last executing test programs:

18m51.783764507s ago: executing program 2 (id=3):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000000)={0x2, &(0x7f00000000c0)=[{0x30, 0x25, 0x2, 0x70ff}, {0x6, 0xfe, 0x0, 0xa1a}]}, 0x10)
sched_setscheduler(0x0, 0x2, 0x0)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
close(0xffffffffffffffff)
setsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x1c, &(0x7f0000000300)="caf628f80d3088b52cda049928b9fa990cd153fcdc999e976c3adfdfc2826459bd72d0e299559f697baec6755f6c738cdd18c0d178fe6a0db9046e2bb7aedf57bb1415a6e4b3421c46230b2baa623fb7ebc62d9614a4247c9c8344b4a7a44acbdd47f150b1eb5e81443ff59bb5934ac346cd0644fff837a3a666d8578241e54702822736148461d21af81a516d35cca5a8e88474b877a93dd37fdd2e77e228fb739cd6cdfea8e350882f9c2277949b3aa3fca7785a585a3b7a35a2f92c2bfbc1f8541f3458cb80c0fb2d6ef89cfdcd01f4ebb8e4eaaefe152b80a65fa07e4241de1868b377cab55a216e9c7a", 0xec)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-twofish-3way\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r5 = accept4(r4, 0x0, 0x0, 0x80800)
setsockopt$sock_int(r5, 0x1, 0x20, &(0x7f0000000940)=0x1000008, 0x4)
sendmmsg$alg(r5, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvfrom$packet(r5, 0x0, 0x0, 0x40, 0x0, 0x0)
close(r5)

18m46.758038602s ago: executing program 2 (id=7):
r0 = syz_open_dev$loop(&(0x7f0000000240), 0x7, 0x180862)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/image_size', 0xc2802, 0x0)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f0000000080)={r1, 0x0, {0x0, 0x0, 0x0, 0x4, 0x4000000000000ffd, 0x0, 0x0, 0x1e, 0xc, "faf98317e5a1149989fc8dbe43ea6acc96e3a2503dc3bd3fe37d58128bbad0099cebdc25f5ab60c9e6d680f985881a7beda9d69098c8b534464c516bdd8a0f35", "32d8cc26f7061a74df2cfc06c89f3d9e234b30c50997d3bef409ff2176ff7bfe55cd4a5d83cd4a524bd3ffe70c7f3f800b2f7b6aa54cc50a1fcaed1e831fa79a", "675237601a8ca5b07dcc141802c4dae4162e43ac61b7ad3300", [0xfffffffffffffce8, 0xa]}})
r2 = socket$pptp(0x18, 0x1, 0x2)
connect$pptp(r2, 0x0, 0x0)
close(0x3)
r3 = socket$phonet_pipe(0x23, 0x5, 0x2)
setsockopt$sock_int(r3, 0x1, 0xa, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0xffffffffffffffb3}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x400000bce)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000002000)=""/102400, 0x19000)
close(0xffffffffffffffff)
r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$SO_BINDTODEVICE(r5, 0x1, 0x19, 0x0, 0x0)
dup(r5)
madvise(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x14)
r6 = syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3)
ioctl$int_in(r6, 0x5421, 0x0)
connect$bt_rfcomm(r6, &(0x7f0000000080)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}, 0x4a}, 0xa)
close(r6)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_setup(0x1, &(0x7f00000016c0)=<r7=>0x0)
io_submit(r7, 0x1, &(0x7f0000000340)=[0x0])

18m31.819912574s ago: executing program 1 (id=16):
getsockopt$bt_hci(0xffffffffffffffff, 0x29, 0x31, 0x0, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000000c0)=@ipv6_newrule={0x30, 0x20, 0x200, 0x70bd27, 0x25dfdbfe, {0xa, 0x20, 0x10, 0x80, 0x24, 0x0, 0x0, 0x3, 0x1}, [@FRA_DST={0x14, 0x1, @rand_addr=' \x01\x00'}]}, 0x30}, 0x1, 0x0, 0x0, 0x40080}, 0x84)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x35, &(0x7f0000000040)=0x1, 0x4)
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x53)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
utimensat(0xffffffffffffffff, 0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r4}, &(0x7f0000bbdffc))
r5 = syz_init_net_socket$llc(0x1a, 0x801, 0x0)
bind$llc(r5, &(0x7f0000000080), 0x10)
listen(r5, 0x0)
setsockopt$inet6_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x29, 0x2a, &(0x7f0000000300)={0x0, {{0xa, 0xffff, 0x0, @mcast1, 0x10000008}}}, 0x88)
write$binfmt_elf32(0xffffffffffffffff, &(0x7f0000000280)=ANY=[], 0x98)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000680), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_PAUSE_GET(r6, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000001940)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r7, @ANYBLOB="01dfffffff9a26000000210000000c00018008000100", @ANYRES32], 0x20}, 0x1, 0x0, 0x0, 0x4000c00}, 0x0)
close(0xffffffffffffffff)

18m31.413889736s ago: executing program 32 (id=7):
r0 = syz_open_dev$loop(&(0x7f0000000240), 0x7, 0x180862)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/image_size', 0xc2802, 0x0)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f0000000080)={r1, 0x0, {0x0, 0x0, 0x0, 0x4, 0x4000000000000ffd, 0x0, 0x0, 0x1e, 0xc, "faf98317e5a1149989fc8dbe43ea6acc96e3a2503dc3bd3fe37d58128bbad0099cebdc25f5ab60c9e6d680f985881a7beda9d69098c8b534464c516bdd8a0f35", "32d8cc26f7061a74df2cfc06c89f3d9e234b30c50997d3bef409ff2176ff7bfe55cd4a5d83cd4a524bd3ffe70c7f3f800b2f7b6aa54cc50a1fcaed1e831fa79a", "675237601a8ca5b07dcc141802c4dae4162e43ac61b7ad3300", [0xfffffffffffffce8, 0xa]}})
r2 = socket$pptp(0x18, 0x1, 0x2)
connect$pptp(r2, 0x0, 0x0)
close(0x3)
r3 = socket$phonet_pipe(0x23, 0x5, 0x2)
setsockopt$sock_int(r3, 0x1, 0xa, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0xffffffffffffffb3}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x400000bce)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000002000)=""/102400, 0x19000)
close(0xffffffffffffffff)
r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$SO_BINDTODEVICE(r5, 0x1, 0x19, 0x0, 0x0)
dup(r5)
madvise(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x14)
r6 = syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3)
ioctl$int_in(r6, 0x5421, 0x0)
connect$bt_rfcomm(r6, &(0x7f0000000080)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}, 0x4a}, 0xa)
close(r6)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_setup(0x1, &(0x7f00000016c0)=<r7=>0x0)
io_submit(r7, 0x1, &(0x7f0000000340)=[0x0])

18m28.91832192s ago: executing program 1 (id=20):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0xb058}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
ioctl$KDGKBDIACR(0xffffffffffffffff, 0x4b4b, 0x0)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x0, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$inet6(0xa, 0x3, 0x6)
setsockopt$inet6_buf(r4, 0x29, 0x39, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
r5 = io_uring_setup(0x773d, &(0x7f0000000a40)={0x0, 0x0, 0x1000, 0x0, 0x3bc})
r6 = socket$rxrpc(0x21, 0x2, 0xa)
bind$rxrpc(r6, &(0x7f0000000000)=@in4={0x21, 0x4, 0x2, 0x10, {0x2, 0x0, @empty}}, 0x24)
listen(r6, 0x4)
close_range(r5, r6, 0x0)
bind$rxrpc(0xffffffffffffffff, &(0x7f0000000280)=@in4={0x21, 0x3, 0x2, 0x10, {0x2, 0x4e20, @remote}}, 0x24)
r7 = syz_open_dev$usbfs(&(0x7f0000000000), 0x1ff, 0x402)
ioctl$USBDEVFS_CONTROL(r7, 0xc0185500, 0x0)
sendmsg$nl_xfrm(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000780)=ANY=[@ANYBLOB="48010000100001000000000000000000e00000020000000000000000000000000a010101000000000000000000000000000000004e2100"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ffffdfff0000000000000000000000000000000033000000fe8000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fcffffffffffffff000000000000000000000000000004000000010000000000000000000a000000000000000000000048000100736861323536000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000048460000000000000000000000000008001d00000000000800220003"], 0x148}}, 0x0)

18m24.55580534s ago: executing program 1 (id=23):
socket(0x10, 0x3, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f00000026c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@bloom_filter={0x1e, 0x2, 0xda48, 0x470d, 0xcc40, 0xffffffffffffffff, 0x1, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x1, 0x3, 0x2}, 0x50)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="17000000000000000400"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2], 0x0}, 0x94)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r3 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000340)=0xffffffffffffffff, 0x4)
r4 = openat$sysfs(0xffffffffffffff9c, 0x0, 0x20040, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000580)=@bpf_tracing={0x1a, 0xb, &(0x7f00000002c0)=@raw=[@map_fd={0x18, 0x7}, @map_val={0x18, 0x2, 0x2, 0x0, r1, 0x0, 0x0, 0x0, 0xff}, @map_idx_val={0x18, 0x9, 0x6, 0x0, 0x6, 0x0, 0x0, 0x0, 0x4}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r2}}, @ldst={0x2, 0x2, 0x1, 0x0, 0xa, 0x30, 0x4}], &(0x7f00000001c0)='syzkaller\x00', 0xfffffff9, 0x0, 0x0, 0x41100, 0x1, '\x00', 0x0, 0x1a, r3, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000380)={0x1, 0x6, 0x0, 0xffff}, 0x10, 0x2e8c4, 0xffffffffffffffff, 0x0, &(0x7f0000000500)=[0xffffffffffffffff, r0, r4], 0x0, 0x10, 0x1}, 0x94)
socket$inet_udp(0x2, 0x2, 0x0)
mkdir(0x0, 0x168)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r5 = getpid()
sched_setscheduler(r5, 0x1, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r8 = syz_open_procfs(0x0, &(0x7f0000002400)='net/netstat\x00')
read$FUSE(r8, &(0x7f0000002500)={0x2020}, 0x2020)
syz_emit_ethernet(0x3a, &(0x7f0000000100)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x18, 0x0, @wg=@data={0x4, 0x3, 0x3}}}}}}, 0x0)
syz_emit_ethernet(0x3a, &(0x7f0000000480)={@multicast, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x11, 0x0, @loopback, @multicast1}, {0x0, 0x4e20, 0x18, 0x0, @wg=@data={0x4, 0x1, 0x1}}}}}}, 0x0)
bpf$BPF_PROG_DETACH(0x1c, &(0x7f0000000000)={@cgroup, r0, 0x2f}, 0x20)

18m22.016807259s ago: executing program 1 (id=26):
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB], 0x50)
openat$full(0xffffffffffffff9c, 0x0, 0x4800, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0x8, 0x0, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, r0}, 0x18)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x1, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000400)=@abs={0x0, 0x0, 0x404e24}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000ac0)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000786c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000fdffffff850000002d00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xa, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
inotify_add_watch(0xffffffffffffffff, 0x0, 0x42000773)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r5 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000300)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r5, 0x4018620d, &(0x7f0000000100)={0x73622a85, 0x0, 0x2})
syz_clone(0x20000000, 0x0, 0x0, 0x0, 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r5, 0xc0306201, 0x0)
socket(0x10, 0x2, 0x0)
write$UHID_INPUT(0xffffffffffffffff, &(0x7f0000001040)={0xf, {"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", 0x1000}}, 0x1006)

18m18.271598475s ago: executing program 1 (id=28):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8c}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000820004000000000000000c00850000000f00000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000180)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x1, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000400)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r4, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x41}}, 0x10)
listen(r4, 0x0)
r5 = socket$tipc(0x1e, 0x5, 0x0)
sendmsg$tipc(r5, &(0x7f00000002c0)={&(0x7f0000000080)=@nameseq={0x1e, 0x2, 0x2, {0x41}}, 0x10, 0x0}, 0x0)
connect$tipc(r5, &(0x7f0000000200)=@name={0x1e, 0x2, 0x3, {{0x40}, 0x2}}, 0x10)
accept4(r4, 0x0, 0x0, 0x0)
r6 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r6, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0))

18m16.118128961s ago: executing program 1 (id=30):
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000500)=ANY=[@ANYBLOB="dc05ee057ada978f61034835c9655cc8f5553beda9f730e151772060ac74b31cd73d524a83d2278bcacaf9ccf186df9ce51f99f2e19707bd19279dea3a989ab3c0bcffcfba1b5cdd4eb33ba40f0198d12e4108f58d9942e2a7a2efac7ed3d4a8ba0211be34077582823b52cea03e", @ANYRESHEX, @ANYRESDEC, @ANYRESDEC=0x0, @ANYRES32=0x0, @ANYRES8=0x0, @ANYRESHEX, @ANYRESDEC], 0x20)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000002700)=""/102392, 0x18ff8)
bind$llc(0xffffffffffffffff, &(0x7f0000000040)={0x1a, 0x0, 0x3, 0x54}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
listen(r1, 0x0)

17m59.949111857s ago: executing program 33 (id=30):
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000500)=ANY=[@ANYBLOB="dc05ee057ada978f61034835c9655cc8f5553beda9f730e151772060ac74b31cd73d524a83d2278bcacaf9ccf186df9ce51f99f2e19707bd19279dea3a989ab3c0bcffcfba1b5cdd4eb33ba40f0198d12e4108f58d9942e2a7a2efac7ed3d4a8ba0211be34077582823b52cea03e", @ANYRESHEX, @ANYRESDEC, @ANYRESDEC=0x0, @ANYRES32=0x0, @ANYRES8=0x0, @ANYRESHEX, @ANYRESDEC], 0x20)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000002700)=""/102392, 0x18ff8)
bind$llc(0xffffffffffffffff, &(0x7f0000000040)={0x1a, 0x0, 0x3, 0x54}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
listen(r1, 0x0)

17m28.064857205s ago: executing program 3 (id=75):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xb, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a00)={&(0x7f0000000d00)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x5c0c000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = mq_open(&(0x7f00005a1ffb)='eth0\x04', 0x42, 0x0, 0x0)
mq_notify(r4, &(0x7f0000000280)={0x0, 0xd, 0x0, @thr={0x0, 0x0}})
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
r6 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r6, 0x0)
close(0x3)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r6, 0x84, 0x6f, &(0x7f0000000200)={<r7=>0x0, 0x10, &(0x7f00000001c0)=[@in={0x2, 0x4e23, @rand_addr=0x64010100}]}, &(0x7f0000000140)=0x10)
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r6, 0x84, 0x7a, &(0x7f0000000340)={r7, @in6={{0xa, 0x3, 0x4, @mcast1}}}, &(0x7f0000000040)=0x84)
getsockopt$inet_sctp6_SCTP_STATUS(r5, 0x84, 0x7d, &(0x7f0000000700)={0x0, 0xfffff801, 0x11e2000, 0x62c, 0x100, 0x2, 0x2, 0x4, {0x0, @in={{0x2, 0x4e21, @multicast1}}, 0x3, 0xfffffffb, 0x3, 0x1000, 0x1}}, &(0x7f00000007c0)=0xb0)
r8 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r8, 0xc01864c6, &(0x7f0000000040)={0x0, 0x0, 0x800})
r9 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20042, 0x0)
r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0)
ioctl$KVM_SET_CLOCK(r10, 0x4048aec9, &(0x7f0000000040)={0x6, 0x4, 0x4, 0x0, 0x40004})
memfd_create(&(0x7f0000000480)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6\xb5\x00\x83y\xf3\xb2\xe6b \x00\x00\x00\x00\x00\x00\x01\x00\x00\xf7\xffg\xf5\x12oP\xfe\xe6\xd2SLR\xa1\x00\x00\x17\x1f$^\xe1\x00\x00\x00\x00\x00\x00\a\xff;\xeb\xf1\xd0\xce\xe5\x19\x12\b\x01\xd9\xae>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xdcc\x12.\x00\x00\x00\x00\x00\x00\r\x17\xa0D\x93.\xf25\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x05\x00\xfd\xc7\x00\x00\x00\x00\x91\x98\x15\xec\xdb\xaa\t9\x11\xb4h$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{a?\xd0\xe1{\x84\xb5\x82q\x1f37\x02\xb9\xb2\x9a3\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3J\xc2t\x96\xf8\xb1\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6Pr\xd4\xb5X\\\xdbD\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xba\xce\xb3%QF\x03\b\x9dh\xcb)\xf4f\x12[\xf9\r\t\xef{h\x826`M\xab\x1c\xb0*8\v\x1e\xcf\x03\xd3\xe8,?P\xac\x86\x13b\xa8D\x0f\x93\xab\x1c\x11\x00\xc5\x8d\x82\x9c\xd6B[\xc9\x00\xf5]\x81\xf3\xfd\x06M\xbe\xf9\xba\x9em\xe9\"\x03\x933P\x9b\xcc\x9b\f\xa7\x8f9\x988\tgC\xbc\xe0\xc5\xf4\xe0E%\xd9\xd8w\x00k\x042Y\xd9\xc5\xe59\xa95\xd1m\xd8hCuZYi\x10D\xb9\xe6\xff\x04K%yH\xe5\xf4\x8b\x03Ca8\x1e\xe9\\#\xf8O\fw\xd9\xf5cF\xcc\x1a2ex\xb4\x0fi$\x97\x81.\x02\x04m\xfbT2\xd4\"\x1e\xf0\x16\x0f\x97\xe6j}J\xca\xb8)f\xd5\xfd>\x9bU\xb0\x03Zt0\xc0b\xad\xef@o\xc1\xd6\x17T\f\xc30\xe2\x89\xf6L\x1b\xbb\x04\xd7\xd1\x06\xa0\xe9\xbah\xb6\xb2\xea/{Q\xca\x14\x13\x9ajWt\xc9\xecd\r\xd5)\x1d\xaf\n\xc0\xc1\x1d}DY\x95&\xe7\xf4U\xff\xcd&\a\x9f\x1bg\xe5|~A\xc5n\x12%ur\xa1\x9e`\xc2\x01\b,\x18\xaf\xccD\xdeag\xc6\xf3\xd6\x94\x9d\xae\x8bl\xee\x7fu\xe5bu\x84\x04\xb3@\xa1\xf7\xc6\x13\xf9I\xfa\x12\xfc\x96\",aT\xfd\"\x01\x92\xb1\xbf\x8a\x15\x88\xfd\x8f\x88\x87\x82\x9c:L\xd2\xb8\xfa5\x066\x82\xf3_LUr\xfa\xd2\x99d \x97c9G\x99\xe3\xcc$\x96cu\x97\xe7\xc7a\tm\xe8\x01\x00j\xf8\x98\x81\xe7\xf7\xab3F\xf4u\xdaav\xd21\v\x99HG\xd8\x84\n\x13\x9a\x85&\v\xfeU\x18\x17o6m\x84\xdfx\x1cPl\t#\xc1\x8e\xddW\x00'/675, 0x3)

17m22.690229285s ago: executing program 3 (id=79):
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000080), 0x2701, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r0, 0xc0285700, &(0x7f0000000000)={0xfffffffe, "94c408213d36be01d7000000000000e1100ad985544600", <r1=>0xffffffffffffffff})
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f00000001c0)='.\x00', &(0x7f0000000180), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESOCT=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
sched_setscheduler(0x0, 0x2, &(0x7f00000001c0)=0x8)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r4 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r5 = dup(r4)
write$UHID_INPUT(r5, &(0x7f0000000000)={0xfc, {"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", 0x1000}}, 0x1006)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6770c000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@file={0x0, './file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa'}, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
r8 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r8, 0x29, 0x23, &(0x7f0000000100)={{{@in6=@private2, @in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x0, 0x1, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in6=@ipv4={'\x00', '\xff\xff', @local}, 0x0, 0x32}, 0x0, @in=@multicast1, 0x0, 0x0, 0x3}}, 0xe8)
setsockopt$inet6_IPV6_XFRM_POLICY(r8, 0x29, 0x23, 0x0, 0x0)
r9 = syz_open_dev$tty1(0xc, 0x4, 0x1)
syz_open_dev$vim2m(&(0x7f0000000000), 0x7, 0x2)
r10 = dup(r9)
write$UHID_INPUT(r10, &(0x7f0000002080)={0xf, {"a2e3ad21e08eeb661b5e060987f70e06d038e7ff7fc6e5539b0d650e8b089b3f363b68090890e0878f0e1ac6e7049b3b46959b429a240d5b67f3988f7ef319520100ffe8d178708c523c921b1b5b31070d07440936cd3b78130daa61d8e8040000005802b77f07227227b7ba67e0e78657a6f5c2a874e62a9ccdc0d31a0c9f318c0da1993bd160e233df4a62179c6f30e065cd5b91cd0ae193973735b36d5b1b63dd1c00305d3f46635eb016d5b1dda98e2d749be7bd1df1fb3b231fdcdb5075a9aaa1b469c3090000000000000075271b286329d169934288fd789aa37d6e98b224fd44b65b31334ffc55cc82cd3ac32ecdb08ced6f9081b4dd0d8b38f3cd4498bee800490841bdb114f6b76383709d8f5c554336909fda039aec54a1236e80f6a8abadea7662496bddbb42be6bfb2f17959d1f416e56c71b1931870262f5e801119242ca026bfc821e7e7daf2451138e645bb80c617669314e2fbe70de98ec76a9e40dad47f36fd9f7d0d42a4b5f1185ccdcf16ff46295d8a0fa17713c5802630933a9a34af674f3f39fe23491237c08822dec110911e893d0a8c4f6777478bc360934b82910ff85bfd995083bba2987a67399eac427d145d546a40b9f6ff14ac488ec130fb3850a27af9544ae15ffffffffffffffff1243513f000000000000000a3621c56cea8d20fa911a0c41db6ebe8cac64f17679141d54b34bbc9963ac4f4bb3309603f1d4ab966203861b5b15a841f2b575a8bd0d78248ebe4d9a80002695104f674c2431dca141fae269cab70e9a66f3c3a9a63e9639e1f59c0ede26c6b5d74b078a5e15c31634e5ae098ce9ee70771aaa18119a867e14ffd9f9db2a7869d85864056526f889af43a6056080572286522449df466c632b3570243f989cce7cd9f465e41e610c20d80421d653a5520000008213b704c7fb082ff27590678ef9f190bae97909507041d860420c5664b27921b14dc1db8892fd32d0ad7bc946813591ad8deff4b05f60cea0da7710ac0000000000008000bea37ce0d0d4aa202f928f28381aab144a5dc29a04a6a2b83c7068ae949ed06e288e810bac9c76600025e19c907f6435f7590000008271a1f5f8528f227e79c1389dbdfffe492f21579d2c15b8c70cdb1c332d86d87341432750861ec2bc3451edca194b221cfec4603d276bbaa1dfa6d4fb8a48a76eafc9a9a0270e4c10d64cd5a62427264f2377fe763c43470833ac96c45f357cbbaba8f1b1fdcc7cbb61a7cdb9744ed7f9129aede2be21ccfdc4e9134f8684b3a4f354da9a795e96334e207dff70f1988037b2ed3aaf575c0b88d8f146684078416d59fdee5325928974d12dad99dac44c3f0008047096a44002bebc2420aed92fa9b6578b4779415d4ac01b75d5495c118045651cf41c2fc48b778efa5ea5677747430af4162b987b80c3e001cd34e5c92f76cc4c24eeb8bc4e9ac2aed9a53803ed0ca4ae3a9720d214060005ea6f1783e287b3bee96e3a726eafe2fdfaa78d1f48c13b64df07847754b8401207e78283cd0b20ceb360c7e658828163e2d25c4aa348561f927e88f63aa70e73a5e69b3df3495903f06572e1e007fa55a2999f596d067312f5779e8dbfdcf3427138f3d444d2639a10477f9bec4b0bbb6e3c04be68981f392203dd0ee3ef478e16dacfc5e3e03cf7ab8e3902f1b0ff034ef655b253ca509383815b1b6fc6522d4e4fdc11a48cf42d48604675fde2b94cf00500a2690891abf8ab9c015073014d9e08d4338b8780bdecd436cf0541359bafffa45237f104b96210403b2de9efed496f423500c7872c827467cfa5c4e72730d56bd068ed211cf847535edecb7b373f78b095b68441a34cb51682a8ae4d24ad0465f3927f889b813076a882e8020f06c4c2ba1dd5cac7c18876da865d258734dd73583df292892448039ef799cf0630becdcce04579b5561dc825ab829827945e020c1f67ee615feb6243378e0610060f02da93aec92a5de203717aa49c2d284acfabe262fccfcbb2b75a2183c46eb65ca8104e1b4da7fbb77ab2fc043aead87c32ab875ee7c2e7b7019c982cd3b43eaeb1a5fb135c0c7dcee8fe6516a328032f88c042891824659e9e94265c803b35ee5f83a2b210520106b8a358b50ab7a1fa89af9c251fe5294b3d1802d5676d95f160ec97b1ad94872cb2044642c37b4a6cc6c04effc1672db7e4b68d787d9a7a508ae54b3cd7369dde50e8c77d95a3d361c040babb171607caac2a3559ad4f75465f49c0d0ae3716db6e00cb11db4a5fade2a57c10238e204a67737c3b42aae501b20f7694a00f16e2d0174035a2c22656dc29880acebdbe8ddbd75c2f998d8ac2dfad2ba3a504767b6b45a45957f24d758ed024b3849c11d412a2a03b4047497022d9c30e23ef4df5c89644f48bb536f7945b59d7bcddff754413d135273ea8e75f22f216c6b9990ae71806f2c00b4025c48b75c0f73cdb9a7b8fa367b50028067e7f16f4dd569d462f4f19eacdb3ed70eeebb4e8b40427db6fe29068c0ca3d2414442e8f3a154704b0e51bc664a137b26be719f4f7c9a5678a674dfc95df80b9ce375dd649c8c704e509bd88c8e63d8c7dd67071115c8982ba46af4d6adcc9f68a75b9397b035153faf46366e7205dd8d6f37525c1a0e94610dd94323f6c15d085197149bfd6655548cfd9c52c9711937f79abb1a124f1210465483cd3b2d78378cfb85ed82e7da0f6eb6d279f2ae455925d0f6f1ba571eba281f2a654fb39ddff3b484439ff158e7c5419e037f3e3ad038f2211f1033195563c7f93cd54b9094f226e783271e1e5a2a2c10712eab625d64931cd4ffe6738d97b9b5ef828ee9fb059fc01af0e79c1e14b1d25988c69a399567c1d93768f7971d31488b8658a20878b7c1dd7ba02fc42939dde3d4a3339a65d507dc59c51097b40517705da56e9ebf0afa53282bf86dbb58c548069ff6eb95aade7cc66d7bbef724779ca1f731b3346ff177050373d79ff7b3e7f9bc0c1b4b266a8878b90baaa039d3e3b63979ac3df6e6f4859afd50238c7547a39b60810938044ae185d2ba3e00a4e73676864ae090d0300000000000000b378dd4dd891e937c2ea5410e0513005000000000000003911fab964c271550027697b52160687461602f88df165d884b36ec2b6c25a2f33c715687e9d4afb96d6861aca47da73d6f3144345f48843dd014e5c5ad8fe995754bd9cf32fce1e31919c4b2082fb0a30b9deae84bed4b28045634073c9c58c89d9e99c81769177c6d594f88a4facfd4c735a20307c737afa2d60399473296b831dbd933d93994ba3064279b10ea0c5833f41f157ea2302993dbe433b1aa3a3766d5439020484f4113c4c859465c3b415c3432f81db8719539d5bf372aaaea1cc43a6c5cbe59758bfee2916580dac4b008e595f437491d87abed02cefcd9db53d94d02daee67918e5d678746383074c6bc1050000002f7809959bc048850613d17ca51055f2f416a44fe180d2d50c312cca7cb14a2bdc331f57a9817139a206fc76957227ffff2de20a4b8e3737fbb42913777c06376f799eba367e21f94ca598705f5dcb767d6f0900d6b0f6095e53c4c4234d0c1fbe434f6ab8f43c0013ee93b83946ee7759e89d7bdd1a32d7b311711b757fe43c06d21a35810d8fe98b27faea8aa12bc8716eefc5c97c45ac33eeec964c5214bc3a9359bdea1cccab94f15e36319cb34ebcacedb82c2ed3de5a8a8f0011e8f74e82d7f96093530e76692839d7961939adfdeeeaff19d11efcafb6d546fef271e89d6cc2389e81ff58cefcce3fbf4625a7e7de40e42e07b3c7340002000000000000f288a4510de03dab19d26285eda89156d50dd385a60333ba5bbf5d77cd7007ad1519ad5470de3dd6d6080cafccf8a97406bb6b68a1f0c4549820a73c880f475f732ae00398e8bd1f4108b7807fb33b72685ec37a2d3f766413a60459516246e5a1d998a2017aef0948a68cf255315ab80dd349e891aef595dc4d470e8ac32a308e15fc37d06aeac289c0523f483e1ff7408c6087f1ab652f2ef91d4f2b01987b0f46da034e5c3f745a7ee8101a3934c54e24b48ec0275e2d0687dc746b0827cbf652f406c6b95f2722e58c05f752ce2126596e1cd7655b904801784c416b22f73d324678e2724f43f1fe687c7e8a60c28b82b6528341b648cdd56fed7cdcbb1575912d5ecd36dea3bca0b7427d8392c6289455e8f8d2ab2242729251ae033a9e02210e62df0546a74b333a1c48f95fd54acb5741259e8c5488efeee327415cc19451432c6f14c27693102a3cd84857cd6586fc5ca9a93eb0145fac0662ff86107f998a8ef7df8aa14046c55b03d3d47f88a8d60f7774a2ee08758897fb411a94b3c2fc5d5f0da42c0456ec015f08e5247d33ae2d35603ff8454c16f8342856935125102bb784ed7148b6ce431b63ee356b0c785f2f47b90e29389f22fc5b59a70efaea2bd40195af4486220d702e30bfc43c10ec23ea6283994a7dde4dcb61fea6b651fb1d62458d0741a12830052fcc460db043afe525629b40d7cee458e4cb5e930ed624806c43a006e39336d07c2b8081c128ad2706f48261f7897484c297a1a6613bc18f5a38d442768af38041efe03d152ef95ff569e76db2391f4509d7f339d92fdb4a89364949da398000000000000000d80a4fe654578376e599aff3565b1d531f30912b9945030b81ea9935fd46edb44a78f615255490a4b621501f2a9e4d24624c4dac9274118c67584f5d374755534d7f68f679c4ff516a9cc8036cbd65868fcb2bf1cb9aea4e05df72279fdb0d2b9e935c5af3cf474bed79dfc248c1f5aea4b8b32c5d295e57079d0fe662a46b7f71cd47744db86c50b704c971d90295c7b2c7439a2d78ccfa79b5fc2bff6bbf840262bf89394b3e0691953264d2700c838fa2c7b3425260f59554e502dcea39cb313b0000000000004ca7c12f45858d6284ca6270d6b2f0e58fded8a7b4a302a97bc641df07720ba2b26bbfcc807ca0abb1b44322269c21c5ec68cb068ea88067d905ea917bb03eefdaebdeabf2d0dce80997c915c8949de992587c2cb5fe36d7d3e5db21b094b8b77940b5f07722e47a08d367e5f84c96ec664b72934b99b3109af65d77e86abd6859cddf4bbae1f0930462df15fddbc48562ea3511a8065ef028cf12f14dcf6ebecd8d884836174faf1aa609e5f1ee1162dfa13bdc1fa7cfaadba85c72e9758f03a755d0be53f8d2a1dfb1c68cc164b0a0780d971a96ea2c4d4ca0398c2235980a9307b3d5bd3b01faffd0a5dbed2881a9700af561ac8c6b00000000000000f96f06817fb903729a7db6ff957697c9ede7885d94ffb0969be0daf60af93109eb1dee72e4363f51af62af6fb2a6df3bec89822a7a0b678058fa3fef86faec216eb6992162f8dcbf719c148cd2f9c55f4901203a9a8a2c3e90f3943dbc10360a1a49700d1dfbf66d69f6fbaf506c8bcce8bb0d872a02238926407a4eddd5d0fc5a752f90000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000400", 0x1000}}, 0x1006)

