left promiscuous mode
[  935.260962][ T1164] bridge0: port 1(bridge_slave_0) entered disabled state
[  936.708900][ T1322] ieee802154 phy0 wpan0: encryption failed: -22
[  936.708972][ T1322] ieee802154 phy1 wpan1: encryption failed: -22
[  938.138339][ T1164] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  938.218619][ T1164] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  938.239477][ T1164] bond0 (unregistering): Released all slaves
[  938.306125][T17514] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  938.333122][T17514] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  938.365633][T16338] usb 6-1: new high-speed USB device number 24 using dummy_hcd
[  938.400136][T17461] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  938.517471][T16338] usb 6-1: Using ep0 maxpacket: 16
[  938.532891][T17461] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  938.533413][T16338] usb 6-1: config 251 has an invalid interface number: 202 but max is 0
[  938.533435][T16338] usb 6-1: config 251 has no interface number 0
[  938.533476][T16338] usb 6-1: config 251 interface 202 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0
[  938.533496][T16338] usb 6-1: config 251 interface 202 altsetting 1 bulk endpoint 0x1 has invalid maxpacket 0
[  938.533516][T16338] usb 6-1: config 251 interface 202 altsetting 1 has an invalid descriptor for endpoint zero, skipping
[  938.533533][T16338] usb 6-1: config 251 interface 202 altsetting 1 endpoint 0x6 has invalid maxpacket 1024, setting to 64
[  938.533556][T16338] usb 6-1: config 251 interface 202 altsetting 1 has an endpoint descriptor with address 0xC1, changing to 0x81
[  938.533577][T16338] usb 6-1: config 251 interface 202 altsetting 1 bulk endpoint 0x81 has invalid maxpacket 120
[  938.533595][T16338] usb 6-1: config 251 interface 202 altsetting 1 has 4 endpoint descriptors, different from the interface descriptor's value: 3
[  938.533618][T16338] usb 6-1: config 251 interface 202 has no altsetting 0
[  938.630759][T16338] usb 6-1: New USB device found, idVendor=0572, idProduct=cb00, bcdDevice=bb.c9
[  938.630788][T16338] usb 6-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3
[  938.630805][T16338] usb 6-1: Product: syz
[  938.630819][T16338] usb 6-1: SerialNumber: syz
[  938.633140][T17514] team0: Port device team_slave_0 added
[  938.648251][T17461] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  938.700319][T17665] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  938.719224][T17514] team0: Port device team_slave_1 added
[  938.719559][T17461] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  939.030004][T16338] cxacru 6-1:251.202: submit of write urb for cm 0x90 failed (-90)
[  939.030071][T16338] cxacru 6-1:251.202: usbatm_usb_probe: invalid endpoint 02!
[  939.030741][T16338] cxacru 6-1:251.202: probe with driver cxacru failed with error -22
[  939.132706][T16338] usb 6-1: USB disconnect, device number 24
[  939.270074][  T809] usb 2-1: new high-speed USB device number 39 using dummy_hcd
[  939.430876][  T809] usb 2-1: Using ep0 maxpacket: 16
[  939.441571][  T809] usb 2-1: config 128 has an invalid descriptor of length 0, skipping remainder of the config
[  939.441608][  T809] usb 2-1: config 128 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  939.441631][  T809] usb 2-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  939.441643][  T809] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  939.510272][  T809] usbhid 2-1:128.0: couldn't find an input interrupt endpoint
[  939.859611][T17514] batman_adv: batadv0: Adding interface: batadv_slave_0
[  939.859623][T17514] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  939.859637][T17514] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  940.041449][T17514] batman_adv: batadv0: Adding interface: batadv_slave_1
[  940.041465][T17514] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  940.041490][T17514] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  940.524065][T16338] usb 2-1: USB disconnect, device number 39
[  940.827274][T17514] hsr_slave_0: entered promiscuous mode
[  940.835164][T17514] hsr_slave_1: entered promiscuous mode
[  940.836139][T17514] debugfs: 'hsr0' already exists in 'hsr'
[  940.836162][T17514] Cannot create hsr debugfs directory
[  941.098940][ T1164] hsr_slave_0: left promiscuous mode
[  941.138354][ T1164] hsr_slave_1: left promiscuous mode
[  941.139012][ T1164] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  941.139028][ T1164] batman_adv: batadv0: Removing interface: batadv_slave_0
[  941.220044][ T1164] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  941.220064][ T1164] batman_adv: batadv0: Removing interface: batadv_slave_1
[  941.290315][   T37] audit: type=1326 audit(2000000733.069:2188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17733 comm="syz.6.3871" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1527d6c799 code=0x7ffc0000
[  941.290375][   T37] audit: type=1326 audit(2000000733.069:2189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17733 comm="syz.6.3871" exe="/root/syz-executor" sig=0 arch=c000003e syscall=314 compat=0 ip=0x7f1527d6c799 code=0x7ffc0000
[  941.290413][   T37] audit: type=1326 audit(2000000733.069:2190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17733 comm="syz.6.3871" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1527d6c799 code=0x7ffc0000
[  941.290450][   T37] audit: type=1326 audit(2000000733.069:2191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17733 comm="syz.6.3871" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1527d6c799 code=0x7ffc0000
[  941.290486][   T37] audit: type=1326 audit(2000000733.069:2192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17733 comm="syz.6.3871" exe="/root/syz-executor" sig=0 arch=c000003e syscall=259 compat=0 ip=0x7f1527d6c799 code=0x7ffc0000
[  941.290525][   T37] audit: type=1326 audit(2000000733.069:2193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17733 comm="syz.6.3871" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1527d6c799 code=0x7ffc0000
[  941.290562][   T37] audit: type=1326 audit(2000000733.069:2194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17733 comm="syz.6.3871" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1527d6c799 code=0x7ffc0000
[  941.290601][   T37] audit: type=1326 audit(2000000733.069:2195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17733 comm="syz.6.3871" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7f1527d6c799 code=0x7ffc0000
[  941.290640][   T37] audit: type=1326 audit(2000000733.069:2196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17733 comm="syz.6.3871" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f1527d6c502 code=0x7ffc0000
[  942.728792][ T1164] veth1_macvtap: left promiscuous mode
[  942.728856][ T1164] veth0_macvtap: left promiscuous mode
[  942.729105][ T1164] veth1_vlan: left promiscuous mode
[  942.729208][ T1164] veth0_vlan: left promiscuous mode
[  942.745921][T17743] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3873'.
[  942.899057][T17745] netlink: 'syz.5.3874': attribute type 2 has an invalid length.
[  944.133838][T17765] netlink: 'syz.1.3882': attribute type 2 has an invalid length.
[  944.948355][ T1164] team0 (unregistering): Port device team_slave_1 removed
[  945.021697][ T1164] team0 (unregistering): Port device team_slave_0 removed
[  947.016549][T17461] 8021q: adding VLAN 0 to HW filter on device bond0
[  947.111768][T17461] 8021q: adding VLAN 0 to HW filter on device team0
[  947.345170][   T88] bridge0: port 1(bridge_slave_0) entered blocking state
[  947.345364][   T88] bridge0: port 1(bridge_slave_0) entered forwarding state
[  947.368665][T10876] bridge0: port 2(bridge_slave_1) entered blocking state
[  947.371351][T10876] bridge0: port 2(bridge_slave_1) entered forwarding state
[  948.037572][T17514] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  948.205632][T17829] 0ªX¹¦À: left allmulticast mode
[  948.343297][T17829] bridge1: left allmulticast mode
[  948.367763][T17514] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  948.456807][T17829] openvswitch: netlink: Unexpected mask (mask=840, allowed=10048)
[  948.561589][ T1164] IPVS: stop unused estimator thread 0...
[  948.725828][T17514] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  949.974784][T17514] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  951.371613][T17857] netlink: 32 bytes leftover after parsing attributes in process `syz.6.3908'.
[  951.560987][   T37] kauditd_printk_skb: 33 callbacks suppressed
[  951.561004][   T37] audit: type=1326 audit(2000000743.399:2230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17862 comm="syz.6.3910" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1527d6c799 code=0x7ffc0000
[  951.561044][   T37] audit: type=1326 audit(2000000743.399:2231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17862 comm="syz.6.3910" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1527d6c799 code=0x7ffc0000
[  951.686928][   T37] audit: type=1326 audit(2000000743.519:2232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17862 comm="syz.6.3910" exe="/root/syz-executor" sig=0 arch=c000003e syscall=173 compat=0 ip=0x7f1527d6c799 code=0x7ffc0000
[  951.711609][   T37] audit: type=1326 audit(2000000743.539:2233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17862 comm="syz.6.3910" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1527d6c799 code=0x7ffc0000
[  951.724375][   T37] audit: type=1326 audit(2000000743.559:2234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17862 comm="syz.6.3910" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1527d6c799 code=0x7ffc0000
[  951.872870][   T37] audit: type=1326 audit(2000000743.619:2235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17862 comm="syz.6.3910" exe="/root/syz-executor" sig=0 arch=c000003e syscall=173 compat=0 ip=0x7f1527d6c799 code=0x7ffc0000
[  951.872922][   T37] audit: type=1326 audit(2000000743.709:2236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17862 comm="syz.6.3910" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1527d6c799 code=0x7ffc0000
[  951.872959][   T37] audit: type=1326 audit(2000000743.709:2237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17862 comm="syz.6.3910" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1527d6c799 code=0x7ffc0000
[  952.110763][T17514] 8021q: adding VLAN 0 to HW filter on device bond0
[  952.194717][T17514] 8021q: adding VLAN 0 to HW filter on device team0
[  952.264512][  T763] bridge0: port 1(bridge_slave_0) entered blocking state
[  952.317626][  T763] bridge0: port 1(bridge_slave_0) entered forwarding state
[  952.474423][T17869] netlink: 79 bytes leftover after parsing attributes in process `syz.5.3912'.
[  952.695292][T10880] bridge0: port 2(bridge_slave_1) entered blocking state
[  952.749664][T10880] bridge0: port 2(bridge_slave_1) entered forwarding state
[  952.931678][T17461] 8021q: adding VLAN 0 to HW filter on device batadv0
[  952.985156][T17514] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  952.985179][T17514] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  955.321772][T17514] 8021q: adding VLAN 0 to HW filter on device batadv0
[  955.577681][ T5886] usb 6-1: new high-speed USB device number 25 using dummy_hcd
[  955.757564][ T5886] usb 6-1: Using ep0 maxpacket: 32
[  955.759835][ T5886] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  955.762434][ T5886] usb 6-1: New USB device found, idVendor=084e, idProduct=1001, bcdDevice=33.f9
[  955.762461][ T5886] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  955.762479][ T5886] usb 6-1: Product: syz
[  955.762491][ T5886] usb 6-1: Manufacturer: syz
[  955.762504][ T5886] usb 6-1: SerialNumber: syz
[  955.836123][ T5886] usb 6-1: config 0 descriptor??
[  956.282365][ T5804] usb 6-1: USB disconnect, device number 25
[  957.190241][ T5987] kworker/0:8 (5987) used greatest stack depth: 15296 bytes left
[  957.236992][T17461] veth0_vlan: entered promiscuous mode
[  957.369345][T17461] veth1_vlan: entered promiscuous mode
[  957.852841][T17461] veth0_macvtap: entered promiscuous mode
[  958.545343][T17461] veth1_macvtap: entered promiscuous mode
[  961.358497][T17514] veth0_vlan: entered promiscuous mode
[  961.641973][T17514] veth1_vlan: entered promiscuous mode
[  962.152014][T17956] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  962.192503][T17960] netlink: 120 bytes leftover after parsing attributes in process `syz.5.3935'.
