last executing test programs:

17m51.342063366s ago: executing program 1 (id=8):
r0 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r0, 0x0, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000003e00)={0x0, 0x0, &(0x7f0000003dc0)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000010000000000000000090000000a20000000000a05140000000000000000010000000900010073797a300000000058000000160a09000900000000000000010000000900010073797a30000000000900020073797a32000000002c00038018000380140001006d6163736563300000000000000000000800024000000000080001400000000014000000110001"], 0xa0}}, 0x0)
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
syz_open_dev$loop(0x0, 0x6, 0x80)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r5 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r5, &(0x7f0000004cc0)={0x2, 0x4e20, @loopback}, 0x10)
r6 = fsopen(&(0x7f00000000c0)='gadgetfs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r6, 0x6, 0x0, 0x0, 0x0)
openat$khugepaged_scan(0xffffffffffffff9c, &(0x7f0000000100), 0x1, 0x0)
mount$tmpfs(0x0, 0x0, 0x0, 0x400, &(0x7f00000001c0))
prctl$PR_SET_IO_FLUSHER(0x43, 0x1)
prctl$PR_SET_IO_FLUSHER(0x43, 0x0)
io_uring_register$IORING_UNREGISTER_EVENTFD(0xffffffffffffffff, 0x5, 0x0, 0x0)

17m49.840386011s ago: executing program 1 (id=9):
r0 = io_uring_setup(0x1baa, &(0x7f0000000340)={0x0, 0x53e8, 0x40, 0x1, 0x310})
socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
syz_open_dev$dmmidi(&(0x7f0000000300), 0x2, 0x42000)
socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = syz_io_uring_setup(0x10d, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x200000}, &(0x7f0000000340), &(0x7f0000000280))
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r6 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
connect$packet(r6, &(0x7f0000000200)={0x1f, 0xf8, 0x0, 0x1, 0x2}, 0x14)
shutdown(r6, 0x1)
io_uring_enter(r5, 0x3516, 0x0, 0x0, 0x0, 0x0)
bind$netlink(r1, &(0x7f0000000280)={0x10, 0x0, 0x25dfdbfb, 0x4140045e}, 0xc)
close_range(r0, 0xffffffffffffffff, 0x0)

17m48.182049358s ago: executing program 1 (id=11):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_inet_SIOCGIFPFLAGS(r0, 0x8935, &(0x7f0000000000)={'rose0\x00'})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000002c0)={'macvlan0\x00'})
socket$nl_route(0x10, 0x3, 0x0)
r2 = syz_open_dev$loop(&(0x7f00000000c0), 0x207, 0x161a81)
r3 = memfd_create(&(0x7f0000000a00)='C\x13\xfc2\x95WD\xaa\xba^\x90\xfd\x8d\xc2\xb1[\x81\xda\xda\xd6\x8c\xc99\xec\x0e*||\xe4\xb3\xc4\xb6\v\xaa\x15\x86,\xac\x8d\x89cu\x10\xdc\x93\x9b\xb4\x93\xafE*:\xe4\xdd\xa5\xa75\xb8\x1e;7\xb7.V\xdc\xc0*rw[\r\x98\xf6\xd3\xbf\xa1\xcf\x8e\xc2\x8c\f\xee}g\xfe\xae\x93j\x9c\xf6\xf8\x99\xefF_\xcd\xdf!b\xc5\xec\ntb\xff\b\xaaF?!\x9f\a\x1a\x03\f\xe94\x1deU\x06zS\xc9\xb4\xa7@\xa1\\B\xc2@\r_b\x9a\xeb\x01\xa4(V\xd6/N\xc5\xc6f\xb1\x95Z\xe5w^\xd8\xe7J\x80\xf7\xae\xafuv\x84\x9eG\xd1\xe7\x9b\xf0_9\xc2\x9b\xfd\xc3\xf3\xe4\x95P\xf1m\xcf\xc2\xe1\xe6\xa6\x8c\x11\xfb\xb8S\x8b\x92\\\asW-Ee\x02\x00\x00\x00\xd0;Q\xc1~\x89\xec\xc8\x9b\x88\a\xf2\x93\x82(\x8b\x00\xd8\xb48[\x95\x93i|\xc0\x00\x04\x00\x00\x00\x00\x00\x00v\xef\xee+\xab\x9c\x00^R\xb2n?i=\xbe\x16\x8a\xbf\xe3\xcdB\xed\xe14\xe8\xd0\xb7\xff\xfeQ\x1c\x1f\x88Z0\xc1\b\x00\x00\x00\x00\x00\x00\x00\x17\x94\xdf\x00\x10\x00\x00\x00\x00\x00\x00\x8c\xf0\xae\x98\x8c\xe0\xc1g}\xaeW\xaa\xa1\x90\x8c\n$\xa6\xbb\x10\xaf\xc7~\x11\x03<v\xe9\xc7K\xf6]\x11)u\xd3\x15\x01}\xe25$\xb0\x86v\x80\r\x9c\xb8\xe6\xd3(\xa0G2s\xa9&\xb3QU~u\x13\x05kKp\xa6&\x8eu\x1d\xb2\xa9!\xc9\xfa\xd0dG5\xcbf<}r\xab\x9c\xd9f6iN\xaa>\x92z\xbe\xb2R)\xf1K\xd7\xaf\x99\xf6d\xe8\xec\xb7\xbd+T3\xa6\xa9\xfaY-1qs\x82\xefn*\x96\xc9\x1e\xf4\xd1\x02Dt\xc0\x19\xf7\x89\x96.D [F\xeeYW\x95\x13\xc7;\xb5\x13\x04\x00\xaf\xf0C\x9c\xabf\x1daCS2\x02\xb0\xef\xc7\x8c\x9e\xed\a\n<V\xaa\xbfZ1\xa82\x85\x99\x0e$U\xb4X\xc7\xfa\f\b\x8f\xc4\xbeIt\xe4\xc51\xba\xb9H\xe8\x96\x94\xd7\xdc\x81\x111\t\xafl\x97\xd8T\xd40\x90ON\xaaFY\xb4\xb3\xf4\xf8JT\xc5:\xc5\aGc\xb5\x12\x90\x7f\x00\x91\xce@\xe5\xd3A\xcc\xd5|\x9f\x8e5\x042\x9a\xc1\xa1\a\xb7\xf5\xbc,\xd1\xd3k\xce\xbc\x0e#\x89\x96n8\xc5\xefo\xb8\x8f]\xf1\xe0;)I\xc5\xb0\x01\xdb\x99S\xc1\x02z\xa7\x19 \xe8/rH\xfd\x9e-\xf8\x83<\x1c\x89\xf6%\xde\x16(\xbc\xdd\xf4\xe3F\x91\x91\x10\xbc\x87q\x8a\x12\x04\xb1W\xc9(\x13wU\x1eT\xd4}`n\xaau\x03\xd9,\x01\xef\x98Y\xf4nE%?@D\xa4?\x8dq}=\xae#sZ\xe6W^\xc5\xb0ur\xe5\xe3\xe9\x82\x80\xd3(\x9c\xcc\xd5\x9e\x8d\xc5C\x80\x81\xa6F\x17\x17\xc6\x90G\xe0c\x8a\xc9\xa0\x03\xce$M>\xf9\xbaQ\xaesO\xef\xcf\x9b\xd5\x87G\x90\x05\xfb\x86\x0e)\xd7p~\x8ef\xbdJ\xf6\x9a\xf9t\x1b\x0f\x91\x92\xcc\x11\xb2\xe5\x90\x7f\xae\x18\xf0\x18\xc6\x9d\xa9\x97\x17\xbe\x13\x855&\xe6\x19C\f\xd82\xd8\'\xf1`\x1bq\x9c\xac\x9d\x05\xfb\t\xcc\x14\x04\xbb<\xd4', 0xe)
pwritev(r3, &(0x7f0000000180)=[{&(0x7f00000002c0)="01", 0x1}], 0x1, 0xd34, 0x9)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x4000010, 0xffffffffffffffff, 0xce9e1000)
mount$cgroup(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000040), 0x10000, &(0x7f0000000180)={[{@subsystem='hugetlb'}, {@cpuset_v2_mode}, {@subsystem='cpuacct'}]})
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="a0000000210001000000000000000000fc010000000000007f00000100000000000000000000000000000000000005000a00000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000000000005000110000000000000000000000000000000000fe8000000000000000000000000000bbfe8000000000000000000000000000aa00000000000000000000000000000000000000000635000002000000"], 0xa0}}, 0x0)
openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/binder/transactions\x00', 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r6 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x80000, 0x0)
r7 = ioctl$LOOP_CTL_GET_FREE(r6, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r6, 0x4c81, r7)
ioctl$LOOP_CHANGE_FD(r2, 0x4c00, r3)
sendfile(r2, r3, 0x0, 0x24002de8)

17m45.671821494s ago: executing program 1 (id=13):
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r2, 0x0, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)=[{0x0}], 0x1}, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000080)='sched_switch\x00', r2, 0x0, 0xf}, 0x18)
setsockopt$TIPC_GROUP_JOIN(r2, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x0, 0x0, 0x3}, 0x10)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
r5 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r5, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r5, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x1c, &(0x7f00000002c0)=[@in6={0xa, 0x0, 0x0, @private0}]}, 0x0)
r6 = dup3(r5, r4, 0x0)
getsockopt$inet_sctp_SCTP_MAX_BURST(r6, 0x84, 0x71, &(0x7f0000000000)=@assoc_value={<r7=>0x0}, &(0x7f0000000040)=0x17)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_STATS(0xffffffffffffffff, 0x84, 0x70, &(0x7f0000000340)={r7, @in={{0x2, 0x4e24, @local}}, [0x8, 0x6, 0xfff, 0x5, 0x5, 0x3, 0x7000000000000, 0x3, 0x3, 0x20, 0x8, 0x5b, 0x5, 0x1, 0xb]}, 0x0)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(r1, 0x84, 0x6c, 0x0, 0x0)
sendmsg$tipc(r2, &(0x7f00000005c0)={&(0x7f0000000000), 0x10, &(0x7f0000000480)=[{&(0x7f0000000180)}], 0x1}, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x10, r2, 0x0)
r8 = openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)
read$alg(r8, &(0x7f0000000240)=""/4096, 0xfffffdef)
r9 = syz_open_procfs(0x0, &(0x7f0000000180)='pagemap\x00')
pread64(r9, &(0x7f000001a240)=""/102400, 0x19000, 0x100008)

17m41.39820253s ago: executing program 4 (id=5):
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000001100)=0x7)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000000))
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
syz_clone(0x0, 0x0, 0xfffffe11, 0x0, 0x0, 0x0)
socket(0x10, 0x3, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$inet6(0xa, 0x802, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f00000021c0)='maps\x00')
read$char_usb(r2, &(0x7f0000000040)=""/4122, 0x101a)
r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000500)='status\x00')
setgroups(0x400000000000026f, &(0x7f0000000080)=[0x0, 0xee00])
lseek(r3, 0x9, 0x0)
ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0xc0086c43, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000001240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2c000091}, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r4, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket(0x1d, 0x803, 0x0)
sendmsg$SMC_PNETID_GET(r3, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x240040a0}, 0x40c00)

17m41.298109507s ago: executing program 1 (id=17):
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000001100)=0x7)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000000))
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
syz_clone(0x0, 0x0, 0xfffffe11, 0x0, 0x0, 0x0)
socket(0x10, 0x3, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$inet6(0xa, 0x802, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f00000021c0)='maps\x00')
read$char_usb(r1, &(0x7f0000000040)=""/4122, 0x101a)
setgroups(0x400000000000026f, &(0x7f0000000080)=[0x0, 0xee00])
lseek(0xffffffffffffffff, 0x9, 0x0)
ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0xc0086c43, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000001240)={0x0, 0x0, &(0x7f0000001200)={0x0}, 0x1, 0x0, 0x0, 0x2c000091}, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r2, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket(0x1d, 0x803, 0x0)
sendmsg$SMC_PNETID_GET(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x240040a0}, 0x40c00)

17m35.28915819s ago: executing program 4 (id=20):
r0 = io_uring_setup(0x998, &(0x7f0000008d40)={0x0, 0xd637, 0x400, 0x0, 0x50})
io_uring_register$IORING_REGISTER_RING_FDS(r0, 0x14, 0x0, 0x0)
openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
syz_open_procfs(0x0, 0x0)
syz_io_uring_setup(0x0, 0x0, 0x0, 0x0)
ptrace(0x10, 0x0)
ptrace$getregset(0x4204, 0x0, 0x46e62b7f, &(0x7f0000000340)={0x0})
mmap$IORING_OFF_SQ_RING(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x0, 0x4831, 0xffffffffffffffff, 0x0)
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000ff9000/0x2000)=nil, 0x2000, &(0x7f0000000140)=',,\x00')
r1 = openat$vhost_vsock(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r1, 0xaf01, 0x0)
r2 = eventfd(0x0)
r3 = eventfd(0x0)
ioctl$VHOST_SET_VRING_KICK(r1, 0x4008af20, &(0x7f0000000040)={0x1, r3})
dup3(r2, r3, 0x0)
r4 = socket$inet_smc(0x2b, 0x1, 0x0)
getsockopt$sock_buf(r4, 0x1, 0x1c, 0x0, &(0x7f0000000000))
r5 = eventfd(0x2)
ioctl$VHOST_SET_VRING_KICK(r1, 0x4008af20, &(0x7f0000000cc0)={0x1, r5})
r6 = syz_open_procfs(0x0, &(0x7f00000004c0)='net/ip6_flowlabel\x00')
r7 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r7, 0x7a7, &(0x7f0000000080)=0xb0000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r7, 0x7a0, &(0x7f0000000000)={@my=0x0})
ioctl$IOCTL_VMCI_NOTIFY_RESOURCE(r7, 0x7a5, &(0x7f0000000040)={{@hyper, 0x40003}, 0x1, 0x2, 0xffffffff})
preadv(r6, &(0x7f0000000040)=[{&(0x7f0000000ac0)=""/100, 0x64}, {&(0x7f0000000180)=""/250, 0xfa}], 0x2, 0x0, 0x0)
getdents64(r6, &(0x7f0000001600)=""/4096, 0x1000)
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000c00000/0x400000)=nil, 0x400000, &(0x7f0000000380)='p\x00\x00\x00\x00\x00\x00\x00\x00\x00')

17m33.992674295s ago: executing program 4 (id=23):
r0 = socket$alg(0x26, 0x5, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100"/13], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r4}, 0x18)
shmget$private(0x0, 0xfffffffffeffffff, 0x4800, &(0x7f0000ffc000/0x3000)=nil)
r5 = syz_open_dev$sndpcmc(&(0x7f0000000000), 0x0, 0x0)
ioctl$SNDRV_PCM_IOCTL_HW_REFINE(r5, 0xc2604110, &(0x7f0000000400)={0x0, [[0x0, 0x101, 0x0, 0x0, 0x81], [0x0, 0x80000000, 0x0, 0x0, 0x1000, 0x0, 0x0, 0xa3], [0xfa, 0x3b6f, 0x0, 0x4]], '\x00', [{0x0, 0x200000}, {}, {}, {}, {0x2}, {}, {}, {}, {}, {}, {0x0, 0x20000}], '\x00', 0x20, 0x0, 0x0, 0x0, 0x0, 0x2})
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000240)={0x1, @raw_data="a425e2f1a54d24f15852323460608d70566e425a6c36af37b33fac9d31c8a9c7044410d324b03e044e454d2092a62fea8f13441431ce248bfc73a6726ee61ba491d15d8f392ff66fe0b17f0e11f5d2367d5593205ab1efa97d40619a553e7da2518125b850a186ef691daa55c9e50ffaf6ddc25220ded32aeba4524cec1afbd17abba1d15ea05e97ed3dcad452db6e08a991e2c78b057f55de7fdeba7411ce65700c0a1ad7946ff7c355db87566e3e5abb7a37a06731ed19ddfa970bb58a27fd9fa194c092730319"})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r6 = openat$vim2m(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000180000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000f0850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r7}, 0x10)
ioctl$vim2m_VIDIOC_G_FMT(r6, 0xc0d05604, &(0x7f0000001080)={0x2, @pix={0x1, 0x6, 0x52424752, 0x0, 0x3, 0x80000001, 0xa, 0x6, 0x1, 0xb, 0x0, 0x1}})
io_uring_setup(0x2554, &(0x7f00000005c0)={0x0, 0xd046, 0x100, 0x2, 0x18})
mq_open(&(0x7f000084dff0)='!senin\xd58\xd9\x03+\t\xe1\xabx\x00', 0x6e93ebbbcc0884f2, 0x88, &(0x7f0000000300)={0x0, 0xfffffffffffffffd, 0x10000007, 0x9})
bind$alg(r0, &(0x7f0000000080)={0x26, 'aead\x00', 0x0, 0x0, 'pcrypt(authencesn(streebog256-generic,xchacha12-generic))\x00'}, 0x58)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00'})
socket(0x10, 0x80002, 0x0)

17m33.344580626s ago: executing program 1 (id=24):
r0 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r0, 0x0, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000003e00)={0x0, 0x0, &(0x7f0000003dc0)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000010000000000000000090000000a20000000000a05140000000000000000010000000900010073797a300000000058000000160a09000900000000000000010000000900010073797a30000000000900020073797a32000000002c00038018000380140001006d6163736563300000000000000000000800024000000000080001400000000014000000110001"], 0xa0}}, 0x0)
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
syz_open_dev$loop(0x0, 0x6, 0x80)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
socket$inet(0xa, 0x801, 0x84)
r5 = fsopen(&(0x7f00000000c0)='gadgetfs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r5, 0x6, 0x0, 0x0, 0x0)
close(r5)
openat$khugepaged_scan(0xffffffffffffff9c, &(0x7f0000000100), 0x1, 0x0)
mount$tmpfs(0x0, 0x0, 0x0, 0x400, &(0x7f00000001c0))
prctl$PR_SET_IO_FLUSHER(0x43, 0x1)
prctl$PR_SET_IO_FLUSHER(0x43, 0x0)
io_uring_register$IORING_UNREGISTER_EVENTFD(0xffffffffffffffff, 0x5, 0x0, 0x0)
syz_open_dev$hidraw(0x0, 0x5, 0x400040)
syz_init_net_socket$ax25(0x3, 0x5, 0xc4)

17m31.180726379s ago: executing program 4 (id=27):
r0 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r0, 0x0, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000003e00)={0x0, 0x0, &(0x7f0000003dc0)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000010000000000000000090000000a20000000000a05140000000000000000010000000900010073797a300000000058000000160a09000900000000000000010000000900010073797a30000000000900020073797a32000000002c00038018000380140001006d6163736563300000000000000000000800024000000000080001400000000014000000110001"], 0xa0}}, 0x0)
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
syz_open_dev$loop(0x0, 0x6, 0x80)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r5 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r5, &(0x7f0000004cc0)={0x2, 0x4e20, @loopback}, 0x10)
r6 = fsopen(&(0x7f00000000c0)='gadgetfs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r6, 0x6, 0x0, 0x0, 0x0)
close(r6)
openat$khugepaged_scan(0xffffffffffffff9c, &(0x7f0000000100), 0x1, 0x0)
mount$tmpfs(0x0, 0x0, 0x0, 0x400, &(0x7f00000001c0))
prctl$PR_SET_IO_FLUSHER(0x43, 0x1)
prctl$PR_SET_IO_FLUSHER(0x43, 0x0)
syz_open_dev$hidraw(0x0, 0x5, 0x400040)
syz_init_net_socket$ax25(0x3, 0x5, 0xc4)

17m28.400969394s ago: executing program 4 (id=31):
r0 = socket$alg(0x26, 0x5, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100"/13], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r4}, 0x18)
unshare(0x8000000)
shmget$private(0x0, 0xfffffffffeffffff, 0x4800, &(0x7f0000ffc000/0x3000)=nil)
r5 = syz_open_dev$sndpcmc(&(0x7f0000000000), 0x0, 0x0)
ioctl$SNDRV_PCM_IOCTL_HW_REFINE(r5, 0xc2604110, &(0x7f0000000400)={0x0, [[0x0, 0x101, 0x0, 0x0, 0x81], [0x0, 0x80000000, 0x0, 0x0, 0x1000, 0x0, 0x0, 0xa3], [0xfa, 0x3b6f, 0x0, 0x4]], '\x00', [{0x0, 0x200000}, {}, {}, {}, {0x2}, {}, {}, {}, {}, {}, {0x0, 0x20000}], '\x00', 0x20, 0x0, 0x0, 0x0, 0x0, 0x2})
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000240)={0x1, @raw_data="a425e2f1a54d24f15852323460608d70566e425a6c36af37b33fac9d31c8a9c7044410d324b03e044e454d2092a62fea8f13441431ce248bfc73a6726ee61ba491d15d8f392ff66fe0b17f0e11f5d2367d5593205ab1efa97d40619a553e7da2518125b850a186ef691daa55c9e50ffaf6ddc25220ded32aeba4524cec1afbd17abba1d15ea05e97ed3dcad452db6e08a991e2c78b057f55de7fdeba7411ce65700c0a1ad7946ff7c355db87566e3e5abb7a37a06731ed19ddfa970bb58a27fd9fa194c092730319"})
r6 = openat$vim2m(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000180000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000f0850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r7}, 0x10)
ioctl$vim2m_VIDIOC_G_FMT(r6, 0xc0d05604, &(0x7f0000001080)={0x2, @pix={0x1, 0x6, 0x52424752, 0x0, 0x3, 0x80000001, 0xa, 0x6, 0x1, 0xb, 0x0, 0x1}})
io_uring_setup(0x2554, &(0x7f00000005c0)={0x0, 0xd046, 0x100, 0x2, 0x18})
mq_open(&(0x7f000084dff0)='!senin\xd58\xd9\x03+\t\xe1\xabx\x00', 0x6e93ebbbcc0884f2, 0x88, &(0x7f0000000300)={0x0, 0xfffffffffffffffd, 0x10000007, 0x9})
bind$alg(r0, &(0x7f0000000080)={0x26, 'aead\x00', 0x0, 0x0, 'pcrypt(authencesn(streebog256-generic,xchacha12-generic))\x00'}, 0x58)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00'})
socket(0x10, 0x80002, 0x0)