17m19.659818707s ago: executing program 3 (id=82):
rt_sigprocmask(0x0, &(0x7f0000000100)={[0xfffffffffffe]}, 0x0, 0x8)
timer_create(0x9, 0x0, &(0x7f00000000c0)=<r0=>0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb}, 0x94)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
connect$bt_l2cap(0xffffffffffffffff, 0x0, 0x0)
rt_sigprocmask(0x2, 0x0, 0x0, 0x0)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x80000000000002, 0x0, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x4e23, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, 0x0, 0x0)
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, &(0x7f0000000100)='lp\x00', 0x3)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000380)=ANY=[@ANYBLOB="4c00000002060108000034e40000000000000000050001000600000005000400000000000900020073797a3100000080050005000200000011000300686173683a69702c706f7274"], 0x4c}}, 0x2)
sendmsg$IPSET_CMD_ADD(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000540)=ANY=[@ANYBLOB="540000000a0601020000000000000000020000000900020073797a310000000005000100070000002c0007800c00018008000140ffffffff0500070006000000060004404e2100000c00028008000140"], 0x54}, 0x1, 0x0, 0x0, 0x10000082}, 0x80)
timer_settime(0x0, 0x5, &(0x7f00000001c0)={{0x77359400}, {0x0, 0x3938700}}, 0x0)
timer_gettime(r0, &(0x7f0000000080))

17m17.427730963s ago: executing program 3 (id=83):
mbind(&(0x7f0000bde000/0x2000)=nil, 0x2000, 0x4001, 0x0, 0x7, 0x0)
syz_open_dev$amidi(&(0x7f0000000240), 0x3e0, 0xbbc80)
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
r1 = dup(r0)
socket$inet6_tcp(0xa, 0x1, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = signalfd(0xffffffffffffffff, &(0x7f00000002c0)={[0x7fffffff]}, 0x8)
unshare(0x400)
r3 = syz_open_procfs$namespace(0x0, &(0x7f00000000c0)='ns/time\x00')
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r3, 0x8004b706, 0x0)
r4 = gettid()
r5 = userfaultfd(0x80801)
ioctl$UFFDIO_API(r5, 0xc018aa3f, &(0x7f0000000080)={0xaa, 0x342})
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r7, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x2)
setsockopt$IP_VS_SO_SET_ADDDEST(0xffffffffffffffff, 0x0, 0x487, &(0x7f0000000080)={{0x3a, @rand_addr=0x64010102, 0x4e20, 0x1, 'rr\x00', 0x35, 0x7, 0x2b}, {@rand_addr=0x64010100, 0x5e22, 0x0, 0x80000001, 0x7ffffff7, 0x200004}}, 0x44)
sendmsg$TIPC_CMD_SET_LINK_TOL(r1, &(0x7f0000000340)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000280)={&(0x7f0000000440)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00032cbd7000fedbdf25010000000000000007410000001400cee3bde2017564703a73797a31000000000ec68a3b3f5d43cce30dc88bbf822b1c6b4e7737c33bebb0e751dac7e4cc1e8e38347512b1e86f3dc246b92460f12601493d51fb0c2ab04363123cdd996e3a28c4e10e39ec43690e37149efb86069b33f7343da141b95828d5060de1672b7128c8566f5f22c94f5816534533df2073acc4403c210096e6e089a785b8367103a0f4121e889f1eb137c1dbe991ab21d30015e7b5e4877989d8c8300f8ca1780b506e24ad7111adbd1108d08b45eb756d69d521c4ddbb2a743b054899bbf8d62375073a6d1fef13c2b4ee1132021a5f"], 0x30}, 0x1, 0x0, 0x0, 0x800}, 0x1)
ioctl$KVM_RUN(r8, 0xae80, 0x0)
timer_create(0x0, &(0x7f0000000180)={0x0, 0x11, 0x4, @tid=r4}, &(0x7f0000000080))
read$FUSE(r2, &(0x7f00000008c0)={0x2020}, 0xfffffef0)
timer_settime(0x0, 0x0, &(0x7f0000000300)={{0x0, 0x1}, {0x0, 0xe4c}}, 0x0)
openat$rdma_cm(0xffffff9c, &(0x7f00000001c0), 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80202, 0x0)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x20000000000, 0xfffffffffffffffd, 0x0, 0x0, 0x1000001000, 0x49}, 0x0, &(0x7f00000002c0)={0x3ff, 0x7, 0xffffffffffffffff, 0x9, 0x0, 0xf, 0x80000006}, 0x0, 0x0)

17m16.247704293s ago: executing program 3 (id=85):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec8500000075000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000480)=@base={0x15, 0x6, 0x1, 0x1, 0x400, 0x1, 0x135, '\x00', 0x0, 0xffffffffffffffff, 0x2}, 0x50)
bpf$MAP_DELETE_BATCH(0x1b, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFULNL_MSG_CONFIG(r2, &(0x7f0000000340)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000001c0)={&(0x7f0000000100)={0x14, 0x1, 0x4, 0x101, 0x0, 0x0, {0x1, 0x0, 0x5}}, 0x14}, 0x1, 0x0, 0x0, 0x4040000}, 0x0)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f00000003c0)={0x0, @in6={{0xa, 0x4e20, 0x0, @empty, 0x9}}, 0x0, 0x0, 0x3fc, 0x0, 0x32, 0x7}, 0x9c)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r3, 0x84, 0x13, 0x0, 0x0)
bind$inet6(r3, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x80000, @loopback}, 0x1c)
sendto$inet6(r3, &(0x7f0000847fff)='X', 0x34000, 0xe0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x3f, @loopback}, 0x1c)

17m14.930126664s ago: executing program 3 (id=86):
fspick(0xffffffffffffffff, 0x0, 0x710acacef034d5b6)
r0 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000080)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffc)
request_key(&(0x7f0000000040)='asymmetric\x00', &(0x7f0000001ffb)={'syz', 0x3}, &(0x7f0000001fee)='R\x10rust\xe3cusg\x91\xdedH\xe5+\xf0', r0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @broadcast})
creat(&(0x7f00000002c0)='./file0\x00', 0x51)
pipe2$9p(&(0x7f0000001900)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000500)=ANY=[@ANYBLOB="1500000065ffff048000000800395032303030"], 0x15)
r3 = dup(r2)
syz_usb_connect$hid(0x2, 0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
write$FUSE_BMAP(r3, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_NOTIFY_RETRIEVE(r3, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000440)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_readahead}], [{@euid_lt}], 0x6b}})
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000006c0)=ANY=[@ANYBLOB="4c00000002060108000034e400000000000000020500010006000000050004000000fe000900020073797a3100000000050005000200000012000300686173683a6e65742c706f7274"], 0x4c}}, 0x2)
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, &(0x7f0000000000)="6a0e6435f82b96e120e95ef657c67f3804ab3fd20f854380e05a23b6758439b1bcc2af4612a9ffbedef954ca796197b2ad54eb4aa5e40f7e0679b02c55444cd757567b124e1c78808a05eac11e93d4de32", 0x51)
sendmsg$IPSET_CMD_ADD(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=ANY=[@ANYBLOB="54000000090601080000000000000000050000000900020073797a310000000005000100070000002c000780060004404e21000005000700e30000000c00018008000140850101010c00028008000140"], 0x54}, 0x1, 0x0, 0x0, 0x10004893}, 0x80)
truncate(&(0x7f0000000240)='./file0\x00', 0x206b12)
fcntl$setownex(0xffffffffffffffff, 0xf, &(0x7f0000000100)={0x2})
openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xa2f00, 0xa3)
userfaultfd(0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x22}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0700000004"], 0x50)

16m59.039223062s ago: executing program 34 (id=86):
fspick(0xffffffffffffffff, 0x0, 0x710acacef034d5b6)
r0 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000080)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffc)
request_key(&(0x7f0000000040)='asymmetric\x00', &(0x7f0000001ffb)={'syz', 0x3}, &(0x7f0000001fee)='R\x10rust\xe3cusg\x91\xdedH\xe5+\xf0', r0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @broadcast})
creat(&(0x7f00000002c0)='./file0\x00', 0x51)
pipe2$9p(&(0x7f0000001900)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000500)=ANY=[@ANYBLOB="1500000065ffff048000000800395032303030"], 0x15)
r3 = dup(r2)
syz_usb_connect$hid(0x2, 0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
write$FUSE_BMAP(r3, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_NOTIFY_RETRIEVE(r3, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000440)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_readahead}], [{@euid_lt}], 0x6b}})
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000006c0)=ANY=[@ANYBLOB="4c00000002060108000034e400000000000000020500010006000000050004000000fe000900020073797a3100000000050005000200000012000300686173683a6e65742c706f7274"], 0x4c}}, 0x2)
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, &(0x7f0000000000)="6a0e6435f82b96e120e95ef657c67f3804ab3fd20f854380e05a23b6758439b1bcc2af4612a9ffbedef954ca796197b2ad54eb4aa5e40f7e0679b02c55444cd757567b124e1c78808a05eac11e93d4de32", 0x51)
sendmsg$IPSET_CMD_ADD(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=ANY=[@ANYBLOB="54000000090601080000000000000000050000000900020073797a310000000005000100070000002c000780060004404e21000005000700e30000000c00018008000140850101010c00028008000140"], 0x54}, 0x1, 0x0, 0x0, 0x10004893}, 0x80)
truncate(&(0x7f0000000240)='./file0\x00', 0x206b12)
fcntl$setownex(0xffffffffffffffff, 0xf, &(0x7f0000000100)={0x2})
openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xa2f00, 0xa3)
userfaultfd(0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x22}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0700000004"], 0x50)

16m53.30768599s ago: executing program 4 (id=106):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0xb058}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
ioctl$KDGKBDIACR(0xffffffffffffffff, 0x4b4b, 0x0)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x0, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$inet6(0xa, 0x3, 0x6)
setsockopt$inet6_buf(r4, 0x29, 0x39, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
r5 = io_uring_setup(0x773d, &(0x7f0000000a40)={0x0, 0x0, 0x1000, 0x0, 0x3bc})
r6 = socket$rxrpc(0x21, 0x2, 0xa)
bind$rxrpc(r6, &(0x7f0000000000)=@in4={0x21, 0x4, 0x2, 0x10, {0x2, 0x0, @empty}}, 0x24)
listen(r6, 0x4)
close_range(r5, r6, 0x0)
bind$rxrpc(0xffffffffffffffff, &(0x7f0000000280)=@in4={0x21, 0x3, 0x2, 0x10, {0x2, 0x4e20, @remote}}, 0x24)
r7 = syz_open_dev$usbfs(&(0x7f0000000000), 0x1ff, 0x402)
ioctl$USBDEVFS_CONTROL(r7, 0xc0185500, 0x0)
sendmsg$nl_xfrm(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000780)=ANY=[@ANYBLOB="48010000100001000000000000000000e00000020000000000000000000000000a010101000000000000000000000000000000004e2100"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ffffdfff0000000000000000000000000000000033000000fe8000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fcffffffffffffff000000000000000000000000000004000000010000000000000000000a000000000000000000000048000100736861323536000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000048460000000000000000000000000008001d00000000000800220003"], 0x148}}, 0x0)

16m51.378832245s ago: executing program 4 (id=107):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000000)={0x2, &(0x7f00000000c0)=[{0x30, 0x25, 0x2, 0x70ff}, {0x6, 0xfe, 0x0, 0xa1a}]}, 0x10)
sched_setscheduler(0x0, 0x2, 0x0)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
close(0xffffffffffffffff)
setsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x1c, &(0x7f0000000300)="caf628f80d3088b52cda049928b9fa990cd153fcdc999e976c3adfdfc2826459bd72d0e299559f697baec6755f6c738cdd18c0d178fe6a0db9046e2bb7aedf57bb1415a6e4b3421c46230b2baa623fb7ebc62d9614a4247c9c8344b4a7a44acbdd47f150b1eb5e81443ff59bb5934ac346cd0644fff837a3a666d8578241e54702822736148461d21af81a516d35cca5a8e88474b877a93dd37fdd2e77e228fb739cd6cdfea8e350882f9c2277949b3aa3fca7785a585a3b7a35a2f92c2bfbc1f8541f3458cb80c0fb2d6ef89cfdcd01f4ebb8e4eaaefe152b80a65fa07e4241de1868b377cab55a216e9c7a", 0xec)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-twofish-3way\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r5 = accept4(r4, 0x0, 0x0, 0x80800)
setsockopt$sock_int(r5, 0x1, 0x20, &(0x7f0000000940)=0x1000008, 0x4)
sendmmsg$alg(r5, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvfrom$packet(r5, 0x0, 0x0, 0x40, 0x0, 0x0)

16m49.769358968s ago: executing program 4 (id=109):
openat(0xffffffffffffff9c, &(0x7f0000000280)='.\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
r2 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TCSETSW2(r2, 0x402c542c, 0x0)

16m46.91781472s ago: executing program 4 (id=111):
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000500)=ANY=[@ANYBLOB="dc05ee057ada978f61034835c9655cc8f5553beda9f730e151772060ac74b31cd73d524a83d2278bcacaf9ccf186df9ce51f99f2e19707bd19279dea3a989ab3c0bcffcfba1b5cdd4eb33ba40f0198d12e4108f58d9942e2a7a2efac7ed3d4a8ba0211be34077582823b52cea03e", @ANYRESHEX, @ANYRESDEC, @ANYRESDEC=0x0, @ANYRES32=0x0, @ANYRES8=0x0, @ANYRESHEX, @ANYRESDEC], 0x20)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f00000003c0)={0x4, 0x80100008b}, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000002700)=""/102392, 0x18ff8)
r1 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bind$llc(r1, &(0x7f0000000040)={0x1a, 0x0, 0x3, 0x54}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r3)
r4 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r3, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @empty}, 0xf}, 0x1c)
listen(r4, 0x0)
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r5, &(0x7f0000000140)={0x2, 0x4e22, @local}, 0x10)
r6 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000380), r2)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="0100000000000000000001000000280001801400040000000000000000000000ffffac1414aa060001000a0080000800060003"], 0x3c}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000000)
r7 = syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000480)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="0100000000000000000002000000140001800500020001"], 0x28}, 0x1, 0x0, 0x0, 0x20044811}, 0x2000c094)
close(r1)

16m44.504861402s ago: executing program 4 (id=113):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="1801000001ffffeb00000000eb658e0d850000007b00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$inet6_udp(0xa, 0x2, 0x0)
openat$binfmt(0xffffffffffffff9c, 0x0, 0x42, 0x1ff)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r4, 0x6, 0x22, &(0x7f0000000080)=0x1, 0x4)
setsockopt$inet6_tcp_TCP_MD5SIG(r4, 0x6, 0xe, &(0x7f0000000300)={@in6={{0xa, 0x4e22, 0x0, @loopback, 0x7}}, 0x0, 0x0, 0x47, 0x0, "09be2271b78506e6dd938d324c415acd403a4480fd1afa34432bcdfa64d957e93efafd27ad06a6f589dc643f167cf0fcd370239aac93f6ded3c5032c96ead0cdc68474d402ab73e482db7ec1e0a57489"}, 0xd8)
shutdown(r4, 0x2)
bind$inet6(r4, &(0x7f0000000240)={0xa, 0x4e20, 0xf, @empty, 0x5}, 0x1c)
sendmmsg$inet6(r4, &(0x7f0000000b00)=[{{&(0x7f0000000100)={0xa, 0x4e20, 0x2, @empty, 0xfffffffe}, 0x1c, &(0x7f0000000580)=[{&(0x7f0000000280)="d5", 0x1}], 0x1}}], 0x1, 0x20080058)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, 0x0)
execveat$binfmt(0xffffffffffffff9c, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000500)=ANY=[@ANYBLOB="12010000000000207d1e5a2d000000000001090224"], 0x0)

16m40.337739011s ago: executing program 4 (id=116):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x88)
openat$fuse(0xffffffffffffff9c, 0x0, 0x42, 0x0)
r0 = socket$pptp(0x18, 0x1, 0x2)
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f05ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000002180)=ANY=[@ANYBLOB="9feb0100180000000000000010000000100000000500000004000000000d000e040000000000010000"], 0x0, 0x2d}, 0x28)
close(r0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TCSETSF(0xffffffffffffffff, 0x5404, &(0x7f0000000000)={0x0, 0xfffffffb, 0x0, 0x515f3157, 0x4, "78e1141009f593233bce41f20613341f43d01f"})
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x38, 0x10, 0x421, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x2240}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x8, 0x2, 0x0, 0x1, [@IFLA_GENEVE_COLLECT_METADATA={0x4}]}}}]}, 0x38}}, 0x810)
setreuid(0xffffffffffffffff, 0xee00)
setresuid(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
write$UHID_INPUT(0xffffffffffffffff, &(0x7f0000001040)={0xd, {"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", 0x1000}}, 0x1006)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)

16m24.775877459s ago: executing program 35 (id=116):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x88)
openat$fuse(0xffffffffffffff9c, 0x0, 0x42, 0x0)
r0 = socket$pptp(0x18, 0x1, 0x2)
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f05ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000002180)=ANY=[@ANYBLOB="9feb0100180000000000000010000000100000000500000004000000000d000e040000000000010000"], 0x0, 0x2d}, 0x28)
close(r0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TCSETSF(0xffffffffffffffff, 0x5404, &(0x7f0000000000)={0x0, 0xfffffffb, 0x0, 0x515f3157, 0x4, "78e1141009f593233bce41f20613341f43d01f"})
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x38, 0x10, 0x421, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x2240}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x8, 0x2, 0x0, 0x1, [@IFLA_GENEVE_COLLECT_METADATA={0x4}]}}}]}, 0x38}}, 0x810)
setreuid(0xffffffffffffffff, 0xee00)
setresuid(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
write$UHID_INPUT(0xffffffffffffffff, &(0x7f0000001040)={0xd, {"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", 0x1000}}, 0x1006)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)

6m9.703109391s ago: executing program 7 (id=624):
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000500)=ANY=[@ANYBLOB="dc05ee057ada978f61034835c9655cc8f5553beda9f730e151772060ac74b31cd73d524a83d2278bcacaf9ccf186df9ce51f99f2e19707bd19279dea3a989ab3c0bcffcfba1b5cdd4eb33ba40f0198d12e4108f58d9942e2a7a2efac7ed3d4a8ba0211be34077582823b52cea03e", @ANYRESHEX, @ANYRESDEC, @ANYRESDEC=0x0, @ANYRES32=0x0, @ANYRES8=0x0, @ANYRESHEX, @ANYRESDEC], 0x20)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f00000003c0)={0x4, 0x80100008b}, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000002700)=""/102392, 0x18ff8)
r1 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bind$llc(r1, &(0x7f0000000040)={0x1a, 0x0, 0x3, 0x54}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r3)
r4 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r3, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @empty}, 0xf}, 0x1c)
listen(r4, 0x0)
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r5, &(0x7f0000000140)={0x2, 0x4e22, @local}, 0x10)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000380), r2)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r6, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="0100000000000000000001000000280001801400040000000000000000000000ffffac1414aa060001000a0080000800060003"], 0x3c}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000000)
r8 = syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000480)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="0100000000000000000002000000140001800500020001"], 0x28}, 0x1, 0x0, 0x0, 0x20044811}, 0x2000c094)
close(r1)

6m8.145911361s ago: executing program 7 (id=625):
syz_open_procfs(0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x88)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
r0 = socket$pptp(0x18, 0x1, 0x2)
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f05ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000002180)=ANY=[@ANYBLOB="9feb0100180000000000000010000000100000000500000004000000000d000e0400000000000100000000"], 0x0, 0x2d}, 0x28)
close(r0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TCSETSF(0xffffffffffffffff, 0x5404, &(0x7f0000000000)={0x0, 0xfffffffb, 0x0, 0x515f3157, 0x4, "78e1141009f593233bce41f20613341f43d01f"})
r4 = socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x16, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b40000000000000079109012000000006300e0ff000000009500000000000000"], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xfffffffffffffc84}, 0x48)
sendmsg$nl_route(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x38, 0x10, 0x421, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x2240}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x8, 0x2, 0x0, 0x1, [@IFLA_GENEVE_COLLECT_METADATA={0x4}]}}}]}, 0x38}}, 0x810)
setreuid(0xffffffffffffffff, 0xee00)
setresuid(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
write$UHID_INPUT(0xffffffffffffffff, &(0x7f0000001040)={0xd, {"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", 0x1000}}, 0x1006)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)

6m5.942151863s ago: executing program 7 (id=627):
socketpair$unix(0x1, 0x2, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet6(0xa, 0x2, 0x0)
connect$inet6(r3, &(0x7f0000000140)={0xa, 0x4e24, 0x2aa, @mcast1, 0x3}, 0x1c)
getsockopt$sock_buf(r3, 0x1, 0x1c, 0x0, &(0x7f00000000c0))
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', 0x0, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'netdevsim0\x00', <r5=>0x0})
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0xe, 0x0, &(0x7f0000000b80)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r5, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000040), 0x10}, 0x94)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x43)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$batadv(&(0x7f0000000540), r6)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r6, 0x8933, &(0x7f0000000580)={'batadv0\x00', <r8=>0x0})
sendmsg$BATADV_CMD_SET_MESH(r6, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={0x1c, r7, 0x1, 0x70bd2a, 0x25dfdbfd, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r8}]}, 0x1c}, 0x1, 0x1000000, 0x0, 0x24008850}, 0x4004a040)
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000000)='tmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000180)='./file1\x00')
r9 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000280), r4)
sendmsg$TIPC_NL_BEARER_SET(r6, &(0x7f00000003c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000380)={&(0x7f00000002c0)={0x28, r9, 0x10, 0x70bd26, 0x25dfdbff, {}, [@TIPC_NLA_SOCK={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0xc}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x839}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x44014}, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)

6m4.378687701s ago: executing program 7 (id=629):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
syz_clone3(0x0, 0x0)
socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
socket$inet6(0xa, 0x2, 0x0)
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r3)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
connect$inet6(r4, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
setsockopt$inet6_IPV6_HOPOPTS(r4, 0x29, 0x36, 0x0, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101097, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYRES16=r2], 0x0, 0x40}, 0x28)
mount$bind(&(0x7f0000000580)='./file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x1b5008, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000540)='./file0\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x2145499, 0x0)
chroot(&(0x7f0000000080)='./file0/file0\x00')

6m2.989174927s ago: executing program 7 (id=631):
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/comedi4\x00', 0x181001, 0x0)
ioctl$COMEDI_CHANINFO(r0, 0x80306403, &(0x7f0000000080)={0x1, 0x0, 0x0, &(0x7f0000001180)})
bpf$MAP_CREATE(0x0, 0x0, 0x50)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x6, 0xfff}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
sched_setaffinity(0x0, 0xfffffed1, &(0x7f00000000c0)=0xa)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$vim2m(&(0x7f0000001cc0), 0x7fff, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r1, 0xc0145608, &(0x7f00000000c0)={0xb, 0x1, 0x4, 0x0, 0x7})
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001c80), 0x88000, 0x0)
ioctl$vim2m_VIDIOC_STREAMOFF(r1, 0x40045612, &(0x7f0000000000)=0x1)
r2 = syz_open_dev$vim2m(&(0x7f0000000000), 0x800, 0x2)
ioctl$vim2m_VIDIOC_S_CTRL(r2, 0xc008561c, &(0x7f0000000040)={0xf0f046})
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x3, 0xe, &(0x7f0000001040)=ANY=[@ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x41100}, 0x94)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000780)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0}, 0x50)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)=ANY=[@ANYBLOB="f80000003e000701feffffff00000000017c0000040042800c00018006000600800a0000d1000280cb00148008000d"], 0xf8}, 0x1, 0x0, 0x0, 0x4048011}, 0xc000)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
setsockopt$sock_attach_bpf(r5, 0x1, 0x32, &(0x7f0000000640), 0x4)
sendmsg$unix(r6, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0xc000090)
sendmsg$RDMA_NLDEV_CMD_RES_MR_GET(0xffffffffffffffff, 0x0, 0x10)
r7 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='cmdline\x00')
preadv(r7, &(0x7f0000000040)=[{&(0x7f0000000080)=""/4097, 0x1001}], 0x1, 0x300, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001c40)={&(0x7f00000010c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x9c, 0x9c, 0x7, [@volatile, @int={0x0, 0x0, 0x0, 0x1, 0x0, 0x21, 0x0, 0x1a, 0x4}, @union={0x10, 0x7, 0x0, 0x5, 0x0, 0x7fff, [{0x10, 0x4}, {0xe, 0x2, 0x6}, {0xc, 0xffffffff, 0x7}, {0xb, 0x3, 0x81}, {0x5, 0x2, 0x9}, {0x7, 0x1, 0x50}, {0x10, 0x0, 0x5}]}, @int={0xe, 0x0, 0x0, 0x1, 0x0, 0x9, 0x0, 0x53, 0x1}, @var={0xd, 0x0, 0x0, 0xe, 0x4}]}, {0x0, [0x61, 0x61, 0x2e, 0x0, 0x0]}}, &(0x7f0000001200)=""/84, 0xbb, 0x54, 0x0, 0x6, 0x10000, @value=r7}, 0x28)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000012c0)=ANY=[@ANYBLOB="09000000120000006d0500000200000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000400300610cf0ff00"/28], 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000200), &(0x7f00000004c0), 0x1000, r8}, 0x38)

5m57.695963432s ago: executing program 7 (id=636):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x40041, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0, 0x0, 0x4}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x102}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
bpf$MAP_CREATE(0x0, 0x0, 0x48)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e25}, 0x6e)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
socket(0x11, 0xa, 0x0)
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f00000002c0)='tmpfs\x00', 0x0, 0x0)
lchown(&(0x7f00000004c0)='./file1\x00', 0x0, 0xffffffffffffffff)
r3 = socket$netlink(0x10, 0x3, 0x4)
write(r3, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$devlink(&(0x7f0000000300), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_DEL(r4, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000340)={0x34, r5, 0x1, 0x0, 0x0, {}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}}, 0x0)

5m55.162522109s ago: executing program 36 (id=636):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x40041, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0, 0x0, 0x4}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x102}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
bpf$MAP_CREATE(0x0, 0x0, 0x48)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e25}, 0x6e)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
socket(0x11, 0xa, 0x0)
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f00000002c0)='tmpfs\x00', 0x0, 0x0)
lchown(&(0x7f00000004c0)='./file1\x00', 0x0, 0xffffffffffffffff)
r3 = socket$netlink(0x10, 0x3, 0x4)
write(r3, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$devlink(&(0x7f0000000300), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_DEL(r4, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000340)={0x34, r5, 0x1, 0x0, 0x0, {}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}}, 0x0)

35.412332311s ago: executing program 5 (id=1150):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0x3, &(0x7f0000000480)=ANY=[@ANYBLOB="180000b340d64800000000002e0000009500000000000000"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000001680)=ANY=[@ANYBLOB="1800000000030000000000000000000095"], &(0x7f0000001700)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x9}, 0x94)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='contention_begin\x00', r1}, 0x18)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000080)=ANY=[@ANYRES32=0x0, @ANYRES32=<r3=>r0, @ANYBLOB, @ANYRES32=0x0, @ANYRES64=0x0], 0x20)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='memory.swap.current\x00', 0x275a, 0x0)
r4 = io_uring_setup(0x1d8f, &(0x7f0000000100)={0x0, 0xe79a, 0x8000, 0x3, 0x214})
syz_io_uring_setup(0x1dfd, &(0x7f0000002480)={0x0, 0xb764, 0x1ffd, 0x20, 0x3a1, 0x0, r4}, 0x0, 0x0)
openat(0xffffffffffffff9c, 0x0, 0x143042, 0x8d)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095", @ANYRESHEX=r0, @ANYRES8=r1, @ANYRESDEC=r3, @ANYRES64=r2], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r5}, 0x18)
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r6 = syz_open_procfs(0x0, &(0x7f00000004c0)='net/rt_acct\x00')
r7 = socket(0x18, 0x4, 0x0)
connect$pppoe(r7, &(0x7f0000000740)={0x18, 0x0, {0x6, @empty, 'ip_vti0\x00'}}, 0x1e)
sendfile(r7, r6, 0x0, 0x8)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r8 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r8, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r9 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r9}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r10 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
listen(r10, 0x0)
accept4$x25(r10, 0x0, 0x0, 0x80800)
r11 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/devices.allow\x00', 0x2, 0x0)
write$cgroup_devices(r11, &(0x7f0000000400)=ANY=[@ANYBLOB='b *:* rm'], 0x9)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040))
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x1, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0xd, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000000), 0x10}, 0x94)