[  962.192528][T17960] netlink: 128 bytes leftover after parsing attributes in process `syz.5.3935'.
[  962.233847][T17956] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  962.242568][T17956] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  962.243740][T17956] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  962.311915][T17956] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  962.494255][T17514] veth0_macvtap: entered promiscuous mode
[  962.546685][T17514] veth1_macvtap: entered promiscuous mode
[  962.715542][ T5113] Bluetooth: hci3: command 0x0406 tx timeout
[  964.551184][ T5809] Bluetooth: hci4: command tx timeout
[  965.629310][T17514] batman_adv: batadv0: Interface activated: batadv_slave_0
[  965.762439][T17514] batman_adv: batadv0: Interface activated: batadv_slave_1
[  966.078108][T18011] team_slave_0: entered promiscuous mode
[  966.078189][T18011] team_slave_1: entered promiscuous mode
[  966.078807][T18011] macvtap1: entered promiscuous mode
[  966.078824][T18011] team0: entered promiscuous mode
[  966.122613][T18011] 8021q: adding VLAN 0 to HW filter on device macvtap1
[  966.122875][T18011] team0: Device macvtap1 is already an upper device of the team interface
[  966.464805][T18011] team0: left promiscuous mode
[  966.465569][T18011] team_slave_0: left promiscuous mode
[  966.465633][T18011] team_slave_1: left promiscuous mode
[  966.620903][ T5809] Bluetooth: hci4: command tx timeout
[  968.698043][ T5809] Bluetooth: hci4: command tx timeout
[  969.063712][T16338] usb 6-1: new high-speed USB device number 26 using dummy_hcd
[  969.241587][T16338] usb 6-1: Using ep0 maxpacket: 16
[  969.273950][T16338] usb 6-1: device descriptor read/all, error -71
[  970.050878][T17517] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  970.485308][T17517] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  970.500514][T17517] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  970.505217][T17517] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  970.649267][T18035] netlink: 32 bytes leftover after parsing attributes in process `syz.5.3957'.
[  970.792595][ T5809] Bluetooth: hci4: command tx timeout
[  976.996533][ T5113] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  977.027958][ T5113] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  977.035746][ T5113] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  977.037278][ T5113] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  977.070042][ T5113] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  979.347681][ T5113] Bluetooth: hci5: command tx timeout
[  980.126537][T18080] vxcan2: entered allmulticast mode
[  981.039151][T17953] chnl_net:caif_netlink_parms(): no params data found
[  981.417551][ T5113] Bluetooth: hci5: command tx timeout
[  981.770944][T17953] bridge0: port 1(bridge_slave_0) entered blocking state
[  981.771127][T17953] bridge0: port 1(bridge_slave_0) entered disabled state
[  981.771380][T17953] bridge_slave_0: entered allmulticast mode
[  981.812684][T17953] bridge_slave_0: entered promiscuous mode
[  981.832980][T17953] bridge0: port 2(bridge_slave_1) entered blocking state
[  981.833101][T17953] bridge0: port 2(bridge_slave_1) entered disabled state
[  981.833340][T17953] bridge_slave_1: entered allmulticast mode
[  981.836437][T17953] bridge_slave_1: entered promiscuous mode
[  982.294093][T18114] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3983'.
[  983.497666][ T5113] Bluetooth: hci5: command tx timeout
[  985.578126][ T5113] Bluetooth: hci5: command tx timeout
[  986.491608][T18114] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3983'.
[  986.512638][T17953] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  986.651663][T17953] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  989.104092][T17953] team0: Port device team_slave_0 added
[  989.115676][T17953] team0: Port device team_slave_1 added
[  989.341613][T17953] batman_adv: batadv0: Adding interface: batadv_slave_0
[  989.341629][T17953] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  989.341654][T17953] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  989.343896][T17953] batman_adv: batadv0: Adding interface: batadv_slave_1
[  989.343911][T17953] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  989.343935][T17953] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  990.152455][ T5809] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  990.163275][ T5809] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  990.169191][ T5809] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  990.176244][ T5809] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  990.222366][ T5809] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  990.509276][T17953] hsr_slave_0: entered promiscuous mode
[  990.510631][T17953] hsr_slave_1: entered promiscuous mode
[  990.511557][T17953] debugfs: 'hsr0' already exists in 'hsr'
[  990.511581][T17953] Cannot create hsr debugfs directory
[  990.922206][T18089] chnl_net:caif_netlink_parms(): no params data found
[  992.307483][ T5113] Bluetooth: hci1: command tx timeout
[  992.632138][T18183] loop9: detected capacity change from 0 to 7
[  992.652315][T18183] Dev loop9: unable to read RDB block 7
[  992.652346][T18183]  loop9: AHDI p2 p3
[  992.652376][T18183] loop9: partition table partially beyond EOD, truncated
[  992.652637][T18183] loop9: p2 size 1701016946 extends beyond EOD, truncated
[  992.962011][T18163] udevd[18163]: inotify_add_watch(7, /dev/loop9p2, 10) failed: No such file or directory
[  994.389428][ T5113] Bluetooth: hci1: command tx timeout
[  996.444392][T18089] bridge0: port 1(bridge_slave_0) entered blocking state
[  996.444599][T18089] bridge0: port 1(bridge_slave_0) entered disabled state
[  996.444867][T18089] bridge_slave_0: entered allmulticast mode
[  996.454710][T18089] bridge_slave_0: entered promiscuous mode
[  996.457845][ T5113] Bluetooth: hci1: command tx timeout
[  996.542772][T18089] bridge0: port 2(bridge_slave_1) entered blocking state
[  996.542912][T18089] bridge0: port 2(bridge_slave_1) entered disabled state
[  996.543122][T18089] bridge_slave_1: entered allmulticast mode
[  996.568358][T18089] bridge_slave_1: entered promiscuous mode
[  996.712810][T18089] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  996.743868][T18089] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  996.995795][T18089] team0: Port device team_slave_0 added
[  997.033356][T18089] team0: Port device team_slave_1 added
[  998.142411][ T1322] ieee802154 phy0 wpan0: encryption failed: -22
[  998.142495][ T1322] ieee802154 phy1 wpan1: encryption failed: -22
[  998.547561][ T5113] Bluetooth: hci1: command tx timeout
[  998.626729][T18236] netlink: 8 bytes leftover after parsing attributes in process `syz.6.4010'.
[  999.978259][T18089] batman_adv: batadv0: Adding interface: batadv_slave_0
[  999.978276][T18089] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  999.978301][T18089] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1000.116179][T18089] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1000.116196][T18089] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1000.116221][T18089] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1000.677925][T18157] chnl_net:caif_netlink_parms(): no params data found
[ 1000.713305][T10874] bridge_slave_1: left allmulticast mode
[ 1000.713334][T10874] bridge_slave_1: left promiscuous mode
[ 1000.713582][T10874] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1001.655850][T10874] bridge_slave_0: left allmulticast mode
[ 1001.655879][T10874] bridge_slave_0: left promiscuous mode
[ 1001.656154][T10874] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1012.012805][T10874] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1013.837191][T10874] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1013.919616][T10874] bond0 (unregistering): Released all slaves
[ 1014.954376][T18089] hsr_slave_0: entered promiscuous mode
[ 1014.955762][T18089] hsr_slave_1: entered promiscuous mode
[ 1014.956718][T18089] debugfs: 'hsr0' already exists in 'hsr'
[ 1014.956742][T18089] Cannot create hsr debugfs directory
[ 1016.369422][T18157] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1016.369616][T18157] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1016.369833][T18157] bridge_slave_0: entered allmulticast mode
[ 1016.373295][T18157] bridge_slave_0: entered promiscuous mode
[ 1016.426586][T18157] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1016.426704][T18157] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1016.427239][T18157] bridge_slave_1: entered allmulticast mode
[ 1016.452000][T18157] bridge_slave_1: entered promiscuous mode
[ 1016.605308][T18157] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1016.645678][T18157] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1016.787217][T18157] team0: Port device team_slave_0 added
[ 1016.815924][T18157] team0: Port device team_slave_1 added
[ 1016.890664][T18157] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1016.890682][T18157] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1016.890705][T18157] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1016.893000][T18157] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1016.893012][T18157] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1016.893032][T18157] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1017.261346][T18157] hsr_slave_0: entered promiscuous mode
[ 1017.262649][T18157] hsr_slave_1: entered promiscuous mode
[ 1017.263634][T18157] debugfs: 'hsr0' already exists in 'hsr'
[ 1017.263658][T18157] Cannot create hsr debugfs directory
[ 1018.896417][T18329] netlink: 'syz.1.4032': attribute type 10 has an invalid length.
[ 1020.078081][T18329] wlan1: mtu less than device minimum
[ 1020.078099][T18329] bond0: (slave wlan1): Error -22 calling dev_set_mtu
[ 1020.533723][ T5809] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1020.551445][ T5809] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1020.559086][ T5809] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1020.561272][ T5809] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1020.561996][ T5809] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1022.575964][T18347] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
[ 1022.654579][ T5113] Bluetooth: hci0: command tx timeout
[ 1024.698030][ T5113] Bluetooth: hci0: command tx timeout
[ 1026.368066][T10874] hsr_slave_0: left promiscuous mode
[ 1026.777527][ T5113] Bluetooth: hci0: command tx timeout
[ 1026.783724][T10874] hsr_slave_1: left promiscuous mode
[ 1026.784867][T10874] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1027.036206][ T5113] Bluetooth: hci3: ACL packet for unknown connection handle 201
[ 1027.912545][T10874] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1028.679848][T10874] veth1_macvtap: left promiscuous mode
[ 1028.679952][T10874] veth0_macvtap: left promiscuous mode
[ 1028.680195][T10874] veth1_vlan: left promiscuous mode
[ 1028.680377][T10874] veth0_vlan: left promiscuous mode
[ 1028.857929][ T5113] Bluetooth: hci0: command tx timeout
[ 1029.089385][T18403] netlink: 'syz.6.4055': attribute type 15 has an invalid length.
[ 1029.089409][T18403] netlink: 24 bytes leftover after parsing attributes in process `syz.6.4055'.