17m16.350463056s ago: executing program 32 (id=24):
r0 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r0, 0x0, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000003e00)={0x0, 0x0, &(0x7f0000003dc0)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000010000000000000000090000000a20000000000a05140000000000000000010000000900010073797a300000000058000000160a09000900000000000000010000000900010073797a30000000000900020073797a32000000002c00038018000380140001006d6163736563300000000000000000000800024000000000080001400000000014000000110001"], 0xa0}}, 0x0)
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
syz_open_dev$loop(0x0, 0x6, 0x80)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
socket$inet(0xa, 0x801, 0x84)
r5 = fsopen(&(0x7f00000000c0)='gadgetfs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r5, 0x6, 0x0, 0x0, 0x0)
close(r5)
openat$khugepaged_scan(0xffffffffffffff9c, &(0x7f0000000100), 0x1, 0x0)
mount$tmpfs(0x0, 0x0, 0x0, 0x400, &(0x7f00000001c0))
prctl$PR_SET_IO_FLUSHER(0x43, 0x1)
prctl$PR_SET_IO_FLUSHER(0x43, 0x0)
io_uring_register$IORING_UNREGISTER_EVENTFD(0xffffffffffffffff, 0x5, 0x0, 0x0)
syz_open_dev$hidraw(0x0, 0x5, 0x400040)
syz_init_net_socket$ax25(0x3, 0x5, 0xc4)

17m12.148193787s ago: executing program 33 (id=31):
r0 = socket$alg(0x26, 0x5, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100"/13], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r4}, 0x18)
unshare(0x8000000)
shmget$private(0x0, 0xfffffffffeffffff, 0x4800, &(0x7f0000ffc000/0x3000)=nil)
r5 = syz_open_dev$sndpcmc(&(0x7f0000000000), 0x0, 0x0)
ioctl$SNDRV_PCM_IOCTL_HW_REFINE(r5, 0xc2604110, &(0x7f0000000400)={0x0, [[0x0, 0x101, 0x0, 0x0, 0x81], [0x0, 0x80000000, 0x0, 0x0, 0x1000, 0x0, 0x0, 0xa3], [0xfa, 0x3b6f, 0x0, 0x4]], '\x00', [{0x0, 0x200000}, {}, {}, {}, {0x2}, {}, {}, {}, {}, {}, {0x0, 0x20000}], '\x00', 0x20, 0x0, 0x0, 0x0, 0x0, 0x2})
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000240)={0x1, @raw_data="a425e2f1a54d24f15852323460608d70566e425a6c36af37b33fac9d31c8a9c7044410d324b03e044e454d2092a62fea8f13441431ce248bfc73a6726ee61ba491d15d8f392ff66fe0b17f0e11f5d2367d5593205ab1efa97d40619a553e7da2518125b850a186ef691daa55c9e50ffaf6ddc25220ded32aeba4524cec1afbd17abba1d15ea05e97ed3dcad452db6e08a991e2c78b057f55de7fdeba7411ce65700c0a1ad7946ff7c355db87566e3e5abb7a37a06731ed19ddfa970bb58a27fd9fa194c092730319"})
r6 = openat$vim2m(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000180000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000f0850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r7}, 0x10)
ioctl$vim2m_VIDIOC_G_FMT(r6, 0xc0d05604, &(0x7f0000001080)={0x2, @pix={0x1, 0x6, 0x52424752, 0x0, 0x3, 0x80000001, 0xa, 0x6, 0x1, 0xb, 0x0, 0x1}})
io_uring_setup(0x2554, &(0x7f00000005c0)={0x0, 0xd046, 0x100, 0x2, 0x18})
mq_open(&(0x7f000084dff0)='!senin\xd58\xd9\x03+\t\xe1\xabx\x00', 0x6e93ebbbcc0884f2, 0x88, &(0x7f0000000300)={0x0, 0xfffffffffffffffd, 0x10000007, 0x9})
bind$alg(r0, &(0x7f0000000080)={0x26, 'aead\x00', 0x0, 0x0, 'pcrypt(authencesn(streebog256-generic,xchacha12-generic))\x00'}, 0x58)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00'})
socket(0x10, 0x80002, 0x0)

14m53.159950327s ago: executing program 5 (id=200):
syz_mount_image$hfs(&(0x7f0000002c80), &(0x7f0000000080)='./file1\x00', 0x4490, &(0x7f0000002cc0)=ANY=[], 0xfd, 0x278, &(0x7f0000000200)="$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")
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000000)='./bus\x00', 0x40000, &(0x7f0000000540)={[{@fat=@uid}, {@fat=@nocase}, {@fat=@errors_remount}, {@iocharset={'iocharset', 0x3d, 'cp949'}}, {@rodir}, {@uni_xlate}, {@rodir}, {@uni_xlate}, {@numtail}, {@numtail}, {@nonumtail}, {@shortname_mixed}]}, 0x3, 0x35a, &(0x7f00000009c0)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec85"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
setsockopt$nfc_llcp_NFC_LLCP_MIUX(0xffffffffffffffff, 0x118, 0x1, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r3}, 0x18)
pipe(&(0x7f0000000080)={<r4=>0xffffffffffffffff})
r5 = socket$inet_udp(0x2, 0x2, 0x0)
splice(r4, 0x0, r5, 0x0, 0x200000000622c, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
r6 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000180)={'vcan0\x00'})
openat$ptp0(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
rename(&(0x7f00000002c0)='./file2\x00', &(0x7f0000000340)='./bus\x00')

14m51.572738069s ago: executing program 5 (id=203):
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000001100)=0x7)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000000))
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socket(0x10, 0x3, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$inet6(0xa, 0x802, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f00000021c0)='maps\x00')
read$char_usb(r2, &(0x7f0000000040)=""/4122, 0x101a)
setgroups(0x400000000000026f, &(0x7f0000000080)=[0x0, 0xee00])
lseek(0xffffffffffffffff, 0x9, 0x0)
ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0xc0086c43, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000001240)={0x0, 0x0, &(0x7f0000001200)={0x0}, 0x1, 0x0, 0x0, 0x2c000091}, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r3, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket(0x1d, 0x803, 0x0)
sendmsg$SMC_PNETID_GET(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x240040a0}, 0x40c00)

14m50.541912236s ago: executing program 5 (id=205):
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000001100)=0x7)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000000))
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
syz_clone(0x0, 0x0, 0xfffffe11, 0x0, 0x0, 0x0)
socket(0x10, 0x3, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$inet6(0xa, 0x802, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f00000021c0)='maps\x00')
read$char_usb(r2, &(0x7f0000000040)=""/4122, 0x101a)
r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000500)='status\x00')
setgroups(0x1, &(0x7f0000000080)=[0x0])
lseek(r3, 0x9, 0x0)
ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0xc0086c43, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000001240)={0x0, 0x0, &(0x7f0000001200)={0x0}, 0x1, 0x0, 0x0, 0x2c000091}, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r4, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket(0x1d, 0x803, 0x0)
sendmsg$SMC_PNETID_GET(r3, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x240040a0}, 0x40c00)

14m47.051019659s ago: executing program 5 (id=207):
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000001100)=0x7)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000000))
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
syz_clone(0x0, 0x0, 0xfffffe11, 0x0, 0x0, 0x0)
socket(0x10, 0x3, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$inet6(0xa, 0x802, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f00000021c0)='maps\x00')
read$char_usb(r2, &(0x7f0000000040)=""/4122, 0x101a)
r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000500)='status\x00')
setgroups(0x0, 0x0)
lseek(r3, 0x9, 0x0)
ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0xc0086c43, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000001240)={0x0, 0x0, &(0x7f0000001200)={0x0}, 0x1, 0x0, 0x0, 0x2c000091}, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r4, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket(0x1d, 0x803, 0x0)
sendmsg$SMC_PNETID_GET(r3, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x240040a0}, 0x40c00)

14m40.729411123s ago: executing program 5 (id=214):
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
write$6lowpan_enable(0xffffffffffffffff, &(0x7f0000000000)='0', 0xfffffd2c)
r0 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r0, &(0x7f0000000340)=@nameseq={0x1e, 0x1, 0x3, {0x43}}, 0x10)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)=[{0x0}], 0x1}, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000080)='sched_switch\x00', r0, 0x0, 0xf}, 0x18)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x0, 0x0, 0x3}, 0x10)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r3, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r3, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x1c, &(0x7f00000002c0)=[@in6={0xa, 0x0, 0x0, @private0}]}, 0x0)
r4 = dup3(r3, r2, 0x0)
getsockopt$inet_sctp_SCTP_MAX_BURST(r4, 0x84, 0x71, &(0x7f0000000000)=@assoc_value={<r5=>0x0}, &(0x7f0000000040)=0x17)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_STATS(0xffffffffffffffff, 0x84, 0x70, &(0x7f0000000340)={r5, @in={{0x2, 0x4e24, @local}}, [0x8, 0x6, 0xfff, 0x5, 0x5, 0x3, 0x7000000000000, 0x3, 0x3, 0x20, 0x8, 0x5b, 0x5, 0x1, 0xb]}, 0x0)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0)
sendmsg$tipc(r0, &(0x7f00000005c0)={&(0x7f0000000000), 0x10, &(0x7f0000000480)=[{&(0x7f0000000180)}], 0x1}, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x10, r0, 0x0)
r6 = openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)
read$alg(r6, &(0x7f0000000240)=""/4096, 0xfffffdef)
r7 = syz_open_procfs(0x0, &(0x7f0000000180)='pagemap\x00')
pread64(r7, &(0x7f000001a240)=""/102400, 0x19000, 0x100008)

14m31.334423341s ago: executing program 5 (id=227):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_inet_SIOCGIFPFLAGS(r0, 0x8935, &(0x7f0000000000)={'rose0\x00'})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000002c0)={'macvlan0\x00'})
socket$nl_route(0x10, 0x3, 0x0)
r2 = syz_open_dev$loop(&(0x7f00000000c0), 0x207, 0x161a81)
r3 = memfd_create(&(0x7f0000000a00)='C\x13\xfc2\x95WD\xaa\xba^\x90\xfd\x8d\xc2\xb1[\x81\xda\xda\xd6\x8c\xc99\xec\x0e*||\xe4\xb3\xc4\xb6\v\xaa\x15\x86,\xac\x8d\x89cu\x10\xdc\x93\x9b\xb4\x93\xafE*:\xe4\xdd\xa5\xa75\xb8\x1e;7\xb7.V\xdc\xc0*rw[\r\x98\xf6\xd3\xbf\xa1\xcf\x8e\xc2\x8c\f\xee}g\xfe\xae\x93j\x9c\xf6\xf8\x99\xefF_\xcd\xdf!b\xc5\xec\ntb\xff\b\xaaF?!\x9f\a\x1a\x03\f\xe94\x1deU\x06zS\xc9\xb4\xa7@\xa1\\B\xc2@\r_b\x9a\xeb\x01\xa4(V\xd6/N\xc5\xc6f\xb1\x95Z\xe5w^\xd8\xe7J\x80\xf7\xae\xafuv\x84\x9eG\xd1\xe7\x9b\xf0_9\xc2\x9b\xfd\xc3\xf3\xe4\x95P\xf1m\xcf\xc2\xe1\xe6\xa6\x8c\x11\xfb\xb8S\x8b\x92\\\asW-Ee\x02\x00\x00\x00\xd0;Q\xc1~\x89\xec\xc8\x9b\x88\a\xf2\x93\x82(\x8b\x00\xd8\xb48[\x95\x93i|\xc0\x00\x04\x00\x00\x00\x00\x00\x00v\xef\xee+\xab\x9c\x00^R\xb2n?i=\xbe\x16\x8a\xbf\xe3\xcdB\xed\xe14\xe8\xd0\xb7\xff\xfeQ\x1c\x1f\x88Z0\xc1\b\x00\x00\x00\x00\x00\x00\x00\x17\x94\xdf\x00\x10\x00\x00\x00\x00\x00\x00\x8c\xf0\xae\x98\x8c\xe0\xc1g}\xaeW\xaa\xa1\x90\x8c\n$\xa6\xbb\x10\xaf\xc7~\x11\x03<v\xe9\xc7K\xf6]\x11)u\xd3\x15\x01}\xe25$\xb0\x86v\x80\r\x9c\xb8\xe6\xd3(\xa0G2s\xa9&\xb3QU~u\x13\x05kKp\xa6&\x8eu\x1d\xb2\xa9!\xc9\xfa\xd0dG5\xcbf<}r\xab\x9c\xd9f6iN\xaa>\x92z\xbe\xb2R)\xf1K\xd7\xaf\x99\xf6d\xe8\xec\xb7\xbd+T3\xa6\xa9\xfaY-1qs\x82\xefn*\x96\xc9\x1e\xf4\xd1\x02Dt\xc0\x19\xf7\x89\x96.D [F\xeeYW\x95\x13\xc7;\xb5\x13\x04\x00\xaf\xf0C\x9c\xabf\x1daCS2\x02\xb0\xef\xc7\x8c\x9e\xed\a\n<V\xaa\xbfZ1\xa82\x85\x99\x0e$U\xb4X\xc7\xfa\f\b\x8f\xc4\xbeIt\xe4\xc51\xba\xb9H\xe8\x96\x94\xd7\xdc\x81\x111\t\xafl\x97\xd8T\xd40\x90ON\xaaFY\xb4\xb3\xf4\xf8JT\xc5:\xc5\aGc\xb5\x12\x90\x7f\x00\x91\xce@\xe5\xd3A\xcc\xd5|\x9f\x8e5\x042\x9a\xc1\xa1\a\xb7\xf5\xbc,\xd1\xd3k\xce\xbc\x0e#\x89\x96n8\xc5\xefo\xb8\x8f]\xf1\xe0;)I\xc5\xb0\x01\xdb\x99S\xc1\x02z\xa7\x19 \xe8/rH\xfd\x9e-\xf8\x83<\x1c\x89\xf6%\xde\x16(\xbc\xdd\xf4\xe3F\x91\x91\x10\xbc\x87q\x8a\x12\x04\xb1W\xc9(\x13wU\x1eT\xd4}`n\xaau\x03\xd9,\x01\xef\x98Y\xf4nE%?@D\xa4?\x8dq}=\xae#sZ\xe6W^\xc5\xb0ur\xe5\xe3\xe9\x82\x80\xd3(\x9c\xcc\xd5\x9e\x8d\xc5C\x80\x81\xa6F\x17\x17\xc6\x90G\xe0c\x8a\xc9\xa0\x03\xce$M>\xf9\xbaQ\xaesO\xef\xcf\x9b\xd5\x87G\x90\x05\xfb\x86\x0e)\xd7p~\x8ef\xbdJ\xf6\x9a\xf9t\x1b\x0f\x91\x92\xcc\x11\xb2\xe5\x90\x7f\xae\x18\xf0\x18\xc6\x9d\xa9\x97\x17\xbe\x13\x855&\xe6\x19C\f\xd82\xd8\'\xf1`\x1bq\x9c\xac\x9d\x05\xfb\t\xcc\x14\x04\xbb<\xd4', 0xe)
pwritev(r3, &(0x7f0000000180)=[{&(0x7f00000002c0)="01", 0x1}], 0x1, 0xd34, 0x9)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(0xffffffffffffffff, 0x6, 0xe, &(0x7f0000000300)={@in6={{0xa, 0x2, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}, 0x0, 0x0, 0x43, 0x0, "0aaa8ff5a212a1bd3bbda613efd9c8b4965dca66db42f66a86e5781cf86717055a7c1d13e6507e5a774ef95f2fc1b947e03d5c8379123f2f1d34b0882e83d41b67cb9ff147c6d33a097d2269351b3ed3"}, 0xd8)
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
mount$cgroup(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000040), 0x10000, &(0x7f0000000180)={[{@subsystem='hugetlb'}, {@cpuset_v2_mode}, {@subsystem='cpuacct'}]})
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="a0000000210001000000000000000000fc010000000000007f00000100000000000000000000000000000000000005000a00000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000000000005000110000000000000000000000000000000000fe8000000000000000000000000000bbfe8000000000000000000000000000aa00000000000000000000000000000000000000000635000002000000"], 0xa0}}, 0x0)
openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/binder/transactions\x00', 0x0, 0x0)
r6 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x80000, 0x0)
r7 = ioctl$LOOP_CTL_GET_FREE(r6, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r6, 0x4c81, r7)
ioctl$LOOP_CHANGE_FD(r2, 0x4c00, r3)
sendfile(r2, r3, 0x0, 0x24002de8)