31.474463941s ago: executing program 5 (id=1166):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x24, 0x2b, 0xb, 0x0, 0x0, {0x5}, [@typed={0x8, 0x3, 0x0, 0x0, @uid}, @nested={0x8, 0x1, 0x0, 0x1, [@nested={0x4, 0x133}]}]}, 0x24}}, 0x8000)

31.250195955s ago: executing program 5 (id=1170):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x6, 0xc, &(0x7f0000000140)=ANY=[@ANYBLOB="18020000040000000000000000000000850000002c000000180100002020732500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007300000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000002300)={r0, 0x18000000000002a0, 0xd50, 0xffffffffffffff60, &(0x7f0000000380)="b9ff0300600d698cff9e14f08edd", 0x0, 0xe00, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x2, 0xffffffff}, 0x50)

29.46384473s ago: executing program 9 (id=1178):
r0 = syz_open_procfs$pagemap(0xffffffffffffffff, &(0x7f0000000080))
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet6_group_source_req(r1, 0x29, 0x2e, &(0x7f0000002d00)={0x1, {{0xa, 0x4e22, 0x1000, @mcast2, 0x3}}, {{0xa, 0x4e22, 0x5, @private0={0xfc, 0x0, '\x00', 0x1}, 0xb0}}}, 0x108)
r2 = gettid()
mknod(&(0x7f0000000180)='./file0\x00', 0x1ffa, 0x0)
acct(&(0x7f0000000140)='./file0\x00')
timer_create(0x0, &(0x7f0000000240)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f00000003c0)={0x4, 0x80100008b}, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000002700)=""/102392, 0x18ff8)
ioctl$PAGEMAP_SCAN(r0, 0xc0606610, &(0x7f0000000100)={0x60, 0x0, &(0x7f00001c9000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000040)=[{}], 0xb3c, 0x0, 0x0, 0x2, 0x0, 0x2})
r4 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000400), 0x101201, 0x0)
ioctl$IMADDTIMER(r4, 0x80044940, &(0x7f0000000600)=0x14)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(0xffffffffffffffff, 0x84, 0x66, &(0x7f0000000000)={<r6=>0x0, 0x8}, &(0x7f00000000c0)=0x8)
getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(r5, 0x84, 0x1b, &(0x7f0000000200)={r6, 0x12, "4194989ee151523275710aac7f553976cca1"}, &(0x7f00000002c0)=0x1a)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r7 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r7}, 0x10)
ioctl$IMADDTIMER(r4, 0x80044940, &(0x7f0000000080)=0x14)
syz_open_dev$sndpcmp(&(0x7f0000000000), 0x3, 0x183a00)
r8 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2c}}, 0x10)
ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)

29.297804233s ago: executing program 5 (id=1180):
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='ns\x00')
munmap(&(0x7f0000001000/0x3000)=nil, 0x3000)
getdents(r0, &(0x7f0000000ec0)=""/4096, 0x1000)

27.915198848s ago: executing program 5 (id=1183):
r0 = syz_usb_connect$hid(0x2, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0xb05, 0x17e0, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x5, 0x0, 0x1, {0x22, 0x5}}, {{{0x9, 0x5, 0x81, 0x3, 0x10, 0x0, 0x0, 0x6}}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000000380)={0x2c, &(0x7f0000000080)={0x40, 0x1a, 0x5, {0x5, 0x31, "63b0f7"}}, 0x0, 0x0, 0x0, 0x0}, 0x0)

27.833082044s ago: executing program 0 (id=1184):
r0 = socket$qrtr(0x2a, 0x2, 0x0)
ioctl$sock_inet_SIOCSIFPFLAGS(0xffffffffffffffff, 0x8934, &(0x7f0000000040)={'virt_wifi0\x00'})
ioctl(r0, 0x8b2c, &(0x7f0000000040))

27.768085024s ago: executing program 8 (id=1185):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000900)=@newtaction={0x8c, 0x30, 0xb, 0x5, 0x0, {}, [{0x78, 0x1, [@m_ct={0x74, 0x1, 0x0, 0x0, {{0x7}, {0x4c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x80000001, 0x0, 0x0, 0x0, 0x400}}, @TCA_CT_ACTION={0x6, 0x3, 0x19}, @TCA_CT_NAT_IPV4_MIN={0x8, 0x9, @rand_addr=0x64010101}, @TCA_CT_NAT_IPV4_MAX={0x8, 0xa, @initdev={0xac, 0x1e, 0x1, 0x0}}, @TCA_CT_MARK={0x8, 0x5, 0x9}, @TCA_CT_NAT_PORT_MIN={0x6, 0xd, 0x4e24}, @TCA_CT_NAT_PORT_MAX={0x6, 0xe, 0x4e22}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}]}]}, 0x8c}, 0x1, 0x0, 0x0, 0x8890}, 0x40)

27.587612764s ago: executing program 9 (id=1186):
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000040), 0x2c0800, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
fallocate(r0, 0x20, 0x8, 0x7fffffffffffffff)

27.5249721s ago: executing program 9 (id=1187):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDFONTOP_SET(r0, 0x4b72, &(0x7f0000000000)={0x4, 0x0, 0x19, 0x8, 0x47, &(0x7f0000000040)="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"})

27.445005221s ago: executing program 0 (id=1189):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
syz_clone3(0x0, 0x0)
socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000ac0)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000786c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000fdffffff850000002d00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xa, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
r4 = socket$inet6(0xa, 0x2, 0x0)
sendmsg$inet(r4, &(0x7f0000000340)={&(0x7f0000000100)={0x2, 0x4e22, @multicast2}, 0x10, 0x0, 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x20}, 0x4000)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r5 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r5)
ptrace$pokeuser(0x6, r5, 0x358, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$inet6(0xa, 0x3, 0xff)
r7 = dup2(r6, r6)
read$FUSE(r7, 0x0, 0x0)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
recvmsg(r8, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x200105d0}], 0x1}, 0x1f00)
sendmsg$tipc(r9, &(0x7f0000000240)={0x0, 0xfffffff5, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0xfffffdef}], 0x1}, 0x0)

27.426304495s ago: executing program 8 (id=1190):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)={0x3c, r1, 0x1, 0x0, 0x0, {0x7}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_FD={0x8}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4040000}, 0x0)

27.28029428s ago: executing program 9 (id=1192):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_IRQCHIP(r1, 0x4048aec9, &(0x7f0000000080)={0x3, 0x0, @ioapic={0x4, 0x1, 0xffffffff, 0x2, 0x0, [{0xf, 0x0, 0x0, '\x00', 0xe}, {0x5, 0xfd, 0x0, '\x00', 0xfc}, {0x1, 0x1, 0x7, '\x00', 0x3}, {0xfa, 0x8, 0x5, '\x00', 0xa0}, {0x5, 0x6, 0x0, '\x00', 0x4}, {0xa, 0x6, 0x5, '\x00', 0x40}, {0xb8, 0xda, 0xb, '\x00', 0x59}, {0xb, 0x3, 0xc, '\x00', 0x3}, {0x9, 0x7, 0x81, '\x00', 0x9}, {0x0, 0x6, 0x4, '\x00', 0x5}, {0xfe, 0x5, 0xd, '\x00', 0xa}, {0x2, 0xb, 0x45, '\x00', 0xc2}, {0xd2, 0xab, 0x8, '\x00', 0x3}, {0x1, 0x3, 0xfe, '\x00', 0x81}, {0x6, 0xfb, 0x1, '\x00', 0x2}, {0xfe, 0x0, 0x6, '\x00', 0xfd}, {0x1b, 0x9, 0x7, '\x00', 0x4}, {0x6, 0x7, 0x4, '\x00', 0x9}, {0xab, 0xef, 0x40, '\x00', 0x6}, {0x8, 0x10, 0x80, '\x00', 0x1}, {0x3, 0x3, 0x2, '\x00', 0x86}, {0x9, 0x3, 0xa, '\x00', 0x1}, {0x8a, 0x8e, 0x5, '\x00', 0x9}, {0x56, 0x1, 0x4, '\x00', 0x7b}]}})

25.566194069s ago: executing program 0 (id=1193):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x6, 0xfe, 0x0, 0xa1a}]}, 0x10)
sched_setscheduler(0x0, 0x2, 0x0)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
close(0xffffffffffffffff)
setsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x1c, &(0x7f0000000300)="caf628f80d3088b52cda049928b9fa990cd153fcdc999e976c3adfdfc2826459bd72d0e299559f697baec6755f6c738cdd18c0d178fe6a0db9046e2bb7aedf57bb1415a6e4b3421c46230b2baa623fb7ebc62d9614a4247c9c8344b4a7a44acbdd47f150b1eb5e81443ff59bb5934ac346cd0644fff837a3a666d8578241e54702822736148461d21af81a516d35cca5a8e88474b877a93dd37fdd2e77e228fb739cd6cdfea8e350882f9c2277949b3aa3fca7785a585a3b7a35a2f92c2bfbc1f8541f3458cb80c0fb2d6ef89cfdcd01f4ebb8e4eaaefe152b80a65fa07e4241de1868b377cab55a216e9c7a", 0xec)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-twofish-3way\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r5 = accept4(r4, 0x0, 0x0, 0x80800)
setsockopt$sock_int(r5, 0x1, 0x20, &(0x7f0000000940)=0x1000008, 0x4)
sendmmsg$alg(r5, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvfrom$packet(r5, 0x0, 0x0, 0x40, 0x0, 0x0)
close(r5)

25.427989836s ago: executing program 8 (id=1195):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020100000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a32000000001400000011001f"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)={{0x14, 0x10, 0x1, 0x0, 0x0, {0xa}}, [@NFT_MSG_NEWRULE={0x38, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x4}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_USERDATA={0x5, 0x7, 0x1, 0x0, "88"}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x5}}}, 0x60}}, 0x40)

23.979853252s ago: executing program 6 (id=1197):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_GET(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)={0x2c, r1, 0x1, 0x70bd28, 0x25dfdbff, {}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dummy0\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20008800}, 0x200488c0)

23.931988642s ago: executing program 8 (id=1198):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a010300000000000000000100fffd0900010073797a300000000040000000030a01020000000000000000010000000900030073797a3200000000140004800800024032658aeb08000140000000010900010073797a300000000044000000060a010400000000000001040100000008000b40000000000900010073797a30000000001c000480180001800d00010073796e70726f7879000000000400028014000000110001"], 0xcc}}, 0x0)
syz_emit_ethernet(0x46, &(0x7f00000002c0)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @local, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x2, 0x38, 0x0, 0x0, 0x2, 0x6, 0x0, @empty, @empty}, {{0x10, 0x4e26, 0x41424344, 0x41424344, 0x0, 0x0, 0x9, 0xc2, 0x1, 0x0, 0x0, {[@timestamp={0x8, 0xa, 0x4, 0xd}, @mss={0x2, 0x4, 0x5df4}, @sack={0x5, 0x2}]}}}}}}}, 0x0)

23.931552882s ago: executing program 9 (id=1199):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x47)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000140)=0x2, 0x4)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
sendmsg$sock(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000240)="5b63392b41febc78767f2c24eb5b020ff1b2de985295fe3c67b1be419eeb1d13daf99fe36f4d8aed1aef9d92bf5d5bbe250c5c01046ad658897799292f678394714da261743da93315daf6fd850c9a9f7b31", 0x52}], 0x1}, 0x8000)
sendto$inet(r0, &(0x7f0000000200)=';', 0x1, 0x20004810, 0x0, 0x0)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000340)=[@timestamp, @window={0x3, 0x6, 0x7}, @mss={0x2, 0x7}, @window={0x3, 0x0, 0x4}, @window={0x3, 0x8, 0x6}, @timestamp, @window={0x3, 0xfffe}, @sack_perm], 0x2000000000000061)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0), 0x4)
sendto$inet(r0, &(0x7f00000004c0)='<', 0x381, 0x805, 0x0, 0x0)

23.81056946s ago: executing program 5 (id=1200):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000600)={{0x14}, [@NFT_MSG_NEWRULE={0x60, 0x6, 0xa, 0x409, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x34, 0x4, 0x0, 0x1, [{0x30, 0x1, 0x0, 0x1, @lookup={{0xb}, @val={0x20, 0x2, 0x0, 0x1, [@NFTA_LOOKUP_SET_ID={0x8}, @NFTA_LOOKUP_SET={0x9, 0x1, 'syz1\x00'}, @NFTA_LOOKUP_SREG={0x8, 0x2, 0x1, 0x0, 0x8}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x88}}, 0x0)

23.648013753s ago: executing program 6 (id=1201):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKINFO_GET(r0, &(0x7f00000067c0)={0x0, 0x0, &(0x7f0000006780)={&(0x7f0000006680)={0x2c, r1, 0x1, 0x70bd28, 0x25dfdbfb, {}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x2}, 0x6000000)

23.621053062s ago: executing program 0 (id=1202):
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
ptrace$getregset(0x4204, r0, 0x202, &(0x7f0000000140)={&(0x7f0000000100)=""/32, 0x20})

23.542653583s ago: executing program 9 (id=1203):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)={{0x14}, [@NFT_MSG_NEWRULE={0x70, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2, 0x0, 0xfffe}, [@NFTA_RULE_EXPRESSIONS={0x44, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @ct={{0x7}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_CT_DREG={0x8, 0x1, 0x1, 0x0, 0x2}, @NFTA_CT_KEY={0x8, 0x2, 0x1, 0x0, 0x4}]}}}, {0x20, 0x1, 0x0, 0x1, @ct={{0x7}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_CT_KEY={0x8, 0x2, 0x1, 0x0, 0x11}, @NFTA_CT_DREG={0x8, 0x1, 0x1, 0x0, 0x2}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x5}}}, 0x98}}, 0x0)

23.368009397s ago: executing program 8 (id=1204):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000003000/0x3000)=nil, 0x3000, 0x3000000, 0x13, r0, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_buf(r1, 0x29, 0x20, &(0x7f00000000c0)="0bbb268dd6ffa80800000000000000000000210d0000aaa8fa017242ba9380d424000000", 0x24)

23.234061649s ago: executing program 8 (id=1205):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001780)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a68020000060a0b040000000000000000020000003c020480380201800a0001006d617463680000002802028008000240000000001402030000000027f76ec1d39e537c4c3060c6a405106c72848aa8bcb429b3a20d532452032d5f166334739d1719a5778bd4f724ee4ca57f2527aeeb0c75755d68fc6fa55f4825682ee95e581039823e5963beedcf65b8b005623d90772b8b6ebd2498b0aff725a3eabb6c99cb2edfe10b9c33be8ab11abc465b891aab80dcbb971e08401bc0807e75a2ff376b7934473bc1f02bb512b77414daf260c9c7d4e1f0758b56ec5823892af310e6252fcff831fd221926d6536eeff641db46920ae0e48f3ff5de599714ba6510ce479d4116a519792281736f39c9fc0e10ef557392c43389271cebcf36543fcf6f83bf74b93ee4eb5e8c82e35bb4784cc1ed0ad291b16e8368487589f7590bf5896f340a36555a1cf69736da230a809176dbdfba3d47efb9a6932e5503d277532b7d4e6f7c7373a298e5843a9f74d5fd07fbc6ad22bc644ba9b3c94ec3c8f0b9321b16e5826b1f058f781760a5d4b6a8880202b41689139c37cd51f65a92d883f8901add03b650c9ec182fb565a4d657ebba9d6a5eb426b22d5933b72362e6ec327fb679aa8034b8b3b6680ad138be47652a3e77981187d2921cebfc1639aa280e3d38dba9b1af49ceded79c78a2d656b3a3e946e17e6257def6679f70f11aa01a2d906aecf4dbc7d1a332a8932ed719ce7eecb5450f494f944b3f6b637502ddba609c6e45dcfad1db7c7dda3e2c755ddcf27132985442e9b8df16f96c82e72e3e2491856d07756b9f08000100627066000900010073797a30000000000900020073797a32"], 0x290}}, 0x4048010)

22.954998596s ago: executing program 6 (id=1206):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000003c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(serpent)\x00'}, 0x58)
close(0x3)

22.153555027s ago: executing program 0 (id=1207):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKINFO_SET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000400)={0x3c, r1, 0x603, 0x70bd30, 0x25dfdbfd, {}, [@ETHTOOL_A_LINKINFO_PHYADDR={0x5, 0x3, 0xec}, @ETHTOOL_A_LINKINFO_PORT={0x5, 0x2, 0xc3}, @ETHTOOL_A_LINKINFO_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}]}, 0x3c}}, 0x10)

21.85128261s ago: executing program 0 (id=1208):
r0 = socket$xdp(0x2c, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x20, &(0x7f0000000040)=0xfffffff8, 0x4)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x50)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x8000002000000, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e24, 0x8, @local, 0x6}, 0x32)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x10, &(0x7f0000000140)=0x4, 0x4)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, &(0x7f0000000000), 0x0)
setsockopt$IP_VS_SO_SET_STOPDAEMON(0xffffffffffffffff, 0x0, 0x48c, &(0x7f00000006c0)={0x2, 'pimreg1\x00', 0x4}, 0x18)
setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f0000000100)={0x0, 0xffdcbf7f, 0x1000, 0x0, 0x1}, 0x20)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'wlan1\x00'})
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x4, &(0x7f0000006680))

21.849745428s ago: executing program 6 (id=1209):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x50)
sendmsg$nl_generic(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000001ac0)={&(0x7f0000000000)=ANY=[@ANYBLOB="a03700002d00010026bd7000fcdbdf250400000005000b00", @ANYRES32=r0, @ANYBLOB="81120c"], 0x37a0}, 0x1, 0x0, 0x0, 0x4000d}, 0x20000000)

21.0390766s ago: executing program 6 (id=1210):
socketpair$unix(0x1, 0x2, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f0000000140)={0xa, 0x4e24, 0x2aa, @mcast1, 0x3}, 0x1c)
getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x1c, 0x0, &(0x7f00000000c0))
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', 0x0, 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'netdevsim0\x00', <r4=>0x0})
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0xe, 0x0, &(0x7f0000000b80)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r4, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000040), 0x10}, 0x94)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x43)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$batadv(&(0x7f0000000540), r5)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r5, 0x8933, &(0x7f0000000580)={'batadv0\x00', <r7=>0x0})
sendmsg$BATADV_CMD_SET_MESH(r5, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={0x1c, r6, 0x1, 0x70bd2a, 0x25dfdbfd, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r7}]}, 0x1c}, 0x1, 0x1000000, 0x0, 0x24008850}, 0x4004a040)
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000000)='tmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000180)='./file1\x00')
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='net_prio.prioidx\x00', 0x275a, 0x0)
r8 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000280), r3)
sendmsg$TIPC_NL_BEARER_SET(r5, &(0x7f00000003c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000380)={&(0x7f00000002c0)={0x28, r8, 0x10, 0x70bd26, 0x25dfdbff, {}, [@TIPC_NLA_SOCK={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0xc}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x839}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x44014}, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)

15.139304669s ago: executing program 6 (id=1211):
capset(&(0x7f0000000040)={0x20071026}, &(0x7f0000000740)={0x0, 0x0, 0x1, 0x81, 0xfffffff9})
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r0, 0x89f2, &(0x7f0000000100)={'ip6_vti0\x00', 0x0})

8.433989493s ago: executing program 37 (id=1200):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000600)={{0x14}, [@NFT_MSG_NEWRULE={0x60, 0x6, 0xa, 0x409, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x34, 0x4, 0x0, 0x1, [{0x30, 0x1, 0x0, 0x1, @lookup={{0xb}, @val={0x20, 0x2, 0x0, 0x1, [@NFTA_LOOKUP_SET_ID={0x8}, @NFTA_LOOKUP_SET={0x9, 0x1, 'syz1\x00'}, @NFTA_LOOKUP_SREG={0x8, 0x2, 0x1, 0x0, 0x8}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x88}}, 0x0)

7.962529606s ago: executing program 38 (id=1203):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)={{0x14}, [@NFT_MSG_NEWRULE={0x70, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2, 0x0, 0xfffe}, [@NFTA_RULE_EXPRESSIONS={0x44, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @ct={{0x7}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_CT_DREG={0x8, 0x1, 0x1, 0x0, 0x2}, @NFTA_CT_KEY={0x8, 0x2, 0x1, 0x0, 0x4}]}}}, {0x20, 0x1, 0x0, 0x1, @ct={{0x7}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_CT_KEY={0x8, 0x2, 0x1, 0x0, 0x11}, @NFTA_CT_DREG={0x8, 0x1, 0x1, 0x0, 0x2}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x5}}}, 0x98}}, 0x0)

7.764422734s ago: executing program 39 (id=1205):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001780)=ANY=[@ANYBLOB="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"], 0x290}}, 0x4048010)

6.293706674s ago: executing program 40 (id=1208):
r0 = socket$xdp(0x2c, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x20, &(0x7f0000000040)=0xfffffff8, 0x4)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x50)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x8000002000000, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e24, 0x8, @local, 0x6}, 0x32)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x10, &(0x7f0000000140)=0x4, 0x4)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, &(0x7f0000000000), 0x0)
setsockopt$IP_VS_SO_SET_STOPDAEMON(0xffffffffffffffff, 0x0, 0x48c, &(0x7f00000006c0)={0x2, 'pimreg1\x00', 0x4}, 0x18)
setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f0000000100)={0x0, 0xffdcbf7f, 0x1000, 0x0, 0x1}, 0x20)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'wlan1\x00'})
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x4, &(0x7f0000006680))

0s ago: executing program 41 (id=1211):
capset(&(0x7f0000000040)={0x20071026}, &(0x7f0000000740)={0x0, 0x0, 0x1, 0x81, 0xfffffff9})
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r0, 0x89f2, &(0x7f0000000100)={'ip6_vti0\x00', 0x0})

kernel console output (not intermixed with test programs):