[ 1031.277934][T10874] team0 (unregistering): Port device team_slave_1 removed
[ 1031.717680][T10874] team0 (unregistering): Port device team_slave_0 removed
[ 1033.282238][T18337] chnl_net:caif_netlink_parms(): no params data found
[ 1033.985442][T18337] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1033.985566][T18337] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1033.985827][T18337] bridge_slave_0: entered allmulticast mode
[ 1033.995964][T18337] bridge_slave_0: entered promiscuous mode
[ 1034.027667][T18337] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1034.027809][T18337] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1034.028078][T18337] bridge_slave_1: entered allmulticast mode
[ 1034.030737][T18337] bridge_slave_1: entered promiscuous mode
[ 1034.274471][T18337] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1034.289795][T18337] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1034.474330][T18337] team0: Port device team_slave_0 added
[ 1034.490573][T18337] team0: Port device team_slave_1 added
[ 1034.571090][T18337] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1034.571107][T18337] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1034.571132][T18337] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1034.622118][T18337] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1034.622134][T18337] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1034.622159][T18337] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1037.055144][ T5809] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 1037.090894][ T5809] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 1037.092782][ T5809] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 1037.093877][ T5809] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 1037.131615][ T5809] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 1037.281170][T18459] overlayfs: failed to clone upperpath
[ 1039.264117][ T5113] Bluetooth: hci6: command tx timeout
[ 1041.045572][T18491] kvm: pic: single mode not supported
[ 1041.045587][T18491] pic_ioport_write: 3 callbacks suppressed
[ 1041.045601][T18491] kvm: pic: level sensitive irq not supported
[ 1041.050483][T18491] kvm: pic: non byte write
[ 1041.050733][T18491] kvm: pic: level sensitive irq not supported
[ 1041.050796][T18491] kvm: pic: non byte write
[ 1041.176503][T18337] hsr_slave_0: entered promiscuous mode
[ 1041.188960][T18337] hsr_slave_1: entered promiscuous mode
[ 1041.198401][T18337] debugfs: 'hsr0' already exists in 'hsr'
[ 1041.198428][T18337] Cannot create hsr debugfs directory
[ 1041.337625][ T5113] Bluetooth: hci6: command tx timeout
[ 1043.336063][T18453] chnl_net:caif_netlink_parms(): no params data found
[ 1043.423074][ T5113] Bluetooth: hci6: command tx timeout
[ 1045.499234][ T5113] Bluetooth: hci6: command tx timeout
[ 1050.079539][ T5809] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[ 1050.099719][ T5809] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[ 1050.103837][ T5809] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[ 1050.105485][ T5809] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[ 1050.106157][ T5809] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[ 1052.220716][ T5809] Bluetooth: hci7: command tx timeout
[ 1052.301491][T18453] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1052.314817][T18453] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1052.315106][T18453] bridge_slave_0: entered allmulticast mode
[ 1052.345665][T18453] bridge_slave_0: entered promiscuous mode
[ 1052.370098][T18453] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1052.391808][T18453] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1052.392089][T18453] bridge_slave_1: entered allmulticast mode
[ 1052.436586][T18453] bridge_slave_1: entered promiscuous mode
[ 1052.804138][T18453] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1052.979596][T18453] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1053.976486][T18453] team0: Port device team_slave_0 added
[ 1054.300124][ T5809] Bluetooth: hci7: command tx timeout
[ 1055.829027][T18089] netdevsim netdevsim9 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1056.380742][ T5809] Bluetooth: hci7: command tx timeout
[ 1056.383337][T18453] team0: Port device team_slave_1 added
[ 1057.187588][  T809] usb 2-1: new high-speed USB device number 40 using dummy_hcd
[ 1057.356946][  T809] usb 2-1: New USB device found, idVendor=0424, idProduct=7850, bcdDevice= 0.00
[ 1057.356975][  T809] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1057.356993][  T809] usb 2-1: Product: syz
[ 1057.357006][  T809] usb 2-1: Manufacturer: syz
[ 1057.357018][  T809] usb 2-1: SerialNumber: syz
[ 1057.694351][  T809] lan78xx 2-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000098. ret = -EPIPE
[ 1057.694407][  T809] lan78xx 2-1:1.0 (unnamed net_device) (uninitialized): lan78xx_setup_irq_domain() failed : -32
[ 1057.694425][  T809] lan78xx 2-1:1.0 (unnamed net_device) (uninitialized): Bind routine FAILED
[ 1057.882749][  T809] lan78xx 2-1:1.0: probe with driver lan78xx failed with error -32
[ 1058.148879][T18453] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1058.148897][T18453] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1058.148921][T18453] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1058.457574][ T5809] Bluetooth: hci7: command tx timeout
[ 1059.012050][T18089] netdevsim netdevsim9 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1059.085915][T18453] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1059.085933][T18453] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1059.085957][T18453] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1059.599001][ T1322] ieee802154 phy0 wpan0: encryption failed: -22
[ 1059.599065][ T1322] ieee802154 phy1 wpan1: encryption failed: -22
[ 1059.764989][T18089] netdevsim netdevsim9 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1059.871437][ T5804] usb 2-1: USB disconnect, device number 40
[ 1060.168674][T18453] hsr_slave_0: entered promiscuous mode
[ 1060.169536][T18453] hsr_slave_1: entered promiscuous mode
[ 1060.170106][T18453] debugfs: 'hsr0' already exists in 'hsr'
[ 1060.170122][T18453] Cannot create hsr debugfs directory
[ 1061.276950][T18089] netdevsim netdevsim9 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1068.684050][T18566] chnl_net:caif_netlink_parms(): no params data found
[ 1068.752327][T10874] bridge_slave_1: left allmulticast mode
[ 1068.752348][T10874] bridge_slave_1: left promiscuous mode
[ 1068.752603][T10874] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1070.120040][T10874] bridge_slave_0: left allmulticast mode
[ 1070.120069][T10874] bridge_slave_0: left promiscuous mode
[ 1070.120318][T10874] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1070.216181][T18726] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4112'.
[ 1075.085562][T10874] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1076.136439][T10874] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1076.674770][T10874] bond0 (unregistering): Released all slaves
[ 1077.648137][T18726] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1078.296551][T18726] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1080.350493][ T5113] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1080.385295][ T5113] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1080.387185][ T5113] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1080.405589][ T5113] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1080.406347][ T5113] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1081.096354][T18761] random: crng reseeded on system resumption
[ 1082.678253][T18754] overlayfs: failed to clone lowerpath
[ 1082.977785][ T5113] Bluetooth: hci4: command tx timeout
[ 1085.018162][ T5809] Bluetooth: hci4: command tx timeout
[ 1087.105733][ T5809] Bluetooth: hci4: command tx timeout
[ 1089.418269][ T5809] Bluetooth: hci4: command tx timeout
[ 1091.968788][T10874] hsr_slave_0: left promiscuous mode
[ 1093.230143][T10874] hsr_slave_1: left promiscuous mode
[ 1093.392651][T10874] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1093.392681][T10874] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1094.881407][T10874] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1094.881438][T10874] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1097.090812][T10874] veth1_macvtap: left promiscuous mode
[ 1097.090913][T10874] veth0_macvtap: left promiscuous mode
[ 1097.091165][T10874] veth1_vlan: left promiscuous mode
[ 1097.091341][T10874] veth0_vlan: left promiscuous mode
[ 1099.010234][T18854] kAFS: unparsable volume name
[ 1100.412273][ T5113] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1100.457446][ T5113] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1100.475497][ T5113] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1100.487443][ T5113] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1100.492901][ T5113] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1102.707466][ T5113] Bluetooth: hci5: command tx timeout
[ 1104.793662][ T5113] Bluetooth: hci5: command tx timeout
[ 1107.210134][ T5113] Bluetooth: hci5: command tx timeout
[ 1107.538496][T10874] team0 (unregistering): Port device team_slave_1 removed
[ 1108.578370][T10874] team0 (unregistering): Port device team_slave_0 removed
[ 1109.137629][T18881] netlink: 136 bytes leftover after parsing attributes in process `syz.1.4140'.
[ 1109.298657][ T5113] Bluetooth: hci5: command tx timeout
[ 1111.629524][T17956] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[ 1111.683009][T17956] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[ 1111.720423][T17956] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[ 1111.847847][T17956] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[ 1111.848629][T17956] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[ 1112.860876][ T5809] Bluetooth: hci1: command 0x0406 tx timeout
[ 1114.699267][ T5113] Bluetooth: hci8: command tx timeout
[ 1115.015721][T18916] netlink: 20 bytes leftover after parsing attributes in process `syz.6.4148'.
[ 1116.208414][T18916] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1116.423646][T18916] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1116.777101][T18927] netlink: 'syz.1.4149': attribute type 16 has an invalid length.
[ 1116.777324][T18927] netlink: 'syz.1.4149': attribute type 17 has an invalid length.
[ 1116.791404][ T5113] Bluetooth: hci8: command tx timeout
[ 1118.857537][ T5113] Bluetooth: hci8: command tx timeout
[ 1118.937537][T18927] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[ 1120.937528][ T5113] Bluetooth: hci8: command tx timeout
[ 1121.021604][ T1322] ieee802154 phy0 wpan0: encryption failed: -22
[ 1121.021698][ T1322] ieee802154 phy1 wpan1: encryption failed: -22
[ 1124.777719][T16336] usb 2-1: new high-speed USB device number 41 using dummy_hcd
[ 1124.947484][T16336] usb 2-1: Using ep0 maxpacket: 32
[ 1125.131899][T16336] usb 2-1: config 0 has an invalid interface number: 196 but max is 0
[ 1125.131927][T16336] usb 2-1: config 0 has no interface number 0
[ 1125.131977][T16336] usb 2-1: config 0 interface 196 altsetting 1 bulk endpoint 0x2 has invalid maxpacket 528
[ 1125.132001][T16336] usb 2-1: config 0 interface 196 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[ 1125.132021][T16336] usb 2-1: config 0 interface 196 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[ 1125.132049][T16336] usb 2-1: config 0 interface 196 has no altsetting 0
[ 1125.134340][T16336] usb 2-1: New USB device found, idVendor=05ac, idProduct=7700, bcdDevice=eb.3a
[ 1125.134366][T16336] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1125.134384][T16336] usb 2-1: Product: syz
[ 1125.134395][T16336] usb 2-1: Manufacturer: syz
[ 1125.134406][T16336] usb 2-1: SerialNumber: syz
[ 1125.157967][T16336] usb 2-1: config 0 descriptor??
[ 1125.158759][T18958] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[ 1125.472178][T16338] IPVS: starting estimator thread 0...