14m15.746377558s ago: executing program 34 (id=227):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_inet_SIOCGIFPFLAGS(r0, 0x8935, &(0x7f0000000000)={'rose0\x00'})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000002c0)={'macvlan0\x00'})
socket$nl_route(0x10, 0x3, 0x0)
r2 = syz_open_dev$loop(&(0x7f00000000c0), 0x207, 0x161a81)
r3 = memfd_create(&(0x7f0000000a00)='C\x13\xfc2\x95WD\xaa\xba^\x90\xfd\x8d\xc2\xb1[\x81\xda\xda\xd6\x8c\xc99\xec\x0e*||\xe4\xb3\xc4\xb6\v\xaa\x15\x86,\xac\x8d\x89cu\x10\xdc\x93\x9b\xb4\x93\xafE*:\xe4\xdd\xa5\xa75\xb8\x1e;7\xb7.V\xdc\xc0*rw[\r\x98\xf6\xd3\xbf\xa1\xcf\x8e\xc2\x8c\f\xee}g\xfe\xae\x93j\x9c\xf6\xf8\x99\xefF_\xcd\xdf!b\xc5\xec\ntb\xff\b\xaaF?!\x9f\a\x1a\x03\f\xe94\x1deU\x06zS\xc9\xb4\xa7@\xa1\\B\xc2@\r_b\x9a\xeb\x01\xa4(V\xd6/N\xc5\xc6f\xb1\x95Z\xe5w^\xd8\xe7J\x80\xf7\xae\xafuv\x84\x9eG\xd1\xe7\x9b\xf0_9\xc2\x9b\xfd\xc3\xf3\xe4\x95P\xf1m\xcf\xc2\xe1\xe6\xa6\x8c\x11\xfb\xb8S\x8b\x92\\\asW-Ee\x02\x00\x00\x00\xd0;Q\xc1~\x89\xec\xc8\x9b\x88\a\xf2\x93\x82(\x8b\x00\xd8\xb48[\x95\x93i|\xc0\x00\x04\x00\x00\x00\x00\x00\x00v\xef\xee+\xab\x9c\x00^R\xb2n?i=\xbe\x16\x8a\xbf\xe3\xcdB\xed\xe14\xe8\xd0\xb7\xff\xfeQ\x1c\x1f\x88Z0\xc1\b\x00\x00\x00\x00\x00\x00\x00\x17\x94\xdf\x00\x10\x00\x00\x00\x00\x00\x00\x8c\xf0\xae\x98\x8c\xe0\xc1g}\xaeW\xaa\xa1\x90\x8c\n$\xa6\xbb\x10\xaf\xc7~\x11\x03<v\xe9\xc7K\xf6]\x11)u\xd3\x15\x01}\xe25$\xb0\x86v\x80\r\x9c\xb8\xe6\xd3(\xa0G2s\xa9&\xb3QU~u\x13\x05kKp\xa6&\x8eu\x1d\xb2\xa9!\xc9\xfa\xd0dG5\xcbf<}r\xab\x9c\xd9f6iN\xaa>\x92z\xbe\xb2R)\xf1K\xd7\xaf\x99\xf6d\xe8\xec\xb7\xbd+T3\xa6\xa9\xfaY-1qs\x82\xefn*\x96\xc9\x1e\xf4\xd1\x02Dt\xc0\x19\xf7\x89\x96.D [F\xeeYW\x95\x13\xc7;\xb5\x13\x04\x00\xaf\xf0C\x9c\xabf\x1daCS2\x02\xb0\xef\xc7\x8c\x9e\xed\a\n<V\xaa\xbfZ1\xa82\x85\x99\x0e$U\xb4X\xc7\xfa\f\b\x8f\xc4\xbeIt\xe4\xc51\xba\xb9H\xe8\x96\x94\xd7\xdc\x81\x111\t\xafl\x97\xd8T\xd40\x90ON\xaaFY\xb4\xb3\xf4\xf8JT\xc5:\xc5\aGc\xb5\x12\x90\x7f\x00\x91\xce@\xe5\xd3A\xcc\xd5|\x9f\x8e5\x042\x9a\xc1\xa1\a\xb7\xf5\xbc,\xd1\xd3k\xce\xbc\x0e#\x89\x96n8\xc5\xefo\xb8\x8f]\xf1\xe0;)I\xc5\xb0\x01\xdb\x99S\xc1\x02z\xa7\x19 \xe8/rH\xfd\x9e-\xf8\x83<\x1c\x89\xf6%\xde\x16(\xbc\xdd\xf4\xe3F\x91\x91\x10\xbc\x87q\x8a\x12\x04\xb1W\xc9(\x13wU\x1eT\xd4}`n\xaau\x03\xd9,\x01\xef\x98Y\xf4nE%?@D\xa4?\x8dq}=\xae#sZ\xe6W^\xc5\xb0ur\xe5\xe3\xe9\x82\x80\xd3(\x9c\xcc\xd5\x9e\x8d\xc5C\x80\x81\xa6F\x17\x17\xc6\x90G\xe0c\x8a\xc9\xa0\x03\xce$M>\xf9\xbaQ\xaesO\xef\xcf\x9b\xd5\x87G\x90\x05\xfb\x86\x0e)\xd7p~\x8ef\xbdJ\xf6\x9a\xf9t\x1b\x0f\x91\x92\xcc\x11\xb2\xe5\x90\x7f\xae\x18\xf0\x18\xc6\x9d\xa9\x97\x17\xbe\x13\x855&\xe6\x19C\f\xd82\xd8\'\xf1`\x1bq\x9c\xac\x9d\x05\xfb\t\xcc\x14\x04\xbb<\xd4', 0xe)
pwritev(r3, &(0x7f0000000180)=[{&(0x7f00000002c0)="01", 0x1}], 0x1, 0xd34, 0x9)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(0xffffffffffffffff, 0x6, 0xe, &(0x7f0000000300)={@in6={{0xa, 0x2, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}, 0x0, 0x0, 0x43, 0x0, "0aaa8ff5a212a1bd3bbda613efd9c8b4965dca66db42f66a86e5781cf86717055a7c1d13e6507e5a774ef95f2fc1b947e03d5c8379123f2f1d34b0882e83d41b67cb9ff147c6d33a097d2269351b3ed3"}, 0xd8)
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
mount$cgroup(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000040), 0x10000, &(0x7f0000000180)={[{@subsystem='hugetlb'}, {@cpuset_v2_mode}, {@subsystem='cpuacct'}]})
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="a0000000210001000000000000000000fc010000000000007f00000100000000000000000000000000000000000005000a00000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000000000005000110000000000000000000000000000000000fe8000000000000000000000000000bbfe8000000000000000000000000000aa00000000000000000000000000000000000000000635000002000000"], 0xa0}}, 0x0)
openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/binder/transactions\x00', 0x0, 0x0)
r6 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x80000, 0x0)
r7 = ioctl$LOOP_CTL_GET_FREE(r6, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r6, 0x4c81, r7)
ioctl$LOOP_CHANGE_FD(r2, 0x4c00, r3)
sendfile(r2, r3, 0x0, 0x24002de8)

12.598442159s ago: executing program 7 (id=4372):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020701200000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000007300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000140)=0xe)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000500))

11.628332298s ago: executing program 7 (id=4376):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x14)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000180)='kfree\x00', r1, 0x0, 0x8}, 0x18)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000001200)={&(0x7f0000001080)={0x38, 0x1403, 0x1, 0x702, 0x0, "", [{{0x9, 0x2, 'syz1\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'team_slave_0\x00'}}]}, 0x38}, 0x1, 0x0, 0x0, 0x40000}, 0x0)

9.142453808s ago: executing program 8 (id=4398):
r0 = socket$kcm(0x11, 0x3, 0x0)
setsockopt$sock_attach_bpf(r0, 0x107, 0xf, &(0x7f0000000000), 0x4)
sendmsg$kcm(r0, &(0x7f0000000080)={&(0x7f0000000100)=@hci={0x1f, 0x0, 0x5}, 0x80, &(0x7f0000000200)=[{&(0x7f0000000240)="27050200340f14000600002fb96dbcf70606000017000000", 0x18}, {&(0x7f0000001200)="1c393502dda1a67d93b1ceccbe972c4fef9c33ecf2d824f3a33513f45f472bbdc8e3a2275f2587f0da0b3ae419bed996116448f90d113ce98aa985f379d729430858f5cb9a668a1800bf2354b33cdff83033de518580a3080d7f4cc2406e071138439e1566dd17983ee153ab672f362d3292e24a9952f18ec3d8b37bb3391096c1d4442a754899299321c03cbcfb98a26994b2a072c2b9d9c70d619545e5f61b050e40166d2ff57dcc008f24fd5339e7bc21e25863f80d2487c30b6bf781608a31d68e9319ab1712d8f5bdde849c040417c864cbfd3923dcb9fc6bdc2ea53334184b03efcb631dc68f0a7b6e13eea4b80d4237120e32932ca4e2b50bad0a35496d36a191d91f03b477b9587bc0ba489932e34f819fa1524ebad53a3d94b46c6aeff4f42fa067729fbb2862c09d337a75e0c8429d4bfe0dee2e1e23e8c22787178600ecca135623731e4701f35bd4e7c936a8ee274120e7662328a5aba1161b05889b045696721c79bff0547efe051f3c5de77fdd3c77afd41a1a7747a982b7efb013c9d6bac7d3ad1f9b7c3a5a1448b35696f03bca1c875e346edc55b7a271c3e5f3c0df72c8e4d7cccfa2e9b598f0ae06efbc1a5d5bd91aed6b32deccf7755cef50fab72633c802533b9d94f17f9be978f2514c47671575ee528fbdddc6194328e605e4d10e293756d20eb8a545f2bfe48df5d1d98a270458392a0a57647dcb8ee005e78877a072d12d0429b9b9957a695c3289b4a59469691115e6ba204181708b9d1ae47418ed594b8128f20c100f5485a84e60d73ab818da73fab78caf42afd1f89cdb29dfdd6676c55ea00d35321bc4878170c62b056b4e03ae556ac804026cabcbc8e79e7a18f2f56442cd650aa2bc88f62ebb65bfafd3e5b4c62ac2e720ff0fdf03c46889df55ff91058319c953f90cd6e7f7b15d56a58ff6128357510c4c618aa25434881d58c39092969ba1f7c444465f16d1f2561991e357bda928f2a50422f774f318fb41169a0d0324a8efd19b940a17c28cda06b750cd02155dbdbd1dc695e190a997ae8f4bb8766983d8db8678a78ae8f044b868549e9c60f7ce25a36300ce07f304e75d285e914b3aec703969df969b2736dd99fcab1944c751f8ef4c34cbb86d5f27ef9982be245949d5579b540750d1eac428b0cd2541295b577573b27e9ecac3934987e85b44bc85e6e307cf6f5683bf1c817369d556a368bc5560a1737aa2bec3cac4689e04fbe851ed4b6c1a355950522f8918af3855fe97ec285da15a20e8119483e7419fa2b0639d5add10b396a8033ec2b98d9a9fca3fc4202d0a6bcfa55798eacafa4c8efafb73a2ab89bb58b0c20364a6ad9c233dfb1bdbb87b8f91e3ab9790e876f906107183419aa7480e327388c01dc5f2d5bcb8a7565cddc4e1275741116416b66bf3adf9e7e31c3fc518740446ed2a394e7699baf9408c62b4c0e7a11dec8f4a67e78a3f00bedae9f55f36c52a1fd4ee3a8be7285f9ca898ee63d3718a7c4603bcb9a24537b34a41a6c0eee4cc609b014d3f4fb928aa7e3fa7a4f97dcef5c0e526b650284ffeda82f603ed9ea1eb6627d29d8bcd6c7e6fe128b1c4463b2cfe50c0ff9a46090635dde4b4d4a984e5a91f7486856cd2bf85088fa4d27b219628be8cdba7004d00985a73fb5b0b4b0f96844e73a8ff7884bdee1a0d6e62decfeebfb56351c135e6580fd61ea806ee5592fe4ffba5c73b8a4a04d44aa52645320cb73fe0c5f14a971d3b3f64c85f5ebaab5e1a061f5186050230286331048e43368e45cfc88e8f4d0d3b1b86b64d5394bc68c2b754389b3c18a45c1edb0496dd88cb3113bbdf1a0f127eb8cd52caf8da95b83d0decad3775b2f2e43776d0d32d447cdd0b267b32775e3473f51a233f8c91a4c07ad669da1844f3d9554f399d43ca1eda29c5c761b3936f845f0c4d1c6a56b8b34b5ab3291e06cd86de6116fc3236a11343d6f4ad02199717054ac1f15471c5a2b8efe67bd4bea33c0ca36e2c4209026849de21c1da1057f353cc824947d75119e4501b98cb9e621d0644e3f4a75353093557afcee7da41ad368fe1cbb426922772b9b262a861fbce9ae86d6e8c5a8de6a1e8f03456c0a354277a2f3ff46a62b6d6cdee4febf23e2350f94b47a05a4d0e7da37a2e97b899d92ca1f3bd1cded5588593e8bb99b9dce0731fa1174de14b63be2bf7e424f870551f213fab437aac092c2e9798959fa3616465e2b36fd49cc9af902d47debec02558c036ed991f1a3895b37cd70f3c405cca362c885542fd976e73be4cf7580a0c4d5a9527c77c189573e3be07ed15472f6b012939abb5be9f3e8a5b720307fb2dbca48b35d121702cfb6b3690559b08fbeb77d53d37582d7f44fe269ac51665632bf070cfc7445741b70306cb3f19b7fbecd19a78092dfd086a0da019734d95660ba4e5ce5bcf25f09403c32e3ec902f3717cca0eca05e791c2b8c2b8988645afa2446d5218abce136c0dbbafb95e4f4727a29cc567b3f73d5dbc1aeee746653a7f5c445add24a9c1b67d1bfeec85d2a6478e80c3acdb9439aa46c8cf14a98ffa89790ef7a94b3146088566812e28ccbafb466772b7fbb98dcf1e792eb6d0de0829c3c49c5ecdeea3e80017324a0fe724565c4e7a242764e9012442cae44b57c7121889c044be05b5eca70efb649bb528e751f072af93ae2c5053fdce196cce158136f904cf64f2cb8becc2d024f5ec32a38d78b87a4dfe7c53769dadef890efd160eb662cedb18a756aed83edfb9efbbb3648eb399e61f80077e64b95eae9d17083aed05cfc2e148621e36be1f41d373c721a11804fce269c688b0c647d6e1083e336d1f7f90a7a080a83397773cc351531070af5c1a1418f28dce95c01052a314a9ebe39cb9cddb8e7855e58c4a636b7f6250ecad312ede18664c03d92e330935295a35ea3e0306f25ca971300f782ae2f6e79a513732d22ef9b9bc41d17df3352a855cdd19b18f5abd6e6420f4f42f01750a64f6acdb6b46622fafebe3e913c64a1a6a59f980e97deae0dc83c12ccae6b430d7a28f21c3e0e38b32f3d5f1d44927fc34ed5c9ddb5be8eb936dbdcd327b63ea69d86c2da15cb834a18ee51a44f2da7b11d79486942fd04eade92fe5d93342970ca4cc73861b15facf97e9c53c15488c5630b17b9364c58652cfa6de0918327498ba8d6120d3be9139c51a6e9017525772397529ddd4fd1905614fd1cc7f1370a577ad10ec9ea742f9aedc9fee42c3df38f4b35ccb1cf8590eaf770b3f74af21f5119ac238e82e92c83321b06f106530abbbd321c3e1dc948accdc21a586ff37253ad1d0c5bfb51541f876be1b6e4f490046204b9edfe9a9721b9019a495d1efed10d4570f4c75ac56aa862f738b46cfe8899f6d92e862611b35be8931a2460dc646ed332b3046baf48613bbb543f4abda22d3d62a484665ba5bbf8fec1bb199b430a6e96cfad417a1644cc5f7f640004836c60f15a174eb7eb1750a71a141549f393c7d88b8729a33f841f7f8f2bd03dccaaa825f2e29105f6b4c11ac8e06bb3be9dfdecce66294a0be9dbc5f40123644fcac59ed0c968eb62fb14d111e900ad1c038f17d5471ab088f704de7db35753f818f55669a76e621b29d975253d177791e1434644a81b2b8bc4c8e147961b4f1b7f3e225571fecb10906957791b27d35a89e3ce84c91a2dc60aee460d8f41eb7b5e171516ef34d8c7dbbc8122cdeffa51b5a393d2cae7f69826d342d4d81b58ca7ddb0e688a15b39a00ef1aed5db337d1ab87e86f835663a4968c8bf5afd7cf80549f42588d9b8ea04ff3d9eac2b8ffd1155a504230103a68bd8b3c416a10d76cee236442a68393896587bc66c01a5f7f411325578d023d7619a89d0bcbbacae99b925fb72994e1ef4240cddad2294a56bec6d6243b95b04345c215bd48a3aa89786ba39b4d2f5015d8bd038c32a7b0eb02a4eb5a640371d9b4af540eb99a1e26547cc214da21e9538754a802972411a0bf416707b95457d0b77daac9bdf27a82b9aa7992ad1d3815f9a56a746eefa6f7e1913b6e3e859b2cc7797adcae825b7aad17c11e66597042c327a6473489a9664c5ce0ff8b1ecfb691daa0bd50c17f4597826553686bc2ee08eaca8dd6f77c626691699141a698e5b517e02130587ee503c7b5f638cbf32166b0d4ebe9222b6c9d50fb3db9d1ab060c31aabeef52cd51e5cf485eecc741e37a47c4996068f1d4b25f182b9d7bee4bec5cb070d3cea2f9762a41bb8d9ec5896ebcb2b17ca82f29bcce456412d8ed531afda50d259fcb7794216b6a9a873b6c3c4493c0c6d3e6a4f81f3b40dcc745a4e2383c678c472b1d5bf3ff02992bfe893a5bc96824039da1ee3cf8593e7d616d62f6e3c3e2c4e0cc58d5445998cf5b1c91c2468b2571b118709668efbbe72911f1bfa96b97c32f71cd7071f4c729e88631a89b53dd4bae6ef9c4ed082916e267479195599e9871b26b92c6885ded29f990070fddc4d8535088ddc70d6e83f797b6fa2260a92602eb90800000001cb7394f0c90fb5913b2f8d8d24c8f1056920e1facbe643dd49d8983b277da7282a986c28d5468aed9a4730579a20346d35f78b6bd2cacb4b9237fbfb0b7a2314105ff3b074a0e340b904e715e99c501e1435c15eaa262893c2883c90f26d2ff91792d46e4d867b62570e0c1e4739b8ac4fff8f778960de1ae40d4c85c51e1c47040bb2caeaf0c71dbb67c30715b8c14d6921831d7678522eeed29444df421ee206ca3be20d1b5fd2d2baf832f097fef590290eea77f8f3ed00b39841421b61f1c0d01def54bec0348be2216a8dad60838f3ad3595a744edeb6202dbcbd9c73a126a79cbefa43c7db0493103c2aa8fecb5cde1773ad0cdd03f5b0cfb0270642a96a9e14d116e9140501df48cdbf725611b398eb2b9e93f8da49e601099e0b2e880a95525b5f3f2edd74ae9d664a1f2e932493b61634ab53a1e2f3bf56add0a7f09c16853814b03a4212b9a0119420948da26bb171b288a66a2f0a4063754c2910512aa1cead69b94b498b5d4c44ce0a4aaa7855ee1a3b7ca738756a00a435062ccb86a40cc01f666d372f323e087ef5db2bc2d17ed1f72db14c52ca6723ce92ada6ff0c4f498d42d4218a9f799a216facb7377a1532e0755b894bfc0ee99a4072ac54ee5727846631574f348bf650e7d54b0ef3a1b5cc8233e660a2615bb7401f6c23e08ff0ddb488b9d504fc42508449b8fdd70afb387016e8c9206482c334f37d26fa3bdb6063f8147db9363e22c4b43b89ba0f68d06646fc1eb74fec0be4f59a17b274e0db67b2c0398250da219c9caf7e0f6cb1f828b6f89a67cacfd0fe0132bd94261410f8d8d7eb819bc783b8e66a1786285e1e429b71ccc22f7f4c216001375c7a816719e29abc98652b6752923132256cb5f0470223e2c685c9ebf635e316a12b35a429160d1c7688dbc3edcb1af64032177e41def01696e7100bbe10553b716a333ec749544d8aa89b482c538e834c8e39ca9e61da53738066414bc1c2b1637a0c500f9772afa6e5", 0xf4e}], 0x2}, 0x9cdc2384056b48b8)

8.719935866s ago: executing program 8 (id=4400):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000fb"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000c80)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x2000c10, &(0x7f0000000040)={[{@nobh}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x8000}}]}, 0xff, 0x23f, &(0x7f0000000540)="$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")
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpu.stat\x00', 0x275a, 0x0)
ioctl$FS_IOC_GETFSMAP(r2, 0xc0c0583b, &(0x7f0000000780)={0x0, 0x2904c, 0x0, 0x10003, '\x00', [{}, {0xffffffff, 0x0, 0x0, 0x4, 0x0, 0xb}]})

7.852082164s ago: executing program 8 (id=4406):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000f40), r0)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[], 0x34}}, 0x0)

7.678967286s ago: executing program 8 (id=4408):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={0x0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r2, <r3=>0xffffffffffffffff}, 0x4)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='sched_switch\x00', r4}, 0x10)
unshare(0x62040200)
r5 = syz_open_procfs(0x0, &(0x7f0000000400)='stack\x00')
pread64(r5, &(0x7f000001a240)=""/102386, 0x18ff2, 0x0)

4.733999278s ago: executing program 0 (id=4427):
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
r1 = syz_io_uring_setup(0x6908, 0x0, &(0x7f0000000200), &(0x7f0000000100)=<r2=>0x0)
syz_io_uring_setup(0x1868, &(0x7f00000003c0), &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000240))
syz_io_uring_submit(r3, r2, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0xfffffffffffffe54})
io_uring_enter(r1, 0x184c, 0x0, 0x0, 0x0, 0x0)
ioctl$TIOCL_GETMOUSEREPORTING(r0, 0x5412, &(0x7f00000006c0)=0xa)

4.474818328s ago: executing program 0 (id=4429):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x7, 0x0, 0x0, 0x0, 0x49, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1})
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='qdisc_destroy\x00', r2}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000000100)={'pim6reg1\x00', @link_local})
close(r1)

4.223461299s ago: executing program 8 (id=4432):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = syz_init_net_socket$bt_rfcomm(0x1f, 0x3, 0x3)
write(r2, &(0x7f0000000100)="094f2a3589cfbfdb5c318568291435ca23f9f2ac3854b1c5d8700ac89122457f6b852051114d6598c734bf6f85fc655d3516fdab899636ef4b57f0b7ad1cb509de0a3ddc7ca9c2e85fb8a7a6a6d89d9761f0104750d7ec416c998803374a28c8e40d288fadf2fa33d64bad6b79d4cbde000000000000000000", 0xffffff48)
epoll_create(0x8)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x301, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x14, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}}, @NFT_MSG_NEWRULE={0x14, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}}], {0x14}}, 0x70}, 0x1, 0x0, 0x0, 0x20008084}, 0x0)
sendmsg$NFT_BATCH(r0, 0x0, 0x0)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_INITMSG(r3, 0x84, 0x2, &(0x7f0000000240), &(0x7f0000000280)=0x8)
r4 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$RDMA_NLDEV_CMD_STAT_SET(r4, 0x0, 0x1)
socket$inet6(0xa, 0x5, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000300)=ANY=[@ANYBLOB="ee000000", @ANYRES16=0x0, @ANYBLOB="0100fdffffff000000000100000008000100", @ANYRES32=0x0, @ANYBLOB="400002803c0001"], 0x5c}, 0x1, 0xf000, 0x0, 0x8c1}, 0x20040)
sendmsg$netlink(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000300)=ANY=[@ANYBLOB="180100002d00010000"], 0x118}], 0x1}, 0x0)