er after parsing attributes in process `syz.5.389'.
[  650.091403][ T8391] netlink: 8 bytes leftover after parsing attributes in process `syz.5.389'.
[  650.293222][ T5840] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  650.306145][ T5840] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  650.308481][ T5840] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  650.310682][ T5840] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  650.315364][ T5840] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  650.449413][ T8403] netlink: 'syz.0.391': attribute type 2 has an invalid length.
[  650.449435][ T8403] netlink: 'syz.0.391': attribute type 1 has an invalid length.
[  650.474247][ T8403] netlink: 8 bytes leftover after parsing attributes in process `syz.0.391'.
[  653.143400][ T5158] Bluetooth: hci1: command tx timeout
[  655.306846][ T5158] Bluetooth: hci1: command tx timeout
[  655.777066][ T8428] binder: 8426:8428 ioctl 541b 200000000140 returned -22
[  656.032721][ T8433] vimc link validate: Sensor A:src:640x480 (0x33424752, 8, 0, 0, 0) Raw Capture 0:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  657.361462][ T5158] Bluetooth: hci1: command tx timeout
[  658.085123][ T8437] netlink: 8 bytes leftover after parsing attributes in process `syz.0.400'.
[  658.085144][ T8437] netlink: 8 bytes leftover after parsing attributes in process `syz.0.400'.
[  658.277917][ T8446] Bluetooth: MGMT ver 1.23
[  659.923823][ T5158] Bluetooth: hci1: command tx timeout
[  661.529599][ T8460] netlink: 8 bytes leftover after parsing attributes in process `syz.7.407'.
[  661.529619][ T8460] netlink: 8 bytes leftover after parsing attributes in process `syz.7.407'.
[  664.595113][ T8483] vivid-000: kernel_thread() failed
[  666.347951][  T174] team0 (unregistering): Port device team_slave_1 removed
[  666.796745][ T8496] netlink: 452 bytes leftover after parsing attributes in process `syz.7.415'.
[  667.966561][ T8500] kernel profiling enabled (shift: 7)
[  669.013150][    C0] vkms_vblank_simulate: vblank timer overrun
[  669.590615][    C0] vkms_vblank_simulate: vblank timer overrun
[  670.989740][  T174] team0 (unregistering): Port device team_slave_0 removed
[  681.601078][ T5158] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  681.605143][ T5158] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  681.609792][ T5158] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  681.627920][ T5158] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  681.629040][ T5158] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  683.468399][ T8572] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  683.468612][ T8572] overlayfs: failed to set xattr on upper
[  683.468649][ T8572] overlayfs: ...falling back to redirect_dir=nofollow.
[  683.468693][ T8572] overlayfs: ...falling back to index=off.
[  683.468735][ T8572] overlayfs: ...falling back to uuid=null.
[  683.637981][ T8573] overlayfs: missing 'lowerdir'
[  684.200632][ T5158] Bluetooth: hci7: command tx timeout
[  685.806275][ T8577] 9pnet_fd: Insufficient options for proto=fd
[  685.841843][ T8575] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  686.240377][ T5840] Bluetooth: hci7: command tx timeout
[  687.136076][ T8590] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  687.249090][ T8596] tmpfs: Bad value for 'mpol'
[  688.011334][ T5840] Bluetooth: hci4: command 0x0406 tx timeout
[  688.932432][ T5158] Bluetooth: hci7: command tx timeout
[  690.957486][ T5158] Bluetooth: hci7: command tx timeout
[  691.297631][ T6333] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[  692.128626][ T6333] usb 8-1: Using ep0 maxpacket: 16
[  692.129163][ T8619] random: crng reseeded on system resumption
[  692.186373][ T6333] usb 8-1: config 0 has an invalid descriptor of length 198, skipping remainder of the config
[  692.186418][ T6333] usb 8-1: too many endpoints for config 0 interface 0 altsetting 0: 40, using maximum allowed: 30
[  692.186520][ T6333] usb 8-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 40
[  692.186596][ T6333] usb 8-1: New USB device found, idVendor=054c, idProduct=05c4, bcdDevice= 0.00
[  692.186661][ T6333] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  692.306353][ T6333] usb 8-1: config 0 descriptor??
[  695.776845][ T6333] usb 8-1: string descriptor 0 read error: -71
[  695.834573][ T6333] usb 8-1: USB disconnect, device number 3
[  695.925339][ T1323] ieee802154 phy0 wpan0: encryption failed: -22
[  695.925426][ T1323] ieee802154 phy1 wpan1: encryption failed: -22
[  700.836144][ T8641] syz.5.446: vmalloc error: size 6291456, failed to allocated page array size 12288, mode:0x400dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  700.836304][ T8641] CPU: 0 UID: 0 PID: 8641 Comm: syz.5.446 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  700.836322][ T8641] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  700.836335][ T8641] Call Trace:
[  700.836341][ T8641]  <TASK>
[  700.836348][ T8641]  dump_stack_lvl+0x189/0x250
[  700.836379][ T8641]  ? __pfx_dump_stack_lvl+0x10/0x10
[  700.836404][ T8641]  ? __pfx__printk+0x10/0x10
[  700.836422][ T8641]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  700.836440][ T8641]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  700.836459][ T8641]  ? cpuset_print_current_mems_allowed+0x2ee/0x360
[  700.836478][ T8641]  warn_alloc+0x22e/0x3b0
[  700.836511][ T8641]  ? __pfx_warn_alloc+0x10/0x10
[  700.836544][ T8641]  ? __get_vm_area_node+0x2bc/0x350
[  700.836568][ T8641]  ? hash_netport4_resize+0x235/0x1b70
[  700.836588][ T8641]  __vmalloc_node_range_noprof+0x67e/0x12f0
[  700.836611][ T8641]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  700.836650][ T8641]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  700.836678][ T8641]  ? rcu_is_watching+0x15/0xb0
[  700.836706][ T8641]  __kvmalloc_node_noprof+0x330/0x550
[  700.836730][ T8641]  ? hash_netport4_resize+0x235/0x1b70
[  700.836744][ T8641]  ? hash_netport4_resize+0x235/0x1b70
[  700.836764][ T8641]  hash_netport4_resize+0x235/0x1b70
[  700.836779][ T8641]  ? hash_netport4_uadt+0xc9a/0xf30
[  700.836810][ T8641]  ? __pfx_hash_netport4_add+0x10/0x10
[  700.836841][ T8641]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  700.836871][ T8641]  ? call_ad+0x102/0x9c0
[  700.836906][ T8641]  call_ad+0x3c5/0x9c0
[  700.836933][ T8641]  ? __pfx_call_ad+0x10/0x10
[  700.836966][ T8641]  ? __nla_parse+0x40/0x60
[  700.836985][ T8641]  ip_set_ad+0x797/0x940
[  700.837011][ T8641]  ? __pfx_ip_set_ad+0x10/0x10
[  700.837029][ T8641]  ? do_raw_spin_lock+0x121/0x290
[  700.837079][ T8641]  nfnetlink_rcv_msg+0xb69/0x1150
[  700.837099][ T8641]  ? nfnetlink_rcv_msg+0x212/0x1150
[  700.837134][ T8641]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  700.837194][ T8641]  ? __pfx_migrate_enable+0x10/0x10
[  700.837239][ T8641]  netlink_rcv_skb+0x205/0x470
[  700.837264][ T8641]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  700.837285][ T8641]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  700.837317][ T8641]  ? bpf_lsm_capable+0x9/0x20
[  700.837338][ T8641]  ? security_capable+0x7e/0x2e0
[  700.837368][ T8641]  nfnetlink_rcv+0x26a/0x2530
[  700.837390][ T8641]  ? __dev_queue_xmit+0x1d3d/0x3b70
[  700.837415][ T8641]  ? __dev_queue_xmit+0x26f/0x3b70
[  700.837443][ T8641]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  700.837462][ T8641]  ? __pfx___dev_queue_xmit+0x10/0x10
[  700.837490][ T8641]  ? ref_tracker_free+0x61e/0x7c0
[  700.837516][ T8641]  ? __asan_memcpy+0x40/0x70
[  700.837533][ T8641]  ? __pfx_ref_tracker_free+0x10/0x10
[  700.837556][ T8641]  ? __skb_clone+0x63/0x7a0
[  700.837575][ T8641]  ? __skb_clone+0x483/0x7a0
[  700.837597][ T8641]  ? skb_clone+0x246/0x3a0
[  700.837615][ T8641]  ? __netlink_deliver_tap+0x807/0x850
[  700.837638][ T8641]  ? netlink_deliver_tap+0x2e/0x1b0
[  700.837670][ T8641]  ? netlink_deliver_tap+0x2e/0x1b0
[  700.837699][ T8641]  netlink_unicast+0x843/0xa10
[  700.837726][ T8641]  ? __pfx_netlink_unicast+0x10/0x10
[  700.837748][ T8641]  ? netlink_sendmsg+0x642/0xb30
[  700.837770][ T8641]  ? skb_put+0x11b/0x210
[  700.837797][ T8641]  netlink_sendmsg+0x805/0xb30
[  700.837827][ T8641]  ? __pfx_netlink_sendmsg+0x10/0x10
[  700.837857][ T8641]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  700.837873][ T8641]  ? __pfx_netlink_sendmsg+0x10/0x10
[  700.837904][ T8641]  __sock_sendmsg+0x219/0x270
[  700.837927][ T8641]  ____sys_sendmsg+0x508/0x820
[  700.837947][ T8641]  ? __pfx_____sys_sendmsg+0x10/0x10
[  700.837970][ T8641]  ? import_iovec+0x74/0xa0
[  700.837993][ T8641]  ___sys_sendmsg+0x21f/0x2a0
[  700.838011][ T8641]  ? __pfx____sys_sendmsg+0x10/0x10
[  700.838055][ T8641]  ? __fget_files+0x2a/0x420
[  700.838078][ T8641]  ? __fget_files+0x3a6/0x420
[  700.838110][ T8641]  __x64_sys_sendmsg+0x1a1/0x260
[  700.838129][ T8641]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  700.838153][ T8641]  ? rcu_is_watching+0x15/0xb0
[  700.838182][ T8641]  ? do_syscall_64+0xbe/0x3b0
[  700.838201][ T8641]  do_syscall_64+0xfa/0x3b0
[  700.838216][ T8641]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  700.838231][ T8641]  ? asm_sysvec_reschedule_ipi+0x1a/0x20
[  700.838247][ T8641]  ? clear_bhb_loop+0x60/0xb0
[  700.838266][ T8641]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  700.838287][ T8641] RIP: 0033:0x7fd9247feba9
[  700.838305][ T8641] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  700.838319][ T8641] RSP: 002b:00007fd922a1c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  700.838336][ T8641] RAX: ffffffffffffffda RBX: 00007fd924a46180 RCX: 00007fd9247feba9
[  700.838348][ T8641] RDX: 0000000000000080 RSI: 00002000000002c0 RDI: 0000000000000009
[  700.838358][ T8641] RBP: 00007fd924881e19 R08: 0000000000000000 R09: 0000000000000000
[  700.838369][ T8641] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  700.838378][ T8641] R13: 00007fd924a46218 R14: 00007fd924a46180 R15: 00007fff0e796198
[  700.838403][ T8641]  </TASK>
[  700.838450][ T8641] Mem-Info:
[  700.838460][ T8641] active_anon:6014 inactive_anon:10280 isolated_anon:0
[  700.838460][ T8641]  active_file:5899 inactive_file:47200 isolated_file:0
[  700.838460][ T8641]  unevictable:768 dirty:270 writeback:0
[  700.838460][ T8641]  slab_reclaimable:12450 slab_unreclaimable:107050
[  700.838460][ T8641]  mapped:48717 shmem:9983 pagetables:1684
[  700.838460][ T8641]  sec_pagetables:0 bounce:0
[  700.838460][ T8641]  kernel_misc_reclaimable:0
[  700.838460][ T8641]  free:1273527 free_pcp:7638 free_cma:0
[  700.838503][ T8641] Node 0 active_anon:24056kB inactive_anon:41120kB active_file:23280kB inactive_file:188800kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:194820kB dirty:1080kB writeback:0kB shmem:38396kB kernel_stack:14204kB pagetables:6568kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  700.838541][ T8641] Node 1 active_anon:0kB inactive_anon:0kB active_file:316kB inactive_file:0kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:48kB dirty:0kB writeback:0kB shmem:1536kB kernel_stack:48kB pagetables:168kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  700.838575][ T8641] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  700.838622][ T8641] lowmem_reserve[]: 0 2512 2513 2513 2513
[  700.838652][ T8641] Node 0 DMA32 free:1178768kB boost:0kB min:3940kB low:6484kB high:9028kB reserved_highatomic:0KB free_highatomic:0KB active_anon:24052kB inactive_anon:41076kB active_file:22264kB inactive_file:188732kB unevictable:1536kB writepending:1080kB present:3129332kB managed:2572296kB mlocked:0kB bounce:0kB free_pcp:28716kB local_pcp:2100kB free_cma:0kB
[  700.838700][ T8641] lowmem_reserve[]: 0 0 1 1 1
[  700.838724][ T8641] Node 0 Normal free:0kB boost:0kB min:0kB low:0kB high:0kB reserved_highatomic:0KB free_highatomic:0KB active_anon:4kB inactive_anon:44kB active_file:1016kB inactive_file:68kB unevictable:0kB writepending:0kB present:1048580kB managed:1132kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  700.838768][ T8641] lowmem_reserve[]: 0 0 0 0 0
[  700.838792][ T8641] Node 1 Normal free:3899980kB boost:0kB min:6364kB low:10472kB high:14580kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:316kB inactive_file:0kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:1836kB local_pcp:32kB free_cma:0kB
[  700.838842][ T8641] lowmem_reserve[]: 0 0 0 0 0
[  700.838867][ T8641] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  700.838977][ T8641] Node 0 DMA32: 125*4kB (ME) 164*8kB (UME) 84*16kB (UME) 105*32kB (UME) 8*64kB (UME) 12*128kB (UME) 21*256kB (UME) 15*512kB (UME) 12*1024kB (UM) 5*2048kB (UME) 277*4096kB (M) = 1178740kB
[  700.839097][ T8641] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[  700.839171][ T8641] Node 1 Normal: 223*4kB (UME) 58*8kB (UME) 40*16kB (UME) 198*32kB (UME) 91*64kB (UME) 28*128kB (UME) 13*256kB (UE) 8*512kB (UM) 2*1024kB (ME) 1*2048kB (E) 945*4096kB (M) = 3899980kB
[  700.839296][ T8641] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  700.839309][ T8641] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  700.839322][ T8641] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  700.839334][ T8641] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  700.839347][ T8641] 63079 total pagecache pages
[  700.839359][ T8641] 0 pages in swap cache
[  700.839364][ T8641] Free swap  = 124996kB
[  700.839370][ T8641] Total swap = 124996kB
[  700.839376][ T8641] 2097051 pages RAM
[  700.839382][ T8641] 0 pages HighMem/MovableOnly
[  700.839387][ T8641] 422079 pages reserved
[  700.839393][ T8641] 0 pages cma reserved
[  702.969874][ T8650] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  704.877461][ T6333] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  705.260867][ T6333] usb 6-1: device descriptor read/64, error -71
[  711.682009][ T8696] CIFS: VFS: Malformed UNC in devname
[  713.705833][ T8705] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  714.434434][ T5840] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  714.449179][ T5840] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  714.450498][ T5840] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  714.452515][ T5840] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  714.454022][ T5840] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  715.196604][ T8724] netlink: 780 bytes leftover after parsing attributes in process `syz.7.462'.
[  717.429293][ T8731] futex_wake_op: syz.0.465 tries to shift op by -1; fix this program
[  717.523679][ T5158] Bluetooth: hci0: command tx timeout
[  720.078143][ T8738] netlink: 8 bytes leftover after parsing attributes in process `syz.0.467'.
[  720.078170][ T8738] netlink: 8 bytes leftover after parsing attributes in process `syz.0.467'.
[  720.190878][ T5158] Bluetooth: hci0: command tx timeout
[  722.304741][ T5158] Bluetooth: hci0: command tx timeout
[  723.627537][    C1] vkms_vblank_simulate: vblank timer overrun
[  723.660333][    C1] vkms_vblank_simulate: vblank timer overrun
[  723.696996][    C1] vkms_vblank_simulate: vblank timer overrun
[  723.735985][    C1] vkms_vblank_simulate: vblank timer overrun
[  724.027269][    C1] vkms_vblank_simulate: vblank timer overrun
[  724.151980][    C1] vkms_vblank_simulate: vblank timer overrun
[  724.379905][ T5158] Bluetooth: hci0: command tx timeout
[  724.580984][    C1] vkms_vblank_simulate: vblank timer overrun
[  724.884334][    C1] vkms_vblank_simulate: vblank timer overrun
[  725.146154][ T8771] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  725.448246][    C1] vkms_vblank_simulate: vblank timer overrun
[  725.614137][ T8777] netlink: 24 bytes leftover after parsing attributes in process `syz.5.475'.
[  725.614478][    C1] vkms_vblank_simulate: vblank timer overrun
[  725.892964][    C1] vkms_vblank_simulate: vblank timer overrun
[  726.062278][    C1] vkms_vblank_simulate: vblank timer overrun
[  726.472676][    C1] vkms_vblank_simulate: vblank timer overrun
[  726.600924][ T4333] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  726.611544][    C1] vkms_vblank_simulate: vblank timer overrun
[  727.186517][    C1] vkms_vblank_simulate: vblank timer overrun
[  727.422127][    C1] vkms_vblank_simulate: vblank timer overrun
[  727.620190][    C1] vkms_vblank_simulate: vblank timer overrun
[  728.132833][    C1] vkms_vblank_simulate: vblank timer overrun
[  728.494591][    C1] vkms_vblank_simulate: vblank timer overrun
[  728.533649][ T4333] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  728.773842][    C1] vkms_vblank_simulate: vblank timer overrun
[  729.414241][    C1] vkms_vblank_simulate: vblank timer overrun
[  730.110495][    C1] vkms_vblank_simulate: vblank timer overrun
[  731.016077][ T8801] vivid-005: kernel_thread() failed
[  731.120796][    C1] vkms_vblank_simulate: vblank timer overrun
[  731.754989][ T8793] netlink: 8 bytes leftover after parsing attributes in process `syz.0.478'.
[  731.755012][ T8793] netlink: 8 bytes leftover after parsing attributes in process `syz.0.478'.
[  731.812972][    C1] vkms_vblank_simulate: vblank timer overrun
[  732.182969][    C1] vkms_vblank_simulate: vblank timer overrun
[  732.229556][ T4333] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  732.322770][ T8815] futex_wake_op: syz.0.484 tries to shift op by -1; fix this program
[  732.386667][ T8556] chnl_net:caif_netlink_parms(): no params data found
[  732.717208][ T8820] ubi: mtd0 is already attached to ubi31
[  733.969394][ T8823] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  735.312754][ T4333] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  738.695291][ T8857] netlink: 'syz.0.489': attribute type 3 has an invalid length.
[  743.628749][ T8714] chnl_net:caif_netlink_parms(): no params data found
[  743.997670][ T4333] bridge_slave_1: left allmulticast mode
[  743.997702][ T4333] bridge_slave_1: left promiscuous mode
[  743.998589][ T4333] bridge0: port 2(bridge_slave_1) entered disabled state
[  744.489600][ T8882] Bluetooth: hci0: Opcode 0x080f failed: -4
[  745.681054][ T4333] bridge_slave_0: left allmulticast mode
[  745.681077][ T4333] bridge_slave_0: left promiscuous mode
[  745.682103][ T4333] bridge0: port 1(bridge_slave_0) entered disabled state
[  745.847298][ T5158] Bluetooth: hci0: command 0x080f tx timeout
[  745.936386][ T8889] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  749.536511][ T5840] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  749.557595][ T5840] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  749.567097][ T5840] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  749.572784][ T5840] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  749.577837][ T5840] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  751.689535][ T5840] Bluetooth: hci1: command tx timeout
[  752.038226][ T4333] bond0 (unregistering): Released all slaves
[  752.259548][ T5840] Bluetooth: hci3: command 0x0406 tx timeout
[  753.452726][ T8916] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  753.988109][ T5840] Bluetooth: hci1: command tx timeout
[  756.087726][ T8935] ubi31: detaching mtd0
[  756.267943][ T5840] Bluetooth: hci1: command tx timeout
[  756.378665][ T8935] ubi31: mtd0 is detached
[  756.799122][ T8944] netlink: 'syz.7.509': attribute type 2 has an invalid length.
[  756.888943][ T8944] sctp: [Deprecated]: syz.7.509 (pid 8944) Use of struct sctp_assoc_value in delayed_ack socket option.
[  756.888943][ T8944] Use struct sctp_sack_info instead
[  757.558345][ T1323] ieee802154 phy0 wpan0: encryption failed: -22
[  757.558416][ T1323] ieee802154 phy1 wpan1: encryption failed: -22
[  757.627342][ T5928] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  757.783895][ T5928] usb 6-1: Using ep0 maxpacket: 8
[  757.856323][ T5928] usb 6-1: config 0 has an invalid interface number: 148 but max is 0
[  757.856351][ T5928] usb 6-1: config 0 has no interface number 0
[  758.098251][ T5928] usb 6-1: New USB device found, idVendor=0d46, idProduct=2012, bcdDevice=4d.36
[  758.098338][ T5928] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  758.098359][ T5928] usb 6-1: Product: syz
[  758.098373][ T5928] usb 6-1: Manufacturer: syz
[  758.098388][ T5928] usb 6-1: SerialNumber: syz
[  758.366262][ T5928] usb 6-1: config 0 descriptor??
[  758.399847][ T5840] Bluetooth: hci1: command tx timeout
[  758.612590][ T5928] kobil_sct 6-1:0.148: KOBIL USB smart card terminal converter detected
[  758.662840][ T5928] usb 6-1: KOBIL USB smart card terminal converter now attached to ttyUSB0
[  759.447593][ T8958] overlayfs: failed to decode file handle (len=6, type=251, flags=0, err=-22)
[  761.049863][   T31] usb 6-1: USB disconnect, device number 4
[  761.158204][   T31] kobil ttyUSB0: KOBIL USB smart card terminal converter now disconnected from ttyUSB0
[  761.160096][   T31] kobil_sct 6-1:0.148: device disconnected
[  762.198160][ T8971] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  762.588078][ T8978] loop6: detected capacity change from 0 to 7
[  762.755195][ T8978] Dev loop6: unable to read RDB block 7
[  762.755394][ T8978]  loop6: unable to read partition table
[  762.758938][ T8978] loop6: partition table beyond EOD, truncated
[  762.759078][ T8978] loop_reread_partitions: partition scan of loop6 (þ被xü—ŸÑà– ) failed (rc=-5)
[  764.794389][ T8988] cramfs: Unknown parameter 'discard'
[  767.056354][ T8998] netlink: 324 bytes leftover after parsing attributes in process `syz.5.520'.
[  773.368025][ T4333] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  773.428798][ T4333] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  773.461534][ T4333] bond0 (unregistering): Released all slaves
[  774.053007][ T9027] netlink: 8 bytes leftover after parsing attributes in process `syz.5.527'.
[  774.445930][ T9031] IPVS: fo: SCTP 172.20.20.187:0 - no destination available
[  775.120038][ T5158] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  775.147714][ T5158] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  775.149600][ T5158] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  775.152489][ T5158] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  775.154273][ T5158] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  777.366763][ T5840] Bluetooth: hci4: command tx timeout
[  778.568786][    C0] vkms_vblank_simulate: vblank timer overrun
[  778.642413][    C0] vkms_vblank_simulate: vblank timer overrun
[  779.557833][    C0] vkms_vblank_simulate: vblank timer overrun
[  779.997537][ T5840] Bluetooth: hci4: command tx timeout
[  781.531804][    C0] vkms_vblank_simulate: vblank timer overrun
[  781.682654][    C0] vkms_vblank_simulate: vblank timer overrun
[  781.899819][    C0] vkms_vblank_simulate: vblank timer overrun
[  782.356493][    C0] vkms_vblank_simulate: vblank timer overrun
[  783.037506][ T5840] Bluetooth: hci4: command tx timeout
[  785.117827][ T5840] Bluetooth: hci4: command tx timeout
[  787.217875][ T9090] netlink: 4 bytes leftover after parsing attributes in process `syz.5.542'.
[  804.747308][ T4333] hsr_slave_0: left promiscuous mode
[  804.920616][ T4333] hsr_slave_1: left promiscuous mode
[  804.921835][ T4333] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  804.921864][ T4333] batman_adv: batadv0: Removing interface: batadv_slave_0
[  804.972661][ T4333] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  804.972694][ T4333] batman_adv: batadv0: Removing interface: batadv_slave_1
[  805.371300][ T4333] veth1_macvtap: left promiscuous mode
[  805.371425][ T4333] veth0_macvtap: left promiscuous mode
[  805.371753][ T4333] veth1_vlan: left promiscuous mode
[  805.371972][ T4333] veth0_vlan: left promiscuous mode
[  806.298060][ T5158] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  806.335238][ T5158] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  807.168263][ T5158] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  807.174309][ T5158] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  807.175280][ T5158] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  808.009591][ T9179] fuse: Bad value for 'fd'
[  808.390269][ T9183] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  809.507715][ T5840] Bluetooth: hci0: command tx timeout
[  811.517323][ T5840] Bluetooth: hci0: command tx timeout
[  813.935560][ T9211] program syz.5.567 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  813.941711][ T9211] program syz.5.567 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  813.942542][ T9211] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  814.091054][ T5840] Bluetooth: hci0: command tx timeout
[  815.273751][ T9218] erofs (device nbd0): cannot find valid erofs superblock
[  816.327754][ T5840] Bluetooth: hci0: command tx timeout
[  816.436066][    C1] vkms_vblank_simulate: vblank timer overrun
[  816.562443][    C1] vkms_vblank_simulate: vblank timer overrun
[  816.956480][    C1] vkms_vblank_simulate: vblank timer overrun
[  817.216728][    C1] vkms_vblank_simulate: vblank timer overrun
[  817.773394][    C1] vkms_vblank_simulate: vblank timer overrun
[  818.461614][ T9236] workqueue: Failed to create a rescuer kthread for wq "ceph-watch-notify": -EINTR
[  818.528396][    C1] vkms_vblank_simulate: vblank timer overrun
[  818.834310][ T1323] ieee802154 phy0 wpan0: encryption failed: -22
[  818.834402][ T1323] ieee802154 phy1 wpan1: encryption failed: -22
[  818.902664][ T9242] kAFS: No cell specified
[  819.188508][    C1] vkms_vblank_simulate: vblank timer overrun
[  819.581606][    C1] vkms_vblank_simulate: vblank timer overrun
[  820.217836][    C1] vkms_vblank_simulate: vblank timer overrun
[  820.932264][    C1] vkms_vblank_simulate: vblank timer overrun
[  821.172049][    C1] vkms_vblank_simulate: vblank timer overrun
[  822.131108][    C1] vkms_vblank_simulate: vblank timer overrun
[  822.963767][    C1] vkms_vblank_simulate: vblank timer overrun
[  823.837983][    C1] vkms_vblank_simulate: vblank timer overrun
[  824.307526][    C1] vkms_vblank_simulate: vblank timer overrun
[  824.344079][    C1] vkms_vblank_simulate: vblank timer overrun
[  824.441156][    C1] vkms_vblank_simulate: vblank timer overrun
[  824.500072][    C1] vkms_vblank_simulate: vblank timer overrun
[  824.558679][    C1] vkms_vblank_simulate: vblank timer overrun
[  824.747545][    C1] vkms_vblank_simulate: vblank timer overrun
[  825.482063][    C1] vkms_vblank_simulate: vblank timer overrun
[  826.523136][    C1] vkms_vblank_simulate: vblank timer overrun
[  826.916815][    C1] vkms_vblank_simulate: vblank timer overrun
[  827.188709][    C1] vkms_vblank_simulate: vblank timer overrun
[  828.550558][ T9277] syz.5.581 (9277): drop_caches: 2
[  832.941578][ T9312] binder: 9309:9312 ioctl c018620c 200000000000 returned -22
[  834.437526][ T4333] team0 (unregistering): Port device team_slave_1 removed
[  834.964907][ T4333] team0 (unregistering): Port device team_slave_0 removed
[  837.652740][ T9331] ubi31: attaching mtd0
[  837.698324][ T9331] ubi31: scanning is finished
[  839.546999][ T9331] ubi31: attached mtd0 (name "mtdram test device", size 0 MiB)
[  839.547018][ T9331] ubi31: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes
[  839.547033][ T9331] ubi31: min./max. I/O unit sizes: 1/64, sub-page size 1
[  839.547044][ T9331] ubi31: VID header offset: 64 (aligned 64), data offset: 128
[  839.547055][ T9331] ubi31: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0
[  839.547066][ T9331] ubi31: user volume: 0, internal volumes: 1, max. volumes count: 23
[  839.547125][ T9331] ubi31: max/mean erase counter: 1/1, WL threshold: 4096, image sequence number: 1251954054
[  839.547145][ T9331] ubi31: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0
[  839.947615][ T9340] ubi31: background thread "ubi_bgt31d" started, PID 9340
[  840.845881][ T9345] BFS-fs: bfs_fill_super(): No BFS filesystem on nullb0 (magic=00000000)
[  841.705941][ T9345] orangefs_mount: mount request failed with -4
[  842.426463][ T5158] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  842.436362][ T5158] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  842.439368][ T5158] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  842.450109][ T5158] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  842.457705][ T5158] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  842.709637][    C1] vkms_vblank_simulate: vblank timer overrun
[  844.722927][    C1] vkms_vblank_simulate: vblank timer overrun
[  844.723645][ T5840] Bluetooth: hci1: command tx timeout
[  844.851031][ T9369] Bluetooth: MGMT ver 1.23
[  846.248990][    C1] vkms_vblank_simulate: vblank timer overrun
[  846.629829][    C1] vkms_vblank_simulate: vblank timer overrun
[  846.797198][ T5840] Bluetooth: hci1: command tx timeout
[  848.887176][ T5840] Bluetooth: hci1: command tx timeout
[  850.652569][ T9389] loop6: detected capacity change from 0 to 7
[  850.674750][ T9389] Dev loop6: unable to read RDB block 7
[  850.675086][ T9389]  loop6: unable to read partition table
[  850.676578][ T9389] loop6: partition table beyond EOD, truncated
[  850.676696][ T9389] loop_reread_partitions: partition scan of loop6 (þ被xü—ŸÑà– ) failed (rc=-5)
[  850.957394][ T5158] Bluetooth: hci1: command tx timeout
[  852.150248][ T9394] ubi: mtd0 is already attached to ubi31
[  852.489326][ T9392] trusted_key: syz.0.615 sent an empty control message without MSG_MORE.
[  855.107817][    C0] vkms_vblank_simulate: vblank timer overrun
[  855.437119][    C0] vkms_vblank_simulate: vblank timer overrun
[  855.465072][    C0] vkms_vblank_simulate: vblank timer overrun
[  855.557369][    C0] vkms_vblank_simulate: vblank timer overrun
[  855.597742][    C0] vkms_vblank_simulate: vblank timer overrun
[  855.697265][    C0] vkms_vblank_simulate: vblank timer overrun
[  855.801531][    C0] vkms_vblank_simulate: vblank timer overrun
[  857.136023][    C0] vkms_vblank_simulate: vblank timer overrun
[  857.229218][ T9423] netlink: 8 bytes leftover after parsing attributes in process `syz.0.613'.
[  857.229235][ T9423] netlink: 8 bytes leftover after parsing attributes in process `syz.0.613'.
[  857.306459][ T9429] netlink: 8 bytes leftover after parsing attributes in process `syz.5.614'.
[  857.306478][ T9429] netlink: 8 bytes leftover after parsing attributes in process `syz.5.614'.
[  861.707031][    C1] vkms_vblank_simulate: vblank timer overrun
[  861.948264][    C1] vkms_vblank_simulate: vblank timer overrun
[  862.512101][    C1] vkms_vblank_simulate: vblank timer overrun