[ 1125.570684][T16336] ipheth 2-1:0.196: ipheth_get_macaddr: usb_control_msg: short packet: 0 bytes
[ 1125.571043][T16336] ipheth 2-1:0.196: probe with driver ipheth failed with error -22
[ 1125.609787][T18970] IPVS: using max 9 ests per chain, 21600 per kthread
[ 1125.779173][ T5804] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1126.142809][T10883] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1126.501989][T18748] chnl_net:caif_netlink_parms(): no params data found
[ 1126.702335][T18857] chnl_net:caif_netlink_parms(): no params data found
[ 1126.864018][ T5804] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1126.881596][T16336] usb 2-1: USB disconnect, device number 41
[ 1128.309454][ T5804] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1129.338078][ T5804] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1130.517652][ T5804] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1131.418584][T18902] chnl_net:caif_netlink_parms(): no params data found
[ 1131.724201][T13782] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1131.897874][T10876] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1131.906401][T13782] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1132.791958][T19003] ubi31: attaching mtd0
[ 1132.929442][T19003] ubi31: scanning is finished
[ 1132.929583][T19003] ubi31: empty MTD device detected
[ 1133.867401][ T5849] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1135.074412][   T37] audit: type=1326 audit(2000000926.469:2238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19006 comm="syz.6.4156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1527d6c799 code=0x7ffc0000
[ 1135.075052][   T37] audit: type=1326 audit(2000000926.469:2239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19006 comm="syz.6.4156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1527d6c799 code=0x7ffc0000
[ 1135.075096][   T37] audit: type=1326 audit(2000000926.479:2240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19006 comm="syz.6.4156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f1527d6c799 code=0x7ffc0000
[ 1135.075133][   T37] audit: type=1326 audit(2000000926.489:2241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19006 comm="syz.6.4156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1527d6c799 code=0x7ffc0000
[ 1135.075169][   T37] audit: type=1326 audit(2000000926.489:2242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19006 comm="syz.6.4156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1527d6c799 code=0x7ffc0000
[ 1135.075204][   T37] audit: type=1326 audit(2000000926.489:2243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19006 comm="syz.6.4156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f1527d6c799 code=0x7ffc0000
[ 1135.075241][   T37] audit: type=1326 audit(2000000926.529:2244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19006 comm="syz.6.4156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1527d6c799 code=0x7ffc0000
[ 1135.075278][   T37] audit: type=1326 audit(2000000926.529:2245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19006 comm="syz.6.4156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1527d6c799 code=0x7ffc0000
[ 1135.075316][   T37] audit: type=1326 audit(2000000926.549:2246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19006 comm="syz.6.4156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f1527d6c799 code=0x7ffc0000
[ 1135.075354][   T37] audit: type=1326 audit(2000000926.549:2247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19006 comm="syz.6.4156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1527d6c799 code=0x7ffc0000
[ 1137.886081][ T5804] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1138.308607][ T1164] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1138.957457][T13782] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1138.978563][ T5849] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1140.057544][ T5804] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1140.108996][   T13] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1141.350373][T13782] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1142.694808][ T5804] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1143.556658][T17517] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1143.685638][T18748] workqueue: Failed to create a rescuer kthread for wq "wg-crypt-wg2": -EINTR
[ 1143.807453][T13782] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1144.271168][ T5809] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1144.349589][ T5809] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1144.364495][ T5809] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1144.374644][ T5809] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1144.386374][ T5809] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1144.905707][ T5804] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1145.476002][   T88] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1145.740600][T18857] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1145.741602][T18857] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1145.743766][T18857] bridge_slave_0: entered allmulticast mode
[ 1145.752674][T18857] bridge_slave_0: entered promiscuous mode
[ 1146.241823][T18857] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1146.241943][T18857] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1146.242138][T18857] bridge_slave_1: entered allmulticast mode
[ 1146.244841][T18857] bridge_slave_1: entered promiscuous mode
[ 1146.766520][T13782] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1146.766823][T13782] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1147.428034][ T5113] Bluetooth: hci0: command tx timeout
[ 1147.668821][T18902] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1147.668943][T18902] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1147.669237][T18902] bridge_slave_0: entered allmulticast mode
[ 1147.684039][T18902] bridge_slave_0: entered promiscuous mode
[ 1147.721692][T18857] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1147.725740][T18902] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1147.725867][T18902] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1147.726126][T18902] bridge_slave_1: entered allmulticast mode
[ 1147.757582][T18902] bridge_slave_1: entered promiscuous mode
[ 1148.525516][  T809] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1148.591219][T18857] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1149.256739][   T68] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1149.503793][ T5113] Bluetooth: hci0: command tx timeout
[ 1149.727495][ T5804] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1151.654354][ T5113] Bluetooth: hci0: command tx timeout
[ 1151.655909][ T1167] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1151.674473][T18902] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1151.759396][T18902] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1151.837882][T18857] team0: Port device team_slave_0 added
[ 1153.194930][  T809] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1153.431145][T18857] team0: Port device team_slave_1 added
[ 1153.435918][ T5809] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1153.453845][ T5809] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1153.456099][ T5809] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1153.459445][ T5809] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1153.461672][ T5809] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1153.657526][ T5113] Bluetooth: hci0: command tx timeout
[ 1153.758260][T18902] team0: Port device team_slave_0 added
[ 1153.807379][  T809] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1153.869582][T18902] team0: Port device team_slave_1 added
[ 1153.937687][T18857] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1153.937704][T18857] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1153.937728][T18857] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1154.367661][  T809] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1154.367983][  T809] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1155.408100][   T13] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1155.577595][ T5809] Bluetooth: hci1: command tx timeout
[ 1156.117634][ T5804] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1157.477425][  T809] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1157.499330][   T13] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1157.657648][ T5809] Bluetooth: hci1: command tx timeout
[ 1157.668432][T18857] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1157.668448][T18857] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1157.668474][T18857] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1157.786785][T18902] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1157.786802][T18902] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1157.786827][T18902] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1157.885046][T18902] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1157.885063][T18902] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1157.885098][T18902] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1158.260157][T18902] hsr_slave_0: entered promiscuous mode
[ 1158.261731][T18902] hsr_slave_1: entered promiscuous mode
[ 1158.262936][T18902] debugfs: 'hsr0' already exists in 'hsr'
[ 1158.262962][T18902] Cannot create hsr debugfs directory
[ 1158.537841][T13782] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1159.737543][ T5809] Bluetooth: hci1: command tx timeout
[ 1159.806207][  T809] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1160.170011][ T5113] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1160.213108][ T5113] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1160.216249][ T5113] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1160.225428][ T5113] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1160.226216][ T5113] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1160.599418][T19048] chnl_net:caif_netlink_parms(): no params data found
[ 1160.697964][   T88] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1160.867427][  T809] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1162.147787][ T5809] Bluetooth: hci1: command tx timeout
[ 1162.382142][ T5809] Bluetooth: hci4: command tx timeout
[ 1162.413427][T13782] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1162.413870][T13782] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1163.267793][T10876] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1164.297595][  T809] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1164.468665][ T5809] Bluetooth: hci4: command tx timeout
[ 1164.563030][T19088] chnl_net:caif_netlink_parms(): no params data found
[ 1164.591574][T19048] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1164.591780][T19048] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1164.592079][T19048] bridge_slave_0: entered allmulticast mode
[ 1164.594740][T19048] bridge_slave_0: entered promiscuous mode
[ 1164.659623][T19048] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1164.659755][T19048] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1164.660084][T19048] bridge_slave_1: entered allmulticast mode
[ 1164.662872][T19048] bridge_slave_1: entered promiscuous mode
[ 1165.514643][T19048] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1165.593172][T19048] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1165.739493][   T88] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1165.786762][  T809] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1165.861133][T19048] team0: Port device team_slave_0 added
[ 1166.537891][ T5809] Bluetooth: hci4: command tx timeout
[ 1166.883347][ T5804] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1167.357125][T19048] team0: Port device team_slave_1 added
[ 1167.557451][T19088] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1167.557566][T19088] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1167.557872][T19088] bridge_slave_0: entered allmulticast mode
[ 1167.560675][T19088] bridge_slave_0: entered promiscuous mode
[ 1167.652703][T18902] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 1167.709324][T19088] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1167.709450][T19088] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1167.709709][T19088] bridge_slave_1: entered allmulticast mode
[ 1167.714325][T19088] bridge_slave_1: entered promiscuous mode
[ 1167.786754][T18902] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 1168.630225][ T5809] Bluetooth: hci4: command tx timeout
[ 1168.682087][T19048] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1168.682104][T19048] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1168.682130][T19048] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1169.547396][T18902] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 1169.777970][T19048] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1169.777982][T19048] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1169.777997][T19048] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1169.847590][T18902] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 1170.486317][T19088] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1170.795767][T19088] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1171.167457][T18902] kthread_run failed with err -4
[ 1173.054527][T19048] hsr_slave_0: entered promiscuous mode
[ 1173.055990][T19048] hsr_slave_1: entered promiscuous mode
[ 1173.056970][T19048] debugfs: 'hsr0' already exists in 'hsr'
[ 1173.056994][T19048] Cannot create hsr debugfs directory
[ 1173.078897][T19150] chnl_net:caif_netlink_parms(): no params data found
[ 1173.119978][T19088] team0: Port device team_slave_0 added
[ 1173.177459][T19088] team0: Port device team_slave_1 added
[ 1174.657018][ T5113] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1174.694040][ T5113] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1174.695962][ T5113] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1174.697156][ T5113] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1174.717897][ T5113] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1176.030642][T19088] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1176.030659][T19088] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1176.030686][T19088] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1176.188265][T19088] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1176.188283][T19088] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1176.188320][T19088] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1176.462398][T19150] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1176.462519][T19150] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1176.463060][T19150] bridge_slave_0: entered allmulticast mode
[ 1176.465990][T19150] bridge_slave_0: entered promiscuous mode
[ 1176.584216][T19150] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1176.584401][T19150] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1176.829471][ T5113] Bluetooth: hci5: command tx timeout
[ 1176.852377][T19150] bridge_slave_1: entered allmulticast mode
[ 1176.854990][T19150] bridge_slave_1: entered promiscuous mode
[ 1176.906299][T19088] hsr_slave_0: entered promiscuous mode
[ 1176.931880][T19088] hsr_slave_1: entered promiscuous mode
[ 1176.967375][T19088] debugfs: 'hsr0' already exists in 'hsr'
[ 1176.969056][T19088] Cannot create hsr debugfs directory
[ 1178.857847][ T5809] Bluetooth: hci5: command tx timeout
[ 1179.162601][T19150] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1179.235243][T19150] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1180.118464][T19243] ptrace attach of "./syz-executor exec"[13203] was attempted by "./syz-executor exec"[19243]
[ 1180.943223][ T5809] Bluetooth: hci5: command tx timeout
[ 1181.110138][T19150] team0: Port device team_slave_0 added
[ 1181.172307][T19150] team0: Port device team_slave_1 added
[ 1181.443486][T19150] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1181.443503][T19150] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1181.443528][T19150] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1181.881219][T19003] ubi31 error: ubi_attach_mtd_dev: cannot spawn "ubi_bgt31d", error -4
[ 1182.010237][T19150] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1182.010254][T19150] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1182.010280][T19150] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1182.507856][ T1322] ieee802154 phy0 wpan0: encryption failed: -22
[ 1182.507921][ T1322] ieee802154 phy1 wpan1: encryption failed: -22
[ 1183.042497][ T5809] Bluetooth: hci5: command tx timeout
[ 1186.418774][T19150] hsr_slave_0: entered promiscuous mode
[ 1186.420459][T19150] hsr_slave_1: entered promiscuous mode
[ 1186.421491][T19150] debugfs: 'hsr0' already exists in 'hsr'
[ 1186.421516][T19150] Cannot create hsr debugfs directory
[ 1186.948092][T19048] netdevsim netdevsim8 netdevsim0: renamed from eth0
[ 1187.979076][T19048] netdevsim netdevsim8 netdevsim1: renamed from eth1
[ 1192.359244][T19048] netdevsim netdevsim8 netdevsim2: renamed from eth2
[ 1192.432525][T19048] netdevsim netdevsim8 netdevsim3: renamed from eth3
[ 1193.912705][T19226] chnl_net:caif_netlink_parms(): no params data found
[ 1195.757506][T19226] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1195.757629][T19226] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1195.757972][T19226] bridge_slave_0: entered allmulticast mode
[ 1195.789476][T19226] bridge_slave_0: entered promiscuous mode
[ 1195.799790][T19321] netlink: 24 bytes leftover after parsing attributes in process `syz.6.4191'.
[ 1196.882297][T19226] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1196.882463][T19226] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1196.882718][T19226] bridge_slave_1: entered allmulticast mode
[ 1196.907647][T19226] bridge_slave_1: entered promiscuous mode
[ 1197.287859][T19226] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1197.291508][T19226] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1198.016437][T19226] team0: Port device team_slave_0 added
[ 1198.041867][T19226] team0: Port device team_slave_1 added
[ 1202.475455][T19226] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1202.475472][T19226] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1202.475496][T19226] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1202.534736][T19226] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1202.534754][T19226] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1202.534779][T19226] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1203.734770][ T5113] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1203.757917][ T5113] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1203.853303][ T5113] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1203.874122][ T5113] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1203.881817][ T5113] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1204.969585][T19226] hsr_slave_0: entered promiscuous mode
[ 1204.971178][T19226] hsr_slave_1: entered promiscuous mode
[ 1204.972173][T19226] debugfs: 'hsr0' already exists in 'hsr'
[ 1204.972197][T19226] Cannot create hsr debugfs directory
[ 1206.092156][ T5809] Bluetooth: hci2: command tx timeout
[ 1208.251036][ T5809] Bluetooth: hci2: command tx timeout
[ 1208.347950][T19384] chnl_net:caif_netlink_parms(): no params data found
[ 1208.399284][ T5113] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 1208.807607][ T5113] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 1209.237551][ T5113] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 1209.478233][ T5113] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 1209.479024][ T5113] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 1210.298165][ T5113] Bluetooth: hci2: command tx timeout
[ 1211.498112][ T5113] Bluetooth: hci6: command tx timeout
[ 1212.127502][T19422] netlink: 24 bytes leftover after parsing attributes in process `syz.6.4202'.