4.062268634s ago: executing program 0 (id=4434):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000c80)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000007c0)=@newqdisc={0x120, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0xf0, 0x2, {{}, [@TCA_NETEM_LOSS={0xb4, 0x5, 0x0, 0x1, [@NETEM_LOSS_GI={0x18, 0x1, {0x5, 0xfffffff6, 0x8001, 0x1ff, 0xffffffff}}, @NETEM_LOSS_GE={0x14, 0x2, {0x9, 0x63a5, 0x101, 0x7}}, @NETEM_LOSS_GE={0x14, 0x2, {0xacc, 0x5, 0x13f5, 0xd}}, @NETEM_LOSS_GI={0x18, 0x1, {0x3, 0x1744, 0x3, 0x3}}, @NETEM_LOSS_GI={0x18, 0x1, {0xffffffff, 0x2, 0x401, 0x2, 0xd}}, @NETEM_LOSS_GE={0x10, 0x2, {0x6, 0x9, 0x2, 0x100}}, @NETEM_LOSS_GI={0x18, 0x1, {0x54e71f4d, 0xc6a, 0x4, 0x0, 0x8}}, @NETEM_LOSS_GE={0x14, 0x2, {0x6, 0x5000}}]}, @TCA_NETEM_RATE={0x14, 0xd}, @TCA_NETEM_CORRUPT={0xc, 0x2}]}}}]}, 0x120}}, 0x0)

3.607078534s ago: executing program 2 (id=4439):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fc00100}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f0000000240))

3.477531118s ago: executing program 0 (id=4441):
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000040)='system.posix_acl_default\x00', 0x0, 0x0, 0x2)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), r2)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="01000000000000000000010000000000000001410000001c00170000001f000000006574683a73797a6b616c6c657230"], 0x38}, 0x1, 0x0, 0x0, 0x4}, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8923, &(0x7f0000002280)={'syzkaller0\x00', @local})

3.293422242s ago: executing program 3 (id=4442):
r0 = epoll_create1(0x0)
r1 = socket(0x1, 0x80802, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, 0xffffffffffffffff, &(0x7f0000000100)={0xa000000d})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x2, r1, 0x0)

3.18536233s ago: executing program 8 (id=4443):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={0x0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r2, <r3=>0xffffffffffffffff}, 0x4)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='sched_switch\x00', r4}, 0x10)
unshare(0x62040200)
r5 = syz_open_procfs(0x0, &(0x7f0000000400)='stack\x00')
pread64(r5, &(0x7f000001a240)=""/102386, 0x18ff2, 0x0)

3.154178068s ago: executing program 0 (id=4444):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1, 0x0, 0x8000000000000000}, 0x18)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000a00)=ANY=[@ANYBLOB="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"], 0x2c0}}, 0x4048010)

3.004031465s ago: executing program 3 (id=4445):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000700)=ANY=[@ANYBLOB="0203000310000000000000000000000002000900080000000a0000000000000005000600000000000a0000000000000000000000004000000000000000000001000000000000000002000100000000000000060c0000000005000500000000"], 0x80}, 0x1, 0x7}, 0x0)

2.742924859s ago: executing program 3 (id=4446):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x7, 0x0, 0x0, 0x0, 0x49, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1})
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='qdisc_destroy\x00', r2}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000000100)={'pim6reg1\x00', @link_local})
close(r1)

2.720717552s ago: executing program 0 (id=4447):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000003c0)='sched_switch\x00', r0}, 0x18)
r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008032, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
readv(r1, &(0x7f0000003400)=[{&(0x7f0000001080)=""/107, 0x7ffff000}, {&(0x7f0000004c00)=""/4096, 0x1000}], 0x2)

2.617291081s ago: executing program 6 (id=4448):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="02000000"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
r1 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f0000002100)={0x1, 'ip6gre0\x00', 0x1}, 0x18)

2.377943186s ago: executing program 6 (id=4449):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=@base={0x9, 0x143ffd, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
unshare(0x2000400)
bpf$MAP_GET_NEXT_KEY(0x15, &(0x7f00000000c0)={r0, &(0x7f0000000180), 0x0}, 0x20)

2.377525381s ago: executing program 2 (id=4450):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000f40), r0)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r1], 0x34}}, 0x0)

2.171943791s ago: executing program 3 (id=4451):
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48)
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f00000000c0)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00'}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
fsopen(0x0, 0x0)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000280)={{{@in6=@empty, @in=@private=0xa010100, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x4, 0x0, 0x0, 0x0, 0x9, 0x0, 0x40000000000000}, {0x0, 0x1000000000, 0x53e5, 0x20}, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1}, {{@in6=@loopback, 0x0, 0x32}, 0x2, @in6=@private1={0xfc, 0x1, '\x00', 0x1}, 0x1502, 0x4, 0x0, 0x0, 0x0, 0xfffffffd}}, 0xe8)
connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}, 0x1c)
recvmmsg(r0, 0x0, 0x0, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x20000000000000bb, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000756c6c2500000000002020207b1af8ff00000000bea100000000000007010000f8ffffffb702000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x8, 0x8}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
sendmsg$nl_route(r3, &(0x7f0000000100)={0x0, 0x11, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001800010800000000000000850a600000000000000500000014000500200100000000000000000100000000001c00090008000000", @ANYRES32=r4], 0x4c}}, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$netlink(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001d40)=[{&(0x7f0000000100)=ANY=[@ANYBLOB="2c00000010008100000000000080000000000000", @ANYRES32=0x0, @ANYBLOB="0a043cbf", @ANYRES32, @ANYBLOB="0a001b"], 0x2c}], 0x1}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)

2.111006912s ago: executing program 7 (id=4381):
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
timerfd_create(0x8, 0x800)
r0 = syz_io_uring_setup(0x4172, &(0x7f0000000780)={0x0, 0x0, 0x10100}, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000040)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r0, 0x567, 0x0, 0x3, 0x0, 0x0)

1.991620534s ago: executing program 2 (id=4452):
r0 = syz_io_uring_setup(0x126b, &(0x7f00000006c0), &(0x7f0000000740), &(0x7f0000000780))
io_uring_register$IORING_REGISTER_FILES_UPDATE(r0, 0x6, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000001100)=[r0]}, 0x1)

1.285906716s ago: executing program 6 (id=4453):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000380)='sched_switch\x00', r0}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x40000000}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)={{0x14}, [@NFT_MSG_NEWSET={0x3c, 0x12, 0xa, 0x9, 0x0, 0x0, {0x2}, [@NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_KEY_TYPE={0x8}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x3}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x5}}}, 0x64}}, 0x0)

1.285239756s ago: executing program 2 (id=4454):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000007b00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x200, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000a40)=@newtaction={0x88c, 0x30, 0xffff, 0x0, 0x0, {}, [{0x878, 0x1, [@m_police={0x874, 0x1, 0x0, 0x0, {{0xb}, {0x848, 0x2, 0x0, 0x1, [[@TCA_POLICE_RATE={0x404, 0x2, [0x1, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000022, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffff81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x7fff, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff]}, @TCA_POLICE_PEAKRATE={0x404, 0x3, [0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x8]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x7, 0x0, 0x0, 0x0, {0x3, 0x0, 0x0, 0x0, 0x0, 0x3}, {0x4, 0x2, 0x0, 0x0, 0x0, 0xff}}}]]}, {0x4}, {0xc, 0xb}, {0xc, 0xa, {0x2}}}}]}]}, 0x88c}}, 0x0)
mmap(&(0x7f000030f000/0x1000)=nil, 0x1000, 0xb635773f04ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r2, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r2, &(0x7f0000000300), 0x6)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0x10, &(0x7f0000000500)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r3, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='sys_enter\x00', r4}, 0x10)
syz_clone3(&(0x7f0000000440)={0x800000, 0x0, 0x0, 0x0, {0xf}, 0x0, 0x0, 0x0, &(0x7f0000000400)=[0xffffffffffffffff], 0x1}, 0x58)

1.284339237s ago: executing program 3 (id=4455):
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
write$UHID_CREATE2(r0, &(0x7f0000000100)=ANY=[@ANYBLOB="0b00000073790101000000000000000000000000000af7f4f0c55de8ca0000000000000000000000000000000000000000f3c800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a3000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a310000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ff00000000000000000000000000000020000000000000030000000000000000000000004119202532aeecfcdbb73887feb3f14db126c9"], 0x138)
write$UHID_DESTROY(r0, &(0x7f0000000340), 0x4)

950.592159ms ago: executing program 7 (id=4456):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, &(0x7f00000000c0)})
r0 = msgget$private(0x0, 0x484)
msgctl$IPC_RMID(r0, 0x0)

837.606057ms ago: executing program 6 (id=4457):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000700)=ANY=[@ANYBLOB="0203000310000000000000000000000002000900080000000a0000000000000005000600000000000a0000000000000000000000004000000000000000000001000000000000000002000100000000000000060c0000000005000500000000000a"], 0x80}, 0x1, 0x7}, 0x0)

634.41984ms ago: executing program 7 (id=4458):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000030000000100000080"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r1}, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000c80)={'lo\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {0x0, 0x1}, {0xffff, 0xffff}, {0x10}}, [@qdisc_kind_options=@q_fq={{0x7}, {0xc, 0x2, [@TCA_FQ_QUANTUM={0x8}]}}]}, 0x38}}, 0x0)

633.643746ms ago: executing program 2 (id=4459):
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r0}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000380)=ANY=[@ANYBLOB="4c00000002060108000034e40000000000000000050001000600000005000400000000000900020073797a3100000080050005000200000011000300686173683a69702c706f7274"], 0x4c}}, 0x2)
sendmsg$IPSET_CMD_ADD(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000540)=ANY=[@ANYBLOB="54000000090601020000000000000000020000000900020073797a310000000005000100070000002c0007800c00018008000140ffffffff0500070029000000060004404e2100000c00028008000140"], 0x54}, 0x1, 0x0, 0x0, 0x10000082}, 0x80)

391.548862ms ago: executing program 3 (id=4460):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000140)=@base={0x5, 0x6, 0x8, 0xae, 0x0, 0xffffffffffffffff, 0x2072800, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=@base={0xd, 0x2, 0x4, 0x4002, 0x5, r1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x8000000, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r2, 0x40505330, &(0x7f0000000e00)={{0x1, 0xfd}, {0x0, 0x2}, 0x6, 0x1, 0x8})
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r3, 0x8933, &(0x7f00000010c0)={'batadv0\x00', <r4=>0x0})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000001100)=ANY=[@ANYRESDEC=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r4, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000fc0)={0x3, 0xc, &(0x7f0000001080)=ANY=[@ANYRES16=r5, @ANYRESHEX=r2], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x80000000, @void, @value}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r6}, 0x10)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000010000000900010073797a30000000003c000000090a010400000000000000000100fffe08000a40000000000900020073797a32000000000900010073797a3000000000080005400000000f840000000c0a01030000000000000000010000000900020073797a32000000005800038054000080080003400000000248000b80200001800a00010071756f7461000000100002800c0001400000000000000000100001800c000100636f756e74657200140001800a00010072616e6765000000040002800900010073797a30"], 0x108}}, 0x0)
capset(0x0, &(0x7f0000000040)={0x200000, 0x200000})
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, &(0x7f0000000ac0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r7 = syz_open_dev$usbfs(&(0x7f0000000340), 0x206, 0x8401)
ioctl$USBDEVFS_ALLOW_SUSPEND(r7, 0x5522)
ioctl$USBDEVFS_BULK(r7, 0x5523, 0x0)
ioctl$USBDEVFS_FORBID_SUSPEND(r7, 0x5521)

334.001383ms ago: executing program 6 (id=4461):
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={0x0}}, 0x0)

267.057293ms ago: executing program 2 (id=4462):
r0 = socket$inet6(0xa, 0x6, 0x0)
connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x4e24, 0x8, @remote, 0x3}, 0x1c)
r1 = syz_io_uring_setup(0x239, &(0x7f0000000380)={0x0, 0x150, 0x10100, 0x0, 0x1}, &(0x7f0000000180)=<r2=>0x0, &(0x7f00000001c0)=<r3=>0x0)
bpf$BPF_MAP_GET_NEXT_ID(0xc, &(0x7f00000000c0)={0xfd7, <r4=>0x0}, 0x8)
r5 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
r6 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000900)={&(0x7f0000000040)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@enum]}}, 0x0, 0x26, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000700)={0x6, 0xf, &(0x7f0000000180)=@ringbuf, &(0x7f0000000580)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, r6, 0x8, 0x0, 0x0, 0x14, &(0x7f0000000600)={0x4}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0xa5)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1c, 0xc, &(0x7f0000000280)=ANY=[@ANYRES64=r5, @ANYRESHEX=r2, @ANYRESOCT=r1, @ANYRESHEX=r5, @ANYRES32=r4], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, r6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r7}, 0x10)
syz_io_uring_submit(r2, r3, &(0x7f0000000040)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r0, 0x0, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)=ANY=[], 0x14a8}, 0x0, 0x41, 0x1})
io_uring_enter(r1, 0x2ded, 0x4000, 0x0, 0x0, 0x0)

266.337808ms ago: executing program 7 (id=4463):
socket(0x1f, 0x3, 0xc)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
pipe2(&(0x7f0000000100)={<r2=>0xffffffffffffffff}, 0x4000)
close_range(r2, 0xffffffffffffffff, 0x0)
splice(r2, 0x0, 0xffffffffffffffff, 0x0, 0x10020, 0x0)
r3 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f00000003c0)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x18, 0xc, &(0x7f0000000040)=@framed={{0x18, 0x8}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r3}}, @func={0x85, 0x0, 0x1, 0x0, 0x3}, @initr0, @exit]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x1a)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r3, &(0x7f0000001740)={0x8000001b})
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000380)=ANY=[@ANYBLOB="4c00000002060108000034e40000000000000000050001000600000005000400000000000900020073797a3100000080050005000200000011000300686173683a69702c706f7274"], 0x4c}}, 0x2)
sendmsg$IPSET_CMD_ADD(r0, &(0x7f00000002c0)={0x0, 0x2000, &(0x7f0000000240)={&(0x7f0000000540)=ANY=[@ANYBLOB="540000000a0601020000000000000000020000000900020073797a310000000005000100070000002c0007800c00018008000140ffffffff0500070029000000060004404e2100000c00028008000140"], 0x54}, 0x1, 0x0, 0x0, 0x10000082}, 0x80)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f00000004c0)=ANY=[@ANYBLOB="180000000000000000000000000000008500000023000000850000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r4}, 0x18)
r6 = socket$inet_smc(0x2b, 0x1, 0x0)
r7 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r7, 0x0, 0x48b, &(0x7f0000000000)={0x2, 'dummy0\x00', 0x3}, 0x18)
setsockopt$IP_VS_SO_SET_STOPDAEMON(r6, 0x0, 0x48c, &(0x7f00000002c0)={0x2, 'pim6reg1\x00'}, 0x18)

0s ago: executing program 6 (id=4464):
r0 = socket(0x11, 0x800000003, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000600)={'team0\x00', <r1=>0x0})
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0xe, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000280)='kfree\x00', r3}, 0x10)
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000800)=@newqdisc={0x94, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x12, r1, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x64, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [], 0x0, [0x8, 0x4, 0x0, 0x0, 0x5], [0x0, 0x8]}}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x8, 0x2, 0x0, 0x1, [{0x4}]}]}}]}, 0x94}}, 0x0)

kernel console output (not intermixed with test programs):

11] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3325'.
[  985.510024][T16716] netlink: 60 bytes leftover after parsing attributes in process `syz.0.3327'.
[  985.530757][T16716] netlink: 60 bytes leftover after parsing attributes in process `syz.0.3327'.
[  985.757701][T16716] netlink: 60 bytes leftover after parsing attributes in process `syz.0.3327'.
[  985.788491][T16716] netlink: 60 bytes leftover after parsing attributes in process `syz.0.3327'.
[  985.981279][T16735] sctp: [Deprecated]: syz.8.3336 (pid 16735) Use of int in maxseg socket option.
[  985.981279][T16735] Use struct sctp_assoc_value instead
[  986.011891][T16716] netlink: 60 bytes leftover after parsing attributes in process `syz.0.3327'.
[  986.021397][T16716] netlink: 60 bytes leftover after parsing attributes in process `syz.0.3327'.
[  986.141561][T16737] Bluetooth: hci7: Opcode 0x0c1a failed: -4
[  986.177773][T16737] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  986.185384][T16737] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  986.205611][T16737] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  986.227140][T16737] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  986.273025][T16737] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  986.280870][T16737] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  986.281736][T16746] netlink: 20 bytes leftover after parsing attributes in process `syz.7.3339'.
[  986.302754][T16737] Bluetooth: hci5: Opcode 0x0406 failed: -4
[  986.362852][T16737] Bluetooth: hci5: Opcode 0x0406 failed: -4
[  986.522563][T16753] netlink: 48 bytes leftover after parsing attributes in process `syz.7.3342'.
[  986.630728][ T5897] usb 4-1: new high-speed USB device number 40 using dummy_hcd
[  986.802746][ T5897] usb 4-1: Using ep0 maxpacket: 8
[  986.827071][ T5897] usb 4-1: config 168 descriptor has 1 excess byte, ignoring
[  986.845233][ T5897] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  986.886671][ T5897] usb 4-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  986.908983][ T5897] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  986.955271][ T5897] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  986.988400][ T5897] usb 4-1: config 168 descriptor has 1 excess byte, ignoring
[  986.999734][ T5897] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  987.020105][ T5897] usb 4-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  987.051960][ T5897] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  987.052576][T16767] netlink: 'syz.8.3346': attribute type 4 has an invalid length.
[  987.085798][ T5897] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  987.117607][ T5897] usb 4-1: config 168 descriptor has 1 excess byte, ignoring
[  987.128617][ T5897] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  987.159435][ T5897] usb 4-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  987.183706][ T5897] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  987.209740][ T5897] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  987.250737][ T5897] usb 4-1: string descriptor 0 read error: -22
[  987.257431][ T5897] usb 4-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  987.270023][ T5897] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  987.294312][ T5897] adutux 4-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  987.633747][ T5293] usb 4-1: USB disconnect, device number 40
[  987.638754][T16784] usb 4-1: Couldn't submit interrupt_out_urb -19
[  987.986446][T16798] sctp: [Deprecated]: syz.0.3358 (pid 16798) Use of int in maxseg socket option.
[  987.986446][T16798] Use struct sctp_assoc_value instead
[  988.162528][T12586] Bluetooth: hci7: command 0x0c1a tx timeout
[  988.241046][ T5851] Bluetooth: hci2: command 0x0405 tx timeout
[  988.247236][ T8761] Bluetooth: hci1: command 0x0c1a tx timeout
[  988.253794][T12586] Bluetooth: hci4: command 0x0c1a tx timeout
[  988.357354][T12586] Bluetooth: hci5: command 0x0c1a tx timeout
[  989.071576][T16808] Bluetooth: hci7: Opcode 0x0c1a failed: -4
[  989.085605][T16808] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  989.108679][T16808] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  989.123768][T16808] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  989.131695][ T5293] usb 7-1: new high-speed USB device number 39 using dummy_hcd
[  989.137961][T16808] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  989.304895][ T5293] usb 7-1: no configurations
[  989.309572][ T5293] usb 7-1: can't read configurations, error -22
[  989.472783][ T5293] usb 7-1: new high-speed USB device number 40 using dummy_hcd
[  989.589737][T16832] sctp: [Deprecated]: syz.8.3373 (pid 16832) Use of int in maxseg socket option.
[  989.589737][T16832] Use struct sctp_assoc_value instead
[  989.641653][ T5293] usb 7-1: no configurations
[  989.646610][ T5293] usb 7-1: can't read configurations, error -22
[  989.665309][T16836] bridge_slave_1: left allmulticast mode
[  989.681227][ T5293] usb usb7-port1: attempt power cycle
[  989.681307][T16836] bridge_slave_1: left promiscuous mode
[  989.747237][T16836] bridge0: port 2(bridge_slave_1) entered disabled state
[  989.804169][T16836] bridge_slave_0: left allmulticast mode
[  989.819064][T16836] bridge_slave_0: left promiscuous mode
[  989.843011][T16836] bridge0: port 1(bridge_slave_0) entered disabled state
[  989.918455][T16833] __nla_validate_parse: 25 callbacks suppressed
[  989.918483][T16833] netlink: 60 bytes leftover after parsing attributes in process `syz.7.3372'.
[  989.952429][T16833] netlink: 60 bytes leftover after parsing attributes in process `syz.7.3372'.
[  990.040970][ T5293] usb 7-1: new high-speed USB device number 41 using dummy_hcd
[  990.083988][ T5293] usb 7-1: no configurations
[  990.088667][ T5293] usb 7-1: can't read configurations, error -22
[  990.240979][ T5293] usb 7-1: new high-speed USB device number 42 using dummy_hcd
[  990.274732][ T5293] usb 7-1: no configurations
[  990.292288][ T5293] usb 7-1: can't read configurations, error -22
[  990.326703][ T5293] usb usb7-port1: unable to enumerate USB device
[  991.120983][T12586] Bluetooth: hci1: command 0x0c1a tx timeout
[  991.127539][ T8761] Bluetooth: hci2: command 0x0405 tx timeout
[  991.127756][T16860] netlink: 20 bytes leftover after parsing attributes in process `syz.8.3382'.
[  991.133739][ T5851] Bluetooth: hci7: command 0x0c1a tx timeout
[  991.202313][ T5851] Bluetooth: hci5: command 0x0c1a tx timeout
[  991.208424][ T5851] Bluetooth: hci4: command 0x0c1a tx timeout
[  991.645125][T16875] netlink: 60 bytes leftover after parsing attributes in process `syz.3.3389'.
[  991.662395][T16875] netlink: 60 bytes leftover after parsing attributes in process `syz.3.3389'.
[  991.719328][T16879] sctp: [Deprecated]: syz.7.3390 (pid 16879) Use of int in maxseg socket option.
[  991.719328][T16879] Use struct sctp_assoc_value instead
[  991.767992][T16875] netlink: 60 bytes leftover after parsing attributes in process `syz.3.3389'.
[  991.778223][T16875] netlink: 60 bytes leftover after parsing attributes in process `syz.3.3389'.
[  992.216437][T16875] netlink: 60 bytes leftover after parsing attributes in process `syz.3.3389'.
[  992.227619][T16875] netlink: 60 bytes leftover after parsing attributes in process `syz.3.3389'.
[  992.870263][T16895] lo speed is unknown, defaulting to 1000
[  992.946858][T16895] lo speed is unknown, defaulting to 1000
[  993.179400][T16905] netlink: 20 bytes leftover after parsing attributes in process `syz.0.3399'.
[  993.280833][ T5851] Bluetooth: hci4: command 0x0c1a tx timeout
[  993.287088][T12586] Bluetooth: hci5: command 0x0c1a tx timeout
[  993.735252][T16907] lo speed is unknown, defaulting to 1000
[  993.752144][T16907] lo speed is unknown, defaulting to 1000
[  995.069669][T16935] sctp: [Deprecated]: syz.7.3410 (pid 16935) Use of int in maxseg socket option.
[  995.069669][T16935] Use struct sctp_assoc_value instead
[  996.928283][T16953] lo speed is unknown, defaulting to 1000
[  996.935304][T16953] lo speed is unknown, defaulting to 1000
[  997.698594][ T1291] ieee802154 phy0 wpan0: encryption failed: -22
[  997.943339][T16964] netlink: 4 bytes leftover after parsing attributes in process `syz.8.3420'.
[  998.000937][T16959] lo speed is unknown, defaulting to 1000
[  998.007816][T16959] lo speed is unknown, defaulting to 1000
[  999.115477][T16984] lo speed is unknown, defaulting to 1000
[  999.129398][T16984] lo speed is unknown, defaulting to 1000
[  999.661597][T16977] Bluetooth: hci7: Opcode 0x0c1a failed: -4
[  999.667721][T16977] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  999.683035][T16977] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  999.689501][T16977] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  999.757964][T16977] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[ 1000.189257][T16999] sctp: [Deprecated]: syz.7.3430 (pid 16999) Use of int in maxseg socket option.
[ 1000.189257][T16999] Use struct sctp_assoc_value instead
[ 1000.609004][T17009] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3434'.
[ 1001.310535][T17013] netlink: 'syz.7.3436': attribute type 4 has an invalid length.
[ 1001.371685][T17013] netlink: 'syz.7.3436': attribute type 4 has an invalid length.
[ 1001.439559][ T5896] lo speed is unknown, defaulting to 1000
[ 1001.474068][T16944] Set syz1 is full, maxelem 65536 reached
[ 1001.780869][T12586] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1001.787257][ T5851] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1001.793705][T12586] Bluetooth: hci2: command 0x0405 tx timeout
[ 1001.800011][ T8761] Bluetooth: hci7: command 0x0c1a tx timeout
[ 1001.840991][ T8761] Bluetooth: hci5: command 0x0c1a tx timeout
[ 1002.229961][T17029] lo speed is unknown, defaulting to 1000
[ 1002.271123][T17028] Bluetooth: hci7: Opcode 0x0c1a failed: -4
[ 1002.283140][T17028] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1002.301808][T17029] lo speed is unknown, defaulting to 1000
[ 1002.320376][T17028] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1002.336393][T17028] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1002.362068][T17028] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[ 1002.760696][T17033] lo speed is unknown, defaulting to 1000
[ 1002.773604][T17033] lo speed is unknown, defaulting to 1000
[ 1003.785818][T17043] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3445'.
[ 1003.826856][T17043] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3445'.
[ 1003.973622][T17043] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3445'.
[ 1004.001732][T17043] bridge_slave_1: left allmulticast mode
[ 1004.024505][T17050] sctp: [Deprecated]: syz.6.3448 (pid 17050) Use of int in maxseg socket option.
[ 1004.024505][T17050] Use struct sctp_assoc_value instead
[ 1004.079302][T17043] bridge_slave_1: left promiscuous mode
[ 1004.112033][T17043] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1004.160499][T17043] bridge_slave_0: left allmulticast mode
[ 1004.170862][T17043] bridge_slave_0: left promiscuous mode
[ 1004.184262][T17043] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1004.422085][ T8761] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1004.428537][ T8761] Bluetooth: hci2: command 0x0405 tx timeout
[ 1004.435032][ T8761] Bluetooth: hci7: command 0x0c1a tx timeout
[ 1004.441482][ T8761] Bluetooth: hci5: command 0x0c1a tx timeout
[ 1004.447976][ T8761] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1005.200925][T17068] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3450'.
[ 1005.661784][T17075] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3453'.
[ 1006.368542][T17099] netlink: 4 bytes leftover after parsing attributes in process `syz.7.3462'.
[ 1006.464226][T17101] netlink: 200 bytes leftover after parsing attributes in process `syz.0.3463'.
[ 1006.858545][T17105] sctp: [Deprecated]: syz.3.3465 (pid 17105) Use of int in maxseg socket option.
[ 1006.858545][T17105] Use struct sctp_assoc_value instead
[ 1007.487872][T17107] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[ 1007.495434][T17107] IPv6: NLM_F_CREATE should be set when creating new route
[ 1007.505063][T17107] netlink: 'syz.0.3466': attribute type 27 has an invalid length.
[ 1008.433641][T17118] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3468'.
[ 1008.716473][T17107] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1008.733362][T17107] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1008.805521][T17107] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1008.816199][T17107] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1008.825233][T17107] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1008.834204][T17107] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1009.013291][T17116] lo speed is unknown, defaulting to 1000
[ 1009.020147][T17116] lo speed is unknown, defaulting to 1000
[ 1009.127806][T17123] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3469'.
[ 1010.054984][T17136] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3473'.
[ 1010.236311][T17145] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3477'.
[ 1010.461279][T17150] Bluetooth: hci7: Opcode 0x0c1a failed: -4
[ 1010.496971][T17150] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1010.522370][T17150] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1010.541311][T17150] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1010.555646][T17150] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[ 1010.841640][ T9160] usb 3-1: new high-speed USB device number 33 using dummy_hcd
[ 1011.019429][ T9160] usb 3-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[ 1011.028813][ T9160] usb 3-1: config 1 has an invalid descriptor of length 48, skipping remainder of the config
[ 1011.056548][ T9160] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 66
[ 1011.090683][ T9160] usb 3-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 1011.090838][T17166] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3483'.
[ 1011.172183][ T9160] usb 3-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[ 1011.183536][ T9160] usb 3-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[ 1011.230902][ T9160] usb 3-1: Product: syz
[ 1011.241146][ T9160] usb 3-1: Manufacturer: syz
[ 1011.277124][ T9160] cdc_wdm 3-1:1.0: skipping garbage
[ 1011.290852][ T9160] cdc_wdm 3-1:1.0: skipping garbage
[ 1011.301641][ T9160] cdc_wdm 3-1:1.0: probe with driver cdc_wdm failed with error -22
[ 1011.358311][T17169] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3484'.
[ 1011.515702][T17066] Set syz1 is full, maxelem 65536 reached
[ 1011.569952][ T5896] usb 3-1: USB disconnect, device number 33
[ 1011.800519][T17179] netlink: 8 bytes leftover after parsing attributes in process `syz.8.3486'.
[ 1011.818863][T17179] netlink: 8 bytes leftover after parsing attributes in process `syz.8.3486'.
[ 1011.851728][T17179] netlink: 8 bytes leftover after parsing attributes in process `syz.8.3486'.
[ 1011.912056][T17179] netlink: 12 bytes leftover after parsing attributes in process `syz.8.3486'.
[ 1011.962310][T17179] netlink: 4 bytes leftover after parsing attributes in process `syz.8.3486'.
[ 1012.530862][T12586] Bluetooth: hci7: command 0x0c1a tx timeout
[ 1012.563620][T12586] Bluetooth: hci5: command 0x0c1a tx timeout
[ 1012.569773][ T8761] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1012.576087][ T5851] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1012.582240][ T5834] Bluetooth: hci2: command 0x0405 tx timeout
[ 1013.703723][T17214] sctp: [Deprecated]: syz.7.3499 (pid 17214) Use of int in maxseg socket option.
[ 1013.703723][T17214] Use struct sctp_assoc_value instead
[ 1014.809703][T17217] warn_alloc: 1 callbacks suppressed
[ 1014.809732][T17217] syz.6.3501: vmalloc error: size 268439552, failed to allocated page array size 524296, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[ 1014.944270][T17217] CPU: 0 UID: 0 PID: 17217 Comm: syz.6.3501 Not tainted 6.13.0-rc4-syzkaller-00071-gfd0584d220fe #0
[ 1014.955162][T17217] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1014.965277][T17217] Call Trace:
[ 1014.968591][T17217]  <TASK>
[ 1014.971557][T17217]  dump_stack_lvl+0x16c/0x1f0
[ 1014.976310][T17217]  warn_alloc+0x24d/0x3a0
[ 1014.980703][T17217]  ? __pfx_warn_alloc+0x10/0x10
[ 1014.985633][T17217]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1014.991330][T17217]  ? __get_vm_area_node+0x1b0/0x2f0
[ 1014.996623][T17217]  ? __get_vm_area_node+0x1dc/0x2f0
[ 1015.001929][T17217]  __vmalloc_node_range_noprof+0x1105/0x1530
[ 1015.008021][T17217]  ? xskq_create+0xfb/0x1d0
[ 1015.012694][T17217]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 1015.019132][T17217]  ? xskq_create+0xfb/0x1d0
[ 1015.023698][T17217]  vmalloc_user_noprof+0x6b/0x90
[ 1015.028701][T17217]  ? xskq_create+0xfb/0x1d0
[ 1015.033248][T17217]  xskq_create+0xfb/0x1d0
[ 1015.037617][T17217]  xsk_setsockopt+0x757/0xa10
[ 1015.042330][T17217]  ? __pfx_xsk_setsockopt+0x10/0x10
[ 1015.047570][T17217]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1015.053246][T17217]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1015.058919][T17217]  ? find_held_lock+0x2d/0x110
[ 1015.064006][T17217]  ? __pfx_xsk_setsockopt+0x10/0x10
[ 1015.069241][T17217]  do_sock_setsockopt+0x225/0x480
[ 1015.074315][T17217]  ? __pfx_do_sock_setsockopt+0x10/0x10
[ 1015.079905][T17217]  ? lock_acquire+0x2f/0xb0
[ 1015.084472][T17217]  __sys_setsockopt+0x1a0/0x230
[ 1015.089363][T17217]  __x64_sys_setsockopt+0xbd/0x160
[ 1015.094510][T17217]  ? do_syscall_64+0x91/0x250
[ 1015.099237][T17217]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1015.104930][T17217]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1015.110175][T17217]  do_syscall_64+0xcd/0x250
[ 1015.114730][T17217]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1015.120758][T17217] RIP: 0033:0x7fd4c8b85d29
[ 1015.125200][T17217] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1015.144845][T17217] RSP: 002b:00007fd4c990b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[ 1015.153303][T17217] RAX: ffffffffffffffda RBX: 00007fd4c8d75fa0 RCX: 00007fd4c8b85d29
[ 1015.161309][T17217] RDX: 0000000000000003 RSI: 000000000000011b RDI: 0000000000000003
[ 1015.169346][T17217] RBP: 00007fd4c8c01b08 R08: 0000000000000004 R09: 0000000000000000
[ 1015.177358][T17217] R10: 00000000200002c0 R11: 0000000000000246 R12: 0000000000000000
[ 1015.185549][T17217] R13: 0000000000000000 R14: 00007fd4c8d75fa0 R15: 00007ffeaf4d8c48
[ 1015.193579][T17217]  </TASK>
[ 1015.212320][T17217] Mem-Info:
[ 1015.215608][T17217] active_anon:9798 inactive_anon:0 isolated_anon:0
[ 1015.215608][T17217]  active_file:23642 inactive_file:38645 isolated_file:0
[ 1015.215608][T17217]  unevictable:768 dirty:198 writeback:0
[ 1015.215608][T17217]  slab_reclaimable:10652 slab_unreclaimable:110305
[ 1015.215608][T17217]  mapped:39701 shmem:4319 pagetables:1117
[ 1015.215608][T17217]  sec_pagetables:0 bounce:0
[ 1015.215608][T17217]  kernel_misc_reclaimable:0
[ 1015.215608][T17217]  free:1282480 free_pcp:171 free_cma:0
[ 1015.280809][T17217] Node 0 active_anon:39292kB inactive_anon:0kB active_file:94568kB inactive_file:154504kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:158804kB dirty:792kB writeback:0kB shmem:15740kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:12820kB pagetables:4468kB sec_pagetables:0kB all_unreclaimable? no
[ 1015.335537][T17217] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:76kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[ 1015.369530][T17217] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1015.430066][T17217] lowmem_reserve[]: 0 2461 2461 0 0
[ 1015.436811][T17217] Node 0 DMA32 free:1201856kB boost:0kB min:34168kB low:42708kB high:51248kB reserved_highatomic:0KB active_anon:39208kB inactive_anon:0kB active_file:94568kB inactive_file:154200kB unevictable:1536kB writepending:804kB present:3129332kB managed:2549212kB mlocked:0kB bounce:0kB free_pcp:1624kB local_pcp:276kB free_cma:0kB
[ 1015.492018][T17217] lowmem_reserve[]: 0 0 0 0 0
[ 1015.510982][T17217] Node 0 Normal free:4kB boost:0kB min:4kB low:4kB high:4kB reserved_highatomic:0KB active_anon:40kB inactive_anon:0kB active_file:0kB inactive_file:304kB unevictable:0kB writepending:0kB present:1048580kB managed:364kB mlocked:0kB bounce:0kB free_pcp:16kB local_pcp:8kB free_cma:0kB
[ 1015.539125][T17217] lowmem_reserve[]: 0 0 0 0 0
[ 1015.545063][T17217] Node 1 Normal free:3911744kB boost:0kB min:55728kB low:69660kB high:83592kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:76kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1015.577858][T17217] lowmem_reserve[]: 0 0 0 0 0
[ 1015.587287][T17217] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[ 1015.612173][T17217] Node 0 DMA32: 3*4kB (UME) 16*8kB (UE) 234*16kB (ME) 513*32kB (UME) 331*64kB (UME) 76*128kB (UME) 103*256kB (UME) 51*512kB (UME) 29*1024kB (UME) 14*2048kB (UME) 254*4096kB (UM) = 1202444kB
[ 1015.641064][T17217] Node 0 Normal: 1*4kB (M) 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 4kB
[ 1015.663263][T17217] Node 1 Normal: 254*4kB (UME) 73*8kB (UME) 58*16kB (UME) 239*32kB (UME) 106*64kB (UME) 30*128kB (UME) 15*256kB (UME) 8*512kB (UME) 2*1024kB (UM) 3*2048kB (ME) 946*4096kB (M) = 3911744kB
[ 1015.685388][T17217] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1015.706003][T17217] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[ 1015.736564][T17246] __nla_validate_parse: 2 callbacks suppressed
[ 1015.736593][T17246] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3506'.
[ 1015.736959][T17217] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1015.787662][T17217] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 1015.788142][T17248] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3506'.
[ 1015.798680][T17217] 66606 total pagecache pages
[ 1015.817107][T17217] 0 pages in swap cache
[ 1015.824828][ T6428] team0: Port device bond0 removed
[ 1015.827368][T17248] netlink: 12 bytes leftover after parsing attributes in process `syz.7.3506'.
[ 1015.835332][T17217] Free swap  = 124516kB
[ 1015.845299][ T6428] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1015.857052][ T6428] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1015.857668][T17244] netlink: 4 bytes leftover after parsing attributes in process `syz.7.3506'.
[ 1015.867626][T17217] Total swap = 124996kB
[ 1015.882592][ T6428] bond0 (unregistering): (slave bond2): Releasing backup interface
[ 1015.889744][T17217] 2097051 pages RAM
[ 1015.895388][ T6428] bond0 (unregistering): Released all slaves
[ 1015.897359][T17217] 0 pages HighMem/MovableOnly
[ 1015.912357][ T6428] bond1 (unregistering): Released all slaves
[ 1015.918020][T17217] 428026 pages reserved
[ 1015.926644][T17217] 0 pages cma reserved
[ 1016.057099][ T6428] bond2 (unregistering): Released all slaves
[ 1016.072322][ T6428] bond3 (unregistering): Released all slaves
[ 1016.086732][ T6428] bond4 (unregistering): Released all slaves
[ 1016.425464][T17228] lo speed is unknown, defaulting to 1000
[ 1016.432558][T17228] lo speed is unknown, defaulting to 1000
[ 1016.766597][T17253] netlink: 4 bytes leftover after parsing attributes in process `syz.7.3509'.
[ 1017.348699][T17278] sctp: [Deprecated]: syz.8.3517 (pid 17278) Use of int in maxseg socket option.
[ 1017.348699][T17278] Use struct sctp_assoc_value instead
[ 1017.404389][ T6428] hsr_slave_0: left promiscuous mode
[ 1017.420713][ T6428] hsr_slave_1: left promiscuous mode
[ 1017.428541][ T6428] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1017.453322][ T6428] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1017.859598][ T6428] team0 (unregistering): Port device team_slave_1 removed
[ 1017.894306][ T6428] team0 (unregistering): Port device team_slave_0 removed
[ 1018.223756][   T29] kauditd_printk_skb: 13 callbacks suppressed
[ 1018.223784][   T29] audit: type=1326 audit(1735399457.488:584): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17292 comm="syz.0.3519" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe95b785d29 code=0x7ffc0000
[ 1018.320708][   T29] audit: type=1326 audit(1735399457.498:585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17292 comm="syz.0.3519" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fe95b785d29 code=0x7ffc0000
[ 1018.389070][   T29] audit: type=1326 audit(1735399457.498:586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17292 comm="syz.0.3519" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe95b785d29 code=0x7ffc0000
[ 1018.437509][ T6428] smc: removing net device wg0 with user defined pnetid SYZ0
[ 1018.444682][   T29] audit: type=1326 audit(1735399457.498:587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17292 comm="syz.0.3519" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe95b785d29 code=0x7ffc0000
[ 1018.503837][   T29] audit: type=1326 audit(1735399457.498:588): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17292 comm="syz.0.3519" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7fe95b785d29 code=0x7ffc0000