[  863.713256][ T9445] warn_alloc: 1 callbacks suppressed
[  863.713271][ T9445] syz.5.618: vmalloc error: size 10485760, failed to allocated page array size 20480, mode:0x400dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  863.713321][ T9445] CPU: 1 UID: 0 PID: 9445 Comm: syz.5.618 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  863.713337][ T9445] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  863.713346][ T9445] Call Trace:
[  863.713351][ T9445]  <TASK>
[  863.713357][ T9445]  dump_stack_lvl+0x189/0x250
[  863.713384][ T9445]  ? __pfx_dump_stack_lvl+0x10/0x10
[  863.713405][ T9445]  ? __pfx__printk+0x10/0x10
[  863.713420][ T9445]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  863.713435][ T9445]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  863.713451][ T9445]  ? cpuset_print_current_mems_allowed+0x2ee/0x360
[  863.713468][ T9445]  warn_alloc+0x22e/0x3b0
[  863.713497][ T9445]  ? __pfx_warn_alloc+0x10/0x10
[  863.713544][ T9445]  ? __get_vm_area_node+0x2bc/0x350
[  863.713566][ T9445]  ? hash_netport4_resize+0x235/0x1b70
[  863.713584][ T9445]  __vmalloc_node_range_noprof+0x67e/0x12f0
[  863.713605][ T9445]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  863.713640][ T9445]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  863.713665][ T9445]  ? rcu_is_watching+0x15/0xb0
[  863.713691][ T9445]  __kvmalloc_node_noprof+0x330/0x550
[  863.713722][ T9445]  ? hash_netport4_resize+0x235/0x1b70
[  863.713735][ T9445]  ? hash_netport4_resize+0x235/0x1b70
[  863.713753][ T9445]  hash_netport4_resize+0x235/0x1b70
[  863.713766][ T9445]  ? hash_netport4_uadt+0xc9a/0xf30
[  863.713794][ T9445]  ? __pfx_hash_netport4_add+0x10/0x10
[  863.713822][ T9445]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  863.713851][ T9445]  ? call_ad+0x102/0x9c0
[  863.713870][ T9445]  call_ad+0x3c5/0x9c0
[  863.713894][ T9445]  ? __pfx_call_ad+0x10/0x10
[  863.713923][ T9445]  ? __nla_parse+0x40/0x60
[  863.713940][ T9445]  ip_set_ad+0x797/0x940
[  863.713965][ T9445]  ? __pfx_ip_set_ad+0x10/0x10
[  863.713980][ T9445]  ? do_raw_spin_lock+0x121/0x290
[  863.714026][ T9445]  nfnetlink_rcv_msg+0xb69/0x1150
[  863.714043][ T9445]  ? rcu_is_watching+0x15/0xb0
[  863.714066][ T9445]  ? nfnetlink_rcv_msg+0x212/0x1150
[  863.714097][ T9445]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  863.714135][ T9445]  ? rcu_is_watching+0x15/0xb0
[  863.714158][ T9445]  ? trace_irq_disable+0x37/0x110
[  863.714188][ T9445]  netlink_rcv_skb+0x205/0x470
[  863.714210][ T9445]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  863.714229][ T9445]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  863.714258][ T9445]  ? bpf_lsm_capable+0x9/0x20
[  863.714277][ T9445]  ? security_capable+0x7e/0x2e0
[  863.714304][ T9445]  nfnetlink_rcv+0x26a/0x2530
[  863.714324][ T9445]  ? __dev_queue_xmit+0x1d3d/0x3b70
[  863.714350][ T9445]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  863.714374][ T9445]  ? lockdep_hardirqs_on+0x9c/0x150
[  863.714397][ T9445]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  863.714420][ T9445]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  863.714443][ T9445]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  863.714466][ T9445]  ? rcu_preempt_deferred_qs_irqrestore+0x89c/0xce0
[  863.714498][ T9445]  ? __pfx_rcu_preempt_deferred_qs_irqrestore+0x10/0x10
[  863.714524][ T9445]  ? rcu_is_watching+0x15/0xb0
[  863.714549][ T9445]  ? rcu_read_unlock_special+0x35b/0x470
[  863.714570][ T9445]  ? __pfx_rcu_read_unlock_special+0x10/0x10
[  863.714588][ T9445]  ? netlink_deliver_tap+0x2e/0x1b0
[  863.714613][ T9445]  ? netlink_deliver_tap+0x2e/0x1b0
[  863.714640][ T9445]  netlink_unicast+0x843/0xa10
[  863.714665][ T9445]  ? __pfx_netlink_unicast+0x10/0x10
[  863.714685][ T9445]  ? netlink_sendmsg+0x642/0xb30
[  863.714704][ T9445]  ? skb_put+0x11b/0x210
[  863.714733][ T9445]  netlink_sendmsg+0x805/0xb30
[  863.714761][ T9445]  ? __pfx_netlink_sendmsg+0x10/0x10
[  863.714788][ T9445]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  863.714803][ T9445]  ? __pfx_netlink_sendmsg+0x10/0x10
[  863.714824][ T9445]  __sock_sendmsg+0x219/0x270
[  863.714845][ T9445]  ____sys_sendmsg+0x508/0x820
[  863.714863][ T9445]  ? __pfx_____sys_sendmsg+0x10/0x10
[  863.714885][ T9445]  ? import_iovec+0x74/0xa0
[  863.714906][ T9445]  ___sys_sendmsg+0x21f/0x2a0
[  863.714922][ T9445]  ? __pfx____sys_sendmsg+0x10/0x10
[  863.714963][ T9445]  ? __fget_files+0x2a/0x420
[  863.714995][ T9445]  ? __fget_files+0x3a6/0x420
[  863.715021][ T9445]  __x64_sys_sendmsg+0x1a1/0x260
[  863.715037][ T9445]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  863.715068][ T9445]  do_syscall_64+0xfa/0x3b0
[  863.715079][ T9445]  ? lockdep_hardirqs_on+0x9c/0x150
[  863.715100][ T9445]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  863.715113][ T9445]  ? clear_bhb_loop+0x60/0xb0
[  863.715130][ T9445]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  863.715143][ T9445] RIP: 0033:0x7fd9247feba9
[  863.715156][ T9445] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  863.715168][ T9445] RSP: 002b:00007fd922a3d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  863.715181][ T9445] RAX: ffffffffffffffda RBX: 00007fd924a46090 RCX: 00007fd9247feba9
[  863.715191][ T9445] RDX: 0000000000000090 RSI: 00002000000002c0 RDI: 0000000000000007
[  863.715200][ T9445] RBP: 00007fd924881e19 R08: 0000000000000000 R09: 0000000000000000
[  863.715209][ T9445] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  863.715217][ T9445] R13: 00007fd924a46128 R14: 00007fd924a46090 R15: 00007fff0e796198
[  863.715238][ T9445]  </TASK>
[  863.715243][ T9445] Mem-Info:
[  863.715249][ T9445] active_anon:6013 inactive_anon:6836 isolated_anon:0
[  863.715249][ T9445]  active_file:5992 inactive_file:47171 isolated_file:0
[  863.715249][ T9445]  unevictable:768 dirty:242 writeback:0
[  863.715249][ T9445]  slab_reclaimable:12552 slab_unreclaimable:104453
[  863.715249][ T9445]  mapped:34571 shmem:7116 pagetables:1689
[  863.715249][ T9445]  sec_pagetables:0 bounce:0
[  863.715249][ T9445]  kernel_misc_reclaimable:0
[  863.715249][ T9445]  free:1303721 free_pcp:4817 free_cma:0
[  863.715286][ T9445] Node 0 active_anon:24052kB inactive_anon:27344kB active_file:23652kB inactive_file:188684kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:138248kB dirty:968kB writeback:0kB shmem:26928kB kernel_stack:14228kB pagetables:6588kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  863.715317][ T9445] Node 1 active_anon:0kB inactive_anon:0kB active_file:316kB inactive_file:0kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:36kB dirty:0kB writeback:0kB shmem:1536kB kernel_stack:48kB pagetables:168kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  863.715346][ T9445] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  863.715383][ T9445] lowmem_reserve[]: 0 2512 2513 2513 2513
[  863.715406][ T9445] Node 0 DMA32 free:1297676kB boost:0kB min:3940kB low:6484kB high:9028kB reserved_highatomic:0KB free_highatomic:0KB active_anon:24048kB inactive_anon:27300kB active_file:22636kB inactive_file:188616kB unevictable:1536kB writepending:964kB present:3129332kB managed:2572296kB mlocked:0kB bounce:0kB free_pcp:19268kB local_pcp:7352kB free_cma:0kB
[  863.715446][ T9445] lowmem_reserve[]: 0 0 1 1 1
[  863.715467][ T9445] Node 0 Normal free:0kB boost:0kB min:0kB low:0kB high:0kB reserved_highatomic:0KB free_highatomic:0KB active_anon:4kB inactive_anon:44kB active_file:1016kB inactive_file:68kB unevictable:0kB writepending:4kB present:1048580kB managed:1132kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  863.715504][ T9445] lowmem_reserve[]: 0 0 0 0 0
[  863.715525][ T9445] Node 1 Normal free:3901848kB boost:0kB min:6364kB low:10472kB high:14580kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:316kB inactive_file:0kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  863.715563][ T9445] lowmem_reserve[]: 0 0 0 0 0
[  863.715583][ T9445] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  863.715659][ T9445] Node 0 DMA32: 552*4kB (UME) 422*8kB (UME) 135*16kB (UME) 132*32kB (UME) 180*64kB (UME) 230*128kB (UM) 200*256kB (UME) 65*512kB (UM) 29*1024kB (UM) 6*2048kB (ME) 273*4096kB (UM) = 1297600kB
[  863.715767][ T9445] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[  863.715830][ T9445] Node 1 Normal: 224*4kB (UME) 63*8kB (UME) 44*16kB (UME) 201*32kB (UME) 97*64kB (UME) 32*128kB (UME) 16*256kB (UE) 8*512kB (UM) 2*1024kB (ME) 1*2048kB (E) 945*4096kB (M) = 3901848kB
[  863.715931][ T9445] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  863.715943][ T9445] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  863.715953][ T9445] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  863.715964][ T9445] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  863.715974][ T9445] 60275 total pagecache pages
[  863.715980][ T9445] 0 pages in swap cache
[  863.715984][ T9445] Free swap  = 124996kB
[  863.715989][ T9445] Total swap = 124996kB
[  863.715994][ T9445] 2097051 pages RAM
[  863.715999][ T9445] 0 pages HighMem/MovableOnly
[  863.716003][ T9445] 422079 pages reserved
[  863.716008][ T9445] 0 pages cma reserved
[  863.742105][    C1] vkms_vblank_simulate: vblank timer overrun
[  866.603718][ T9348] chnl_net:caif_netlink_parms(): no params data found
[  866.697940][ T9467] netlink: 8 bytes leftover after parsing attributes in process `syz.7.624'.
[  866.697957][ T9467] netlink: 8 bytes leftover after parsing attributes in process `syz.7.624'.
[  866.755179][ T9475] vimc link validate: Sensor A:src:640x480 (0x33424752, 8, 0, 0, 0) Raw Capture 0:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  867.394593][ T9474] syz.5.623 (9474): drop_caches: 2
[  869.733356][ T9487] netlink: 8 bytes leftover after parsing attributes in process `syz.0.626'.
[  869.733373][ T9487] netlink: 8 bytes leftover after parsing attributes in process `syz.0.626'.
[  869.868351][ T5840] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  869.887416][ T5840] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  869.888464][ T5840] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  869.889621][ T5840] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  869.890551][ T5840] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  871.393350][ T9348] bridge0: port 1(bridge_slave_0) entered blocking state
[  871.393499][ T9348] bridge0: port 1(bridge_slave_0) entered disabled state
[  871.393714][ T9348] bridge_slave_0: entered allmulticast mode
[  871.423648][ T9348] bridge_slave_0: entered promiscuous mode
[  871.445343][ T9348] bridge0: port 2(bridge_slave_1) entered blocking state
[  871.446882][ T9348] bridge0: port 2(bridge_slave_1) entered disabled state
[  871.447060][ T9348] bridge_slave_1: entered allmulticast mode
[  871.489271][ T9348] bridge_slave_1: entered promiscuous mode
[  871.920018][ T5840] Bluetooth: hci0: command tx timeout
[  875.428797][ T9511] input: syz0 as /devices/virtual/input/input7
[  875.665055][ T5840] Bluetooth: hci0: command tx timeout
[  877.677588][ T5840] Bluetooth: hci0: command tx timeout
[  877.679232][ T9518] netlink: 8 bytes leftover after parsing attributes in process `syz.5.633'.
[  877.679249][ T9518] netlink: 8 bytes leftover after parsing attributes in process `syz.5.633'.
[  877.812327][ T9348] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  877.965935][ T9348] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  879.757671][ T5840] Bluetooth: hci0: command tx timeout
[  880.190994][ T9348] team0: Port device team_slave_0 added
[  880.220823][ T9348] team0: Port device team_slave_1 added
[  880.242115][ T1323] ieee802154 phy0 wpan0: encryption failed: -22
[  880.242162][ T1323] ieee802154 phy1 wpan1: encryption failed: -22
[  880.986544][ T9348] batman_adv: batadv0: Adding interface: batadv_slave_0
[  880.986560][ T9348] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  880.986585][ T9348] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  881.064451][ T9348] batman_adv: batadv0: Adding interface: batadv_slave_1
[  881.064470][ T9348] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  881.064513][ T9348] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  881.463992][ T5158] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  881.474113][ T5158] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  881.514111][ T5158] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  881.692551][ T5158] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  881.725784][ T5158] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  883.262911][ T9549] netlink: 'syz.5.642': attribute type 9 has an invalid length.
[  884.539613][ T5158] Bluetooth: hci3: command tx timeout
[  886.736813][ T5158] Bluetooth: hci3: command tx timeout
[  888.482673][ T9569] netlink: 8 bytes leftover after parsing attributes in process `syz.0.647'.
[  888.482689][ T9569] netlink: 8 bytes leftover after parsing attributes in process `syz.0.647'.
[  888.797292][ T5158] Bluetooth: hci3: command tx timeout
[  889.436829][ T9348] hsr_slave_0: entered promiscuous mode
[  889.464748][ T9348] hsr_slave_1: entered promiscuous mode
[  890.890843][ T5158] Bluetooth: hci3: command tx timeout
[  893.051817][   T13] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  894.275939][   T13] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  895.480861][   T13] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  895.750383][ T9491] chnl_net:caif_netlink_parms(): no params data found
[  896.352705][   T13] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  896.482078][ T9599] syz.0.654 (9599): drop_caches: 2
[  897.258773][ T9609] netlink: 4 bytes leftover after parsing attributes in process `syz.0.655'.
[  897.662076][ T9613] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  897.665657][ T9613] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  899.783852][ T5840] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  899.790439][ T5840] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  899.803631][ T5840] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  899.804779][ T5840] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  899.806059][ T5840] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  900.286702][ T9491] bridge0: port 1(bridge_slave_0) entered blocking state
[  900.286868][ T9491] bridge0: port 1(bridge_slave_0) entered disabled state
[  900.287814][ T9491] bridge_slave_0: entered allmulticast mode
[  900.290698][ T9491] bridge_slave_0: entered promiscuous mode
[  900.531938][ T9491] bridge0: port 2(bridge_slave_1) entered blocking state
[  900.532078][ T9491] bridge0: port 2(bridge_slave_1) entered disabled state
[  900.532366][ T9491] bridge_slave_1: entered allmulticast mode
[  900.535510][ T9491] bridge_slave_1: entered promiscuous mode
[  902.001585][ T9491] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  902.077255][ T5158] Bluetooth: hci1: command tx timeout
[  902.092132][ T9491] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  902.489877][ T9491] team0: Port device team_slave_0 added
[  902.506629][ T9538] chnl_net:caif_netlink_parms(): no params data found
[  902.540991][ T9491] team0: Port device team_slave_1 added
[  902.541423][   T13] bridge_slave_1: left allmulticast mode
[  902.541440][   T13] bridge_slave_1: left promiscuous mode
[  902.541596][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[  902.621627][   T13] bridge_slave_0: left allmulticast mode
[  902.621650][   T13] bridge_slave_0: left promiscuous mode
[  902.621817][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[  904.157273][ T5158] Bluetooth: hci1: command tx timeout
[  904.533986][   T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  904.588067][   T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  904.612012][   T13] bond0 (unregistering): Released all slaves
[  904.940594][   T13] bond0 (unregistering): Released all slaves
[  905.115902][   T13] bond0 (unregistering): Released all slaves
[  905.286137][   T13] bond0 (unregistering): Released all slaves
[  905.899091][ T9491] batman_adv: batadv0: Adding interface: batadv_slave_0
[  905.899109][ T9491] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  905.899135][ T9491] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  905.924172][ T9491] batman_adv: batadv0: Adding interface: batadv_slave_1
[  905.924189][ T9491] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  905.924218][ T9491] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  906.237196][ T5158] Bluetooth: hci1: command tx timeout
[  906.641004][ T9538] bridge0: port 1(bridge_slave_0) entered blocking state
[  906.641216][ T9538] bridge0: port 1(bridge_slave_0) entered disabled state
[  906.641444][ T9538] bridge_slave_0: entered allmulticast mode
[  906.646946][ T9538] bridge_slave_0: entered promiscuous mode
[  906.791458][ T9538] bridge0: port 2(bridge_slave_1) entered blocking state
[  906.791585][ T9538] bridge0: port 2(bridge_slave_1) entered disabled state
[  906.791814][ T9538] bridge_slave_1: entered allmulticast mode
[  906.842027][ T9538] bridge_slave_1: entered promiscuous mode
[  906.867044][ T9491] hsr_slave_0: entered promiscuous mode
[  906.869375][ T9491] hsr_slave_1: entered promiscuous mode
[  906.870432][ T9491] debugfs: 'hsr0' already exists in 'hsr'
[  906.870458][ T9491] Cannot create hsr debugfs directory
[  907.543390][ T9538] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  907.573762][ T9538] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  907.850792][ T9538] team0: Port device team_slave_0 added
[  907.955839][ T9538] team0: Port device team_slave_1 added
[  908.153078][ T9617] chnl_net:caif_netlink_parms(): no params data found
[  908.178985][ T9538] batman_adv: batadv0: Adding interface: batadv_slave_0
[  908.179000][ T9538] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  908.179025][ T9538] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  908.327359][ T5158] Bluetooth: hci1: command tx timeout
[  908.404685][   T13] hsr_slave_0: left promiscuous mode
[  908.417229][   T13] hsr_slave_1: left promiscuous mode
[  908.418045][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  908.418070][   T13] batman_adv: batadv0: Removing interface: batadv_slave_0
[  908.468369][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  908.468397][   T13] batman_adv: batadv0: Removing interface: batadv_slave_1
[  908.552535][   T13] veth1_macvtap: left promiscuous mode
[  908.552647][   T13] veth0_macvtap: left promiscuous mode
[  908.552953][   T13] veth1_vlan: left promiscuous mode
[  908.553174][   T13] veth0_vlan: left promiscuous mode
[  911.059161][   T13] team0 (unregistering): Port device team_slave_1 removed
[  911.337997][   T13] team0 (unregistering): Port device team_slave_0 removed
[  914.219590][ T9538] batman_adv: batadv0: Adding interface: batadv_slave_1
[  914.219608][ T9538] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  914.219640][ T9538] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  914.926831][ T9538] hsr_slave_0: entered promiscuous mode
[  914.935006][ T9538] hsr_slave_1: entered promiscuous mode
[  914.935885][ T9538] debugfs: 'hsr0' already exists in 'hsr'
[  914.935908][ T9538] Cannot create hsr debugfs directory
[  915.062185][ T9617] bridge0: port 1(bridge_slave_0) entered blocking state
[  915.062437][ T9617] bridge0: port 1(bridge_slave_0) entered disabled state
[  915.062676][ T9617] bridge_slave_0: entered allmulticast mode
[  915.066600][ T9617] bridge_slave_0: entered promiscuous mode
[  915.218877][ T9617] bridge0: port 2(bridge_slave_1) entered blocking state
[  915.219033][ T9617] bridge0: port 2(bridge_slave_1) entered disabled state
[  915.219284][ T9617] bridge_slave_1: entered allmulticast mode
[  915.222292][ T9617] bridge_slave_1: entered promiscuous mode
[  915.896136][ T9617] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  916.053723][ T9617] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  916.341385][ T9617] team0: Port device team_slave_0 added
[  916.418740][ T9617] team0: Port device team_slave_1 added
[  916.871525][ T9617] batman_adv: batadv0: Adding interface: batadv_slave_0
[  916.871542][ T9617] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  916.871564][ T9617] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  916.928592][ T9617] batman_adv: batadv0: Adding interface: batadv_slave_1
[  916.928607][ T9617] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  916.928633][ T9617] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  917.303167][ T9617] hsr_slave_0: entered promiscuous mode
[  917.304655][ T9617] hsr_slave_1: entered promiscuous mode
[  917.305581][ T9617] debugfs: 'hsr0' already exists in 'hsr'
[  917.305603][ T9617] Cannot create hsr debugfs directory
[  917.333534][ T9491] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  917.459721][ T9491] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  917.502321][ T9491] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  917.506351][   T13] IPVS: stop unused estimator thread 0...
[  917.670594][ T9491] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  918.264955][ T9538] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  918.320734][   T13] bridge_slave_1: left allmulticast mode
[  918.320773][   T13] bridge_slave_1: left promiscuous mode
[  918.321051][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[  918.405679][   T13] bridge_slave_0: left allmulticast mode
[  918.405710][   T13] bridge_slave_0: left promiscuous mode
[  918.405965][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[  918.920982][   T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  919.002370][   T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  919.064713][   T13] bond0 (unregistering): Released all slaves
[  919.110878][ T9538] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  919.178018][ T9538] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  919.273073][ T9538] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  919.837408][   T13] hsr_slave_0: left promiscuous mode
[  919.895037][   T13] hsr_slave_1: left promiscuous mode
[  919.895895][   T13] batman_adv: batadv0: Removing interface: batadv_slave_0
[  919.925112][   T13] batman_adv: batadv0: Removing interface: batadv_slave_1
[  920.580417][   T13] team0 (unregistering): Port device team_slave_1 removed
[  920.738045][   T13] team0 (unregistering): Port device team_slave_0 removed
[  922.415467][ T9491] 8021q: adding VLAN 0 to HW filter on device bond0
[  922.570127][ T9491] 8021q: adding VLAN 0 to HW filter on device team0
[  922.598880][ T9538] 8021q: adding VLAN 0 to HW filter on device bond0
[  922.632153][ T4333] bridge0: port 1(bridge_slave_0) entered blocking state
[  922.632833][ T4333] bridge0: port 1(bridge_slave_0) entered forwarding state
[  922.692158][ T8027] bridge0: port 2(bridge_slave_1) entered blocking state
[  922.694670][ T8027] bridge0: port 2(bridge_slave_1) entered forwarding state
[  922.914889][ T9538] 8021q: adding VLAN 0 to HW filter on device team0
[  923.033613][ T4333] bridge0: port 1(bridge_slave_0) entered blocking state
[  923.033889][ T4333] bridge0: port 1(bridge_slave_0) entered forwarding state
[  923.077902][ T9617] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  923.144785][ T9617] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  923.204275][ T8028] bridge0: port 2(bridge_slave_1) entered blocking state
[  923.205080][ T8028] bridge0: port 2(bridge_slave_1) entered forwarding state
[  923.228485][ T9617] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  923.291654][ T9617] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  923.954559][ T9617] 8021q: adding VLAN 0 to HW filter on device bond0
[  924.017796][ T9617] 8021q: adding VLAN 0 to HW filter on device team0
[  924.031270][ T8027] bridge0: port 1(bridge_slave_0) entered blocking state
[  924.037334][ T8027] bridge0: port 1(bridge_slave_0) entered forwarding state
[  924.100090][ T8027] bridge0: port 2(bridge_slave_1) entered blocking state
[  924.100250][ T8027] bridge0: port 2(bridge_slave_1) entered forwarding state
[  924.385106][ T9491] 8021q: adding VLAN 0 to HW filter on device batadv0
[  924.482337][ T9538] 8021q: adding VLAN 0 to HW filter on device batadv0
[  925.069124][ T9617] 8021q: adding VLAN 0 to HW filter on device batadv0
[  925.581126][ T9538] veth0_vlan: entered promiscuous mode
[  925.679846][ T9538] veth1_vlan: entered promiscuous mode
[  925.755388][ T9491] veth0_vlan: entered promiscuous mode
[  925.818838][ T9491] veth1_vlan: entered promiscuous mode
[  925.931728][ T9538] veth0_macvtap: entered promiscuous mode
[  925.985791][ T9538] veth1_macvtap: entered promiscuous mode
[  926.151136][ T9491] veth0_macvtap: entered promiscuous mode
[  926.187657][ T9538] batman_adv: batadv0: Interface activated: batadv_slave_0
[  926.254800][ T9538] batman_adv: batadv0: Interface activated: batadv_slave_1
[  926.269072][ T9617] veth0_vlan: entered promiscuous mode
[  926.368423][   T13] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  926.372765][   T13] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  926.393290][   T13] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  926.408213][ T9617] veth1_vlan: entered promiscuous mode
[  926.409642][   T13] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  926.866245][ T9617] veth0_macvtap: entered promiscuous mode
[  926.970257][ T9617] veth1_macvtap: entered promiscuous mode
[  926.975702][ T1406] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  926.975721][ T1406] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  927.107601][ T4333] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  927.107624][ T4333] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  927.672534][ T9617] batman_adv: batadv0: Interface activated: batadv_slave_0
[  927.746340][ T9617] batman_adv: batadv0: Interface activated: batadv_slave_1
[  927.815477][ T1406] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  927.816026][ T1406] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  927.817007][ T1406] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  927.846208][ T1406] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  928.484330][ T9824] evm: overlay not supported
[  928.932025][ T9822] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  928.937851][ T5840] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  929.025705][ T5840] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  929.048722][ T5840] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  929.049779][ T5840] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  931.515151][ T5158] Bluetooth: hci0: command tx timeout
[  933.538119][ T5158] Bluetooth: hci0: command tx timeout
[  934.112334][ T9843] netlink: 8 bytes leftover after parsing attributes in process `syz.5.664'.
[  934.112353][ T9843] netlink: 8 bytes leftover after parsing attributes in process `syz.5.664'.
[  935.764223][ T5158] Bluetooth: hci0: command tx timeout
[  938.226442][ T5158] Bluetooth: hci0: command tx timeout
[  938.649601][ T9851] syz.9.665 (9851): drop_caches: 2
[  939.281366][ T9878] loop6: detected capacity change from 0 to 7
[  939.335447][ T9878] Dev loop6: unable to read RDB block 7
[  939.335757][ T9878]  loop6: unable to read partition table
[  939.341097][ T9878] loop6: partition table beyond EOD, truncated
[  939.341173][ T9878] loop_reread_partitions: partition scan of loop6 (þ被xü—ŸÑà– ) failed (rc=-5)
[  940.889238][ T9885] vivid-001: disconnect
[  940.926375][ T9885] Bluetooth: MGMT ver 1.23
[  941.636653][ T9889] vivid-001: reconnect
[  941.684697][ T1323] ieee802154 phy0 wpan0: encryption failed: -22
[  941.684787][ T1323] ieee802154 phy1 wpan1: encryption failed: -22
[  942.085971][ T9900] ubi: mtd0 is already attached to ubi31
[  943.902031][ T9907] workqueue: Failed to create a rescuer kthread for wq "ceph-watch-notify": -EINTR
[  944.247236][ T4333] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  944.247259][ T4333] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  944.492057][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  944.492076][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  945.224556][ T9815] chnl_net:caif_netlink_parms(): no params data found
[  946.589105][ T8028] bridge_slave_1: left allmulticast mode
[  946.777826][ T9930] netlink: 44 bytes leftover after parsing attributes in process `syz.9.687'.
[  946.797870][ T8028] bridge_slave_1: left promiscuous mode
[  946.798183][ T8028] bridge0: port 2(bridge_slave_1) entered disabled state
[  946.811322][ T9940] binder: BINDER_SET_CONTEXT_MGR already set
[  946.811334][ T9940] binder: 9929:9940 ioctl 4018620d 200000000040 returned -16
[  947.268171][ T8028] bridge_slave_0: left allmulticast mode
[  947.268203][ T8028] bridge_slave_0: left promiscuous mode
[  947.269042][ T8028] bridge0: port 1(bridge_slave_0) entered disabled state
[  951.165617][ T9959] ptrace attach of "./syz-executor exec"[5839] was attempted by "./syz-executor exec"[9959]
[  952.294965][ T9972] netlink: 8 bytes leftover after parsing attributes in process `syz.0.679'.
[  952.295038][ T9972] netlink: 60 bytes leftover after parsing attributes in process `syz.0.679'.
[  954.294420][ T9968] syz.6.682 (9968): drop_caches: 2
[  955.467427][    C1] vkms_vblank_simulate: vblank timer overrun
[  955.692077][    C1] vkms_vblank_simulate: vblank timer overrun
[  955.773666][    C1] vkms_vblank_simulate: vblank timer overrun
[  955.937243][    C1] vkms_vblank_simulate: vblank timer overrun
[  955.940258][ T9978] workqueue: Failed to create a rescuer kthread for wq "ceph-completion": -EINTR
[  956.056328][    C1] vkms_vblank_simulate: vblank timer overrun
[  957.638455][    C1] vkms_vblank_simulate: vblank timer overrun
[  957.849941][    C1] vkms_vblank_simulate: vblank timer overrun
[  958.378868][    C1] vkms_vblank_simulate: vblank timer overrun
[  959.273576][ T9994] netlink: 8 bytes leftover after parsing attributes in process `syz.0.690'.
[  959.273594][ T9994] netlink: 8 bytes leftover after parsing attributes in process `syz.0.690'.
[  960.157884][ T8028] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  960.257936][ T8028] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  960.358824][ T8028] bond0 (unregistering): Released all slaves