[ 1212.395082][ T5113] Bluetooth: hci2: command tx timeout
[ 1213.818258][ T5113] Bluetooth: hci6: command tx timeout
[ 1214.899682][T19384] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1214.899804][T19384] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1214.900065][T19384] bridge_slave_0: entered allmulticast mode
[ 1214.902802][T19384] bridge_slave_0: entered promiscuous mode
[ 1214.937629][T19384] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1214.937751][T19384] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1214.938080][T19384] bridge_slave_1: entered allmulticast mode
[ 1214.941099][T19384] bridge_slave_1: entered promiscuous mode
[ 1215.959307][T19384] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1215.977434][ T5113] Bluetooth: hci6: command tx timeout
[ 1215.998269][T19384] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1216.494167][T19384] team0: Port device team_slave_0 added
[ 1216.517847][T19384] team0: Port device team_slave_1 added
[ 1217.509798][T19443] netlink: 24 bytes leftover after parsing attributes in process `syz.6.4206'.
[ 1218.057530][ T5113] Bluetooth: hci6: command tx timeout
[ 1218.935063][T19384] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1218.935075][T19384] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1218.935089][T19384] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1218.937163][T19384] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1218.937176][T19384] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1218.937196][T19384] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1219.283921][T19384] hsr_slave_0: entered promiscuous mode
[ 1219.285397][T19384] hsr_slave_1: entered promiscuous mode
[ 1219.286368][T19384] debugfs: 'hsr0' already exists in 'hsr'
[ 1219.286390][T19384] Cannot create hsr debugfs directory
[ 1219.572884][T19406] chnl_net:caif_netlink_parms(): no params data found
[ 1221.289289][ T5809] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1221.322191][ T5809] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1221.326875][ T5809] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1221.776868][T19406] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1221.777073][T19406] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1221.835718][T19406] bridge_slave_0: entered allmulticast mode
[ 1221.847196][T19406] bridge_slave_0: entered promiscuous mode
[ 1221.853692][T19406] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1222.128971][T19406] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1222.129339][T19406] bridge_slave_1: entered allmulticast mode
[ 1222.131553][T19406] bridge_slave_1: entered promiscuous mode
[ 1222.140187][ T5809] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1222.143142][ T5809] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1222.972246][T19406] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1222.976949][T19406] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1224.637069][T19406] team0: Port device team_slave_0 added
[ 1224.715095][T19406] team0: Port device team_slave_1 added
[ 1224.992775][T19406] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1224.992787][T19406] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1224.992801][T19406] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1225.017557][ T5809] Bluetooth: hci0: command tx timeout
[ 1225.063757][T19406] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1225.063768][T19406] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1225.063783][T19406] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1226.828895][T19406] hsr_slave_0: entered promiscuous mode
[ 1226.829795][T19406] hsr_slave_1: entered promiscuous mode
[ 1226.830363][T19406] debugfs: 'hsr0' already exists in 'hsr'
[ 1226.830377][T19406] Cannot create hsr debugfs directory
[ 1227.098133][ T5809] Bluetooth: hci0: command tx timeout
[ 1229.069782][T19462] chnl_net:caif_netlink_parms(): no params data found
[ 1229.178172][ T5809] Bluetooth: hci0: command tx timeout
[ 1229.806005][T19482] netlink: 24 bytes leftover after parsing attributes in process `syz.6.4211'.
[ 1230.451627][T19462] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1230.451760][T19462] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1230.452108][T19462] bridge_slave_0: entered allmulticast mode
[ 1230.459417][T19462] bridge_slave_0: entered promiscuous mode
[ 1230.500570][T19462] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1230.500701][T19462] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1230.501041][T19462] bridge_slave_1: entered allmulticast mode
[ 1230.503964][T19462] bridge_slave_1: entered promiscuous mode
[ 1230.602520][T19462] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1230.628894][T19462] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1230.696588][T19462] team0: Port device team_slave_0 added
[ 1230.723238][T19462] team0: Port device team_slave_1 added
[ 1231.081200][T19462] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1231.081218][T19462] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1231.081242][T19462] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1231.083711][T19462] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1231.083727][T19462] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1231.083751][T19462] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1231.394486][ T5809] Bluetooth: hci0: command tx timeout
[ 1232.589514][ T5113] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[ 1232.596314][ T5113] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[ 1233.047568][ T5113] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[ 1233.101552][ T5113] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[ 1233.177089][ T5113] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[ 1233.809879][T19462] hsr_slave_0: entered promiscuous mode
[ 1233.811395][T19462] hsr_slave_1: entered promiscuous mode
[ 1233.812767][T19462] debugfs: 'hsr0' already exists in 'hsr'
[ 1233.812790][T19462] Cannot create hsr debugfs directory
[ 1234.423015][T19499] chnl_net:caif_netlink_parms(): no params data found
[ 1234.646522][T19499] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1234.646726][T19499] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1234.647042][T19499] bridge_slave_0: entered allmulticast mode
[ 1234.670933][T19499] bridge_slave_0: entered promiscuous mode
[ 1234.674793][T19499] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1234.674989][T19499] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1234.675242][T19499] bridge_slave_1: entered allmulticast mode
[ 1234.895550][T19499] bridge_slave_1: entered promiscuous mode
[ 1235.417597][ T5113] Bluetooth: hci7: command tx timeout
[ 1236.362382][T19499] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1236.366450][T19499] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1236.614070][T19499] team0: Port device team_slave_0 added
[ 1236.648108][T19499] team0: Port device team_slave_1 added
[ 1237.353638][T19499] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1237.353657][T19499] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1237.353682][T19499] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1237.497825][ T5113] Bluetooth: hci7: command tx timeout
[ 1237.593033][T19499] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1237.593049][T19499] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1237.593073][T19499] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1238.270546][T19499] hsr_slave_0: entered promiscuous mode
[ 1238.299537][T19499] hsr_slave_1: entered promiscuous mode
[ 1238.302434][T19499] debugfs: 'hsr0' already exists in 'hsr'
[ 1238.302459][T19499] Cannot create hsr debugfs directory
[ 1239.578492][ T5113] Bluetooth: hci7: command tx timeout
[ 1241.657516][ T5113] Bluetooth: hci7: command tx timeout
[ 1243.918109][ T1322] ieee802154 phy0 wpan0: encryption failed: -22
[ 1243.918179][ T1322] ieee802154 phy1 wpan1: encryption failed: -22
[ 1266.146461][ T5809] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[ 1266.171813][ T5809] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[ 1266.176913][ T5809] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[ 1266.840369][ T5809] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[ 1266.864714][ T5809] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[ 1268.932915][T19590] chnl_net:caif_netlink_parms(): no params data found
[ 1268.938922][ T5113] Bluetooth: hci8: command tx timeout
[ 1269.319492][T19590] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1269.319703][T19590] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1269.320009][T19590] bridge_slave_0: entered allmulticast mode
[ 1269.372026][T19590] bridge_slave_0: entered promiscuous mode
[ 1269.425863][T19590] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1269.425983][T19590] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1269.426274][T19590] bridge_slave_1: entered allmulticast mode
[ 1269.476767][T19590] bridge_slave_1: entered promiscuous mode
[ 1270.641518][T19590] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1270.646282][T19590] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1271.037392][ T5113] Bluetooth: hci8: command tx timeout
[ 1273.127312][ T5113] Bluetooth: hci8: command tx timeout
[ 1273.216244][T19590] team0: Port device team_slave_0 added
[ 1273.243285][T19590] team0: Port device team_slave_1 added
[ 1273.557172][T19590] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1273.557470][T19590] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1273.557499][T19590] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1273.610064][ T5113] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1
[ 1273.641275][ T5113] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9
[ 1273.645180][ T5113] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9
[ 1273.646387][ T5113] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4
[ 1273.653720][ T5113] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2
[ 1274.902669][T19590] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1274.902688][T19590] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1274.902715][T19590] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1275.182579][ T5113] Bluetooth: hci8: command tx timeout
[ 1275.448788][T19590] hsr_slave_0: entered promiscuous mode
[ 1275.450448][T19590] hsr_slave_1: entered promiscuous mode
[ 1275.451532][T19590] debugfs: 'hsr0' already exists in 'hsr'
[ 1275.451556][T19590] Cannot create hsr debugfs directory
[ 1275.738532][ T5113] Bluetooth: hci9: command tx timeout
[ 1276.869125][ T5113] Bluetooth: hci1: command 0x0406 tx timeout
[ 1277.316381][T19624] chnl_net:caif_netlink_parms(): no params data found
[ 1277.818113][ T5809] Bluetooth: hci9: command tx timeout
[ 1279.202659][T19624] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1279.215441][T19624] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1279.215831][T19624] bridge_slave_0: entered allmulticast mode
[ 1279.248725][T19624] bridge_slave_0: entered promiscuous mode
[ 1279.254555][T19624] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1279.254740][T19624] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1279.255065][T19624] bridge_slave_1: entered allmulticast mode
[ 1279.525376][T19624] bridge_slave_1: entered promiscuous mode
[ 1280.020537][ T5809] Bluetooth: hci9: command tx timeout
[ 1280.355996][T19624] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1280.372568][T19624] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1280.448959][T19624] team0: Port device team_slave_0 added
[ 1280.453522][T19624] team0: Port device team_slave_1 added
[ 1280.509635][T19624] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1280.509651][T19624] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1280.509676][T19624] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1280.512504][T19624] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1280.512519][T19624] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1280.512543][T19624] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1280.700997][T19624] hsr_slave_0: entered promiscuous mode
[ 1280.702659][T19624] hsr_slave_1: entered promiscuous mode
[ 1280.704097][T19624] debugfs: 'hsr0' already exists in 'hsr'
[ 1280.704122][T19624] Cannot create hsr debugfs directory
[ 1282.069200][ T5113] Bluetooth: hci9: command tx timeout
[ 1282.088965][ T5113] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1
[ 1282.120182][ T5113] Bluetooth: hci10: unexpected cc 0x1003 length: 249 > 9
[ 1282.122133][ T5113] Bluetooth: hci10: unexpected cc 0x1001 length: 249 > 9
[ 1282.125703][ T5113] Bluetooth: hci10: unexpected cc 0x0c23 length: 249 > 4
[ 1282.127182][ T5113] Bluetooth: hci10: unexpected cc 0x0c38 length: 249 > 2
[ 1284.246954][T19650] chnl_net:caif_netlink_parms(): no params data found
[ 1284.297617][ T5809] Bluetooth: hci10: command tx timeout
[ 1284.469185][T19650] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1284.469353][T19650] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1284.469641][T19650] bridge_slave_0: entered allmulticast mode
[ 1284.472095][T19650] bridge_slave_0: entered promiscuous mode
[ 1284.475759][T19650] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1284.475952][T19650] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1284.476221][T19650] bridge_slave_1: entered allmulticast mode
[ 1284.549624][T19650] bridge_slave_1: entered promiscuous mode
[ 1284.621219][T19650] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1284.625097][T19650] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1284.685444][T19650] team0: Port device team_slave_0 added
[ 1284.695822][T19650] team0: Port device team_slave_1 added
[ 1284.742461][T19650] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1284.742478][T19650] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1284.742501][T19650] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1284.744935][T19650] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1284.744951][T19650] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1284.744974][T19650] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1284.905733][T19650] hsr_slave_0: entered promiscuous mode
[ 1284.913521][T19650] hsr_slave_1: entered promiscuous mode
[ 1284.914772][T19650] debugfs: 'hsr0' already exists in 'hsr'
[ 1284.914796][T19650] Cannot create hsr debugfs directory
[ 1285.827779][T19674] netlink: 28 bytes leftover after parsing attributes in process `syz.6.4233'.