[ 1018.549358][T17305] netlink: 8 bytes leftover after parsing attributes in process `syz.8.3521'.
[ 1018.602286][T17301] netlink: 8 bytes leftover after parsing attributes in process `syz.8.3521'.
[ 1018.618238][T17301] netlink: 12 bytes leftover after parsing attributes in process `syz.8.3521'.
[ 1018.675101][T17306] netlink: 4 bytes leftover after parsing attributes in process `syz.8.3521'.
[ 1019.376303][T17309] netlink: 'syz.0.3522': attribute type 27 has an invalid length.
[ 1020.082905][T17315] netlink: 4 bytes leftover after parsing attributes in process `syz.7.3523'.
[ 1020.419399][T17323] netlink: 'syz.8.3527': attribute type 4 has an invalid length.
[ 1020.476811][T17323] netlink: 'syz.8.3527': attribute type 4 has an invalid length.
[ 1020.818385][T17339] sctp: [Deprecated]: syz.8.3533 (pid 17339) Use of int in maxseg socket option.
[ 1020.818385][T17339] Use struct sctp_assoc_value instead
[ 1020.901432][ T9160] usb 8-1: new high-speed USB device number 35 using dummy_hcd
[ 1020.940631][T17343] netlink: 'syz.0.3534': attribute type 27 has an invalid length.
[ 1021.132997][ T9160] usb 8-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[ 1021.151477][ T9160] usb 8-1: config 1 has an invalid descriptor of length 48, skipping remainder of the config
[ 1021.170760][ T9160] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 66
[ 1021.183726][ T9160] usb 8-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 1021.186385][T17346] __nla_validate_parse: 1 callbacks suppressed
[ 1021.186408][T17346] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3535'.
[ 1021.201981][ T9160] usb 8-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[ 1021.234415][ T9160] usb 8-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[ 1021.333214][ T9160] usb 8-1: Product: syz
[ 1021.340526][ T9160] usb 8-1: Manufacturer: syz
[ 1021.433077][ T9160] cdc_wdm 8-1:1.0: skipping garbage
[ 1021.443904][ T9160] cdc_wdm 8-1:1.0: skipping garbage
[ 1021.454797][ T9160] cdc_wdm 8-1:1.0: probe with driver cdc_wdm failed with error -22
[ 1021.702718][ T9160] usb 8-1: USB disconnect, device number 35
[ 1021.911634][T17354] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3536'.
[ 1021.969616][T17354] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3536'.
[ 1021.997705][T17358] lo speed is unknown, defaulting to 1000
[ 1022.004665][T17354] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3536'.
[ 1022.059218][T17350] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3536'.
[ 1024.190753][T17386] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3547'.
[ 1024.378589][T17404] netlink: 168 bytes leftover after parsing attributes in process `syz.6.3550'.
[ 1024.412106][T17405] netlink: 'syz.8.3552': attribute type 4 has an invalid length.
[ 1024.420826][T17405] netlink: 16 bytes leftover after parsing attributes in process `syz.8.3552'.
[ 1025.403529][T17425] siw: device registration error -23
[ 1025.627632][T17421] lo speed is unknown, defaulting to 1000
[ 1025.858904][T17435] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3560'.
[ 1026.014629][T17435] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3560'.
[ 1026.063069][T17435] bridge_slave_1: left allmulticast mode
[ 1026.116110][T17435] bridge_slave_1: left promiscuous mode
[ 1026.141773][T17435] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1027.171614][T17435] bridge_slave_0: left allmulticast mode
[ 1027.181937][T17435] bridge_slave_0: left promiscuous mode
[ 1027.230933][T17435] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1027.326556][T17446] __nla_validate_parse: 1 callbacks suppressed
[ 1027.326586][T17446] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3565'.
[ 1028.182658][T17474] netlink: 'syz.2.3570': attribute type 27 has an invalid length.
[ 1028.204530][T17476] netlink: 168 bytes leftover after parsing attributes in process `syz.7.3571'.
[ 1028.533754][T17475] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3569'.
[ 1028.862586][T17480] netlink: 'syz.2.3572': attribute type 4 has an invalid length.
[ 1028.890832][T17480] netlink: 'syz.2.3572': attribute type 4 has an invalid length.
[ 1030.100516][T17494] siw: device registration error -23
[ 1030.305763][T17492] lo speed is unknown, defaulting to 1000
[ 1030.742992][T17510] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3582'.
[ 1030.812045][T17512] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3582'.
[ 1030.859554][T17512] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3582'.
[ 1030.914319][T17510] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3582'.
[ 1031.147222][T17521] netlink: 36 bytes leftover after parsing attributes in process `syz.0.3584'.
[ 1031.166805][T17521] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3584'.
[ 1031.197112][T17521] netlink: 36 bytes leftover after parsing attributes in process `syz.0.3584'.
[ 1031.349310][T17525] netlink: 'syz.7.3585': attribute type 27 has an invalid length.
[ 1031.473423][ T5898] lo speed is unknown, defaulting to 1000
[ 1032.465367][T17537] __nla_validate_parse: 2 callbacks suppressed
[ 1032.465395][T17537] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3587'.
[ 1032.671481][T17539] netlink: 'syz.0.3589': attribute type 4 has an invalid length.
[ 1032.717189][T17539] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3589'.
[ 1033.772952][T17559] Bluetooth: hci7: Opcode 0x0c1a failed: -4
[ 1033.786021][T17559] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1033.799964][T17559] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1033.817251][T17559] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1033.827315][T17559] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[ 1033.843744][T17565] netlink: 260 bytes leftover after parsing attributes in process `syz.8.3597'.
[ 1034.239004][T17569] lo speed is unknown, defaulting to 1000
[ 1035.080877][T17576] lo speed is unknown, defaulting to 1000
[ 1035.573193][T17588] netlink: 'syz.0.3601': attribute type 27 has an invalid length.
[ 1036.262212][T17593] netlink: 'syz.2.3603': attribute type 4 has an invalid length.
[ 1036.270161][ T8761] Bluetooth: hci5: command 0x0c1a tx timeout
[ 1036.283631][ T8761] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1036.289725][ T8761] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1036.296018][ T8761] Bluetooth: hci2: command 0x0405 tx timeout
[ 1036.302141][ T8761] Bluetooth: hci7: command 0x0c1a tx timeout
[ 1036.340919][T17593] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3603'.
[ 1036.848637][   T29] audit: type=1326 audit(1735399476.118:589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17597 comm="syz.6.3605" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4c8b85d29 code=0x7ffc0000
[ 1036.920689][   T29] audit: type=1326 audit(1735399476.118:590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17597 comm="syz.6.3605" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4c8b85d29 code=0x7ffc0000
[ 1036.945644][T17600] netlink: 4 bytes leftover after parsing attributes in process `syz.8.3604'.
[ 1037.018572][   T29] audit: type=1326 audit(1735399476.178:591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17597 comm="syz.6.3605" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7fd4c8b85d29 code=0x7ffc0000
[ 1037.140676][   T29] audit: type=1326 audit(1735399476.178:592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17597 comm="syz.6.3605" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4c8b85d29 code=0x7ffc0000
[ 1037.210654][   T29] audit: type=1326 audit(1735399476.178:593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17597 comm="syz.6.3605" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4c8b85d29 code=0x7ffc0000
[ 1037.704333][T17616] netlink: 12 bytes leftover after parsing attributes in process `syz.6.3611'.
[ 1037.734522][T17616] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3611'.
[ 1037.748898][T17616] bridge_slave_1: left allmulticast mode
[ 1037.755439][T17616] bridge_slave_1: left promiscuous mode
[ 1037.762127][T17616] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1038.354023][T17616] bridge_slave_0: left allmulticast mode
[ 1038.361306][T17616] bridge_slave_0: left promiscuous mode
[ 1038.424096][T17616] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1038.805905][T17619] lo speed is unknown, defaulting to 1000
[ 1038.919610][T17628] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3614'.
[ 1038.928802][T17623] Bluetooth: hci7: Opcode 0x0c1a failed: -4
[ 1038.940952][T17623] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1038.947038][T17623] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1038.985905][T17633] 9pnet_fd: Insufficient options for proto=fd
[ 1039.000803][T17623] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1039.030961][T17623] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[ 1039.827115][T17644] lo speed is unknown, defaulting to 1000
[ 1040.313464][T17643] netlink: 'syz.3.3619': attribute type 4 has an invalid length.
[ 1040.501387][T17643] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3619'.
[ 1040.617476][   T29] audit: type=1326 audit(1735399479.848:594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17646 comm="syz.8.3620" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd841785d29 code=0x7ffc0000
[ 1040.640709][   T29] audit: type=1326 audit(1735399479.848:595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17646 comm="syz.8.3620" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7fd841785d29 code=0x7ffc0000
[ 1040.663236][   T29] audit: type=1326 audit(1735399479.848:596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17646 comm="syz.8.3620" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd841785d29 code=0x7ffc0000
[ 1041.813295][T12586] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1041.819577][ T8761] Bluetooth: hci2: command 0x0405 tx timeout
[ 1041.825824][ T8761] Bluetooth: hci7: command 0x0c1a tx timeout
[ 1041.828682][T12586] Bluetooth: hci5: command 0x0c1a tx timeout
[ 1041.832379][ T8761] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1042.308298][T17659] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3622'.
[ 1042.636423][T17530] Set syz1 is full, maxelem 65536 reached
[ 1043.170721][ T9160] usb 4-1: new high-speed USB device number 41 using dummy_hcd
[ 1043.655760][T17685] lo speed is unknown, defaulting to 1000
[ 1043.830769][T17689] lo speed is unknown, defaulting to 1000
[ 1044.591545][T17695] 9pnet_fd: Insufficient options for proto=fd
[ 1044.936610][T17702] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3634'.
[ 1044.954079][ T9160] usb 4-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[ 1044.962965][ T9160] usb 4-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[ 1044.974077][ T9160] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 66
[ 1044.984234][ T9160] usb 4-1: config 1 interface 0 altsetting 0 has an endpoint descriptor with address 0xF7, changing to 0x87
[ 1044.987068][T17688] Bluetooth: hci7: Opcode 0x0c1a failed: -4
[ 1044.996038][ T9160] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x87 has invalid maxpacket 14129, setting to 64
[ 1045.015160][ T9160] usb 4-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[ 1045.024427][ T9160] usb 4-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[ 1045.032774][ T9160] usb 4-1: Product: syz
[ 1045.037120][ T9160] usb 4-1: Manufacturer: syz
[ 1045.060460][T17704] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3634'.
[ 1045.070922][T17688] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1045.087384][T17688] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1045.099428][T17688] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1045.110435][ T9160] cdc_wdm 4-1:1.0: skipping garbage
[ 1045.120779][ T9160] cdc_wdm 4-1:1.0: skipping garbage
[ 1045.126308][ T9160] cdc_wdm 4-1:1.0: probe with driver cdc_wdm failed with error -22
[ 1045.132433][T17688] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[ 1045.331812][ T9160] usb 4-1: USB disconnect, device number 41
[ 1045.482669][T17714] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3638'.
[ 1045.776185][T17718] netlink: 4 bytes leftover after parsing attributes in process `syz.8.3639'.
[ 1046.103064][T17726] lo speed is unknown, defaulting to 1000
[ 1047.058071][ T5834] Bluetooth: hci7: command 0x0c1a tx timeout
[ 1047.360991][ T5834] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1047.368464][ T5834] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1047.376448][ T5834] Bluetooth: hci2: command 0x0405 tx timeout
[ 1047.386772][ T8761] Bluetooth: hci5: command 0x0c1a tx timeout
[ 1047.959658][T17748] lo speed is unknown, defaulting to 1000
[ 1048.836211][T17754] lo speed is unknown, defaulting to 1000
[ 1049.051703][T17758] atomic_op ffff888066660198 conn xmit_atomic 0000000000000000
[ 1049.371964][T17766] 9pnet_fd: Insufficient options for proto=fd
[ 1049.422408][T17767] Bluetooth: hci7: Opcode 0x0c1a failed: -4
[ 1049.428712][T17767] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1049.451597][T17767] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1049.457701][T17767] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1049.520900][T17767] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[ 1050.206488][T17785] netlink: 252 bytes leftover after parsing attributes in process `syz.3.3659'.
[ 1050.268961][T17784] netlink: 'syz.8.3657': attribute type 27 has an invalid length.
[ 1051.458819][T12586] Bluetooth: hci7: command 0x0c1a tx timeout
[ 1051.521126][ T8761] Bluetooth: hci2: command 0x0405 tx timeout
[ 1051.527583][ T5834] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1051.534079][T12586] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1051.636682][T17819] lo speed is unknown, defaulting to 1000
[ 1052.133283][T17825] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3673'.
[ 1052.171264][T17825] netlink: 64 bytes leftover after parsing attributes in process `syz.2.3673'.
[ 1052.288129][T12586] Bluetooth: hci5: command 0x0c1a tx timeout
[ 1053.735352][T17827] lo speed is unknown, defaulting to 1000
[ 1054.202946][T17836] netlink: 'syz.3.3675': attribute type 27 has an invalid length.
[ 1055.793480][T17849] syz.3.3680[17849] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1055.793594][T17849] syz.3.3680[17849] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1055.825766][T17849] syz.3.3680[17849] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1055.973435][T17858] netlink: 252 bytes leftover after parsing attributes in process `syz.8.3682'.
[ 1055.978583][T17857] netlink: 'syz.6.3683': attribute type 27 has an invalid length.
[ 1056.064976][T17863] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3684'.
[ 1056.118495][T17866] netlink: 116 bytes leftover after parsing attributes in process `syz.7.3685'.
[ 1057.245282][T17877] netlink: 'syz.7.3690': attribute type 27 has an invalid length.
[ 1057.929485][   T29] audit: type=1326 audit(1735399497.198:597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17882 comm="syz.3.3693" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6956385d29 code=0x7ffc0000
[ 1057.999340][   T29] audit: type=1326 audit(1735399497.268:598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17882 comm="syz.3.3693" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6956385d29 code=0x7ffc0000
[ 1058.299294][   T29] audit: type=1326 audit(1735399497.558:599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17882 comm="syz.3.3693" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6956385d29 code=0x7ffc0000
[ 1058.390798][   T29] audit: type=1326 audit(1735399497.558:600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17882 comm="syz.3.3693" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6956385d29 code=0x7ffc0000
[ 1058.414358][   T29] audit: type=1326 audit(1735399497.558:601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17882 comm="syz.3.3693" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6956385d29 code=0x7ffc0000
[ 1058.645762][T17892] lo speed is unknown, defaulting to 1000
[ 1058.905515][   T29] audit: type=1326 audit(1735399497.608:602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17882 comm="syz.3.3693" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6956385d29 code=0x7ffc0000
[ 1058.929446][   T29] audit: type=1326 audit(1735399497.608:603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17882 comm="syz.3.3693" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6956385d29 code=0x7ffc0000
[ 1059.311405][   T29] audit: type=1326 audit(1735399497.608:604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17882 comm="syz.3.3693" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6956385d29 code=0x7ffc0000
[ 1059.380684][   T29] audit: type=1326 audit(1735399497.608:605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17882 comm="syz.3.3693" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6956385d29 code=0x7ffc0000
[ 1059.436852][   T29] audit: type=1326 audit(1735399497.608:606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17882 comm="syz.3.3693" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6956385d29 code=0x7ffc0000
[ 1059.446128][ T1291] ieee802154 phy0 wpan0: encryption failed: -22
[ 1059.819722][T17795] Set syz1 is full, maxelem 65536 reached
[ 1060.389591][T17919] netlink: 116 bytes leftover after parsing attributes in process `syz.0.3703'.
[ 1060.608684][T17921] netlink: 4 bytes leftover after parsing attributes in process `syz.7.3705'.
[ 1060.941199][T17935] Bluetooth: hci7: Opcode 0x0c1a failed: -4
[ 1060.947903][T17935] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1060.986429][T17935] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1061.046693][T17935] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1061.056793][T17935] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[ 1061.875698][T17957] lo speed is unknown, defaulting to 1000
[ 1062.965664][T12586] Bluetooth: hci7: command 0x0c1a tx timeout
[ 1062.972313][ T5834] Bluetooth: hci2: command 0x0405 tx timeout
[ 1063.089682][T12586] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1063.120794][T12586] Bluetooth: hci5: command 0x0c1a tx timeout
[ 1063.127057][ T5834] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1063.229013][T17965] lo speed is unknown, defaulting to 1000
[ 1063.868786][T17982] netlink: 252 bytes leftover after parsing attributes in process `syz.0.3723'.
[ 1063.918583][T17987] netlink: 116 bytes leftover after parsing attributes in process `syz.8.3727'.
[ 1064.096289][ T5896] usb 8-1: new high-speed USB device number 36 using dummy_hcd
[ 1064.274501][ T5896] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1064.286809][ T5896] usb 8-1: config 27 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[ 1064.313152][ T5896] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 1064.345520][ T5896] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1064.418231][ T5896] usb 8-1: Quirk or no altset; falling back to MIDI 1.0
[ 1064.438878][ T5896] usb 8-1: invalid MIDI out EP 0
[ 1064.573608][ T5896] snd-usb-audio 8-1:27.0: probe with driver snd-usb-audio failed with error -22
[ 1064.622889][ T5896] usb 8-1: USB disconnect, device number 36
[ 1064.821645][T10444] udevd[10444]: error opening ATTR{/sys/devices/platform/dummy_hcd.7/usb8/8-1/8-1:27.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1064.850885][   T29] kauditd_printk_skb: 6 callbacks suppressed
[ 1064.850911][   T29] audit: type=1326 audit(1735399504.098:613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17976 comm="syz.7.3724" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f0a2eb85d29 code=0x0
[ 1065.695672][T18025] netlink: 252 bytes leftover after parsing attributes in process `syz.6.3743'.
[ 1066.006457][T18032] lo speed is unknown, defaulting to 1000
[ 1067.093191][T18043] netlink: 88 bytes leftover after parsing attributes in process `syz.7.3746'.
[ 1067.464932][T18052] Bluetooth: hci7: Opcode 0x0c1a failed: -4
[ 1067.503013][T18052] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1067.512151][T18052] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1067.518484][T18052] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1067.551127][T18052] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[ 1067.599400][T18057] lo speed is unknown, defaulting to 1000
[ 1068.286519][T18069] netlink: 4 bytes leftover after parsing attributes in process `syz.7.3755'.
[ 1068.363731][T18079] netlink: 252 bytes leftover after parsing attributes in process `syz.2.3756'.
[ 1069.024337][T18088] lo speed is unknown, defaulting to 1000
[ 1069.520859][T12586] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1069.527073][ T5834] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1069.536033][ T8761] Bluetooth: hci2: command 0x0405 tx timeout
[ 1069.542461][ T5834] Bluetooth: hci7: command 0x0c1a tx timeout
[ 1069.620706][T12586] Bluetooth: hci5: command 0x0c1a tx timeout
[ 1070.026326][T18105] netlink: 88 bytes leftover after parsing attributes in process `syz.3.3767'.
[ 1070.194825][T18109] netlink: 'syz.7.3768': attribute type 27 has an invalid length.
[ 1070.744148][T18121] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3773'.
[ 1071.477280][T18132] lo speed is unknown, defaulting to 1000
[ 1072.034761][T18138] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3776'.
[ 1072.344746][T18144] netlink: 260 bytes leftover after parsing attributes in process `syz.8.3777'.
[ 1072.944627][T18156] lo speed is unknown, defaulting to 1000
[ 1072.963736][   T29] audit: type=1326 audit(1735399512.238:614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18155 comm="syz.3.3784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6956385d29 code=0x7ffc0000
[ 1073.010859][   T29] audit: type=1326 audit(1735399512.278:615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18155 comm="syz.3.3784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6956385d29 code=0x7ffc0000
[ 1073.080660][   T29] audit: type=1326 audit(1735399512.308:616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18155 comm="syz.3.3784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6956385d29 code=0x7ffc0000
[ 1073.180042][   T29] audit: type=1326 audit(1735399512.308:617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18155 comm="syz.3.3784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6956385d29 code=0x7ffc0000
[ 1073.372267][T18165] netlink: 88 bytes leftover after parsing attributes in process `syz.6.3786'.
[ 1073.590784][   T29] audit: type=1326 audit(1735399512.308:618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18155 comm="syz.3.3784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6956385d29 code=0x7ffc0000
[ 1073.658851][   T29] audit: type=1326 audit(1735399512.318:619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18155 comm="syz.3.3784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6956385d29 code=0x7ffc0000
[ 1073.733257][   T29] audit: type=1326 audit(1735399512.318:620): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18155 comm="syz.3.3784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6956385d29 code=0x7ffc0000
[ 1073.860640][   T29] audit: type=1326 audit(1735399512.318:621): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18155 comm="syz.3.3784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6956385d29 code=0x7ffc0000
[ 1073.978460][   T29] audit: type=1326 audit(1735399512.318:622): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18155 comm="syz.3.3784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=254 compat=0 ip=0x7f6956385d29 code=0x7ffc0000
[ 1074.030250][   T29] audit: type=1326 audit(1735399512.318:623): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18155 comm="syz.3.3784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6956385d29 code=0x7ffc0000
[ 1074.510755][T18191] netlink: 'syz.6.3796': attribute type 27 has an invalid length.
[ 1075.150484][T18203] netlink: 260 bytes leftover after parsing attributes in process `syz.2.3799'.
[ 1075.353469][T18209] netlink: 16 bytes leftover after parsing attributes in process `syz.7.3802'.
[ 1075.405358][T18216] netlink: 36 bytes leftover after parsing attributes in process `syz.0.3806'.
[ 1075.420360][T18216] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3806'.
[ 1075.488668][T18216] netlink: 36 bytes leftover after parsing attributes in process `syz.0.3806'.
[ 1075.512520][T18220] netlink: 76 bytes leftover after parsing attributes in process `syz.3.3807'.
[ 1075.541187][T18216] netlink: 36 bytes leftover after parsing attributes in process `syz.0.3806'.
[ 1077.312868][T18263] netlink: 260 bytes leftover after parsing attributes in process `syz.6.3823'.
[ 1077.866562][T18277] lo speed is unknown, defaulting to 1000
[ 1078.774456][   T29] kauditd_printk_skb: 28 callbacks suppressed