[  960.874633][    C1] vkms_vblank_simulate: vblank timer overrun
[  962.143704][    C1] vkms_vblank_simulate: vblank timer overrun
[  962.644301][    C1] vkms_vblank_simulate: vblank timer overrun
[  963.096194][    C1] vkms_vblank_simulate: vblank timer overrun
[  963.892112][    C1] vkms_vblank_simulate: vblank timer overrun
[  964.921175][    C1] vkms_vblank_simulate: vblank timer overrun
[  965.094062][T10034] MTD: Attempt to mount non-MTD device "/dev/nullb0"
[  965.156323][    C1] vkms_vblank_simulate: vblank timer overrun
[  965.275842][T10034] cramfs: wrong magic
[  966.130041][    C1] vkms_vblank_simulate: vblank timer overrun
[  966.263811][T10036] Bluetooth: MGMT ver 1.23
[  967.636931][    C1] vkms_vblank_simulate: vblank timer overrun
[  968.959218][T10049] workqueue: Failed to create a rescuer kthread for wq "ceph-completion": -EINTR
[  970.052497][T10056] BFS-fs: bfs_fill_super(): No BFS filesystem on nullb0 (magic=00000000)
[  971.032466][T10056] orangefs_mount: mount request failed with -4
[  971.044001][ T9815] bridge0: port 1(bridge_slave_0) entered blocking state
[  971.044125][ T9815] bridge0: port 1(bridge_slave_0) entered disabled state
[  971.044348][ T9815] bridge_slave_0: entered allmulticast mode
[  971.262838][ T9815] bridge_slave_0: entered promiscuous mode
[  972.479285][T10061] netlink: 8 bytes leftover after parsing attributes in process `syz.5.703'.
[  972.479312][T10061] netlink: 8 bytes leftover after parsing attributes in process `syz.5.703'.
[  973.177674][ T8028] hsr_slave_0: left promiscuous mode
[  973.497155][ T8028] hsr_slave_1: left promiscuous mode
[  973.498084][ T8028] batman_adv: batadv0: Removing interface: batadv_slave_0
[  973.506548][T10087] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  973.687749][ T8028] batman_adv: batadv0: Removing interface: batadv_slave_1
[  975.188864][ T8028] veth0_macvtap: left promiscuous mode
[  975.326571][ T8028] veth1_vlan: left promiscuous mode
[  975.326805][ T8028] veth0_vlan: left promiscuous mode
[  976.424082][T10111] ubi: mtd0 is already attached to ubi31
[  978.165543][    C1] vkms_vblank_simulate: vblank timer overrun
[  978.810308][    C1] vkms_vblank_simulate: vblank timer overrun
[  981.030337][    C1] vkms_vblank_simulate: vblank timer overrun
[  981.075962][T10128] netlink: 8 bytes leftover after parsing attributes in process `syz.0.716'.
[  981.075978][T10128] netlink: 8 bytes leftover after parsing attributes in process `syz.0.716'.
[  981.405805][T10136] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  981.790555][    C1] vkms_vblank_simulate: vblank timer overrun
[  981.992436][T10137] BFS-fs: bfs_fill_super(): No BFS filesystem on nullb0 (magic=00000000)
[  982.169650][    C1] vkms_vblank_simulate: vblank timer overrun
[  982.221807][ T5158] Bluetooth: hci3: command tx timeout
[  982.468284][    C1] vkms_vblank_simulate: vblank timer overrun
[  982.855211][T10137] orangefs_mount: mount request failed with -4
[  983.488132][T10145] ptrace attach of "./syz-executor exec"[5839] was attempted by "                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                              
[  983.949178][    C0] vkms_vblank_simulate: vblank timer overrun
[  984.624625][    C0] vkms_vblank_simulate: vblank timer overrun
[  985.374401][    C0] vkms_vblank_simulate: vblank timer overrun
[  985.715713][    C0] vkms_vblank_simulate: vblank timer overrun
[  985.948304][    C0] vkms_vblank_simulate: vblank timer overrun
[  986.004504][    C0] vkms_vblank_simulate: vblank timer overrun
[  986.614854][    C0] vkms_vblank_simulate: vblank timer overrun
[  986.777128][    C0] vkms_vblank_simulate: vblank timer overrun
[  986.908654][    C0] vkms_vblank_simulate: vblank timer overrun
[  986.937961][    C0] vkms_vblank_simulate: vblank timer overrun
[  987.505344][    C0] vkms_vblank_simulate: vblank timer overrun
[  987.947921][    C0] vkms_vblank_simulate: vblank timer overrun
[  988.010436][    C0] vkms_vblank_simulate: vblank timer overrun
[  988.835402][    C0] vkms_vblank_simulate: vblank timer overrun
[  989.017395][    C0] vkms_vblank_simulate: vblank timer overrun
[  989.186115][    C0] vkms_vblank_simulate: vblank timer overrun
[  989.663159][T10175] ubi: mtd0 is already attached to ubi31
[  991.526493][ T5840] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  991.548053][ T5840] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  991.550064][ T5840] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  991.574000][ T5840] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  991.584324][ T5840] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  992.550845][ T8028] team0 (unregistering): Port device team_slave_1 removed
[  993.737058][ T5158] Bluetooth: hci4: command tx timeout
[  993.831080][T10189] netlink: 8 bytes leftover after parsing attributes in process `syz.5.729'.
[  993.831099][T10189] netlink: 8 bytes leftover after parsing attributes in process `syz.5.729'.
[  994.103505][    C1] vkms_vblank_simulate: vblank timer overrun
[  994.783640][    C1] vkms_vblank_simulate: vblank timer overrun
[  995.170890][    C1] vkms_vblank_simulate: vblank timer overrun
[  995.685410][    C1] vkms_vblank_simulate: vblank timer overrun
[  995.686506][ T8028] team0 (unregistering): Port device team_slave_0 removed
[  995.767250][ T5158] Bluetooth: hci4: command tx timeout
[  997.038713][T10205] netlink: 8 bytes leftover after parsing attributes in process `syz.9.733'.
[  997.038729][T10205] netlink: 8 bytes leftover after parsing attributes in process `syz.9.733'.
[  997.847344][ T5158] Bluetooth: hci4: command tx timeout
[  998.206079][    C1] vkms_vblank_simulate: vblank timer overrun
[  999.917412][ T5158] Bluetooth: hci4: command tx timeout
[  999.970017][ T9815] bridge0: port 2(bridge_slave_1) entered blocking state
[  999.970253][ T9815] bridge0: port 2(bridge_slave_1) entered disabled state
[  999.970546][ T9815] bridge_slave_1: entered allmulticast mode
[  999.973528][ T9815] bridge_slave_1: entered promiscuous mode
[ 1000.905364][T10179] chnl_net:caif_netlink_parms(): no params data found
[ 1001.712515][T10179] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1001.712718][T10179] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1001.712905][T10179] bridge_slave_0: entered allmulticast mode
[ 1001.715539][T10179] bridge_slave_0: entered promiscuous mode
[ 1001.751849][T10179] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1001.751996][T10179] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1001.752194][T10179] bridge_slave_1: entered allmulticast mode
[ 1001.754729][T10179] bridge_slave_1: entered promiscuous mode
[ 1002.094570][ T8028] bridge_slave_1: left allmulticast mode
[ 1002.094604][ T8028] bridge_slave_1: left promiscuous mode
[ 1002.094868][ T8028] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1002.160079][ T8028] bridge_slave_0: left allmulticast mode
[ 1002.160112][ T8028] bridge_slave_0: left promiscuous mode
[ 1002.160398][ T8028] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1002.471278][ T8028] bond0 (unregistering): Released all slaves
[ 1002.517843][T10179] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1002.603206][T10179] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1002.898568][T10179] team0: Port device team_slave_0 added
[ 1003.134725][ T1323] ieee802154 phy0 wpan0: encryption failed: -22
[ 1003.134788][ T1323] ieee802154 phy1 wpan1: encryption failed: -22
[ 1003.296228][T10179] team0: Port device team_slave_1 added
[ 1003.519790][T10179] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1003.519804][T10179] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1003.519825][T10179] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1003.521471][T10179] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1003.521484][T10179] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1003.521513][T10179] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1003.958897][T10179] hsr_slave_0: entered promiscuous mode
[ 1003.960335][T10179] hsr_slave_1: entered promiscuous mode
[ 1005.202330][ T5158] Bluetooth: hci3: command 0x0406 tx timeout
[ 1005.696088][T10179] netdevsim netdevsim8 netdevsim0: renamed from eth0
[ 1005.753029][T10179] netdevsim netdevsim8 netdevsim1: renamed from eth1
[ 1005.804396][T10179] netdevsim netdevsim8 netdevsim2: renamed from eth2
[ 1005.876713][T10179] netdevsim netdevsim8 netdevsim3: renamed from eth3
[ 1006.124393][T10179] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1006.152921][T10179] 8021q: adding VLAN 0 to HW filter on device team0
[ 1006.201519][ T1457] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1006.201846][ T1457] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1006.240252][   T43] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1006.240428][   T43] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1006.763064][T10179] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1007.323761][T10179] veth0_vlan: entered promiscuous mode
[ 1007.353295][T10179] veth1_vlan: entered promiscuous mode
[ 1007.418129][T10179] veth0_macvtap: entered promiscuous mode
[ 1007.423311][T10179] veth1_macvtap: entered promiscuous mode
[ 1007.466312][T10179] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1007.484579][T10179] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1007.522938][ T8028] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1007.538821][ T8028] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1007.540119][ T8028] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1007.541404][ T8028] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1007.889914][ T1406] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1007.889938][ T1406] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1008.056082][   T43] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1008.056103][   T43] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1011.210024][T10376] workqueue: Failed to create a rescuer kthread for wq "ceph-watch-notify": -EINTR
[ 1012.618439][T10383] tty tty33: ldisc open failed (-12), clearing slot 32
[ 1019.630499][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1019.922179][T10421] netlink: 8 bytes leftover after parsing attributes in process `syz.0.739'.
[ 1020.628058][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1021.210850][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1021.352079][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1021.710851][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1022.132938][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1022.165673][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1022.799483][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1023.043109][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1023.248400][T10447] binder: BC_ATTEMPT_ACQUIRE not supported
[ 1023.248467][T10447] binder: 10441:10447 ioctl c0306201 2000000001c0 returned -22
[ 1023.299292][T10447] delete_channel: no stack
[ 1023.351275][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1024.080665][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1025.961287][T10455] workqueue: Failed to create a rescuer kthread for wq "ceph-watch-notify": -EINTR
[ 1026.391596][ T5840] Bluetooth: hci1: command 0x0406 tx timeout
[ 1028.064238][T10469] ADFS-fs (nullb0): error: can't find an ADFS filesystem on dev nullb0.
[ 1028.524320][T10470] ptm ptm0: ldisc open failed (-12), clearing slot 0
[ 1030.696653][T10485] vhci_hcd vhci_hcd.0: pdev(8) rhport(0) sockfd(9)
[ 1030.698459][T10485] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[ 1030.715161][T10485] vhci_hcd vhci_hcd.0: Device attached
[ 1031.308811][T10487] vhci_hcd: connection closed
[ 1031.477800][T10130] vhci_hcd: stop threads
[ 1031.479190][T10130] vhci_hcd: release socket
[ 1031.599808][T10130] vhci_hcd: disconnect device
[ 1032.502067][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1032.588405][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1033.055873][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1033.341637][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1033.795549][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1034.033096][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1034.717609][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1035.103323][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1035.143657][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1035.274498][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1036.021718][T10512] binder: BC_ATTEMPT_ACQUIRE not supported
[ 1036.021734][T10512] binder: 10503:10512 ioctl c0306201 2000000001c0 returned -22
[ 1036.025201][T10512] delete_channel: no stack
[ 1042.038580][T10536] input: syz0 as /devices/virtual/input/input10
[ 1048.953422][T10578] ptrace attach of "./syz-executor exec"[9538] was attempted by "                                                                ú“\x0c¬¹H;¤'ýëãSde/È�|¥zPüÚиWåÌ\x0b”PŠ<ÇI7ô{‚ŸûWr•×¢Ó‡am�L5Ûï{ô„Þ¶-Ú¨ÜøžØ¸­…›¼»E“fŽYSõ7£?šVê½sˆëŒ\x0b†MÈüÚáÐ÷Æ`ÖÓðg‰ï°Ø±/â—’ýäUéµCŽÎ�öOGËDn›û\x07Âæw™¹m}O²ñq¦ã�¬�p×]ŒðK|I(Ùïó‹9¯/èk¾ìY_¡Ö¤vqyØóÿ×rƲÈ.+/ñnîyŠ]§6ÖB\x5c
*‰ÈõLo§Ÿ× …\x0a ¢BÚ\x0dáÛAnÿë¬õ\x0bptQU�olLê„ÓobBàÀM¦ñÖãóȹ.š»T3#(Dª\x1bªº˜™ä?-íMóŠMÞ\x0dÅ{ÞX¯óâ˜Lhl1G‡J(°ï‰Ÿ™\x0a˜«À¹\x07ê‚b\x0cf¸Û\x5c–L™e#ç½y„wÝO%Ë0õ¥,Ž¨zÇ‚œrÏ\x5cHô\x22ý@)EâlĪoª´=æÉ0}Æ|šö�¶—m ÀÉ~ŽM÷ÏUK\x0býQoDU1h$étïQf‘\x0b½;\x0bvNõT/ñörP£Àx0mþ؇dG>Ît5QêI§¡šÝ0kŸópžì”;†€Èî©tÒ>?7~ðéÕžþç8ç)>‡\x0a.Fâv\x5c0CPª{©\x07Ô­4OT)®¥ü%ù³DkfCkF ç±¥�;¡Ðm\x0c•vä\x0cTʪz5©ñmÖ¢´�—ïvÜÄà‰Ä«'c®üß^ت°g_\x0bÆ��…8±)c,¨(qøáeäB¾ðãã‘»SPt4äo¹ 
¾I„HwL#©–@mU¡pªE¢^aÒÉgh~d¬_ö­9\x07r|ÖçGJj+&Ò½k(‘\x07”êërnéE§4¼(ŸõÇó#ë×\x0b YÅβBÇäˆ\x0aЦ&ÆþRý�`µ?èóL1t¸Ž÷ÎÕ«wËÑ.Mç=3ª|G‹÷ƒ“sùmƒgî4`|\x22{б�춋¬½†1â[{�þȯw/B‹_g»6-òqyk*™o¯’\x0d\x5cc8ÀèÌÿ\x5
[ 1049.155699][T10579] netlink: 'syz.9.778': attribute type 2 has an invalid length.
[ 1049.155771][T10579] netlink: 1184 bytes leftover after parsing attributes in process `syz.9.778'.
[ 1051.079770][T10584] vimc link validate: Sensor A:src:16x16 (0x33424752, 12, 0, 5, 2) Raw Capture 0:snk:640x480 (0x33424752, 8, 0, 0, 0)
[ 1052.607444][T10593] overlayfs: failed to resolve './file0': -2
[ 1053.894693][T10589] netlink: 8 bytes leftover after parsing attributes in process `syz.0.783'.
[ 1053.894710][T10589] netlink: 8 bytes leftover after parsing attributes in process `syz.0.783'.
[ 1056.587830][T10618] block nbd5: Attempted send on invalid socket
[ 1056.587856][T10618] I/O error, dev nbd5, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1
[ 1056.589716][T10618] ADFS-fs (nbd5): error: unable to read block 3, try 0
[ 1060.058811][ T5928] IPVS: starting estimator thread 0...
[ 1060.157283][T10639] IPVS: using max 7 ests per chain, 16800 per kthread
[ 1063.204166][T10667] netlink: 36 bytes leftover after parsing attributes in process `syz.0.796'.
[ 1063.480068][T10663] 9pnet: Could not find request transport: fd0x0000000000000003
[ 1064.104360][T10684] input: syz0 as /devices/virtual/input/input11
[ 1064.568014][ T1323] ieee802154 phy0 wpan0: encryption failed: -22
[ 1064.568104][ T1323] ieee802154 phy1 wpan1: encryption failed: -22
[ 1066.579586][T10697] netlink: 8 bytes leftover after parsing attributes in process `syz.0.804'.
[ 1066.579605][T10697] netlink: 8 bytes leftover after parsing attributes in process `syz.0.804'.
[ 1067.783140][T10707] BFS-fs: bfs_fill_super(): No BFS filesystem on nullb0 (magic=00000000)
[ 1077.541336][   T37] audit: type=1326 audit(1757995719.081:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10731 comm="syz.9.812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2ef93eba9 code=0x7ffc0000
[ 1077.541740][   T37] audit: type=1326 audit(1757995719.081:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10731 comm="syz.9.812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2ef93eba9 code=0x7ffc0000
[ 1077.654089][   T37] audit: type=1326 audit(1757995719.191:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10731 comm="syz.9.812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fc2ef93eba9 code=0x7ffc0000
[ 1077.654151][   T37] audit: type=1326 audit(1757995719.191:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10731 comm="syz.9.812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2ef93eba9 code=0x7ffc0000
[ 1077.654200][   T37] audit: type=1326 audit(1757995719.191:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10731 comm="syz.9.812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2ef93eba9 code=0x7ffc0000
[ 1077.658900][   T37] audit: type=1326 audit(1757995719.201:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10731 comm="syz.9.812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7fc2ef93eba9 code=0x7ffc0000
[ 1077.658964][   T37] audit: type=1326 audit(1757995719.201:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10731 comm="syz.9.812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2ef93eba9 code=0x7ffc0000
[ 1077.659018][   T37] audit: type=1326 audit(1757995719.201:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10731 comm="syz.9.812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2ef93eba9 code=0x7ffc0000
[ 1077.668229][   T37] audit: type=1326 audit(1757995719.211:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10731 comm="syz.9.812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7fc2ef93eba9 code=0x7ffc0000
[ 1077.668292][   T37] audit: type=1326 audit(1757995719.211:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10731 comm="syz.9.812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2ef93eba9 code=0x7ffc0000
[ 1078.157510][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1078.825733][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1079.596962][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1079.771532][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1079.843269][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1080.047691][T10736] sctp: failed to load transform for md5: -4
[ 1080.657600][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1080.757474][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1080.941341][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1081.069303][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1081.164404][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1081.211940][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1082.497263][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1083.040733][T10779] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1085.910356][T10796] CUSE: unknown device info "�KJéH+ßãÛ¤2Lh¸änLþ1Õ`†CcÝòn§õ†îì8­¨×0º©®(À3Õ¶ië®â>f¡Çè_Ù®,�°
ð<Ö_e¤FÀÆ"
[ 1085.910379][T10796] CUSE: unknown device info "3�ÜŸ•,²¥Ì˜õ"
[ 1085.910392][T10796] CUSE: unknown device info "Jô©Ð2SZûü !e/ëÅúãõž‘­J½+-n´¸a4¼ßØÁDÿ|G$öó­5O~©q	´ƒ
[ 1085.910392][T10796] f𳦧ìýzóÚXÁSAäx¡Ùjª½T¾Ç”¨åw—üæšxR�É�Q÷®(hÒ�j	pøVdY0¨Æ|M?2JÿúIšvö^
RÎ@´å"
[ 1085.910411][T10796] CUSE: unknown device info "!ToÛ}Ý�&|L+U²®oæõϲ±„Ð"–¨FstVµ:׌E•gJºî‹ÂÁ<@cÁ”²ûŽ4ÊTáM˜M|©·š‚ô"
[ 1085.910425][T10796] CUSE: DEVNAME unspecified
[ 1085.922776][   T37] kauditd_printk_skb: 43 callbacks suppressed
[ 1085.922820][   T37] audit: type=1326 audit(1757995727.451:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10789 comm="syz.5.823" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd9247feba9 code=0x0
[ 1087.875494][T10783] syz.9.822 (10783) used greatest stack depth: 16104 bytes left
[ 1092.463464][T10836] netlink: 36 bytes leftover after parsing attributes in process `syz.9.828'.
[ 1093.861237][T10828] 9pnet: Could not find request transport: fd0x0000000000000003
[ 1094.854860][T10847] comedi comedi2: Buffer allocation failed
[ 1097.238299][T10861] netlink: 8 bytes leftover after parsing attributes in process `syz.5.833'.
[ 1097.684232][T10870] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci4/hci4:200/input12
[ 1098.164289][T10871] netlink: 8 bytes leftover after parsing attributes in process `syz.0.838'.
[ 1098.164318][T10871] netlink: 8 bytes leftover after parsing attributes in process `syz.0.838'.
[ 1099.487932][T10893] mmap: syz.9.843 (10893) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[ 1100.278304][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1100.959752][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1101.332160][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1101.811569][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1102.013458][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1102.275275][ T9711] usb 7-1: new full-speed USB device number 2 using dummy_hcd
[ 1102.759398][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1102.886942][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1103.025228][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1103.295405][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1103.335298][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1103.563318][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1103.586270][ T9711] usb 7-1: device descriptor read/all, error -71
[ 1104.139592][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1104.411703][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1104.477667][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1104.578913][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1104.983664][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1105.500319][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1105.563974][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1108.271926][T10954] netlink: 12 bytes leftover after parsing attributes in process `syz.6.852'.
[ 1108.272116][T10954] netlink: 12 bytes leftover after parsing attributes in process `syz.6.852'.
[ 1108.292025][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1108.732748][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1109.718006][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1110.053792][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1111.013523][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1111.461953][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1111.555587][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1111.761081][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1112.535827][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1112.663023][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1112.751151][T10985] netlink: 8 bytes leftover after parsing attributes in process `syz.0.860'.
[ 1112.773654][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1112.998063][T10985] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_cmd_wq": -EINTR
[ 1112.998969][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1116.514423][T11015] netlink: 20 bytes leftover after parsing attributes in process `syz.8.866'.
[ 1117.099358][T11015] netlink: 8 bytes leftover after parsing attributes in process `syz.8.866'.
[ 1117.724626][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1122.377170][ T9711] usb 10-1: new high-speed USB device number 2 using dummy_hcd
[ 1122.538992][ T9711] usb 10-1: Using ep0 maxpacket: 32
[ 1122.561129][ T9711] usb 10-1: config 0 interface 0 has no altsetting 0
[ 1122.564654][ T9711] usb 10-1: New USB device found, idVendor=2a39, idProduct=3f8c, bcdDevice=e8.95
[ 1122.564681][ T9711] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1122.564700][ T9711] usb 10-1: Product: syz
[ 1122.564715][ T9711] usb 10-1: Manufacturer: syz
[ 1122.564728][ T9711] usb 10-1: SerialNumber: syz
[ 1122.576780][ T5927] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[ 1123.643098][ T9711] usb 10-1: config 0 descriptor??
[ 1123.739657][ T5927] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0
[ 1123.739691][ T5927] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0xA has an invalid bInterval 0, changing to 7
[ 1123.751740][ T5927] usb 6-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[ 1123.751768][ T5927] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1123.751787][ T5927] usb 6-1: Product: syz
[ 1123.751800][ T5927] usb 6-1: Manufacturer: syz
[ 1123.751813][ T5927] usb 6-1: SerialNumber: syz
[ 1124.094030][ T5927] usb 6-1: config 0 descriptor??
[ 1124.768230][ T9711] snd-usb-audio 10-1:0.0: probe with driver snd-usb-audio failed with error -22
[ 1124.770372][ T5927] usb 6-1: 0:0 : invalid sync pipe. is_playback 1, ep 0a, bSynchAddress 07
[ 1124.771857][ T9711] usb 10-1: USB disconnect, device number 2
[ 1125.514823][T10718] udevd[10718]: error opening ATTR{/sys/devices/platform/dummy_hcd.9/usb10/10-1/10-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1125.678974][ T5927] usb 6-1: USB disconnect, device number 5
[ 1125.723845][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1125.959055][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1126.081737][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1126.099692][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1126.254029][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1126.287654][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1126.418434][ T1323] ieee802154 phy0 wpan0: encryption failed: -22
[ 1126.436312][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1126.457059][ T1323] ieee802154 phy1 wpan1: encryption failed: -22
[ 1126.894561][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1126.973609][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1127.147900][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1127.180958][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1127.294804][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1127.405240][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1127.501954][T11069] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1127.537532][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1129.209756][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1129.375354][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1129.490760][T11095] udevd[11095]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1130.597095][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1131.000118][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1131.155639][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1131.323474][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1131.832312][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1132.146839][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1132.201478][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1132.237870][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1133.824106][ T5158] Bluetooth: hci3: unexpected event for opcode 0x1804
[ 1134.235372][ T5158] Bluetooth: hci1: unexpected event for opcode 0x200c
[ 1134.869472][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1137.107367][   T37] audit: type=1326 audit(1757995778.651:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11151 comm="syz.5.900" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd9247feba9 code=0x0
[ 1138.450483][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1138.478078][ T5158] Bluetooth: hci3: Malformed HCI Event
[ 1138.596378][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1138.666888][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1139.160406][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1139.386397][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1140.914693][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1141.016243][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1141.445292][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1141.724780][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1141.925724][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1142.083864][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1143.577191][ T9711] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[ 1144.504979][ T9711] usb 6-1: too many configurations: 65, using maximum allowed: 8
[ 1144.506686][ T9711] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1144.527773][ T9711] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1144.531626][ T9711] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1144.538145][ T9711] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1145.107097][ T9711] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1145.317970][ T5158] Bluetooth: hci1: unexpected event for opcode 0x2043
[ 1145.485748][ T9711] usb 6-1: unable to read config index 5 descriptor/start: -71
[ 1145.485784][ T9711] usb 6-1: can't read configurations, error -71
[ 1145.579565][T11199] netlink: 8 bytes leftover after parsing attributes in process `syz.8.913'.
[ 1145.579581][T11199] netlink: 8 bytes leftover after parsing attributes in process `syz.8.913'.
[ 1145.708033][ T5158] Bluetooth: hci5: unexpected event for opcode 0x2024
[ 1146.150671][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1147.207095][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1148.343447][ T6333] usb 7-1: new low-speed USB device number 4 using dummy_hcd
[ 1148.789465][T11255] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1148.813127][ T6333] usb 7-1: descriptor type invalid, skip
[ 1148.813149][ T6333] usb 7-1: No LPM exit latency info found, disabling LPM.
[ 1148.835256][ T6333] usb 7-1: config 1 interface 0 altsetting 248 endpoint 0x82 is Bulk; changing to Interrupt
[ 1148.835289][ T6333] usb 7-1: config 1 interface 0 altsetting 248 endpoint 0x3 is Bulk; changing to Interrupt
[ 1148.835313][ T6333] usb 7-1: config 1 interface 0 has no altsetting 0
[ 1148.900273][ T6333] usb 7-1: string descriptor 0 read error: -22
[ 1148.900449][ T6333] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1148.900478][ T6333] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1148.920148][T11244] raw-gadget.1 gadget.6: fail, usb_ep_enable returned -22
[ 1148.920340][T11244] raw-gadget.1 gadget.6: fail, usb_ep_enable returned -22
[ 1149.070855][ T6333] cdc_ether 7-1:1.0: probe with driver cdc_ether failed with error -22
[ 1149.177354][ T6333] usb 7-1: USB disconnect, device number 4
[ 1149.388342][ T5158] Bluetooth: hci5: unexpected event for opcode 0x0804
[ 1150.498476][T11285] input: syz1 as /devices/virtual/input/input13
[ 1151.216143][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1151.554631][T11285] netlink: 28 bytes leftover after parsing attributes in process `syz.8.935'.
[ 1152.461436][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1153.614479][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1153.770077][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1154.798937][ T5158] Bluetooth: hci5: unknown advertising packet type: 0xf1