[ 1285.828408][T19674] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[ 1285.828629][T19674] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[ 1286.377634][ T5113] Bluetooth: hci10: command tx timeout
[ 1286.801974][T19682] netlink: 140 bytes leftover after parsing attributes in process `syz.6.4235'.
[ 1287.017462][ T5113] Bluetooth: hci4: command 0x0406 tx timeout
[ 1287.602946][T19684] netlink: 28 bytes leftover after parsing attributes in process `syz.6.4236'.
[ 1287.603801][T19684] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[ 1288.076635][   T37] kauditd_printk_skb: 1 callbacks suppressed
[ 1288.076652][   T37] audit: type=1326 audit(2000001079.909:2249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19685 comm="syz.6.4237" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1527d6c799 code=0x7ffc0000
[ 1288.187442][   T37] audit: type=1326 audit(2000001079.939:2250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19685 comm="syz.6.4237" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1527d6c799 code=0x7ffc0000
[ 1288.457763][ T5113] Bluetooth: hci10: command tx timeout
[ 1288.690617][   T37] audit: type=1326 audit(2000001080.529:2251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19685 comm="syz.6.4237" exe="/root/syz-executor" sig=0 arch=c000003e syscall=314 compat=0 ip=0x7f1527d6c799 code=0x7ffc0000
[ 1288.690667][   T37] audit: type=1326 audit(2000001080.529:2252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19685 comm="syz.6.4237" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1527d6c799 code=0x7ffc0000
[ 1288.690704][   T37] audit: type=1326 audit(2000001080.529:2253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19685 comm="syz.6.4237" exe="/root/syz-executor" sig=0 arch=c000003e syscall=259 compat=0 ip=0x7f1527d6c799 code=0x7ffc0000
[ 1288.690744][   T37] audit: type=1326 audit(2000001080.529:2254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19685 comm="syz.6.4237" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1527d6c799 code=0x7ffc0000
[ 1288.690780][   T37] audit: type=1326 audit(2000001080.529:2255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19685 comm="syz.6.4237" exe="/root/syz-executor" sig=0 arch=c000003e syscall=322 compat=0 ip=0x7f1527d6c799 code=0x7ffc0000
[ 1288.690816][   T37] audit: type=1326 audit(2000001080.529:2256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19685 comm="syz.6.4237" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1527d6c799 code=0x7ffc0000
[ 1289.088910][   T37] audit: type=1326 audit(2000001080.529:2257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19685 comm="syz.6.4237" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7f1527d6c799 code=0x7ffc0000
[ 1289.806362][   T37] audit: type=1326 audit(2000001080.929:2258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19685 comm="syz.6.4237" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f1527d6c502 code=0x7ffc0000
[ 1290.537598][ T5809] Bluetooth: hci10: command tx timeout
[ 1292.855106][T19699] netlink: 32 bytes leftover after parsing attributes in process `syz.6.4240'.
[ 1293.072286][ T5113] Bluetooth: hci11: unexpected cc 0x0c03 length: 249 > 1
[ 1293.124058][ T5113] Bluetooth: hci11: unexpected cc 0x1003 length: 249 > 9
[ 1293.147097][ T5113] Bluetooth: hci11: unexpected cc 0x1001 length: 249 > 9
[ 1293.326018][ T5113] Bluetooth: hci11: unexpected cc 0x0c23 length: 249 > 4
[ 1293.655849][ T5113] Bluetooth: hci11: unexpected cc 0x0c38 length: 249 > 2
[ 1293.877322][   T37] kauditd_printk_skb: 3 callbacks suppressed
[ 1293.896860][   T37] audit: type=1326 audit(2000001085.689:2262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19701 comm="syz.6.4241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1527d6c799 code=0x7ffc0000
[ 1293.896946][   T37] audit: type=1326 audit(2000001085.699:2263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19701 comm="syz.6.4241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1527d6c799 code=0x7ffc0000
[ 1293.896994][   T37] audit: type=1326 audit(2000001085.719:2264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19701 comm="syz.6.4241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=314 compat=0 ip=0x7f1527d6c799 code=0x7ffc0000
[ 1293.897045][   T37] audit: type=1326 audit(2000001085.729:2265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19701 comm="syz.6.4241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1527d6c799 code=0x7ffc0000
[ 1293.907347][   T37] audit: type=1326 audit(2000001085.739:2266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19701 comm="syz.6.4241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1527d6c799 code=0x7ffc0000
[ 1293.947340][   T37] audit: type=1326 audit(2000001085.759:2267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19701 comm="syz.6.4241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=259 compat=0 ip=0x7f1527d6c799 code=0x7ffc0000
[ 1293.947395][   T37] audit: type=1326 audit(2000001085.769:2268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19701 comm="syz.6.4241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1527d6c799 code=0x7ffc0000
[ 1293.967378][   T37] audit: type=1326 audit(2000001085.799:2269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19701 comm="syz.6.4241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1527d6c799 code=0x7ffc0000
[ 1293.972433][   T37] audit: type=1326 audit(2000001085.809:2270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19701 comm="syz.6.4241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=322 compat=0 ip=0x7f1527d6c799 code=0x7ffc0000
[ 1294.266921][   T37] audit: type=1326 audit(2000001086.109:2271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19701 comm="syz.6.4241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1527d6c799 code=0x7ffc0000
[ 1295.737872][ T5809] Bluetooth: hci11: command tx timeout
[ 1297.431816][T17956] Bluetooth: hci5: command 0x0406 tx timeout
[ 1297.867470][ T5113] Bluetooth: hci11: command tx timeout
[ 1298.801276][T19703] chnl_net:caif_netlink_parms(): no params data found
[ 1299.906235][ T5113] Bluetooth: hci11: command tx timeout
[ 1300.097093][T19703] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1300.097549][T19703] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1300.097919][T19703] bridge_slave_0: entered allmulticast mode
[ 1300.115207][T19703] bridge_slave_0: entered promiscuous mode
[ 1300.277951][T19703] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1300.278039][T19703] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1300.278328][T19703] bridge_slave_1: entered allmulticast mode
[ 1300.329956][T19703] bridge_slave_1: entered promiscuous mode
[ 1300.391003][T19719] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[ 1300.473695][T19703] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1300.486561][T19703] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1300.598416][T19703] team0: Port device team_slave_0 added
[ 1300.602828][T19703] team0: Port device team_slave_1 added
[ 1300.693663][T19703] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1300.693681][T19703] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1300.693706][T19703] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1300.696101][T19703] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1300.696116][T19703] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1300.696141][T19703] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1301.978398][ T5113] Bluetooth: hci11: command tx timeout
[ 1302.412177][T19703] hsr_slave_0: entered promiscuous mode
[ 1302.413305][T19703] hsr_slave_1: entered promiscuous mode
[ 1302.414051][T19703] debugfs: 'hsr0' already exists in 'hsr'
[ 1302.414067][T19703] Cannot create hsr debugfs directory
[ 1304.336694][T19734] netlink: 'syz.6.4246': attribute type 5 has an invalid length.
[ 1304.664508][T19736] netlink: 28 bytes leftover after parsing attributes in process `syz.6.4247'.
[ 1304.665047][T19736] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[ 1305.768018][ T1322] ieee802154 phy0 wpan0: encryption failed: -22
[ 1305.768089][ T1322] ieee802154 phy1 wpan1: encryption failed: -22
[ 1313.315338][T19759] netlink: 'syz.6.4255': attribute type 1 has an invalid length.
[ 1313.315379][T19759] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1314.023471][T19763] netlink: 8 bytes leftover after parsing attributes in process `syz.6.4257'.
[ 1314.024195][T19763] netlink: 8 bytes leftover after parsing attributes in process `syz.6.4257'.
[ 1315.460092][T19777] overlayfs: failed to clone upperpath
[ 1316.643351][T19783] netlink: 28 bytes leftover after parsing attributes in process `syz.6.4265'.
[ 1316.644007][T19783] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[ 1316.730958][T19785] Invalid source name
[ 1317.418442][    C1] IPv4: Oversized IP packet from 172.20.20.24
[ 1319.409402][T19793] tmpfs: Unknown parameter 'usrquota_block_hardlim'
[ 1324.229183][T19817] netlink: 'syz.6.4279': attribute type 5 has an invalid length.
[ 1324.445787][ T5809] Bluetooth: hci12: unexpected cc 0x0c03 length: 249 > 1
[ 1324.487633][ T5809] Bluetooth: hci12: unexpected cc 0x1003 length: 249 > 9
[ 1324.493867][ T5809] Bluetooth: hci12: unexpected cc 0x1001 length: 249 > 9
[ 1324.495360][ T5809] Bluetooth: hci12: unexpected cc 0x0c23 length: 249 > 4
[ 1324.496068][ T5809] Bluetooth: hci12: unexpected cc 0x0c38 length: 249 > 2
[ 1326.627527][ T5809] Bluetooth: hci12: command tx timeout
[ 1327.743340][T19834] workqueue: Failed to create a rescuer kthread for wq "bond1": -EINTR
[ 1327.912189][ T5809] Bluetooth: hci2: command 0x0406 tx timeout
[ 1328.707417][ T5113] Bluetooth: hci12: command tx timeout
[ 1329.633422][ T5809] Bluetooth: hci13: unexpected cc 0x0c03 length: 249 > 1
[ 1329.672554][ T5809] Bluetooth: hci13: unexpected cc 0x1003 length: 249 > 9
[ 1329.689742][ T5809] Bluetooth: hci13: unexpected cc 0x1001 length: 249 > 9
[ 1329.700595][ T5809] Bluetooth: hci13: unexpected cc 0x0c23 length: 249 > 4
[ 1329.711974][ T5809] Bluetooth: hci13: unexpected cc 0x0c38 length: 249 > 2
[ 1330.777389][ T5113] Bluetooth: hci12: command tx timeout
[ 1331.817434][ T5809] Bluetooth: hci13: command tx timeout
[ 1332.860561][ T5809] Bluetooth: hci12: command tx timeout
[ 1333.097343][ T5809] Bluetooth: hci6: command 0x0406 tx timeout
[ 1333.901831][ T5809] Bluetooth: hci13: command tx timeout
[ 1335.977573][ T5113] Bluetooth: hci13: command tx timeout
[ 1338.061768][ T5113] Bluetooth: hci13: command tx timeout
[ 1342.816920][ T5809] Bluetooth: hci14: unexpected cc 0x0c03 length: 249 > 1
[ 1342.855932][ T5809] Bluetooth: hci14: unexpected cc 0x1003 length: 249 > 9
[ 1342.872514][ T5809] Bluetooth: hci14: unexpected cc 0x1001 length: 249 > 9
[ 1342.902337][ T5809] Bluetooth: hci14: unexpected cc 0x0c23 length: 249 > 4
[ 1342.915722][ T5809] Bluetooth: hci14: unexpected cc 0x0c38 length: 249 > 2
[ 1345.017534][ T5113] Bluetooth: hci14: command tx timeout
[ 1345.807321][   T37] kauditd_printk_skb: 9 callbacks suppressed
[ 1345.807337][   T37] audit: type=1326 audit(2000001137.639:2281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19997 comm="syz.6.4298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1527d6c799 code=0x7ffc0000
[ 1345.807379][   T37] audit: type=1326 audit(2000001137.639:2282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19997 comm="syz.6.4298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1527d6c799 code=0x7ffc0000
[ 1345.807408][   T37] audit: type=1326 audit(2000001137.639:2283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19997 comm="syz.6.4298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=314 compat=0 ip=0x7f1527d6c799 code=0x7ffc0000
[ 1345.807436][   T37] audit: type=1326 audit(2000001137.639:2284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19997 comm="syz.6.4298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1527d6c799 code=0x7ffc0000
[ 1345.807464][   T37] audit: type=1326 audit(2000001137.639:2285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19997 comm="syz.6.4298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1527d6c799 code=0x7ffc0000
[ 1345.807493][   T37] audit: type=1326 audit(2000001137.639:2286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19997 comm="syz.6.4298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=259 compat=0 ip=0x7f1527d6c799 code=0x7ffc0000
[ 1345.807521][   T37] audit: type=1326 audit(2000001137.639:2287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19997 comm="syz.6.4298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1527d6c799 code=0x7ffc0000
[ 1345.807557][   T37] audit: type=1326 audit(2000001137.639:2288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19997 comm="syz.6.4298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=322 compat=0 ip=0x7f1527d6c799 code=0x7ffc0000
[ 1345.817392][   T37] audit: type=1326 audit(2000001137.649:2289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19997 comm="syz.6.4298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1527d6c799 code=0x7ffc0000
[ 1345.821164][   T37] audit: type=1326 audit(2000001137.659:2290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19997 comm="syz.6.4298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7f1527d6c799 code=0x7ffc0000
[ 1346.307503][   T38] INFO: task syz-executor:19150 blocked for more than 143 seconds.