[ 1078.774482][   T29] audit: type=1326 audit(1735399518.048:652): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18286 comm="syz.3.3834" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6956385d29 code=0x7ffc0000
[ 1078.807267][T18290] netlink: 'syz.2.3833': attribute type 27 has an invalid length.
[ 1078.882136][T18289] netlink: 36 bytes leftover after parsing attributes in process `syz.3.3834'.
[ 1078.900665][   T29] audit: type=1326 audit(1735399518.048:653): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18286 comm="syz.3.3834" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6956385d29 code=0x7ffc0000
[ 1078.970934][   T29] audit: type=1326 audit(1735399518.078:654): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18286 comm="syz.3.3834" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f6956385d29 code=0x7ffc0000
[ 1079.081306][   T29] audit: type=1326 audit(1735399518.078:655): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18286 comm="syz.3.3834" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f6956385d63 code=0x7ffc0000
[ 1079.199400][   T29] audit: type=1326 audit(1735399518.078:656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18286 comm="syz.3.3834" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f69563847df code=0x7ffc0000
[ 1079.325947][   T29] audit: type=1326 audit(1735399518.098:657): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18286 comm="syz.3.3834" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f6956385db7 code=0x7ffc0000
[ 1079.427493][   T29] audit: type=1326 audit(1735399518.098:658): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18286 comm="syz.3.3834" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f6956384690 code=0x7ffc0000
[ 1079.549301][   T29] audit: type=1326 audit(1735399518.098:659): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18286 comm="syz.3.3834" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f695638498a code=0x7ffc0000
[ 1079.643421][   T29] audit: type=1326 audit(1735399518.108:660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18286 comm="syz.3.3834" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6956385d29 code=0x7ffc0000
[ 1079.739497][   T29] audit: type=1326 audit(1735399518.108:661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18286 comm="syz.3.3834" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6956385d29 code=0x7ffc0000
[ 1079.815251][T18317] netlink: 48 bytes leftover after parsing attributes in process `syz.0.3842'.
[ 1080.877642][T18346] lo speed is unknown, defaulting to 1000
[ 1081.198562][T18355] __nla_validate_parse: 8 callbacks suppressed
[ 1081.198588][T18355] netlink: 76 bytes leftover after parsing attributes in process `syz.7.3858'.
[ 1081.212115][T18343] lo speed is unknown, defaulting to 1000
[ 1081.813186][T18373] netlink: 48 bytes leftover after parsing attributes in process `syz.0.3865'.
[ 1081.911243][T18376] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3865'.
[ 1081.920205][T18376] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3865'.
[ 1081.973272][T18373] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3865'.
[ 1082.124804][T18386] netlink: 260 bytes leftover after parsing attributes in process `syz.2.3867'.
[ 1082.282087][T18392] netlink: 36 bytes leftover after parsing attributes in process `syz.7.3870'.
[ 1082.311033][T18392] netlink: 16 bytes leftover after parsing attributes in process `syz.7.3870'.
[ 1082.330415][T18392] netlink: 36 bytes leftover after parsing attributes in process `syz.7.3870'.
[ 1082.350966][T18392] netlink: 36 bytes leftover after parsing attributes in process `syz.7.3870'.
[ 1083.210669][ T5896] usb 3-1: new high-speed USB device number 34 using dummy_hcd
[ 1083.396527][ T5896] usb 3-1: config 0 has no interfaces?
[ 1083.410008][ T5896] usb 3-1: New USB device found, idVendor=057c, idProduct=2200, bcdDevice=46.29
[ 1083.438501][ T5896] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1083.470643][ T5896] usb 3-1: Product: syz
[ 1083.483996][ T5896] usb 3-1: Manufacturer: syz
[ 1083.503555][ T5896] usb 3-1: SerialNumber: syz
[ 1083.521740][ T5896] usb 3-1: config 0 descriptor??
[ 1083.747191][T18417] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1083.764323][T18417] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1083.794357][ T9160] usb 3-1: USB disconnect, device number 34
[ 1084.713570][  T937] usb 4-1: new high-speed USB device number 42 using dummy_hcd
[ 1084.920511][  T937] usb 4-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[ 1084.929864][  T937] usb 4-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[ 1085.000976][  T937] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 66
[ 1085.042971][  T937] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[ 1085.074405][  T937] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[ 1085.106144][  T937] usb 4-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[ 1085.122589][  T937] usb 4-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[ 1085.150696][  T937] usb 4-1: Product: syz
[ 1085.163976][  T937] usb 4-1: Manufacturer: syz
[ 1085.180324][  T937] cdc_wdm 4-1:1.0: skipping garbage
[ 1085.193980][  T937] cdc_wdm 4-1:1.0: skipping garbage
[ 1085.207385][  T937] cdc_wdm 4-1:1.0: cdc-wdm0: USB WDM device
[ 1085.228112][  T937] cdc_wdm 4-1:1.0: Unknown control protocol
[ 1085.458190][ T5898] usb 4-1: USB disconnect, device number 42
[ 1086.140851][  T937] usb 7-1: new high-speed USB device number 43 using dummy_hcd
[ 1086.223364][T18514] __nla_validate_parse: 14 callbacks suppressed
[ 1086.223392][T18514] netlink: 36 bytes leftover after parsing attributes in process `syz.8.3917'.
[ 1086.255900][T18512] lo speed is unknown, defaulting to 1000
[ 1086.260792][T18514] netlink: 16 bytes leftover after parsing attributes in process `syz.8.3917'.
[ 1086.307850][T18514] netlink: 36 bytes leftover after parsing attributes in process `syz.8.3917'.
[ 1086.341154][T18514] netlink: 36 bytes leftover after parsing attributes in process `syz.8.3917'.
[ 1086.361856][  T937] usb 7-1: config 0 has no interfaces?
[ 1086.378529][  T937] usb 7-1: New USB device found, idVendor=057c, idProduct=2200, bcdDevice=46.29
[ 1086.414484][  T937] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1086.461744][  T937] usb 7-1: Product: syz
[ 1086.483104][  T937] usb 7-1: Manufacturer: syz
[ 1086.506031][  T937] usb 7-1: SerialNumber: syz
[ 1086.534145][  T937] usb 7-1: config 0 descriptor??
[ 1086.774827][T18525] lo speed is unknown, defaulting to 1000
[ 1087.321180][T18504] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1087.382346][T18504] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1087.464187][ T5896] usb 7-1: USB disconnect, device number 43
[ 1087.785919][T18535] Bluetooth: hci7: Opcode 0x0c1a failed: -4
[ 1087.801245][T18535] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1087.810974][T18535] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1087.820957][T18535] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1087.841775][T18535] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[ 1089.128920][T18589] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3944'.
[ 1089.519596][T18577] Bluetooth: hci7: Opcode 0x0c1a failed: -4
[ 1089.527521][T18577] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1089.547511][T18577] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1089.574757][T18577] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1089.590179][T18577] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[ 1090.205175][   T29] kauditd_printk_skb: 70 callbacks suppressed
[ 1090.205201][   T29] audit: type=1326 audit(1735399529.478:732): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18636 comm="syz.7.3963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a2eb85d29 code=0x7ffc0000
[ 1090.300702][   T29] audit: type=1326 audit(1735399529.508:733): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18636 comm="syz.7.3963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a2eb85d29 code=0x7ffc0000
[ 1090.362928][   T29] audit: type=1326 audit(1735399529.518:734): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18636 comm="syz.7.3963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0a2eb85d29 code=0x7ffc0000
[ 1090.429440][   T29] audit: type=1326 audit(1735399529.518:735): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18636 comm="syz.7.3963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a2eb85d29 code=0x7ffc0000
[ 1090.443157][T18640] veth0_to_team: entered promiscuous mode
[ 1090.470700][T18640] veth0_to_team: entered allmulticast mode
[ 1090.493925][   T29] audit: type=1326 audit(1735399529.518:736): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18636 comm="syz.7.3963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a2eb85d29 code=0x7ffc0000
[ 1090.546785][   T29] audit: type=1326 audit(1735399529.528:737): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18636 comm="syz.7.3963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0a2eb85d29 code=0x7ffc0000
[ 1090.586621][T18643] tipc: Started in network mode
[ 1090.605877][   T29] audit: type=1326 audit(1735399529.528:738): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18636 comm="syz.7.3963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a2eb85d29 code=0x7ffc0000
[ 1090.619169][T18643] tipc: Node identity ee49b909e25d, cluster identity 4711
[ 1090.659839][   T29] audit: type=1326 audit(1735399529.528:739): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18636 comm="syz.7.3963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a2eb85d29 code=0x7ffc0000
[ 1090.692396][T18643] tipc: Enabled bearer <eth:syzkaller0>, priority 31
[ 1090.724405][   T29] audit: type=1326 audit(1735399529.528:740): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18636 comm="syz.7.3963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0a2eb85d29 code=0x7ffc0000
[ 1090.747207][   T29] audit: type=1326 audit(1735399529.528:741): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18636 comm="syz.7.3963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a2eb85d29 code=0x7ffc0000
[ 1090.781191][T18643] ªªªªªª: renamed from syzkaller0
[ 1090.868104][T18643] tipc: Disabling bearer <eth:syzkaller0>
[ 1090.889789][ T5851] Bluetooth: hci7: command 0x0c1a tx timeout
[ 1090.981084][T18660] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3973'.
[ 1092.466536][ T5851] Bluetooth: hci5: command 0x0c1a tx timeout
[ 1092.472907][ T5851] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1092.479042][ T5851] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1092.485202][ T5851] Bluetooth: hci2: command 0x0405 tx timeout
[ 1092.520064][T18676] block device autoloading is deprecated and will be removed.
[ 1092.529929][T18676] syz.3.3976: attempt to access beyond end of device
[ 1092.529929][T18676] loop7: rw=0, sector=0, nr_sectors = 1 limit=0
[ 1092.542886][T18676] FAT-fs (loop7): unable to read boot sector
[ 1092.780377][T18662] infiniband syz1: set down
[ 1092.797762][T18662] infiniband syz1: added team_slave_0
[ 1092.805018][T18662] syz1: rxe_create_cq: returned err = -12
[ 1092.811544][T18662] infiniband syz1: Couldn't create ib_mad CQ
[ 1092.819181][T18662] infiniband syz1: Couldn't open port 1
[ 1092.872504][T18662] RDS/IB: syz1: added
[ 1092.877534][T18662] smc: adding ib device syz1 with port count 1
[ 1092.890942][T18662] smc:    ib device syz1 port 1 has pnetid SYZ0 (user defined)
[ 1093.169294][T18687] usb usb4: usbfs: process 18687 (syz.6.3983) did not claim interface 0 before use
[ 1094.561804][T18704] usb usb5: usbfs: process 18704 (syz.6.3990) did not claim interface 0 before use
[ 1094.878178][T18709] netlink: 36 bytes leftover after parsing attributes in process `syz.3.3992'.
[ 1094.927148][T18714] netlink: 48 bytes leftover after parsing attributes in process `syz.6.3991'.
[ 1094.950040][T18714] netlink: 12 bytes leftover after parsing attributes in process `syz.6.3991'.
[ 1095.141676][T18714] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3991'.
[ 1095.155581][T18717] Bluetooth: hci7: Opcode 0x0c1a failed: -4
[ 1095.212380][T18717] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1095.245087][T18717] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1095.281890][T18717] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1095.329255][T18717] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[ 1095.628123][T18732] lo speed is unknown, defaulting to 1000
[ 1095.666060][   T29] kauditd_printk_skb: 7 callbacks suppressed
[ 1095.666085][   T29] audit: type=1326 audit(1735399534.938:749): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18731 comm="syz.0.3997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe95b785d29 code=0x7ffc0000
[ 1095.681047][ T5898] usb 4-1: new high-speed USB device number 43 using dummy_hcd
[ 1095.730936][   T29] audit: type=1326 audit(1735399534.938:750): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18731 comm="syz.0.3997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe95b785d29 code=0x7ffc0000
[ 1095.820897][  T937] usb 3-1: new high-speed USB device number 35 using dummy_hcd
[ 1095.835566][   T29] audit: type=1326 audit(1735399534.938:751): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18731 comm="syz.0.3997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe95b785d29 code=0x7ffc0000
[ 1095.897311][ T5898] usb 4-1: config 0 has no interfaces?
[ 1095.914486][ T5898] usb 4-1: New USB device found, idVendor=057c, idProduct=2200, bcdDevice=46.29
[ 1095.927340][ T5898] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1095.942045][   T29] audit: type=1326 audit(1735399534.938:752): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18731 comm="syz.0.3997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe95b785d29 code=0x7ffc0000
[ 1095.968856][ T5898] usb 4-1: Product: syz
[ 1095.977444][ T5898] usb 4-1: Manufacturer: syz
[ 1095.983978][  T937] usb 3-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[ 1095.993091][ T5898] usb 4-1: SerialNumber: syz
[ 1096.001112][  T937] usb 3-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[ 1096.025382][ T5898] usb 4-1: config 0 descriptor??
[ 1096.040774][   T29] audit: type=1326 audit(1735399534.948:753): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18731 comm="syz.0.3997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe95b785d29 code=0x7ffc0000
[ 1096.046134][  T937] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 66
[ 1096.122565][T18743] IPVS: Error connecting to the multicast addr
[ 1096.127407][   T29] audit: type=1326 audit(1735399534.948:754): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18731 comm="syz.0.3997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe95b785d29 code=0x7ffc0000
[ 1096.157206][  T937] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[ 1096.205769][  T937] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[ 1096.207402][   T29] audit: type=1326 audit(1735399534.948:755): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18731 comm="syz.0.3997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe95b785d29 code=0x7ffc0000
[ 1096.254012][  T937] usb 3-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[ 1096.265420][   T29] audit: type=1326 audit(1735399534.948:756): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18731 comm="syz.0.3997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=254 compat=0 ip=0x7fe95b785d29 code=0x7ffc0000
[ 1096.303725][T18723] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1096.320679][  T937] usb 3-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[ 1096.331455][T18723] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1096.332148][   T29] audit: type=1326 audit(1735399534.948:757): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18731 comm="syz.0.3997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe95b785d29 code=0x7ffc0000
[ 1096.361898][   T29] audit: type=1326 audit(1735399534.948:758): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18731 comm="syz.0.3997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe95b785d29 code=0x7ffc0000
[ 1096.361988][  T937] usb 3-1: Product: syz
[ 1096.417206][ T9160] usb 4-1: USB disconnect, device number 43
[ 1096.453184][  T937] usb 3-1: Manufacturer: syz
[ 1096.499830][  T937] cdc_wdm 3-1:1.0: skipping garbage
[ 1096.506189][  T937] cdc_wdm 3-1:1.0: skipping garbage
[ 1096.513771][  T937] cdc_wdm 3-1:1.0: cdc-wdm0: USB WDM device
[ 1096.519979][  T937] cdc_wdm 3-1:1.0: Unknown control protocol
[ 1096.552188][T18751] netlink: 4 bytes leftover after parsing attributes in process `syz.7.4005'.
[ 1096.768332][  T937] usb 3-1: USB disconnect, device number 35
[ 1097.124505][T18769] netlink: 48 bytes leftover after parsing attributes in process `syz.0.4011'.
[ 1097.200844][T12586] Bluetooth: hci7: command 0x0c1a tx timeout
[ 1097.212998][T18772] netlink: 4 bytes leftover after parsing attributes in process `syz.7.4010'.
[ 1097.280985][T12586] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1097.287457][T12586] Bluetooth: hci2: command 0x0405 tx timeout
[ 1097.356327][T18769] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4011'.
[ 1097.360816][T12586] Bluetooth: hci5: command 0x0c1a tx timeout
[ 1097.371312][ T5851] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1098.363334][T18778] block device autoloading is deprecated and will be removed.
[ 1098.583974][T18769] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4011'.
[ 1098.780903][T18776] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4011'.
[ 1099.712859][T18813] netlink: 'syz.6.4028': attribute type 3 has an invalid length.
[ 1099.749165][T18816] netlink: 'syz.8.4027': attribute type 39 has an invalid length.
[ 1100.306044][T18822] lo speed is unknown, defaulting to 1000
[ 1101.579548][T18830] __nla_validate_parse: 2 callbacks suppressed
[ 1101.579577][T18830] netlink: 4 bytes leftover after parsing attributes in process `syz.8.4031'.
[ 1101.663782][T18838] netlink: 48 bytes leftover after parsing attributes in process `syz.3.4033'.
[ 1101.715198][T18838] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4033'.
[ 1101.770823][T18838] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4033'.
[ 1101.950211][T18838] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4033'.
[ 1102.051334][   T29] kauditd_printk_skb: 11 callbacks suppressed
[ 1102.051361][   T29] audit: type=1326 audit(1735399541.318:770): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18848 comm="syz.8.4038" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd841785d29 code=0x7ffc0000
[ 1102.165501][   T29] audit: type=1326 audit(1735399541.318:771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18848 comm="syz.8.4038" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd841785d29 code=0x7ffc0000
[ 1102.278447][   T29] audit: type=1326 audit(1735399541.358:772): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18848 comm="syz.8.4038" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd841785d29 code=0x7ffc0000
[ 1102.378925][   T29] audit: type=1326 audit(1735399541.368:773): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18848 comm="syz.8.4038" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd841785d29 code=0x7ffc0000
[ 1102.476739][   T29] audit: type=1326 audit(1735399541.368:774): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18848 comm="syz.8.4038" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd841785d29 code=0x7ffc0000
[ 1102.508330][T18857] lo speed is unknown, defaulting to 1000
[ 1102.600945][   T29] audit: type=1326 audit(1735399541.468:775): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18848 comm="syz.8.4038" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd841785d29 code=0x7ffc0000
[ 1102.684395][   T29] audit: type=1326 audit(1735399541.468:776): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18848 comm="syz.8.4038" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd841785d29 code=0x7ffc0000
[ 1102.798058][   T29] audit: type=1326 audit(1735399541.468:777): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18848 comm="syz.8.4038" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd841785d29 code=0x7ffc0000
[ 1102.893979][   T29] audit: type=1326 audit(1735399541.468:778): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18848 comm="syz.8.4038" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fd841785d29 code=0x7ffc0000
[ 1102.955693][   T29] audit: type=1326 audit(1735399541.468:779): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18848 comm="syz.8.4038" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd841785d29 code=0x7ffc0000
[ 1103.062820][T18870] netdevsim netdevsim7: loading /lib/firmware/. failed with error -22
[ 1103.133756][T18870] netdevsim netdevsim7: Direct firmware load for . failed with error -22
[ 1103.182555][T18870] netdevsim netdevsim7: Falling back to sysfs fallback for: .
[ 1103.194778][T18877] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4051'.
[ 1103.806221][T18880] netlink: 4 bytes leftover after parsing attributes in process `syz.6.4050'.
[ 1104.450504][T18877] team0 (unregistering): Port device team_slave_0 removed
[ 1104.460423][T18877] team0 (unregistering): Port device team_slave_1 removed
[ 1104.660777][ T5898] usb 4-1: new high-speed USB device number 44 using dummy_hcd
[ 1104.921137][T18908] netlink: 'syz.0.4058': attribute type 27 has an invalid length.
[ 1105.028011][ T5851] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1105.037986][ T5851] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1105.051268][ T5851] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1105.052518][ T5898] usb 4-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1105.081953][ T5851] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1105.090452][ T5851] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 1105.102151][ T5851] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1105.127577][ T5898] usb 4-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[ 1105.165459][ T5898] usb 4-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 1105.210609][ T5898] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1105.261669][T18892] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[ 1105.275108][ T5898] usb 4-1: Quirk or no altset; falling back to MIDI 1.0
[ 1105.305681][T18913] lo speed is unknown, defaulting to 1000
[ 1105.591587][ T5898] usb 4-1: USB disconnect, device number 44
[ 1105.818287][T14152] udevd[14152]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:27.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1106.020989][T18930] loop7: detected capacity change from 0 to 512
[ 1106.176446][T18913] chnl_net:caif_netlink_parms(): no params data found
[ 1106.224493][T18930] EXT4-fs (loop7): orphan cleanup on readonly fs
[ 1106.237626][T18930] EXT4-fs warning (device loop7): ext4_enable_quotas:7152: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix.
[ 1106.293777][T18930] EXT4-fs (loop7): Cannot turn on quotas: error -22
[ 1106.307339][T18930] EXT4-fs error (device loop7): ext4_ext_check_inode:524: inode #13: comm syz.7.4066: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[ 1106.332001][T18930] EXT4-fs error (device loop7): ext4_orphan_get:1392: comm syz.7.4066: couldn't read orphan inode 13 (err -117)
[ 1106.353001][T18930] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[ 1106.836271][ T9062] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1107.200947][ T5851] Bluetooth: hci0: command tx timeout
[ 1107.273609][T18913] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1107.281222][T18913] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1107.288426][T18913] bridge_slave_0: entered allmulticast mode
[ 1107.296016][T18913] bridge_slave_0: entered promiscuous mode
[ 1107.354440][T18913] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1107.362104][T18913] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1107.369358][T18913] bridge_slave_1: entered allmulticast mode
[ 1107.382695][T18913] bridge_slave_1: entered promiscuous mode
[ 1107.553721][T18913] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1107.632071][T18913] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1107.852679][T18913] team0: Port device team_slave_0 added
[ 1107.885217][T18913] team0: Port device team_slave_1 added
[ 1107.905025][T18965] netlink: 'syz.0.4076': attribute type 27 has an invalid length.
[ 1109.517140][ T5851] Bluetooth: hci0: command tx timeout
[ 1110.532648][T18913] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1110.539813][T18913] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1110.622947][T18913] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1110.670967][T18913] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1110.678025][T18913] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1110.704147][T18913] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1111.081715][T18913] hsr_slave_0: entered promiscuous mode