[ 1155.077096][ T9711] usb 10-1: new high-speed USB device number 3 using dummy_hcd
[ 1155.227248][ T9711] usb 10-1: Using ep0 maxpacket: 8
[ 1155.229208][ T9711] usb 10-1: config 126 has an invalid interface number: 10 but max is 0
[ 1155.229225][ T9711] usb 10-1: config 126 has no interface number 0
[ 1155.231402][ T9711] usb 10-1: New USB device found, idVendor=0f3d, idProduct=68aa, bcdDevice=10.22
[ 1155.231419][ T9711] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1155.231431][ T9711] usb 10-1: Product: syz
[ 1155.231440][ T9711] usb 10-1: Manufacturer: syz
[ 1155.231449][ T9711] usb 10-1: SerialNumber: syz
[ 1155.310523][ T9711] usb 10-1: Expected 3 endpoints, found: 0
[ 1155.686452][ T9711] usb 10-1: USB disconnect, device number 3
[ 1157.006242][T11338] netlink: 8 bytes leftover after parsing attributes in process `syz.5.950'.
[ 1157.006260][T11338] netlink: 8 bytes leftover after parsing attributes in process `syz.5.950'.
[ 1157.554220][T11358] netlink: 28 bytes leftover after parsing attributes in process `syz.9.957'.
[ 1157.554246][T11358] netlink: 28 bytes leftover after parsing attributes in process `syz.9.957'.
[ 1158.057152][ T9711] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[ 1158.212421][ T9711] usb 7-1: Using ep0 maxpacket: 8
[ 1158.214950][ T9711] usb 7-1: config 0 has an invalid interface number: 31 but max is 0
[ 1158.214987][ T9711] usb 7-1: config 0 has no interface number 0
[ 1158.275906][ T9711] usb 7-1: New USB device found, idVendor=046d, idProduct=08c3, bcdDevice=6b.16
[ 1158.275926][ T9711] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1158.275939][ T9711] usb 7-1: Product: syz
[ 1158.275949][ T9711] usb 7-1: Manufacturer: syz
[ 1158.275958][ T9711] usb 7-1: SerialNumber: syz
[ 1158.367128][ T6503] usb 9-1: new full-speed USB device number 2 using dummy_hcd
[ 1158.439595][ T9711] usb 7-1: config 0 descriptor??
[ 1158.594135][ T6503] usb 9-1: unable to get BOS descriptor or descriptor too short
[ 1158.595444][ T6503] usb 9-1: not running at top speed; connect to a high speed hub
[ 1158.613107][ T6503] usb 9-1: config 4 has an invalid interface number: 32 but max is 0
[ 1158.613124][ T6503] usb 9-1: config 4 has no interface number 0
[ 1158.653648][ T6503] usb 9-1: New USB device found, idVendor=17dc, idProduct=0202, bcdDevice=f1.50
[ 1158.654931][ T6503] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1158.654959][ T6503] usb 9-1: Product: syz
[ 1158.654973][ T6503] usb 9-1: Manufacturer: syz
[ 1158.654989][ T6503] usb 9-1: SerialNumber: syz
[ 1158.733850][ T9711] usb 7-1: Found UVC 0.04 device syz (046d:08c3)
[ 1158.733941][ T9711] usb 7-1: No streaming interface found for terminal 6.
[ 1158.848195][ T9711] usb 7-1: USB disconnect, device number 5
[ 1159.093851][ T6503] usb 9-1: Found UVC 0.02 device syz (17dc:0202)
[ 1159.093936][ T6503] usb 9-1: No valid video chain found.
[ 1159.187215][ T6503] usb 9-1: USB disconnect, device number 2
[ 1160.536880][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1161.594270][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1161.707785][T11415] loop6: detected capacity change from 0 to 7
[ 1161.857800][T11415] Dev loop6: unable to read RDB block 7
[ 1161.858041][T11415]  loop6: unable to read partition table
[ 1161.861154][T11415] loop6: partition table beyond EOD, truncated
[ 1161.861222][T11415] loop_reread_partitions: partition scan of loop6 (þ被xü—ŸÑà– ) failed (rc=-5)
[ 1163.248135][T11428] block nbd0: Attempted send on invalid socket
[ 1163.248161][T11428] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 2
[ 1164.086256][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1164.262489][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1164.339403][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1164.373584][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1164.542059][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1164.672404][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1164.684314][T11443] ceph: No mds server is up or the cluster is laggy
[ 1164.686987][ T9711] libceph: connect (1)[c::]:6789 error -101
[ 1164.687234][ T9711] libceph: mon0 (1)[c::]:6789 connect error
[ 1165.019196][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1165.023545][ T8057] libceph: connect (1)[c::]:6789 error -101
[ 1165.023759][ T8057] libceph: mon0 (1)[c::]:6789 connect error
[ 1166.095515][   T37] audit: type=1326 audit(1757995807.631:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11464 comm="syz.8.993" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb36464eba9 code=0x7ffc0000
[ 1166.100206][   T37] audit: type=1326 audit(1757995807.641:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11464 comm="syz.8.993" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb36464eba9 code=0x7ffc0000
[ 1166.124233][   T37] audit: type=1326 audit(1757995807.661:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11464 comm="syz.8.993" exe="/root/syz-executor" sig=0 arch=c000003e syscall=252 compat=0 ip=0x7fb36464eba9 code=0x7ffc0000
[ 1166.163422][   T37] audit: type=1326 audit(1757995807.661:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11464 comm="syz.8.993" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb36464eba9 code=0x7ffc0000
[ 1166.608038][ T9711] usb 10-1: new high-speed USB device number 4 using dummy_hcd
[ 1166.757094][ T9711] usb 10-1: Using ep0 maxpacket: 8
[ 1166.765075][ T9711] usb 10-1: config 168 has an invalid descriptor of length 0, skipping remainder of the config
[ 1166.765128][ T9711] usb 10-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7
[ 1166.765159][ T9711] usb 10-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[ 1166.765180][ T9711] usb 10-1: config 168 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1166.821608][ T9711] usb 10-1: config 168 has an invalid descriptor of length 0, skipping remainder of the config
[ 1166.821686][ T9711] usb 10-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7
[ 1166.821714][ T9711] usb 10-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[ 1166.821737][ T9711] usb 10-1: config 168 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1166.874717][ T9711] usb 10-1: config 168 has an invalid descriptor of length 0, skipping remainder of the config
[ 1166.874769][ T9711] usb 10-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7
[ 1166.874793][ T9711] usb 10-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[ 1166.874813][ T9711] usb 10-1: config 168 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1166.930211][ T9711] usb 10-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[ 1166.930232][ T9711] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1166.930247][ T9711] usb 10-1: Product: syz
[ 1166.930257][ T9711] usb 10-1: Manufacturer: syz
[ 1166.930268][ T9711] usb 10-1: SerialNumber: syz
[ 1167.214698][ T9711] adutux 10-1:168.0: interrupt endpoints not found
[ 1167.234786][ T9711] usb 10-1: USB disconnect, device number 4
[ 1168.213736][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1168.548186][T11480] ceph: No mds server is up or the cluster is laggy
[ 1168.571243][ T8057] libceph: connect (1)[c::]:6789 error -101
[ 1168.571475][ T8057] libceph: mon0 (1)[c::]:6789 connect error
[ 1168.572842][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1169.365678][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1169.886921][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1170.072342][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1170.740080][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1170.888981][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1171.314322][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1172.243792][T11511] netlink: 'syz.9.1008': attribute type 7 has an invalid length.
[ 1172.469079][T11511] : entered promiscuous mode
[ 1173.626380][T11523] workqueue: Failed to create a rescuer kthread for wq "ceph-watch-notify": -EINTR
[ 1174.256341][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1174.391375][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1174.950889][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1175.294067][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1175.639212][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1175.901329][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1176.283038][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1176.880403][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1177.008437][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1177.045728][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1177.234499][T11564] workqueue: Failed to create a rescuer kthread for wq "ceph-watch-notify": -EINTR
[ 1177.242834][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1178.052866][T11585] IPv6: addrconf: prefix option has invalid lifetime
[ 1178.090349][T11585] IPv6: addrconf: prefix option has invalid lifetime
[ 1178.212807][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1178.477079][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1178.865123][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1179.527390][ T8742] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[ 1179.679828][ T8742] usb 7-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08
[ 1179.679862][ T8742] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1179.821515][ T8742] usb 7-1: config 0 descriptor??
[ 1180.096271][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1180.405941][T11619] workqueue: Failed to create a rescuer kthread for wq "ceph-watch-notify": -EINTR
[ 1180.451048][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1180.738850][ T8742] udl 7-1:0.0: [drm] Unrecognized vendor firmware descriptor
[ 1180.970645][ T8742] [drm:udl_init] *ERROR* Selecting channel failed
[ 1181.101728][ T8742] [drm] Initialized udl 0.0.1 for 7-1:0.0 on minor 2
[ 1181.101753][ T8742] [drm] Initialized udl on minor 2
[ 1181.135415][T11629] virt_wifi0 speed is unknown, defaulting to 1000
[ 1181.135512][T11629] virt_wifi0 speed is unknown, defaulting to 1000
[ 1181.160027][ T8742] udl 7-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[ 1181.176663][ T8742] udl 7-1:0.0: [drm] Cannot find any crtc or sizes
[ 1181.191228][T11629] virt_wifi0 speed is unknown, defaulting to 1000
[ 1181.214441][   T31] udl 7-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[ 1181.246750][ T8742] usb 7-1: USB disconnect, device number 6
[ 1181.291425][   T31] udl 7-1:0.0: [drm] Cannot find any crtc or sizes
[ 1181.326270][T11629] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[ 1181.629244][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1181.870913][T11641] overlayfs: failed to resolve './file0': -2
[ 1181.872677][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1181.984513][T11629] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[ 1182.121864][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1182.458395][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1182.861414][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1183.068158][T11629] virt_wifi0 speed is unknown, defaulting to 1000
[ 1183.074481][T11629] virt_wifi0 speed is unknown, defaulting to 1000
[ 1183.093640][T11629] virt_wifi0 speed is unknown, defaulting to 1000
[ 1183.118806][T11629] virt_wifi0 speed is unknown, defaulting to 1000
[ 1183.121807][T11629] virt_wifi0 speed is unknown, defaulting to 1000
[ 1183.226040][T11651] ip6gre1: entered allmulticast mode
[ 1184.014220][T11682] overlayfs: failed to resolve './file0': -2
[ 1184.087232][ T6333] usb 7-1: new full-speed USB device number 7 using dummy_hcd
[ 1184.240486][ T6333] usb 7-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 2.00
[ 1184.240518][ T6333] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1184.303472][ T6333] usb 7-1: config 0 descriptor??
[ 1184.339523][ T6333] ftdi_sio 7-1:0.0: FTDI USB Serial Device converter detected
[ 1184.538493][ T6333] usb 7-1: Detected FT232B
[ 1184.742055][ T6333] ftdi_sio ttyUSB0: Unable to read latency timer: -71
[ 1184.746884][ T6333] ftdi_sio ttyUSB0: Unable to write latency timer: -71
[ 1184.800653][ T6333] usb 7-1: FTDI USB Serial Device converter now attached to ttyUSB0
[ 1184.841326][ T6333] usb 7-1: USB disconnect, device number 7
[ 1184.878758][ T6333] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[ 1184.879510][ T6333] ftdi_sio 7-1:0.0: device disconnected
[ 1185.762114][T11716] vlan0: entered promiscuous mode
[ 1185.865153][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1187.470073][ T1323] ieee802154 phy0 wpan0: encryption failed: -22
[ 1187.470159][ T1323] ieee802154 phy1 wpan1: encryption failed: -22
[ 1187.957101][T10249] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[ 1188.120157][T10249] usb 7-1: Using ep0 maxpacket: 16
[ 1188.124857][T10249] usb 7-1: config 0 has an invalid interface number: 148 but max is 0
[ 1188.124883][T10249] usb 7-1: config 0 has no interface number 0
[ 1188.124935][T10249] usb 7-1: config 0 interface 148 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 32
[ 1188.124977][T10249] usb 7-1: New USB device found, idVendor=0499, idProduct=8206, bcdDevice=f4.55
[ 1188.125009][T10249] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1188.199064][T10249] usb 7-1: config 0 descriptor??
[ 1188.200636][T11735] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[ 1189.624774][T10249] usb 7-1: USB disconnect, device number 8
[ 1190.397557][ T8742] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[ 1191.262506][T11771] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1191.631465][ T8742] usb 9-1: unable to get BOS descriptor or descriptor too short
[ 1191.635879][ T8742] usb 9-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config
[ 1191.635935][ T8742] usb 9-1: config 1 interface 0 altsetting 3 has 0 endpoint descriptors, different from the interface descriptor's value: 3
[ 1191.635971][ T8742] usb 9-1: config 1 interface 0 has no altsetting 0
[ 1191.699133][ T8742] usb 9-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1191.699168][ T8742] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1191.699190][ T8742] usb 9-1: Product: syz
[ 1191.699207][ T8742] usb 9-1: Manufacturer: syz
[ 1191.699224][ T8742] usb 9-1: SerialNumber: syz
[ 1191.944461][ T8742] cdc_ether 9-1:1.0: probe with driver cdc_ether failed with error -22
[ 1192.011425][ T8742] usb 9-1: USB disconnect, device number 3
[ 1193.807124][T11814] overlayfs: failed to resolve './file0': -2
[ 1194.317210][ T5840] Bluetooth: hci4: command 0x0405 tx timeout
[ 1195.177979][   T37] audit: type=1326 audit(1757995836.721:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11846 comm="syz.8.1126" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb36464eba9 code=0x7ffc0000
[ 1195.181090][   T37] audit: type=1326 audit(1757995836.721:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11846 comm="syz.8.1126" exe="/root/syz-executor" sig=0 arch=c000003e syscall=276 compat=0 ip=0x7fb36464eba9 code=0x7ffc0000
[ 1195.181223][   T37] audit: type=1326 audit(1757995836.721:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11846 comm="syz.8.1126" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb36464eba9 code=0x7ffc0000
[ 1195.181523][   T37] audit: type=1326 audit(1757995836.721:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11846 comm="syz.8.1126" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb36464eba9 code=0x7ffc0000
[ 1195.897928][T11863] netlink: 'syz.5.1132': attribute type 13 has an invalid length.
[ 1195.942803][T11863] gretap0: refused to change device tx_queue_len
[ 1195.943232][T11863] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[ 1198.757201][ T5840] Bluetooth: hci1: unexpected cc 0x2002 length: 65 > 4
[ 1198.757245][ T5840] Bluetooth: hci1: unexpected event for opcode 0x2002
[ 1200.240858][T11918] netlink: get zone limit has 8 unknown bytes
[ 1200.348462][T11921] overlayfs: failed to resolve './file0': -2
[ 1202.062994][T11952] ieee802154 phy0 wpan0: encryption failed: -22
[ 1202.881005][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1203.578072][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1204.199550][T11968] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1166'.
[ 1204.790383][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1205.009264][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1205.155697][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1205.582072][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1205.737155][   T37] audit: type=1400 audit(1757995847.221:71): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject="*" object="_" requested=w pid=11982 comm="syz.6.1173" src=1 dest=20000 netif=wpan0
[ 1207.913189][T12015] warning: `syz.0.1184' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[ 1208.027116][ T6333] usb 6-1: new full-speed USB device number 8 using dummy_hcd
[ 1208.199987][ T6333] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 1208.200042][ T6333] usb 6-1: New USB device found, idVendor=0b05, idProduct=17e0, bcdDevice= 0.00
[ 1208.200067][ T6333] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1209.972659][ T6333] usb 6-1: config 0 descriptor??
[ 1211.714652][ T6333] usbhid 6-1:0.0: can't add hid device: -71
[ 1211.714782][ T6333] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[ 1211.723622][ T6333] usb 6-1: USB disconnect, device number 8
[ 1212.432899][T12061] xt_bpf: check failed: parse error
[ 1213.898156][T12080] netlink: 'syz.6.1209': attribute type 12 has an invalid length.
[ 1213.898180][T12080] netlink: 9472 bytes leftover after parsing attributes in process `syz.6.1209'.
[ 1221.954671][    C0] sched: DL replenish lagged too much
[ 1225.368470][ T5840] Bluetooth: hci4: command 0x0405 tx timeout
[ 1228.916402][ T9822] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1228.942772][ T9822] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1228.954960][ T9822] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1229.017038][ T9822] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1229.018744][ T9822] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1229.545140][T12095] virt_wifi0 speed is unknown, defaulting to 1000
[ 1229.738546][T12099] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 1229.766454][T12099] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 1229.785978][T12099] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 1229.787686][T12099] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 1229.788552][T12099] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 1230.040926][ T9823] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[ 1230.064362][ T9823] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[ 1230.065929][ T9823] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[ 1230.083171][ T9823] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[ 1230.084066][ T9823] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[ 1230.581152][T12105] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[ 1230.606889][T12105] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[ 1230.615856][T12105] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[ 1230.640067][T12105] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[ 1230.645301][T12105] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[ 1236.519556][T12117] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1
[ 1236.547472][T12117] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9
[ 1236.548799][T12117] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9
[ 1236.550301][T12117] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4
[ 1236.551271][T12117] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2
[ 1252.445963][T12104] virt_wifi0 speed is unknown, defaulting to 1000
[ 1252.689028][T12098] virt_wifi0 speed is unknown, defaulting to 1000
[ 1252.731083][T12101] virt_wifi0 speed is unknown, defaulting to 1000
[ 1252.837111][T12116] virt_wifi0 speed is unknown, defaulting to 1000
[ 1253.587730][ T1323] ieee802154 phy0 wpan0: encryption failed: -22
[ 1253.587807][ T1323] ieee802154 phy1 wpan1: encryption failed: -22
[ 1253.677363][ T9823] Bluetooth: hci8: command tx timeout
[ 1253.677766][ T9823] Bluetooth: hci6: command tx timeout
[ 1253.678021][ T9823] Bluetooth: hci0: command tx timeout
[ 1253.678263][ T9823] Bluetooth: hci7: command tx timeout
[ 1253.678546][ T9823] Bluetooth: hci9: command tx timeout
[ 1254.733965][T12095] chnl_net:caif_netlink_parms(): no params data found
[ 1255.757460][T12105] Bluetooth: hci9: command tx timeout
[ 1255.757490][T12105] Bluetooth: hci7: command tx timeout
[ 1255.757518][T12105] Bluetooth: hci0: command tx timeout
[ 1255.757537][T12105] Bluetooth: hci6: command tx timeout
[ 1255.757556][T12105] Bluetooth: hci8: command tx timeout
[ 1258.080054][ T9823] Bluetooth: hci8: command tx timeout
[ 1258.080095][ T9823] Bluetooth: hci6: command tx timeout
[ 1258.080118][ T9823] Bluetooth: hci0: command tx timeout
[ 1258.080140][ T9823] Bluetooth: hci7: command tx timeout
[ 1258.080163][ T9823] Bluetooth: hci9: command tx timeout
[ 1260.163736][ T9823] Bluetooth: hci0: command tx timeout
[ 1260.163775][ T9823] Bluetooth: hci9: command tx timeout
[ 1260.163799][ T9823] Bluetooth: hci7: command tx timeout
[ 1260.163821][ T9823] Bluetooth: hci6: command tx timeout
[ 1260.163845][ T9823] Bluetooth: hci8: command tx timeout
[ 1289.055511][ T9822] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1289.087307][ T9822] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1289.089203][ T9822] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1289.097581][ T9822] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1289.098391][ T9822] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1289.615028][ T9823] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1289.635928][ T9823] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1289.644709][ T9823] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1289.678181][ T9823] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1289.679086][ T9823] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1290.998242][ T5840] Bluetooth: hci11: unexpected cc 0x0c03 length: 249 > 1
[ 1291.021853][ T5840] Bluetooth: hci11: unexpected cc 0x1003 length: 249 > 9
[ 1291.023199][ T5840] Bluetooth: hci11: unexpected cc 0x1001 length: 249 > 9
[ 1291.025080][ T5840] Bluetooth: hci11: unexpected cc 0x0c23 length: 249 > 4
[ 1291.025906][ T5840] Bluetooth: hci11: unexpected cc 0x0c38 length: 249 > 2
[ 1291.141838][T12105] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1
[ 1291.178882][T12105] Bluetooth: hci10: unexpected cc 0x1003 length: 249 > 9
[ 1291.180901][T12105] Bluetooth: hci10: unexpected cc 0x1001 length: 249 > 9
[ 1291.182095][T12105] Bluetooth: hci10: unexpected cc 0x0c23 length: 249 > 4
[ 1291.183306][T12105] Bluetooth: hci10: unexpected cc 0x0c38 length: 249 > 2
[ 1296.902380][ T5158] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1296.922812][ T5158] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1296.924258][ T5158] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1296.925672][ T5158] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1296.940611][ T5158] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1297.837546][T12105] Bluetooth: hci10: command tx timeout
[ 1297.838042][T12105] Bluetooth: hci11: command tx timeout
[ 1297.838327][T12105] Bluetooth: hci2: command tx timeout
[ 1297.838595][T12105] Bluetooth: hci1: command tx timeout
[ 1299.038430][T12105] Bluetooth: hci5: command tx timeout
[ 1299.919549][ T5158] Bluetooth: hci1: command tx timeout
[ 1299.919593][ T5158] Bluetooth: hci11: command tx timeout
[ 1299.919617][ T5158] Bluetooth: hci10: command tx timeout
[ 1299.950595][T12105] Bluetooth: hci2: command tx timeout
[ 1301.117150][T12105] Bluetooth: hci5: command tx timeout
[ 1302.003431][T12105] Bluetooth: hci2: command tx timeout
[ 1302.003461][T12105] Bluetooth: hci10: command tx timeout
[ 1302.003483][T12105] Bluetooth: hci11: command tx timeout
[ 1302.003502][T12105] Bluetooth: hci1: command tx timeout
[ 1303.197086][ T5158] Bluetooth: hci5: command tx timeout
[ 1304.078780][ T9823] Bluetooth: hci10: command tx timeout
[ 1304.078814][ T9823] Bluetooth: hci2: command tx timeout
[ 1304.078869][T12105] Bluetooth: hci11: command tx timeout
[ 1304.078907][ T5158] Bluetooth: hci1: command tx timeout
[ 1305.277130][ T5158] Bluetooth: hci5: command tx timeout
[ 1316.275209][ T1323] ieee802154 phy0 wpan0: encryption failed: -22
[ 1316.275331][ T1323] ieee802154 phy1 wpan1: encryption failed: -22
[ 1351.608003][T12105] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1351.641880][T12105] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1351.643588][T12105] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1351.644727][T12105] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1351.645494][T12105] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1351.778250][ T5840] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1351.785910][ T5840] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1351.790724][ T5840] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1351.792148][ T5840] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1351.797236][ T5840] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1352.002956][ T5158] Bluetooth: hci12: unexpected cc 0x0c03 length: 249 > 1
[ 1352.023375][ T5158] Bluetooth: hci12: unexpected cc 0x1003 length: 249 > 9
[ 1352.024805][ T5158] Bluetooth: hci12: unexpected cc 0x1001 length: 249 > 9
[ 1352.039067][ T5158] Bluetooth: hci12: unexpected cc 0x0c23 length: 249 > 4
[ 1352.052264][ T5158] Bluetooth: hci12: unexpected cc 0x0c38 length: 249 > 2
[ 1352.220729][ T5840] Bluetooth: hci13: unexpected cc 0x0c03 length: 249 > 1
[ 1352.250560][ T5840] Bluetooth: hci13: unexpected cc 0x1003 length: 249 > 9
[ 1352.252048][ T5840] Bluetooth: hci13: unexpected cc 0x1001 length: 249 > 9
[ 1352.253224][ T5840] Bluetooth: hci13: unexpected cc 0x0c23 length: 249 > 4
[ 1352.253990][ T5840] Bluetooth: hci13: unexpected cc 0x0c38 length: 249 > 2
[ 1353.757323][ T5158] Bluetooth: hci3: command tx timeout
[ 1353.837586][ T5158] Bluetooth: hci4: command tx timeout
[ 1354.167262][ T5158] Bluetooth: hci12: command tx timeout
[ 1354.317229][ T5158] Bluetooth: hci13: command tx timeout
[ 1355.837109][ T5158] Bluetooth: hci3: command tx timeout
[ 1355.927504][ T5158] Bluetooth: hci4: command tx timeout
[ 1356.237408][ T5158] Bluetooth: hci12: command tx timeout
[ 1356.414837][ T5158] Bluetooth: hci13: command tx timeout
[ 1357.199923][ T5840] Bluetooth: hci14: unexpected cc 0x0c03 length: 249 > 1
[ 1357.223203][ T5840] Bluetooth: hci14: unexpected cc 0x1003 length: 249 > 9
[ 1357.224694][ T5840] Bluetooth: hci14: unexpected cc 0x1001 length: 249 > 9
[ 1357.226037][ T5840] Bluetooth: hci14: unexpected cc 0x0c23 length: 249 > 4
[ 1357.257043][ T5840] Bluetooth: hci14: unexpected cc 0x0c38 length: 249 > 2
[ 1357.917298][ T5158] Bluetooth: hci3: command tx timeout
[ 1357.997136][ T5158] Bluetooth: hci4: command tx timeout
[ 1358.317135][ T5158] Bluetooth: hci12: command tx timeout
[ 1358.478200][ T5158] Bluetooth: hci13: command tx timeout
[ 1359.365135][ T5158] Bluetooth: hci14: command tx timeout
[ 1359.997901][ T5158] Bluetooth: hci3: command tx timeout
[ 1360.077144][ T5158] Bluetooth: hci4: command tx timeout
[ 1360.407168][ T5158] Bluetooth: hci12: command tx timeout
[ 1360.557797][ T5158] Bluetooth: hci13: command tx timeout
[ 1361.437051][ T5158] Bluetooth: hci14: command tx timeout
[ 1363.517020][ T5158] Bluetooth: hci14: command tx timeout
[ 1365.597097][ T5158] Bluetooth: hci14: command tx timeout
[ 1365.778265][T12095] workqueue: Failed to create a rescuer kthread for wq "wg-crypt-wg0": -EINTR
[ 1373.927000][T12105] Bluetooth: hci9: command 0x0406 tx timeout
[ 1373.927042][T12105] Bluetooth: hci7: command 0x0406 tx timeout
[ 1373.927067][T12105] Bluetooth: hci8: command 0x0406 tx timeout
[ 1374.087600][ T5840] Bluetooth: hci0: command 0x0406 tx timeout
[ 1374.087635][ T5840] Bluetooth: hci6: command 0x0406 tx timeout
[ 1376.896000][ T1323] ieee802154 phy0 wpan0: encryption failed: -22
[ 1376.896110][ T1323] ieee802154 phy1 wpan1: encryption failed: -22
[ 1410.458587][T12099] Bluetooth: hci15: unexpected cc 0x0c03 length: 249 > 1
[ 1410.487245][T12099] Bluetooth: hci15: unexpected cc 0x1003 length: 249 > 9
[ 1410.489049][T12099] Bluetooth: hci15: unexpected cc 0x1001 length: 249 > 9
[ 1410.497552][T12099] Bluetooth: hci15: unexpected cc 0x0c23 length: 249 > 4
[ 1410.498393][T12099] Bluetooth: hci15: unexpected cc 0x0c38 length: 249 > 2
[ 1411.605425][ T9822] Bluetooth: hci16: unexpected cc 0x0c03 length: 249 > 1
[ 1411.637109][ T9822] Bluetooth: hci16: unexpected cc 0x1003 length: 249 > 9
[ 1411.638475][ T9822] Bluetooth: hci16: unexpected cc 0x1001 length: 249 > 9
[ 1411.639809][ T9822] Bluetooth: hci16: unexpected cc 0x0c23 length: 249 > 4
[ 1411.640732][ T9822] Bluetooth: hci16: unexpected cc 0x0c38 length: 249 > 2
[ 1412.151055][ T9823] Bluetooth: hci17: unexpected cc 0x0c03 length: 249 > 1
[ 1412.176812][ T9823] Bluetooth: hci17: unexpected cc 0x1003 length: 249 > 9
[ 1412.185692][ T9823] Bluetooth: hci17: unexpected cc 0x1001 length: 249 > 9
[ 1412.207945][ T9823] Bluetooth: hci17: unexpected cc 0x0c23 length: 249 > 4
[ 1412.211701][ T9823] Bluetooth: hci17: unexpected cc 0x0c38 length: 249 > 2
[ 1412.368523][T12105] Bluetooth: hci18: unexpected cc 0x0c03 length: 249 > 1
[ 1412.389660][T12105] Bluetooth: hci18: unexpected cc 0x1003 length: 249 > 9
[ 1412.392985][T12105] Bluetooth: hci18: unexpected cc 0x1001 length: 249 > 9
[ 1412.394692][T12105] Bluetooth: hci18: unexpected cc 0x0c23 length: 249 > 4
[ 1412.395498][T12105] Bluetooth: hci18: unexpected cc 0x0c38 length: 249 > 2
[ 1417.731559][ T5840] Bluetooth: hci19: unexpected cc 0x0c03 length: 249 > 1
[ 1417.759449][ T5840] Bluetooth: hci19: unexpected cc 0x1003 length: 249 > 9
[ 1417.767107][ T5840] Bluetooth: hci19: unexpected cc 0x1001 length: 249 > 9
[ 1417.768370][ T5840] Bluetooth: hci19: unexpected cc 0x0c23 length: 249 > 4
[ 1417.770197][ T5840] Bluetooth: hci19: unexpected cc 0x0c38 length: 249 > 2
[ 1419.917170][T12117] Bluetooth: hci5: command 0x0406 tx timeout
[ 1440.630776][ T1323] ieee802154 phy0 wpan0: encryption failed: -22
[ 1440.630861][ T1323] ieee802154 phy1 wpan1: encryption failed: -22