[ 1346.307536][   T38]       Tainted: G             L      syzkaller #0
[ 1346.307543][   T38] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1346.307548][   T38] task:syz-executor    state:D stack:15968 pid:19150 tgid:19150 ppid:1      task_flags:0x400140 flags:0x00080002
[ 1346.307581][   T38] Call Trace:
[ 1346.307588][   T38]  <TASK>
[ 1346.307597][   T38]  __schedule+0x1553/0x5240
[ 1346.307748][   T38]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1346.307791][   T38]  ? rt_mutex_adjust_prio_chain+0x21fd/0x23f0
[ 1346.307803][   T38]  ? __pfx___schedule+0x10/0x10
[ 1346.307823][   T38]  rt_mutex_schedule+0x76/0xf0
[ 1346.307862][   T38]  rt_mutex_slowlock_block+0x508/0x680
[ 1346.307880][   T38]  ? rt_mutex_slowlock_block+0x2e9/0x680
[ 1346.307892][   T38]  rt_mutex_slowlock+0x2dc/0x7b0
[ 1346.307904][   T38]  ? rt_mutex_slowlock+0x1fd/0x7b0
[ 1346.307916][   T38]  ? __pfx_rt_mutex_slowlock+0x10/0x10
[ 1346.307936][   T38]  ? del_device_store+0xd7/0x370
[ 1346.308016][   T38]  ? del_device_store+0xd7/0x370
[ 1346.308034][   T38]  mutex_lock_nested+0x168/0x1d0
[ 1346.308048][   T38]  del_device_store+0xd7/0x370
[ 1346.308061][   T38]  ? sysfs_file_kobj+0x1a/0x230
[ 1346.308116][   T38]  ? __pfx_del_device_store+0x10/0x10
[ 1346.308130][   T38]  ? sysfs_file_kobj+0x1e4/0x230
[ 1346.308140][   T38]  ? sysfs_kf_write+0x166/0x260
[ 1346.308152][   T38]  ? __pfx_sysfs_kf_write+0x10/0x10
[ 1346.308162][   T38]  kernfs_fop_write_iter+0x3b0/0x540
[ 1346.308204][   T38]  vfs_write+0x629/0xba0
[ 1346.308277][   T38]  ? __pfx_vfs_write+0x10/0x10
[ 1346.308293][   T38]  ? kmem_cache_free+0x185/0x6b0
[ 1346.308367][   T38]  ? do_sys_openat2+0x14c/0x200
[ 1346.308387][   T38]  ksys_write+0x156/0x270
[ 1346.308403][   T38]  ? __pfx_ksys_write+0x10/0x10
[ 1346.308423][   T38]  do_syscall_64+0x14d/0xf80
[ 1346.308468][   T38]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1346.308493][   T38]  ? clear_bhb_loop+0x40/0x90
[ 1346.308506][   T38]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1346.308517][   T38] RIP: 0033:0x7f5fca17cfce
[ 1346.308534][   T38] RSP: 002b:00007ffcb85dec58 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1346.308546][   T38] RAX: ffffffffffffffda RBX: 000055556f9f8500 RCX: 00007f5fca17cfce
[ 1346.308554][   T38] RDX: 0000000000000001 RSI: 00007ffcb85dece0 RDI: 0000000000000005
[ 1346.308561][   T38] RBP: 00007f5fca25351c R08: 0000000000000000 R09: 0000000000000000
[ 1346.308567][   T38] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1346.308574][   T38] R13: 00007ffcb85dece0 R14: 00007f5fcaf64620 R15: 0000000000000003
[ 1346.308590][   T38]  </TASK>
[ 1346.308630][   T38] 
[ 1346.308630][   T38] Showing all locks held in the system:
[ 1346.308637][   T38] 3 locks held by rcuc/0/20:
[ 1346.308644][   T38] 4 locks held by rcuc/1/28:
[ 1346.308651][   T38] 1 lock held by khungtaskd/38:
[ 1346.308656][   T38]  #0: ffffffff8ddcb840 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x2e/0x180
[ 1346.308697][   T38] 6 locks held by kworker/u8:2/43:
[ 1346.308703][   T38]  #0: ffff88801aee1138 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x9ea/0x1830
[ 1346.308759][   T38]  #1: ffffc90000b47c40 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0xa25/0x1830
[ 1346.308785][   T38]  #2: ffffffff8f14b840 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xf4/0x800
[ 1346.308882][   T38]  #3: ffff88803e54d0d8 (&dev->mutex){....}-{4:4}, at: devlink_pernet_pre_exit+0x117/0x3f0
[ 1346.308945][   T38]  #4: ffff88803bc8a300 (&devlink->lock_key#26){+.+.}-{4:4}, at: devlink_pernet_pre_exit+0x129/0x3f0
[ 1346.308971][   T38]  #5: ffffffff8ddd1ab0 (rcu_state.barrier_mutex){+.+.}-{4:4}, at: rcu_barrier+0x4c/0x580
[ 1346.309009][   T38] 5 locks held by kworker/u8:6/763:
[ 1346.309045][   T38] 2 locks held by kworker/u8:13/2413:
[ 1346.309051][   T38]  #0: ffff888019c44938 ((wq_completion)events_unbound#2){+.+.}-{0:0}, at: process_scheduled_works+0x9ea/0x1830
[ 1346.309080][   T38]  #1: ffffc9000700fc40 ((work_completion)(&sub_info->work)){+.+.}-{0:0}, at: process_scheduled_works+0xa25/0x1830
[ 1346.309118][   T38] 2 locks held by getty/5559:
[ 1346.309124][   T38]  #0: ffff8880372560a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[ 1346.309191][   T38]  #1: ffffc90003e8b2e0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x462/0x13c0
[ 1346.309265][   T38] 6 locks held by kworker/0:4/5849:
[ 1346.309271][   T38]  #0: ffff8880320e8938 ((wq_completion)mld){+.+.}-{0:0}, at: process_scheduled_works+0x9ea/0x1830
[ 1346.309297][   T38]  #1: ffffc90004c47c40 ((work_completion)(&(&idev->mc_ifc_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0xa25/0x1830
[ 1346.309323][   T38]  #2: ffff888025c84628 (&idev->mc_lock){+.+.}-{4:4}, at: mld_ifc_work+0x2d/0xe70
[ 1346.309401][   T38]  #3: ffffffff8dc63060 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0x3c/0x420
[ 1346.309439][   T38]  #4: ffffffff8ddcb840 (rcu_read_lock){....}-{1:3}, at: __local_bh_disable_ip+0x3c/0x420
[ 1346.309465][   T38]  #5: ffff8880b88391f8 ((bh_lock)){+...}-{3:3}, at: napi_skb_cache_get+0xbf/0x410
[ 1346.309511][   T38] 7 locks held by kworker/u8:14/6645:
[ 1346.309521][   T38] 8 locks held by kworker/u8:20/10880:
[ 1346.309527][   T38]  #0: ffff888019c44138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x9ea/0x1830
[ 1346.309553][   T38]  #1: ffffc9000d88fc40 ((work_completion)(&(&nsim_dev->trap_data->trap_report_dw)->work)){+.+.}-{0:0}, at: process_scheduled_works+0xa25/0x1830
[ 1346.309579][   T38]  #2: ffff8880243b2300 (&devlink->lock_key#18){+.+.}-{4:4}, at: nsim_dev_trap_report_work+0x57/0xbc0
[ 1346.309617][   T38]  #3: ffff88805e237920 (&nsim_trap_data->trap_lock){+.+.}-{3:3}, at: nsim_dev_trap_report_work+0x1ad/0xbc0
[ 1346.309641][   T38]  #4: ffffffff8ddcb840 (rcu_read_lock){....}-{1:3}, at: rt_spin_lock+0x1e0/0x400
[ 1346.309669][   T38]  #5: ffffffff8dc63060 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0x3c/0x420
[ 1346.309694][   T38]  #6: ffffffff8ddcb840 (rcu_read_lock){....}-{1:3}, at: __local_bh_disable_ip+0x3c/0x420
[ 1346.309720][   T38]  #7: ffff8880b88391f8 ((bh_lock)){+...}-{3:3}, at: napi_skb_cache_get+0xbf/0x410
[ 1346.309748][   T38] 8 locks held by kworker/u8:11/17517:
[ 1346.309754][   T38]  #0: ffff888019c44138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x9ea/0x1830
[ 1346.309779][   T38]  #1: ffffc90006b0fc40 ((work_completion)(&(&nsim_dev->trap_data->trap_report_dw)->work)){+.+.}-{0:0}, at: process_scheduled_works+0xa25/0x1830
[ 1346.309805][   T38]  #2: ffff888025db2300 (&devlink->lock_key#20){+.+.}-{4:4}, at: nsim_dev_trap_report_work+0x57/0xbc0
[ 1346.309831][   T38]  #3: ffff888028874920 (&nsim_trap_data->trap_lock){+.+.}-{3:3}, at: nsim_dev_trap_report_work+0x1ad/0xbc0
[ 1346.309855][   T38]  #4: ffffffff8ddcb840 (rcu_read_lock){....}-{1:3}, at: rt_spin_lock+0x1e0/0x400
[ 1346.309877][   T38]  #5: ffffffff8dc63060 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0x3c/0x420
[ 1346.309902][   T38]  #6: ffffffff8ddcb840 (rcu_read_lock){....}-{1:3}, at: __local_bh_disable_ip+0x3c/0x420
[ 1346.309927][   T38]  #7: ffff8880b88391f8 ((bh_lock)){+...}-{3:3}, at: napi_skb_cache_get+0xbf/0x410
[ 1346.309957][   T38] 7 locks held by syz-executor/19088:
[ 1346.309964][   T38] 4 locks held by syz-executor/19150:
[ 1346.309970][   T38]  #0: ffff88803761a480 (sb_writers#7){.+.+}-{0:0}, at: vfs_write+0x22d/0xba0
[ 1346.309998][   T38]  #1: ffff8880346bb478 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x1df/0x540
[ 1346.310031][   T38]  #2: ffff888025b2d0f8 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x232/0x540
[ 1346.310059][   T38]  #3: ffffffff8e9c78b8 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd7/0x370
[ 1346.310087][   T38] 4 locks held by syz-executor/19226:
[ 1346.310093][   T38]  #0: ffff88803761a480 (sb_writers#7){.+.+}-{0:0}, at: vfs_write+0x22d/0xba0
[ 1346.310120][   T38]  #1: ffff88806b405c78 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x1df/0x540
[ 1346.310145][   T38]  #2: ffff888025b2d0f8 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x232/0x540
[ 1346.310173][   T38]  #3: ffffffff8e9c78b8 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd7/0x370
[ 1346.310200][   T38] 4 locks held by syz-executor/19384:
[ 1346.310206][   T38]  #0: ffff88803761a480 (sb_writers#7){.+.+}-{0:0}, at: vfs_write+0x22d/0xba0
[ 1346.310232][   T38]  #1: ffff88805e800078 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x1df/0x540
[ 1346.310258][   T38]  #2: ffff888025b2d0f8 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x232/0x540
[ 1346.310286][   T38]  #3: ffffffff8e9c78b8 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd7/0x370
[ 1346.310311][   T38] 4 locks held by syz-executor/19406:
[ 1346.310317][   T38]  #0: ffff88803761a480 (sb_writers#7){.+.+}-{0:0}, at: vfs_write+0x22d/0xba0
[ 1346.310344][   T38]  #1: ffff88802865ec78 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x1df/0x540
[ 1346.310370][   T38]  #2: ffff888025b2d0f8 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x232/0x540
[ 1346.310397][   T38]  #3: ffffffff8e9c78b8 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd7/0x370
[ 1346.310423][   T38] 4 locks held by syz-executor/19462:
[ 1346.310429][   T38]  #0: ffff88803761a480 (sb_writers#7){.+.+}-{0:0}, at: vfs_write+0x22d/0xba0
[ 1346.310456][   T38]  #1: ffff8880293fdc78 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x1df/0x540
[ 1346.310482][   T38]  #2: ffff888025b2d0f8 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x232/0x540
[ 1346.310509][   T38]  #3: ffffffff8e9c78b8 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd7/0x370
[ 1346.310535][   T38] 4 locks held by syz-executor/19499:
[ 1346.310541][   T38]  #0: ffff88803761a480 (sb_writers#7){.+.+}-{0:0}, at: vfs_write+0x22d/0xba0
[ 1346.310568][   T38]  #1: ffff8880aa8a2478 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x1df/0x540
[ 1346.310593][   T38]  #2: ffff888025b2d0f8 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x232/0x540
[ 1346.310620][   T38]  #3: ffffffff8e9c78b8 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd7/0x370
[ 1346.310646][   T38] 4 locks held by syz-executor/19590:
[ 1346.310652][   T38]  #0: ffff88803761a480 (sb_writers#7){.+.+}-{0:0}, at: vfs_write+0x22d/0xba0
[ 1346.310679][   T38]  #1: ffff88808eb8f478 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x1df/0x540
[ 1346.310704][   T38]  #2: ffff888025b2d0f8 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x232/0x540
[ 1346.310732][   T38]  #3: ffffffff8e9c78b8 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd7/0x370
[ 1346.310757][   T38] 4 locks held by syz-executor/19624:
[ 1346.310763][   T38]  #0: ffff88803761a480 (sb_writers#7){.+.+}-{0:0}, at: vfs_write+0x22d/0xba0
[ 1346.310790][   T38]  #1: ffff88805bf04878 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x1df/0x540
[ 1346.310815][   T38]  #2: ffff888025b2d0f8 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x232/0x540
[ 1346.310843][   T38]  #3: ffffffff8e9c78b8 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd7/0x370
[ 1346.310869][   T38] 4 locks held by syz-executor/19650:
[ 1346.310875][   T38]  #0: ffff88803761a480 (sb_writers#7){.+.+}-{0:0}, at: vfs_write+0x22d/0xba0
[ 1346.310902][   T38]  #1: ffff88809c88b478 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x1df/0x540
[ 1346.310928][   T38]  #2: ffff888025b2d0f8 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x232/0x540
[ 1346.310955][   T38]  #3: ffffffff8e9c78b8 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd7/0x370
[ 1346.310983][   T38] 4 locks held by syz-executor/19703:
[ 1346.310988][   T38]  #0: ffff88803761a480 (sb_writers#7){.+.+}-{0:0}, at: vfs_write+0x22d/0xba0
[ 1346.311015][   T38]  #1: ffff88805dee8878 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x1df/0x540
[ 1346.311045][   T38]  #2: ffff888025b2d0f8 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x232/0x540
[ 1346.311073][   T38]  #3: ffffffff8e9c78b8 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd7/0x370
[ 1346.311100][   T38] 5 locks held by syz-executor/19863:
[ 1346.311106][   T38] 2 locks held by syz-executor/19947:
[ 1346.311112][   T38]  #0: ffffffff8f14b840 (pernet_ops_rwsem){++++}-{4:4}, at: copy_net_ns+0x4f7/0x730
[ 1346.311136][   T38]  #1: ffffffff8f159ff8 (rtnl_mutex){+.+.}-{4:4}, at: ip_tunnel_init_net+0x2d7/0x840
[ 1346.311198][   T38] 1 lock held by syz.6.4298/20003:
[ 1346.311204][   T38] 1 lock held by modprobe/19998:
[ 1346.311211][   T38] 
[ 1346.311214][   T38] =============================================
[ 1346.311214][   T38] 
[ 1346.311224][   T38] NMI backtrace for cpu 1
[ 1346.311237][   T38] CPU: 1 UID: 0 PID: 38 Comm: khungtaskd Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1346.311252][   T38] Tainted: [L]=SOFTLOCKUP
[ 1346.311256][   T38] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1346.311262][   T38] Call Trace:
[ 1346.311268][   T38]  <TASK>
[ 1346.311272][   T38]  dump_stack_lvl+0xe8/0x150
[ 1346.311296][   T38]  nmi_cpu_backtrace+0x274/0x2d0
[ 1346.311337][   T38]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[ 1346.311358][   T38]  nmi_trigger_cpumask_backtrace+0x17a/0x300
[ 1346.311370][   T38]  sys_info+0x135/0x170
[ 1346.311406][   T38]  watchdog+0xfd9/0x1030
[ 1346.311432][   T38]  ? watchdog+0x21a/0x1030
[ 1346.311447][   T38]  kthread+0x388/0x470
[ 1346.311458][   T38]  ? __pfx_watchdog+0x10/0x10
[ 1346.311469][   T38]  ? __pfx_kthread+0x10/0x10
[ 1346.311480][   T38]  ret_from_fork+0x51e/0xb90
[ 1346.311500][   T38]  ? __pfx_ret_from_fork+0x10/0x10
[ 1346.311512][   T38]  ? __switch_to+0xc7d/0x1450
[ 1346.311534][   T38]  ? __pfx_kthread+0x10/0x10
[ 1346.311544][   T38]  ret_from_fork_asm+0x1a/0x30
[ 1346.311561][   T38]  </TASK>
[ 1346.311566][   T38] Sending NMI from CPU 1 to CPUs 0:
[ 1346.311621][    C0] NMI backtrace for cpu 0
[ 1346.311637][    C0] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1346.311659][    C0] Tainted: [L]=SOFTLOCKUP
[ 1346.311665][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1346.311675][    C0] RIP: 0010:pv_native_safe_halt+0xf/0x20
[ 1346.311698][    C0] Code: be 5d 02 e9 13 c4 03 00 cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 66 90 0f 00 2d 53 0c 27 00 fb f4 <c3> cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc 90 90 90 90 90
[ 1346.311713][    C0] RSP: 0000:ffffffff8da07dc0 EFLAGS: 00000242
[ 1346.311727][    C0] RAX: 0000000000dc89b5 RBX: ffffffff81994bed RCX: 0000000080000001
[ 1346.311738][    C0] RDX: 0000000000000001 RSI: ffffffff8d55f1e6 RDI: ffffffff8ba65e00
[ 1346.311750][    C0] RBP: ffffffff8da07eb0 R08: ffff8880b8833f1b R09: 1ffff110171067e3
[ 1346.311762][    C0] R10: dffffc0000000000 R11: ffffed10171067e4 R12: ffffffff8f6a30b0
[ 1346.311774][    C0] R13: 1ffffffff1b605d8 R14: 0000000000000000 R15: 0000000000000000
[ 1346.311786][    C0] FS:  0000000000000000(0000) GS:ffff88812633f000(0000) knlGS:0000000000000000
[ 1346.311800][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1346.311812][    C0] CR2: 00007f1525acfff8 CR3: 000000000dbba000 CR4: 00000000003526f0
[ 1346.311827][    C0] Call Trace:
[ 1346.311834][    C0]  <TASK>
[ 1346.311840][    C0]  default_idle+0x9/0x20
[ 1346.311861][    C0]  default_idle_call+0x72/0xb0
[ 1346.311882][    C0]  do_idle+0x1bd/0x500
[ 1346.311900][    C0]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1346.311921][    C0]  ? __pfx_do_idle+0x10/0x10
[ 1346.311944][    C0]  cpu_startup_entry+0x43/0x60
[ 1346.311962][    C0]  rest_init+0x2de/0x300
[ 1346.311978][    C0]  start_kernel+0x385/0x3d0
[ 1346.312130][    C0]  x86_64_start_reservations+0x24/0x30
[ 1346.312173][    C0]  x86_64_start_kernel+0x143/0x1c0
[ 1346.312190][    C0]  common_startup_64+0x13e/0x147
[ 1346.312216][    C0]  </TASK>
[ 1346.312595][   T38] Kernel panic - not syncing: hung_task: blocked tasks
[ 1346.312605][   T38] CPU: 1 UID: 0 PID: 38 Comm: khungtaskd Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1346.312619][   T38] Tainted: [L]=SOFTLOCKUP
[ 1346.312623][   T38] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1346.312629][   T38] Call Trace:
[ 1346.312633][   T38]  <TASK>
[ 1346.312638][   T38]  vpanic+0x56c/0xa60
[ 1346.312656][   T38]  ? __pfx_vpanic+0x10/0x10
[ 1346.312675][   T38]  panic+0xc5/0xd0
[ 1346.312689][   T38]  ? __pfx_panic+0x10/0x10
[ 1346.312702][   T38]  ? printk_trigger_flush+0x117/0x180
[ 1346.312717][   T38]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1346.312733][   T38]  ? nmi_trigger_cpumask_backtrace+0x234/0x300
[ 1346.312750][   T38]  watchdog+0x1023/0x1030
[ 1346.312765][   T38]  ? watchdog+0x21a/0x1030
[ 1346.312780][   T38]  kthread+0x388/0x470
[ 1346.312791][   T38]  ? __pfx_watchdog+0x10/0x10
[ 1346.312802][   T38]  ? __pfx_kthread+0x10/0x10
[ 1346.312813][   T38]  ret_from_fork+0x51e/0xb90
[ 1346.312828][   T38]  ? __pfx_ret_from_fork+0x10/0x10
[ 1346.312840][   T38]  ? __switch_to+0xc7d/0x1450
[ 1346.312854][   T38]  ? __pfx_kthread+0x10/0x10
[ 1346.312864][   T38]  ret_from_fork_asm+0x1a/0x30
[ 1346.312881][   T38]  </TASK>
[ 1346.313206][   T38] Kernel Offset: disabled