[ 1469.677799][   T38] INFO: task syz.8.1205:12061 blocked for more than 143 seconds.
[ 1469.677827][   T38]       Not tainted syzkaller #0
[ 1469.677838][   T38]       Blocked by coredump.
[ 1469.677845][   T38] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1469.677858][   T38] task:syz.8.1205      state:D stack:25016 pid:12061 tgid:12060 ppid:10179  task_flags:0x40054c flags:0x00004002
[ 1469.677923][   T38] Call Trace:
[ 1469.677931][   T38]  <TASK>
[ 1469.677947][   T38]  __schedule+0x16f3/0x4c20
[ 1469.678014][   T38]  ? __pfx___schedule+0x10/0x10
[ 1469.678067][   T38]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1469.678116][   T38]  rt_mutex_schedule+0x77/0xf0
[ 1469.678137][   T38]  rt_mutex_slowlock_block+0x5ba/0x6d0
[ 1469.678162][   T38]  ? task_blocks_on_rt_mutex+0xf12/0x1380
[ 1469.678205][   T38]  rt_mutex_slowlock+0x2b1/0x6e0
[ 1469.678241][   T38]  ? rt_mutex_slowlock+0x1c9/0x6e0
[ 1469.678266][   T38]  ? __pfx_rt_mutex_slowlock+0x10/0x10
[ 1469.678310][   T38]  ? __pfx___fsnotify_parent+0x10/0x10
[ 1469.678345][   T38]  ? tun_chr_close+0x41/0x1c0
[ 1469.678374][   T38]  mutex_lock_nested+0x16a/0x1d0
[ 1469.678401][   T38]  ? __pfx_tun_chr_close+0x10/0x10
[ 1469.678431][   T38]  tun_chr_close+0x41/0x1c0
[ 1469.678462][   T38]  __fput+0x45b/0xa80
[ 1469.678497][   T38]  task_work_run+0x1d4/0x260
[ 1469.678521][   T38]  ? __pfx_task_work_run+0x10/0x10
[ 1469.678542][   T38]  ? do_exit+0x6b0/0x2300
[ 1469.678561][   T38]  ? kmem_cache_free+0x195/0x510
[ 1469.678594][   T38]  do_exit+0x6b5/0x2300
[ 1469.678613][   T38]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 1469.678649][   T38]  ? __lock_acquire+0xab9/0xd20
[ 1469.678686][   T38]  ? __pfx_do_exit+0x10/0x10
[ 1469.678702][   T38]  ? rt_mutex_slowunlock+0x493/0x8a0
[ 1469.678730][   T38]  ? rt_spin_lock+0x1bb/0x2c0
[ 1469.678765][   T38]  do_group_exit+0x21c/0x2d0
[ 1469.678792][   T38]  get_signal+0x125e/0x1310
[ 1469.678841][   T38]  arch_do_signal_or_restart+0x9a/0x750
[ 1469.678867][   T38]  ? __x64_sys_sendmsg+0x236/0x260
[ 1469.678892][   T38]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 1469.678934][   T38]  ? exit_to_user_mode_loop+0x40/0x110
[ 1469.678965][   T38]  exit_to_user_mode_loop+0x75/0x110
[ 1469.678994][   T38]  do_syscall_64+0x2bd/0x3b0
[ 1469.679011][   T38]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1469.679041][   T38]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1469.679061][   T38]  ? clear_bhb_loop+0x60/0xb0
[ 1469.679086][   T38]  entry_SYSCALL_64_after_hwframe+0x77/0x7f[ 1469.679086][   T38]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1469.679107][   T38] RIP: 0033:0x7fb36464eba9
[ 1469.679124][   T38] RSP: 002b:00007fb3628b6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1469.679146][   T38] RAX: 0000000000000290 RBX: 00007fb364895fa0 RCX: 00007fb36464eba9
[ 1469.679161][   T38] RDX: 0000000004048010 RSI: 0000200000000080 RDI: 0000000000000003
[ 1469.679174][   T38] RBP: 00007fb3646d1e19 R08: 0000000000000000 R09: 0000000000000000
[ 1469.679188][   T38] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1469.679200][   T38] R13: 00007fb364896038 R14: 00007fb364895fa0 R15: 00007ffd4e98dbb8
[ 1469.679242][   T38]  </TASK>
[ 1469.679252][   T38] INFO: task syz.0.1208:12081 blocked for more than 143 seconds.
[ 1469.679266][   T38]       Not tainted syzkaller #0
[ 1469.679275][   T38]       Blocked by coredump.
[ 1469.679282][   T38] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1469.679291][   T38] task:syz.0.1208      state:D stack:25608 pid:12081 tgid:12078 ppid:5839   task_flags:0x40054c flags:0x00004002
[ 1469.679347][   T38] Call Trace:
[ 1469.679354][   T38]  <TASK>
[ 1469.679366][   T38]  __schedule+0x16f3/0x4c20
[ 1469.679422][   T38]  ? __pfx___schedule+0x10/0x10
[ 1469.679468][   T38]  ? schedule+0x91/0x360
[ 1469.679500][   T38]  schedule+0x165/0x360
[ 1469.679530][   T38]  schedule_timeout+0x9a/0x270
[ 1469.679558][   T38]  ? __pfx_schedule_timeout+0x10/0x10
[ 1469.679599][   T38]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1469.679629][   T38]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1469.679657][   T38]  ? wait_for_completion+0x267/0x5d0
[ 1469.679688][   T38]  wait_for_completion+0x2bf/0x5d0
[ 1469.679732][   T38]  ? __pfx_wait_for_completion+0x10/0x10
[ 1469.679796][   T38]  ? __init_swait_queue_head+0xa9/0x150
[ 1469.679828][   T38]  rcu_barrier+0x463/0x570
[ 1469.679859][   T38]  ? __pfx_tun_chr_close+0x10/0x10
[ 1469.679893][   T38]  netdev_run_todo+0x327/0xea0
[ 1469.679922][   T38]  ? __pfx_netif_state_change+0x10/0x10
[ 1469.679952][   T38]  ? __pfx_netdev_run_todo+0x10/0x10
[ 1469.679973][   T38]  ? kasan_quarantine_put+0xdd/0x220
[ 1469.680000][   T38]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1469.680043][   T38]  ? netdev_state_change+0x1ca/0x220
[ 1469.680078][   T38]  ? __pfx_tun_chr_close+0x10/0x10
[ 1469.680111][   T38]  tun_chr_close+0x13f/0x1c0
[ 1469.680146][   T38]  __fput+0x45b/0xa80
[ 1469.680181][   T38]  task_work_run+0x1d4/0x260
[ 1469.680208][   T38]  ? __pfx_task_work_run+0x10/0x10
[ 1469.680238][   T38]  ? do_exit+0x6b0/0x2300
[ 1469.680257][   T38]  ? kmem_cache_free+0x195/0x510
[ 1469.680294][   T38]  do_exit+0x6b5/0x2300
[ 1469.680315][   T38]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 1469.680355][   T38]  ? __lock_acquire+0xab9/0xd20
[ 1469.680388][   T38]  ? __pfx_do_exit+0x10/0x10
[ 1469.680406][   T38]  ? rt_mutex_slowunlock+0x493/0x8a0
[ 1469.680437][   T38]  ? rt_spin_lock+0x1bb/0x2c0
[ 1469.680476][   T38]  do_group_exit+0x21c/0x2d0
[ 1469.680504][   T38]  get_signal+0x125e/0x1310
[ 1469.680558][   T38]  arch_do_signal_or_restart+0x9a/0x750
[ 1469.680585][   T38]  ? __pfx_sched_core_share_pid+0x10/0x10
[ 1469.680607][   T38]  ? static_key_count+0x41/0x70
[ 1469.680639][   T38]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 1469.680686][   T38]  ? exit_to_user_mode_loop+0x40/0x110
[ 1469.680721][   T38]  exit_to_user_mode_loop+0x75/0x110
[ 1469.680751][   T38]  do_syscall_64+0x2bd/0x3b0
[ 1469.680771][   T38]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1469.680803][   T38]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1469.680826][   T38]  ? clear_bhb_loop+0x60/0xb0
[ 1469.680854][   T38]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1469.680876][   T38] RIP: 0033:0x7fdde557eba9
[ 1469.680893][   T38] RSP: 002b:00007fdde37de038 EFLAGS: 00000246 ORIG_RAX: 000000000000009d
[ 1469.680916][   T38] RAX: 0000000000000000 RBX: 00007fdde57c5fa0 RCX: 00007fdde557eba9
[ 1469.680932][   T38] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 000000000000003e
[ 1469.680946][   T38] RBP: 00007fdde5601e19 R08: 0000000000000000 R09: 0000000000000000
[ 1469.680960][   T38] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 1469.680975][   T38] R13: 00007fdde57c6038 R14: 00007fdde57c5fa0 R15: 00007fffeacc4b28
[ 1469.681020][   T38]  </TASK>
[ 1469.681059][   T38] 
[ 1469.681059][   T38] Showing all locks held in the system:
[ 1469.681069][   T38] 6 locks held by rcuc/0/20:
[ 1469.681083][   T38] 1 lock held by khungtaskd/38:
[ 1469.681093][   T38]  #0: ffffffff8d9a8d80 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x2e/0x180
[ 1469.681143][   T38] 3 locks held by kworker/u8:4/81:
[ 1469.681155][   T38]  #0: ffff888019881138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 1469.681215][   T38]  #1: ffffc9000158fbc0 ((linkwatch_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 1469.681267][   T38]  #2: ffffffff8ecd35f8 (rtnl_mutex){+.+.}-{4:4}, at: linkwatch_event+0xe/0x60
[ 1469.681333][   T38] 3 locks held by kworker/u8:14/3641:
[ 1469.681362][   T38]  #0: ffff88814d019138 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 1469.681418][   T38]  #1: ffffc9000e1efbc0 ((work_completion)(&(&ifa->dad_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 1469.681473][   T38]  #2: ffffffff8ecd35f8 (rtnl_mutex){+.+.}-{4:4}, at: addrconf_dad_work+0x119/0x15a0
[ 1469.681525][   T38] 4 locks held by kworker/u9:1/5158:
[ 1469.681538][   T38]  #0: ffff8880545ba138 ((wq_completion)hci15#2){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 1469.681597][   T38]  #1: ffffc900104b7bc0 ((work_completion)(&hdev->rx_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 1469.681653][   T38]  #2: ffff888091ad40a8 (&hdev->lock){+.+.}-{4:4}, at: hci_remote_features_evt+0x9b/0x8e0
[ 1469.681708][   T38]  #3: ffffffff8ee3b0d8 (hci_cb_list_lock){+.+.}-{4:4}, at: hci_remote_features_evt+0x516/0x8e0
[ 1469.681764][   T38] 2 locks held by getty/5600:
[ 1469.681775][   T38]  #0: ffff88823bf5a8a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[ 1469.681837][   T38]  #1: ffffc90003e762e0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x444/0x1410
[ 1469.681893][   T38] 5 locks held by kworker/u9:2/5840:
[ 1469.681923][   T38]  #0: ffff88803d3a7138 ((wq_completion)hci5#3){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 1469.681985][   T38]  #1: ffffc90004e27bc0 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 1469.682043][   T38]  #2: ffff888055ae0e80 (&hdev->req_lock){+.+.}-{4:4}, at: hci_cmd_sync_work+0x1d4/0x3a0
[ 1469.682097][   T38]  #3: ffff888055ae00a8 (&hdev->lock){+.+.}-{4:4}, at: hci_abort_conn_sync+0x242/0xe30
[ 1469.682157][   T38]  #4: ffffffff8ee3b0d8 (hci_cb_list_lock){+.+.}-{4:4}, at: hci_conn_failed+0x165/0x310
[ 1469.682231][   T38] 3 locks held by kworker/1:11/6335:
[ 1469.682244][   T38]  #0: ffff888019898538 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 1469.682301][   T38]  #1: ffffc9000434fbc0 (reg_work){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 1469.682356][   T38]  #2: ffffffff8ecd35f8 (rtnl_mutex){+.+.}-{4:4}, at: reg_todo+0x1c/0x8c0
[ 1469.682409][   T38] 4 locks held by kworker/0:9/8057:
[ 1469.682422][   T38]  #0: ffff888019899938 ((wq_completion)events_power_efficient){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 1469.682479][   T38]  #1: ffffc90004c17bc0 ((work_completion)(&(&tbl->gc_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 1469.682538][   T38]  #2: ffffffff8d84a960 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[ 1469.682595][   T38]  #3: ffff8880b8823d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[ 1469.682652][   T38] 4 locks held by kworker/0:10/8083:
[ 1469.682664][   T38]  #0: ffff888058fad538 ((wq_completion)wg-crypt-wg0#3){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 1469.682727][   T38]  #1: ffffc90004d07bc0 ((work_completion)(&peer->transmit_packet_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 1469.682785][   T38]  #2: ffffffff8d84a960 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[ 1469.682841][   T38]  #3: ffff8880b8823d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[ 1469.682899][   T38] 3 locks held by kworker/1:4/8742:
[ 1469.682912][   T38]  #0: ffff888019898538 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 1469.682967][   T38]  #1: ffffc9000428fbc0 (deferred_process_work){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 1469.683025][   T38]  #2: ffffffff8ecd35f8 (rtnl_mutex){+.+.}-{4:4}, at: switchdev_deferred_process_work+0xe/0x20
[ 1469.683080][   T38] 4 locks held by kworker/u9:0/9822:
[ 1469.683092][   T38]  #0: ffff88805a3ea938 ((wq_completion)hci17#2){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 1469.683152][   T38]  #1: ffffc900051b7bc0 ((work_completion)(&hdev->rx_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 1469.683217][   T38]  #2: ffff888038bf80a8 (&hdev->lock){+.+.}-{4:4}, at: hci_remote_features_evt+0x9b/0x8e0
[ 1469.683274][   T38]  #3: ffffffff8ee3b0d8 (hci_cb_list_lock){+.+.}-{4:4}, at: hci_remote_features_evt+0x516/0x8e0
[ 1469.683331][   T38] 4 locks held by kworker/u9:3/9823:
[ 1469.683343][   T38]  #0: ffff88805a025138 ((wq_completion)hci18#2){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 1469.683404][   T38]  #1: ffffc90005167bc0 ((work_completion)(&hdev->rx_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 1469.683461][   T38]  #2: ffff88803ddbc0a8 (&hdev->lock){+.+.}-{4:4}, at: hci_remote_features_evt+0x9b/0x8e0
[ 1469.683517][   T38]  #3: ffffffff8ee3b0d8 (hci_cb_list_lock){+.+.}-{4:4}, at: hci_remote_features_evt+0x516/0x8e0
[ 1469.683574][   T38] 4 locks held by kworker/0:2/10249:
[ 1469.683587][   T38]  #0: ffff888032e51538 ((wq_completion)wg-crypt-wg1#3){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 1469.683650][   T38]  #1: ffffc900053f7bc0 ((work_completion)(&({ do { const void *__vpp_verify = (typeof((worker) + 0))((void *)0); (void)__vpp_verify; } while (0); ({ unsigned long __ptr; __ptr = (unsigned long) ((__typeof_unqual__(*((worker))) *)(( unsigned long)((worker)))); (typeof((__typeof_unqual__(*((worker))) *)(( unsigned long)((worker))))) (__ptr + (((__per_cpu_offset[(cpu)])))); }); })->work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 1469.683727][   T38]  #2: ffffffff8d84a960 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[ 1469.683783][   T38]  #3: ffff8880b8823d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[ 1469.683840][   T38] 1 lock held by syz.6.815/10750:
[ 1469.683852][   T38]  #0: ffffffff8d9ae730 (rcu_state.barrier_mutex){+.+.}-{4:4}, at: rcu_barrier+0x4c/0x570
[ 1469.683905][   T38] 1 lock held by syz.5.1200/12054:
[ 1469.683917][   T38]  #0: ffffffff8d9ae730 (rcu_state.barrier_mutex){+.+.}-{4:4}, at: rcu_barrier+0x4c/0x570
[ 1469.683970][   T38] 1 lock held by syz.9.1203/12056:
[ 1469.683982][   T38]  #0: ffffffff8ecd35f8 (rtnl_mutex){+.+.}-{4:4}, at: tun_chr_close+0x41/0x1c0
[ 1469.684043][   T38] 1 lock held by syz.8.1205/12061:
[ 1469.684055][   T38]  #0: ffffffff8ecd35f8 (rtnl_mutex){+.+.}-{4:4}, at: tun_chr_close+0x41/0x1c0
[ 1469.684116][   T38] 1 lock held by syz.0.1208/12081:
[ 1469.684128][   T38]  #0: ffffffff8d9ae730 (rcu_state.barrier_mutex){+.+.}-{4:4}, at: rcu_barrier+0x4c/0x570
[ 1469.684180][   T38] 3 locks held by syz-executor/12095:
[ 1469.684193][   T38]  #0: ffff88805330ce80 (&hdev->req_lock){+.+.}-{4:4}, at: hci_unregister_dev+0x212/0x510
[ 1469.684255][   T38]  #1: ffff88805330c0a8 (&hdev->lock){+.+.}-{4:4}, at: hci_dev_close_sync+0x66a/0x1330
[ 1469.684314][   T38]  #2: ffffffff8ee3b0d8 (hci_cb_list_lock){+.+.}-{4:4}, at: hci_conn_hash_flush+0xa1/0x230
[ 1469.684366][   T38] 3 locks held by syz-executor/12098:
[ 1469.684379][   T38]  #0: ffff88804f18ce80 (&hdev->req_lock){+.+.}-{4:4}, at: hci_unregister_dev+0x212/0x510
[ 1469.684435][   T38]  #1: ffff88804f18c0a8 (&hdev->lock){+.+.}-{4:4}, at: hci_dev_close_sync+0x66a/0x1330
[ 1469.684494][   T38]  #2: ffffffff8ee3b0d8 (hci_cb_list_lock){+.+.}-{4:4}, at: hci_conn_hash_flush+0xa1/0x230
[ 1469.684546][   T38] 4 locks held by kworker/u9:4/12099:
[ 1469.684559][   T38]  #0: ffff888036b50138 ((wq_completion)hci16#2){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 1469.684621][   T38]  #1: ffffc9000415fbc0 ((work_completion)(&hdev->rx_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 1469.684678][   T38]  #2: ffff88803a1680a8 (&hdev->lock){+.+.}-{4:4}, at: hci_remote_features_evt+0x9b/0x8e0
[ 1469.684733][   T38]  #3: ffffffff8ee3b0d8 (hci_cb_list_lock){+.+.}-{4:4}, at: hci_remote_features_evt+0x516/0x8e0
[ 1469.684791][   T38] 4 locks held by syz-executor/12101:
[ 1469.684803][   T38]  #0: ffff888059cf4e80 (&hdev->req_lock){+.+.}-{4:4}, at: hci_unregister_dev+0x212/0x510
[ 1469.684873][   T38]  #1: ffff888059cf40a8 (&hdev->lock){+.+.}-{4:4}, at: hci_dev_close_sync+0x66a/0x1330
[ 1469.684933][   T38]  #2: ffffffff8ee3b0d8 (hci_cb_list_lock){+.+.}-{4:4}, at: hci_conn_hash_flush+0xa1/0x230
[ 1469.684985][   T38]  #3: ffff8880380a0b58 (&conn->lock#2){+.+.}-{4:4}, at: l2cap_conn_del+0x70/0x680
[ 1469.685054][   T38] 2 locks held by syz-executor/12104:
[ 1469.685067][   T38]  #0: ffff888057de0e80 (&hdev->req_lock){+.+.}-{4:4}, at: hci_unregister_dev+0x212/0x510
[ 1469.685122][   T38]  #1: ffff888057de00a8 (&hdev->lock){+.+.}-{4:4}, at: hci_dev_close_sync+0x66a/0x1330
[ 1469.685182][   T38] 4 locks held by kworker/u9:6/12105:
[ 1469.685195][   T38]  #0: ffff88802f594938 ((wq_completion)hci19#2){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 1469.685263][   T38]  #1: ffffc9000410fbc0 ((work_completion)(&hdev->rx_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 1469.685320][   T38]  #2: ffff888039ea00a8 (&hdev->lock){+.+.}-{4:4}, at: hci_remote_features_evt+0x9b/0x8e0
[ 1469.685375][   T38]  #3: ffffffff8ee3b0d8 (hci_cb_list_lock){+.+.}-{4:4}, at: hci_remote_features_evt+0x516/0x8e0
[ 1469.685432][   T38] 1 lock held by syz-executor/12116:
[ 1469.685444][   T38]  #0: ffffffff8ecd35f8 (rtnl_mutex){+.+.}-{4:4}, at: tun_chr_close+0x41/0x1c0
[ 1469.685504][   T38] 4 locks held by kworker/0:18/12119:
[ 1469.685518][   T38] 3 locks held by syz-executor/12147:
[ 1469.685530][   T38]  #0: ffff88807ab10e80 (&hdev->req_lock){+.+.}-{4:4}, at: hci_unregister_dev+0x212/0x510
[ 1469.685586][   T38]  #1: ffff88807ab100a8 (&hdev->lock){+.+.}-{4:4}, at: hci_dev_close_sync+0x66a/0x1330
[ 1469.685645][   T38]  #2: ffffffff8ee3b0d8 (hci_cb_list_lock){+.+.}-{4:4}, at: hci_conn_hash_flush+0xa1/0x230
[ 1469.685697][   T38] 3 locks held by syz-executor/12152:
[ 1469.685709][   T38]  #0: ffff88804fd74e80 (&hdev->req_lock){+.+.}-{4:4}, at: hci_unregister_dev+0x212/0x510
[ 1469.685765][   T38]  #1: ffff88804fd740a8 (&hdev->lock){+.+.}-{4:4}, at: hci_dev_close_sync+0x66a/0x1330
[ 1469.685824][   T38]  #2: ffffffff8ee3b0d8 (hci_cb_list_lock){+.+.}-{4:4}, at: hci_conn_hash_flush+0xa1/0x230
[ 1469.685876][   T38] 3 locks held by syz-executor/12154:
[ 1469.685888][   T38]  #0: ffff88805bf68e80 (&hdev->req_lock){+.+.}-{4:4}, at: hci_unregister_dev+0x212/0x510
[ 1469.685944][   T38]  #1: ffff88805bf680a8 (&hdev->lock){+.+.}-{4:4}, at: hci_dev_close_sync+0x66a/0x1330
[ 1469.686004][   T38]  #2: ffffffff8ee3b0d8 (hci_cb_list_lock){+.+.}-{4:4}, at: hci_conn_hash_flush+0xa1/0x230
[ 1469.686056][   T38] 3 locks held by syz-executor/12156:
[ 1469.686068][   T38]  #0: ffff88804a8bce80 (&hdev->req_lock){+.+.}-{4:4}, at: hci_unregister_dev+0x212/0x510
[ 1469.686124][   T38]  #1: ffff88804a8bc0a8 (&hdev->lock){+.+.}-{4:4}, at: hci_dev_close_sync+0x66a/0x1330
[ 1469.686184][   T38]  #2: ffffffff8ee3b0d8 (hci_cb_list_lock){+.+.}-{4:4}, at: hci_conn_hash_flush+0xa1/0x230
[ 1469.686242][   T38] 1 lock held by syz-executor/12177:
[ 1469.686255][   T38]  #0: ffffffff8ecd35f8 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x3b0/0x18b0
[ 1469.686307][   T38] 1 lock held by syz-executor/12178:
[ 1469.686320][   T38]  #0: ffffffff8ecd35f8 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x3b0/0x18b0
[ 1469.686371][   T38] 1 lock held by syz-executor/12183:
[ 1469.686383][   T38]  #0: ffffffff8ecd35f8 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x3b0/0x18b0
[ 1469.686435][   T38] 1 lock held by syz-executor/12187:
[ 1469.686447][   T38]  #0: ffffffff8ecd35f8 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x3b0/0x18b0
[ 1469.686500][   T38] 1 lock held by syz-executor/12190:
[ 1469.686512][   T38]  #0: ffffffff8ecd35f8 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x3b0/0x18b0
[ 1469.686565][   T38] 1 lock held by syz-executor/12209:
[ 1469.686578][   T38]  #0: ffffffff8ecd35f8 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x3b0/0x18b0
[ 1469.686631][   T38] 1 lock held by syz-executor/12214:
[ 1469.686644][   T38]  #0: ffffffff8ecd35f8 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x3b0/0x18b0
[ 1469.686697][   T38] 1 lock held by syz-executor/12216:
[ 1469.686709][   T38]  #0: ffffffff8ecd35f8 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x3b0/0x18b0
[ 1469.686761][   T38] 1 lock held by syz-executor/12218:
[ 1469.686773][   T38]  #0: ffffffff8ecd35f8 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x3b0/0x18b0
[ 1469.987011][   T38] 1 lock held by syz-executor/12221:
[ 1469.987032][   T38]  #0: ffffffff8ecd35f8 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x3b0/0x18b0
[ 1469.987094][   T38] 1 lock held by dhcpcd/12231:
[ 1469.987106][   T38]  #0: ffff888031210938 (&sb->s_type->i_mutex_key#10){+.+.}-{4:4}, at: sock_close+0x9b/0x240
[ 1469.987168][   T38] 1 lock held by dhcpcd/12232:
[ 1469.987181][   T38]  #0: ffff888031210ff8 (&sb->s_type->i_mutex_key#10){+.+.}-{4:4}, at: sock_close+0x9b/0x240
[ 1469.987238][   T38] 1 lock held by dhcpcd/12233:
[ 1469.987250][   T38]  #0: ffff8880312167b8 (&sb->s_type->i_mutex_key#10){+.+.}-{4:4}, at: sock_close+0x9b/0x240
[ 1469.987310][   T38] 1 lock held by dhcpcd/12234:
[ 1469.987322][   T38]  #0: ffff8880312145f8 (&sb->s_type->i_mutex_key#10){+.+.}-{4:4}, at: sock_close+0x9b/0x240
[ 1469.987380][   T38] 1 lock held by dhcpcd/12235:
[ 1469.987392][   T38]  #0: ffff88805c44ccb8 (&sb->s_type->i_mutex_key#10){+.+.}-{4:4}, at: sock_close+0x9b/0x240
[ 1469.987452][   T38] 1 lock held by dhcpcd/12236:
[ 1469.987463][   T38]  #0: ffff88805c4496b8 (&sb->s_type->i_mutex_key#10){+.+.}-{4:4}, at: sock_close+0x9b/0x240
[ 1469.987523][   T38] 1 lock held by dhcpcd/12237:
[ 1469.987535][   T38]  #0: ffff88805c44d378 (&sb->s_type->i_mutex_key#10){+.+.}-{4:4}, at: sock_close+0x9b/0x240
[ 1469.987596][   T38] 
[ 1469.987602][   T38] =============================================
[ 1469.987602][   T38] 
[ 1469.987625][   T38] NMI backtrace for cpu 1
[ 1469.987641][   T38] CPU: 1 UID: 0 PID: 38 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[ 1469.987665][   T38] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 1469.987677][   T38] Call Trace:
[ 1469.987686][   T38]  <TASK>
[ 1469.987696][   T38]  dump_stack_lvl+0x189/0x250
[ 1469.987734][   T38]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1469.987767][   T38]  ? __pfx__printk+0x10/0x10
[ 1469.987805][   T38]  nmi_cpu_backtrace+0x39e/0x3d0
[ 1469.987837][   T38]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[ 1469.987868][   T38]  ? __pfx__printk+0x10/0x10
[ 1469.987896][   T38]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[ 1469.987925][   T38]  nmi_trigger_cpumask_backtrace+0x17a/0x300
[ 1469.987966][   T38]  watchdog+0xf93/0xfe0
[ 1469.988000][   T38]  ? watchdog+0x1de/0xfe0
[ 1469.988034][   T38]  kthread+0x70e/0x8a0
[ 1469.988072][   T38]  ? __pfx_watchdog+0x10/0x10
[ 1469.988099][   T38]  ? __pfx_kthread+0x10/0x10
[ 1469.988138][   T38]  ? __pfx_kthread+0x10/0x10
[ 1469.988171][   T38]  ret_from_fork+0x439/0x7d0
[ 1469.988203][   T38]  ? __pfx_ret_from_fork+0x10/0x10
[ 1469.988238][   T38]  ? __switch_to_asm+0x39/0x70
[ 1469.988258][   T38]  ? __switch_to_asm+0x33/0x70
[ 1469.988276][   T38]  ? __pfx_kthread+0x10/0x10
[ 1469.988311][   T38]  ret_from_fork_asm+0x1a/0x30
[ 1469.988349][   T38]  </TASK>
[ 1469.988357][   T38] Sending NMI from CPU 1 to CPUs 0:
[ 1469.988389][    C0] NMI backtrace for cpu 0
[ 1469.988403][    C0] CPU: 0 UID: 0 PID: 12119 Comm: kworker/0:18 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[ 1469.988425][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 1469.988437][    C0] Workqueue: wg-crypt-wg1 wg_packet_tx_worker
[ 1469.988464][    C0] RIP: 0010:get_page_from_freelist+0x2132/0x21b0
[ 1469.988485][    C0] Code: 0f 94 c3 4c 89 f7 8b 6c 24 5c 89 ea e8 b7 35 ff ff f7 c5 00 00 04 00 0f 94 c0 08 d8 75 0c 4c 89 f7 48 8b 34 24 e8 9e 06 ff ff <4c> 8b 7c 24 10 41 83 e7 04 41 d1 ef 49 8d 5e 08 48 89 d8 48 c1 e8
[ 1469.988501][    C0] RSP: 0018:ffffc900055f6250 EFLAGS: 00000202
[ 1469.988516][    C0] RAX: 0000000000000001 RBX: ffff88813fffc501 RCX: 60164238e4b82c00
[ 1469.988529][    C0] RDX: 0000000000000008 RSI: ffffffff8d21ad8b RDI: ffff88802ec89dc0
[ 1469.988542][    C0] RBP: 0000000000052820 R08: 0000000000000000 R09: 0000000000000100
[ 1469.988553][    C0] R10: dffffc0000000000 R11: ffffed1003aa2a60 R12: ffff88813fffdf50
[ 1469.988566][    C0] R13: ffff88813fffbf40 R14: ffffea0001cddbc0 R15: ffffc900055f647c
[ 1469.988581][    C0] FS:  0000000000000000(0000) GS:ffff8881268bc000(0000) knlGS:0000000000000000
[ 1469.988596][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1469.988608][    C0] CR2: 000055a96b5b2660 CR3: 000000000d7a6000 CR4: 00000000003526f0
[ 1469.988624][    C0] Call Trace:
[ 1469.988630][    C0]  <TASK>
[ 1469.988650][    C0]  ? do_raw_spin_lock+0x121/0x290
[ 1469.988684][    C0]  __alloc_frozen_pages_noprof+0x181/0x370
[ 1469.988705][    C0]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 1469.988729][    C0]  ? policy_nodemask+0x28b/0x720
[ 1469.988757][    C0]  alloc_pages_mpol+0xd1/0x380
[ 1469.988784][    C0]  allocate_slab+0x8a/0x370
[ 1469.988804][    C0]  ___slab_alloc+0x8d1/0xdc0
[ 1469.988822][    C0]  ? dst_alloc+0x105/0x170
[ 1469.988843][    C0]  ? dst_alloc+0x105/0x170
[ 1469.988859][    C0]  kmem_cache_alloc_noprof+0xe6/0x310
[ 1469.988887][    C0]  dst_alloc+0x105/0x170
[ 1469.988908][    C0]  ip_route_output_key_hash_rcu+0x1560/0x23e0
[ 1469.988935][    C0]  ? ip_route_output_key_hash+0xde/0x2e0
[ 1469.988956][    C0]  ip_route_output_key_hash+0x1b9/0x2e0
[ 1469.988975][    C0]  ? __lock_acquire+0xab9/0xd20
[ 1469.989000][    C0]  ? __pfx_ip_route_output_key_hash+0x10/0x10
[ 1469.989024][    C0]  ? ip_route_me_harder+0x4ad/0x1030
[ 1469.989050][    C0]  ip_route_output_flow+0x2a/0x150
[ 1469.989066][    C0]  ? ip_route_me_harder+0x6c0/0x1030
[ 1469.989088][    C0]  ip_route_me_harder+0x6d2/0x1030
[ 1469.989116][    C0]  ? __pfx_ip_route_me_harder+0x10/0x10
[ 1469.989154][    C0]  synproxy_send_tcp+0x359/0x6c0
[ 1469.989196][    C0]  synproxy_send_client_synack+0x8bb/0xe20
[ 1469.989232][    C0]  ? __pfx_synproxy_send_client_synack+0x10/0x10
[ 1469.989259][    C0]  ? nft_tunnel_get_reduce+0x548/0x640
[ 1469.989285][    C0]  ? synproxy_pernet+0x45/0x270
[ 1469.989308][    C0]  nft_synproxy_eval_v4+0x36e/0x560
[ 1469.989331][    C0]  ? __pfx_nft_synproxy_eval_v4+0x10/0x10
[ 1469.989352][    C0]  ? nf_ip_checksum+0x13c/0x510
[ 1469.989374][    C0]  nft_synproxy_do_eval+0x345/0x570
[ 1469.989397][    C0]  ? __pfx_nft_synproxy_do_eval+0x10/0x10
[ 1469.989427][    C0]  nft_do_chain+0x409/0x1920
[ 1469.989454][    C0]  ? __pfx_nft_do_chain+0x10/0x10
[ 1469.989486][    C0]  ? __udp4_lib_rcv+0x138f/0x2600
[ 1469.989519][    C0]  nft_do_chain_inet+0x25d/0x340
[ 1469.989537][    C0]  ? __pfx_nft_do_chain_inet+0x10/0x10
[ 1469.989556][    C0]  ? __lock_acquire+0xab9/0xd20
[ 1469.989586][    C0]  ? NF_HOOK+0x9a/0x3a0
[ 1469.989611][    C0]  ? __pfx_nft_do_chain_inet+0x10/0x10
[ 1469.989630][    C0]  nf_hook_slow+0xc5/0x220
[ 1469.989659][    C0]  NF_HOOK+0x206/0x3a0
[ 1469.989684][    C0]  ? __pfx_ip_local_deliver_finish+0x10/0x10
[ 1469.989711][    C0]  ? NF_HOOK+0x9a/0x3a0
[ 1469.989734][    C0]  ? __pfx_NF_HOOK+0x10/0x10
[ 1469.989757][    C0]  ? ip_rcv_finish_core+0xda3/0x1c00
[ 1469.989785][    C0]  ? __pfx_ip_local_deliver_finish+0x10/0x10
[ 1469.989812][    C0]  ? skb_dst+0x4f/0xd0
[ 1469.989838][    C0]  ? ip_local_deliver+0x12a/0x1b0
[ 1469.989865][    C0]  NF_HOOK+0x309/0x3a0
[ 1469.989890][    C0]  ? __pfx_ip_rcv_finish+0x10/0x10
[ 1469.989915][    C0]  ? NF_HOOK+0x9a/0x3a0
[ 1469.989940][    C0]  ? __pfx_NF_HOOK+0x10/0x10
[ 1469.989966][    C0]  ? __pfx_ip_rcv_finish+0x10/0x10
[ 1469.989998][    C0]  ? __pfx_ip_rcv+0x10/0x10
[ 1469.990021][    C0]  __netif_receive_skb+0x143/0x380
[ 1469.990044][    C0]  ? rt_spin_unlock+0x65/0x80
[ 1469.990069][    C0]  ? process_backlog+0x27b/0x900
[ 1469.990092][    C0]  process_backlog+0x31e/0x900
[ 1469.990124][    C0]  __napi_poll+0xb3/0x540
[ 1469.990149][    C0]  net_rx_action+0x707/0xe00
[ 1469.990190][    C0]  ? __pfx_net_rx_action+0x10/0x10
[ 1469.990216][    C0]  ? kvm_sched_clock_read+0x11/0x20
[ 1469.990248][    C0]  ? __pfx_sched_clock_cpu+0x10/0x10
[ 1469.990274][    C0]  handle_softirqs+0x22f/0x710
[ 1469.990303][    C0]  ? __pfx_handle_softirqs+0x10/0x10
[ 1469.990333][    C0]  __local_bh_enable_ip+0x179/0x270
[ 1469.990355][    C0]  ? __pfx___local_bh_enable_ip+0x10/0x10
[ 1469.990387][    C0]  ? wg_socket_send_skb_to_peer+0x59/0x200
[ 1469.990413][    C0]  wg_socket_send_skb_to_peer+0x199/0x200
[ 1469.990443][    C0]  wg_packet_tx_worker+0x1c8/0x7c0
[ 1469.990468][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1469.990496][    C0]  ? process_scheduled_works+0x9ef/0x17b0
[ 1469.990520][    C0]  process_scheduled_works+0xade/0x17b0
[ 1469.990560][    C0]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1469.990593][    C0]  worker_thread+0x8a0/0xda0
[ 1469.990632][    C0]  kthread+0x70e/0x8a0
[ 1469.990661][    C0]  ? __pfx_worker_thread+0x10/0x10
[ 1469.990684][    C0]  ? __pfx_kthread+0x10/0x10
[ 1469.990714][    C0]  ? __pfx_kthread+0x10/0x10
[ 1469.990742][    C0]  ret_from_fork+0x439/0x7d0
[ 1469.990767][    C0]  ? __pfx_ret_from_fork+0x10/0x10
[ 1469.990794][    C0]  ? __switch_to_asm+0x39/0x70
[ 1469.990811][    C0]  ? __switch_to_asm+0x33/0x70
[ 1469.990827][    C0]  ? __pfx_kthread+0x10/0x10
[ 1469.990855][    C0]  ret_from_fork_asm+0x1a/0x30
[ 1469.990882][    C0]  </TASK>
[ 1469.991392][   T38] Kernel panic - not syncing: hung_task: blocked tasks
[ 1469.991407][   T38] CPU: 1 UID: 0 PID: 38 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[ 1469.991429][   T38] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 1469.991441][   T38] Call Trace:
[ 1469.991449][   T38]  <TASK>
[ 1469.991456][   T38]  dump_stack_lvl+0x99/0x250
[ 1469.991486][   T38]  ? __asan_memcpy+0x40/0x70
[ 1469.991507][   T38]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1469.991537][   T38]  ? __pfx__printk+0x10/0x10
[ 1469.991571][   T38]  vpanic+0x281/0x750
[ 1469.991603][   T38]  ? __pfx_vpanic+0x10/0x10
[ 1469.991630][   T38]  ? __x2apic_send_IPI_mask+0x1e4/0x260
[ 1469.991651][   T38]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1469.991691][   T38]  panic+0xb9/0xc0
[ 1469.991718][   T38]  ? __pfx_panic+0x10/0x10
[ 1469.991750][   T38]  ? irq_work_queue+0xc3/0x140
[ 1469.991780][   T38]  ? nmi_trigger_cpumask_backtrace+0x234/0x300
[ 1469.991808][   T38]  watchdog+0xfd2/0xfe0
[ 1469.991838][   T38]  ? watchdog+0x1de/0xfe0
[ 1469.991869][   T38]  kthread+0x70e/0x8a0
[ 1469.991902][   T38]  ? __pfx_watchdog+0x10/0x10
[ 1469.991926][   T38]  ? __pfx_kthread+0x10/0x10
[ 1469.991967][   T38]  ? __pfx_kthread+0x10/0x10
[ 1469.991998][   T38]  ret_from_fork+0x439/0x7d0
[ 1469.992026][   T38]  ? __pfx_ret_from_fork+0x10/0x10
[ 1469.992059][   T38]  ? __switch_to_asm+0x39/0x70
[ 1469.992077][   T38]  ? __switch_to_asm+0x33/0x70
[ 1469.992094][   T38]  ? __pfx_kthread+0x10/0x10
[ 1469.992126][   T38]  ret_from_fork_asm+0x1a/0x30
[ 1469.992160][   T38]  </TASK>
[ 1469.992555][   T38] Kernel Offset: disabled