[ 1111.138996][T18913] hsr_slave_1: entered promiscuous mode
[ 1111.635041][ T5851] Bluetooth: hci0: command tx timeout
[ 1111.883220][T18913] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1111.914948][T18913] Cannot create hsr debugfs directory
[ 1111.948416][T18993] lo speed is unknown, defaulting to 1000
[ 1112.860543][T19026] rdma_rxe: rxe_newlink: failed to add team_slave_0
[ 1112.939256][T19027] netlink: 'syz.2.4097': attribute type 27 has an invalid length.
[ 1113.092108][T19030] loop7: detected capacity change from 0 to 1024
[ 1113.779237][ T5851] Bluetooth: hci0: command tx timeout
[ 1113.992094][T19030] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1114.701095][ T9062] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1115.503767][ T6428] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1115.668028][ T6428] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1115.748806][ T6428] bond0 (unregistering): (slave bond2): Releasing backup interface
[ 1115.779547][ T6428] bond0 (unregistering): Released all slaves
[ 1115.796042][ T6428] bond1 (unregistering): Released all slaves
[ 1116.124133][ T6428] bond2 (unregistering): Released all slaves
[ 1116.155439][ T6428] bond3 (unregistering): Released all slaves
[ 1116.235578][T19062] IPVS: Error connecting to the multicast addr
[ 1116.245423][T19065] ªªªªªª: renamed from syzkaller0
[ 1116.264077][T19047] lo speed is unknown, defaulting to 1000
[ 1116.957959][T19079] lo speed is unknown, defaulting to 1000
[ 1117.544889][T19070] loop7: detected capacity change from 0 to 8192
[ 1117.734847][   T29] kauditd_printk_skb: 18 callbacks suppressed
[ 1117.734874][   T29] audit: type=1800 audit(1735399556.998:798): pid=19070 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.4112" name="bus" dev="loop7" ino=1048628 res=0 errno=0
[ 1117.892507][ T9160] usb 4-1: new high-speed USB device number 45 using dummy_hcd
[ 1118.061404][ T9160] usb 4-1: device descriptor read/64, error -71
[ 1118.169462][ T6428] hsr_slave_0: left promiscuous mode
[ 1118.175628][ T6428] hsr_slave_1: left promiscuous mode
[ 1118.183927][ T6428] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1118.198959][ T6428] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1118.269440][T19094] netlink: 'syz.8.4118': attribute type 27 has an invalid length.
[ 1118.310725][ T9160] usb 4-1: new high-speed USB device number 46 using dummy_hcd
[ 1118.450799][ T9160] usb 4-1: device descriptor read/64, error -71
[ 1118.528735][ T6428] team0 (unregistering): Port device team_slave_1 removed
[ 1118.571794][ T6428] team0 (unregistering): Port device team_slave_0 removed
[ 1118.572167][ T9160] usb usb4-port1: attempt power cycle
[ 1118.930910][ T9160] usb 4-1: new high-speed USB device number 47 using dummy_hcd
[ 1118.951608][T18913] netdevsim netdevsim6 netdevsim0: renamed from eth0
[ 1118.963610][ T9160] usb 4-1: device descriptor read/8, error -71
[ 1119.016410][T18913] netdevsim netdevsim6 netdevsim1: renamed from eth1
[ 1119.108046][T18913] netdevsim netdevsim6 netdevsim2: renamed from eth2
[ 1119.254281][T19099] 9pnet_fd: Insufficient options for proto=fd
[ 1119.290732][ T9160] usb 4-1: new high-speed USB device number 48 using dummy_hcd
[ 1119.313752][ T9160] usb 4-1: device descriptor read/8, error -71
[ 1119.375949][T18913] netdevsim netdevsim6 netdevsim3: renamed from eth3
[ 1119.433584][ T9160] usb usb4-port1: unable to enumerate USB device
[ 1119.669715][T18913] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1119.797820][T18913] 8021q: adding VLAN 0 to HW filter on device team0
[ 1119.855480][ T2969] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1119.862742][ T2969] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1120.021043][T18913] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1120.031656][T18913] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1120.132107][   T35] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1120.139427][   T35] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1120.389437][   T29] audit: type=1326 audit(1735399559.658:799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19113 comm="syz.2.4126" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f81d0785d29 code=0x7ffc0000
[ 1120.510773][   T29] audit: type=1326 audit(1735399559.708:800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19113 comm="syz.2.4126" exe="/root/syz-executor" sig=0 arch=c000003e syscall=271 compat=0 ip=0x7f81d0785d29 code=0x7ffc0000
[ 1120.586512][ T1291] ieee802154 phy0 wpan0: encryption failed: -22
[ 1120.596463][   T29] audit: type=1326 audit(1735399559.708:801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19113 comm="syz.2.4126" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f81d0785d29 code=0x7ffc0000
[ 1120.680895][   T29] audit: type=1326 audit(1735399559.708:802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19113 comm="syz.2.4126" exe="/root/syz-executor" sig=0 arch=c000003e syscall=68 compat=0 ip=0x7f81d0785d29 code=0x7ffc0000
[ 1120.746827][   T29] audit: type=1326 audit(1735399559.708:803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19113 comm="syz.2.4126" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f81d0785d29 code=0x7ffc0000
[ 1120.865802][   T29] audit: type=1326 audit(1735399559.718:804): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19113 comm="syz.2.4126" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f81d0785d29 code=0x7ffc0000
[ 1120.899582][   T29] audit: type=1326 audit(1735399559.808:805): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19113 comm="syz.2.4126" exe="/root/syz-executor" sig=0 arch=c000003e syscall=71 compat=0 ip=0x7f81d0785d29 code=0x7ffc0000
[ 1120.922847][   T29] audit: type=1326 audit(1735399559.808:806): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19113 comm="syz.2.4126" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f81d0785d29 code=0x7ffc0000
[ 1120.970061][T18913] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1120.988048][T19127] syz.2.4129[19127] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1120.988163][T19127] syz.2.4129[19127] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1121.008547][T19127] syz.2.4129[19127] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1122.164692][T19140] lo speed is unknown, defaulting to 1000
[ 1122.189734][T19145] 9pnet_fd: Insufficient options for proto=fd
[ 1122.405321][T19149] netlink: 'syz.8.4133': attribute type 27 has an invalid length.
[ 1123.255197][T19164] netlink: 'syz.2.4137': attribute type 27 has an invalid length.
[ 1123.546361][   T29] audit: type=1326 audit(1735399562.818:807): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19167 comm="syz.2.4140" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f81d0785d29 code=0x7ffc0000
[ 1123.601125][   T29] audit: type=1326 audit(1735399562.848:808): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19167 comm="syz.2.4140" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f81d0785d29 code=0x7ffc0000
[ 1123.626184][   T29] audit: type=1326 audit(1735399562.848:809): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19167 comm="syz.2.4140" exe="/root/syz-executor" sig=0 arch=c000003e syscall=271 compat=0 ip=0x7f81d0785d29 code=0x7ffc0000
[ 1123.661430][   T29] audit: type=1326 audit(1735399562.848:810): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19167 comm="syz.2.4140" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f81d0785d29 code=0x7ffc0000
[ 1123.697622][T18913] veth0_vlan: entered promiscuous mode
[ 1123.720525][   T29] audit: type=1326 audit(1735399562.848:811): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19167 comm="syz.2.4140" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f81d0785d29 code=0x7ffc0000
[ 1123.749761][T18913] veth1_vlan: entered promiscuous mode
[ 1123.769150][   T29] audit: type=1326 audit(1735399562.848:812): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19167 comm="syz.2.4140" exe="/root/syz-executor" sig=0 arch=c000003e syscall=71 compat=0 ip=0x7f81d0785d29 code=0x7ffc0000
[ 1123.843766][T18913] veth0_macvtap: entered promiscuous mode
[ 1123.865323][T18913] veth1_macvtap: entered promiscuous mode
[ 1123.881013][   T29] audit: type=1326 audit(1735399562.848:813): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19167 comm="syz.2.4140" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f81d0785d29 code=0x7ffc0000
[ 1123.992277][T18913] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1124.088441][T18913] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1124.119351][T18913] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1124.170827][T18913] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1124.210802][T18913] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1124.219601][T18913] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1124.489655][   T53] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1124.520696][   T53] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1124.909439][T19197] loop7: detected capacity change from 0 to 512
[ 1125.118115][T19197] EXT4-fs (loop7): revision level too high, forcing read-only mode
[ 1125.126245][T19197] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8842c01c, mo2=0002]
[ 1125.136122][T19197] EXT4-fs (loop7): orphan cleanup on readonly fs
[ 1125.160270][T19197] EXT4-fs warning (device loop7): ext4_block_to_path:105: block 3279949761 > max in inode 13
[ 1125.171581][T19197] EXT4-fs warning (device loop7): ext4_block_to_path:105: block 3279949762 > max in inode 13
[ 1125.185565][T19197] EXT4-fs (loop7): 1 truncate cleaned up
[ 1125.199090][T19197] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[ 1125.814306][T19203] netlink: 'syz.3.4151': attribute type 27 has an invalid length.
[ 1125.822386][T19203] veth0_to_team: left promiscuous mode
[ 1125.827915][T19203] veth0_to_team: left allmulticast mode
[ 1125.855356][ T2957] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1125.896000][ T2957] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1125.907534][T19191] netlink: 'syz.8.4148': attribute type 1 has an invalid length.
[ 1126.062282][ T9062] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1126.292615][   T29] audit: type=1326 audit(1735399565.548:814): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19208 comm="syz.7.4153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a2eb85d29 code=0x7ffc0000
[ 1126.395532][   T29] audit: type=1326 audit(1735399565.558:815): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19208 comm="syz.7.4153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=271 compat=0 ip=0x7f0a2eb85d29 code=0x7ffc0000
[ 1126.520856][   T29] audit: type=1326 audit(1735399565.558:816): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19208 comm="syz.7.4153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a2eb85d29 code=0x7ffc0000
[ 1126.688133][T19218] lo speed is unknown, defaulting to 1000
[ 1127.791353][T19231] rdma_rxe: rxe_newlink: failed to add team_slave_0
[ 1128.794428][T19247] lo speed is unknown, defaulting to 1000
[ 1129.228852][   T29] kauditd_printk_skb: 15 callbacks suppressed
[ 1129.228881][   T29] audit: type=1326 audit(1735399568.498:832): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19263 comm="syz.8.4171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fd84177cce7 code=0x7ffc0000
[ 1129.320907][   T29] audit: type=1326 audit(1735399568.548:833): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19263 comm="syz.8.4171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fd841721f29 code=0x7ffc0000
[ 1129.430921][T19274] IPVS: Error connecting to the multicast addr
[ 1129.437251][   T29] audit: type=1326 audit(1735399568.548:834): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19263 comm="syz.8.4171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fd84177cce7 code=0x7ffc0000
[ 1129.554025][   T29] audit: type=1326 audit(1735399568.548:835): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19263 comm="syz.8.4171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fd841721f29 code=0x7ffc0000
[ 1129.596482][   T29] audit: type=1326 audit(1735399568.548:836): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19263 comm="syz.8.4171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd841785d29 code=0x7ffc0000
[ 1129.619262][   T29] audit: type=1326 audit(1735399568.548:837): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19263 comm="syz.8.4171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=271 compat=0 ip=0x7fd841785d29 code=0x7ffc0000
[ 1129.641834][   T29] audit: type=1326 audit(1735399568.548:838): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19263 comm="syz.8.4171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd841785d29 code=0x7ffc0000
[ 1129.664462][   T29] audit: type=1326 audit(1735399568.548:839): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19263 comm="syz.8.4171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=71 compat=0 ip=0x7fd841785d29 code=0x7ffc0000
[ 1129.686906][   T29] audit: type=1326 audit(1735399568.548:840): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19263 comm="syz.8.4171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd841785d29 code=0x7ffc0000
[ 1130.730965][T19290] lo speed is unknown, defaulting to 1000
[ 1132.069314][   T29] audit: type=1326 audit(1735399571.338:841): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19314 comm="syz.6.4185" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15d5585d29 code=0x7ffc0000
[ 1132.392317][T19324] IPVS: Error connecting to the multicast addr
[ 1132.601033][T19329] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1132.621361][T19329] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1132.630171][T19321] lo speed is unknown, defaulting to 1000
[ 1132.648504][T19329] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1132.667538][T19329] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[ 1132.687501][T19329] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1132.714939][T19329] Bluetooth: hci0: Opcode 0x0406 failed: -4
[ 1132.751527][T19329] Bluetooth: hci0: Opcode 0x0406 failed: -4
[ 1132.779951][T19330] lo speed is unknown, defaulting to 1000
[ 1133.303840][ T5898] usb 7-1: new high-speed USB device number 44 using dummy_hcd
[ 1133.631247][ T5898] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1133.856374][T19344] lo speed is unknown, defaulting to 1000
[ 1134.010678][ T5898] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[ 1134.066793][ T5898] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 1134.141342][ T5898] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1134.213811][T19337] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[ 1134.286981][ T5898] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[ 1134.545535][ T5898] usb 7-1: USB disconnect, device number 44
[ 1134.653470][ T5851] Bluetooth: hci2: command 0x0405 tx timeout
[ 1134.659728][T12586] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1134.721779][T12586] Bluetooth: hci0: command 0x0c1a tx timeout
[ 1134.728015][ T5851] Bluetooth: hci5: command 0x0c1a tx timeout
[ 1134.734109][ T8761] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1134.837818][T10444] udevd[10444]: error opening ATTR{/sys/devices/platform/dummy_hcd.6/usb7/7-1/7-1:27.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1135.093420][   T29] kauditd_printk_skb: 10 callbacks suppressed
[ 1135.093476][   T29] audit: type=1326 audit(1735399574.368:852): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19357 comm="syz.8.4198" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd841785d29 code=0x7ffc0000
[ 1135.166022][   T29] audit: type=1326 audit(1735399574.398:853): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19357 comm="syz.8.4198" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd841785d29 code=0x7ffc0000
[ 1135.196826][   T29] audit: type=1326 audit(1735399574.398:854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19357 comm="syz.8.4198" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7fd841785d29 code=0x7ffc0000
[ 1135.258126][   T29] audit: type=1326 audit(1735399574.398:855): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19357 comm="syz.8.4198" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd841785d29 code=0x7ffc0000
[ 1135.301999][   T29] audit: type=1326 audit(1735399574.398:856): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19357 comm="syz.8.4198" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fd841785d29 code=0x7ffc0000
[ 1135.326316][   T29] audit: type=1326 audit(1735399574.398:857): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19357 comm="syz.8.4198" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd841785d29 code=0x7ffc0000
[ 1135.401143][   T29] audit: type=1326 audit(1735399574.408:858): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19357 comm="syz.8.4198" exe="/root/syz-executor" sig=0 arch=c000003e syscall=272 compat=0 ip=0x7fd841785d29 code=0x7ffc0000
[ 1135.424313][   T29] audit: type=1326 audit(1735399574.628:859): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19361 comm="syz.7.4199" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a2eb85d29 code=0x7ffc0000
[ 1135.447051][   T29] audit: type=1326 audit(1735399574.628:860): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19361 comm="syz.7.4199" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a2eb85d29 code=0x7ffc0000
[ 1135.469762][   T29] audit: type=1326 audit(1735399574.628:861): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19361 comm="syz.7.4199" exe="/root/syz-executor" sig=0 arch=c000003e syscall=115 compat=0 ip=0x7f0a2eb85d29 code=0x7ffc0000
[ 1135.684267][T19359] lo speed is unknown, defaulting to 1000
[ 1136.805020][T12586] Bluetooth: hci0: command 0x0c1a tx timeout
[ 1137.095819][T19390] lo speed is unknown, defaulting to 1000
[ 1138.166443][T19407] lo speed is unknown, defaulting to 1000
[ 1138.885400][T12586] Bluetooth: hci0: command 0x0c1a tx timeout
[ 1139.025588][T19412] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4217'.
[ 1139.971595][T19431] lo speed is unknown, defaulting to 1000
[ 1140.250226][T19450] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4231'.
[ 1141.373949][T19446] lo speed is unknown, defaulting to 1000
[ 1142.498081][ T5898] usb 8-1: new high-speed USB device number 37 using dummy_hcd
[ 1142.803885][T19490] block device autoloading is deprecated and will be removed.
[ 1142.831165][ T5898] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1142.847373][ T5898] usb 8-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[ 1142.882956][ T5898] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 1142.903167][ T5898] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1143.010405][T19494] netlink: 'syz.3.4247': attribute type 27 has an invalid length.
[ 1143.093888][T19479] raw-gadget.0 gadget.7: fail, usb_ep_enable returned -22
[ 1143.362572][ T5898] usb 8-1: Quirk or no altset; falling back to MIDI 1.0
[ 1143.755888][  T937] usb 8-1: USB disconnect, device number 37
[ 1144.014906][   T29] kauditd_printk_skb: 9 callbacks suppressed
[ 1144.014932][   T29] audit: type=1326 audit(1735399583.288:871): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19512 comm="syz.0.4255" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe95b785d29 code=0x7ffc0000
[ 1144.105497][   T29] audit: type=1326 audit(1735399583.318:872): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19512 comm="syz.0.4255" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe95b785d29 code=0x7ffc0000
[ 1144.167254][T19517] team0: No ports can be present during mode change
[ 1144.210985][   T29] audit: type=1326 audit(1735399583.338:873): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19512 comm="syz.0.4255" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7fe95b785d29 code=0x7ffc0000
[ 1144.310757][   T29] audit: type=1326 audit(1735399583.338:874): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19512 comm="syz.0.4255" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe95b785d29 code=0x7ffc0000
[ 1144.591293][   T29] audit: type=1326 audit(1735399583.338:875): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19512 comm="syz.0.4255" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe95b785d29 code=0x7ffc0000
[ 1144.828689][   T29] audit: type=1326 audit(1735399583.338:876): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19512 comm="syz.0.4255" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fe95b785d29 code=0x7ffc0000
[ 1144.940972][   T29] audit: type=1326 audit(1735399583.338:877): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19512 comm="syz.0.4255" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe95b785d29 code=0x7ffc0000
[ 1145.014150][   T29] audit: type=1326 audit(1735399583.338:878): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19512 comm="syz.0.4255" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe95b785d29 code=0x7ffc0000
[ 1145.107909][   T29] audit: type=1326 audit(1735399583.338:879): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19512 comm="syz.0.4255" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fe95b785d29 code=0x7ffc0000
[ 1145.143178][   T29] audit: type=1326 audit(1735399583.338:880): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19512 comm="syz.0.4255" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe95b785d29 code=0x7ffc0000
[ 1145.391307][T19534] netlink: 'syz.0.4263': attribute type 27 has an invalid length.
[ 1145.663622][ T5851] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1145.720376][ T5851] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1145.936280][ T5851] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1146.064258][ T5851] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1146.075038][ T5851] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[ 1146.083319][ T5851] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1146.115766][T19535] lo speed is unknown, defaulting to 1000
[ 1146.572638][T19535] chnl_net:caif_netlink_parms(): no params data found
[ 1146.750842][T19187] usb 8-1: new high-speed USB device number 38 using dummy_hcd
[ 1146.931340][T19187] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1146.960744][T19187] usb 8-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[ 1146.972259][T19535] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1146.979379][T19535] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1147.010842][T19535] bridge_slave_0: entered allmulticast mode
[ 1147.018848][T19535] bridge_slave_0: entered promiscuous mode
[ 1147.030730][T19187] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 1147.039871][T19187] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1147.050478][T19535] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1147.068134][T19535] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1147.078923][T19556] raw-gadget.0 gadget.7: fail, usb_ep_enable returned -22
[ 1147.091300][T19535] bridge_slave_1: entered allmulticast mode
[ 1147.104330][T19187] usb 8-1: Quirk or no altset; falling back to MIDI 1.0
[ 1147.122216][T19535] bridge_slave_1: entered promiscuous mode
[ 1147.323926][T19187] usb 8-1: USB disconnect, device number 38
[ 1147.522352][T19535] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1147.556198][T19535] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1147.705919][T19535] team0: Port device team_slave_0 added
[ 1147.735410][T19535] team0: Port device team_slave_1 added
[ 1147.908227][T19586] netlink: 'syz.0.4278': attribute type 27 has an invalid length.
[ 1148.166977][ T5851] Bluetooth: hci3: command tx timeout
[ 1148.472173][T19535] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1148.511573][T19535] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1148.586012][T19535] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1148.664148][T19535] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1148.680843][T19535] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1148.754393][T19535] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1148.935690][T19535] hsr_slave_0: entered promiscuous mode
[ 1148.973049][T19535] hsr_slave_1: entered promiscuous mode
[ 1148.991738][T19535] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1148.999720][T19535] Cannot create hsr debugfs directory
[ 1149.079627][T19604] netlink: 108 bytes leftover after parsing attributes in process `+}[@'.
[ 1149.098219][T19603] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1149.121093][T19603] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1149.141978][T19603] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1149.148122][T19603] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[ 1149.165368][T19603] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1149.177586][T19603] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1149.189602][T19603] Bluetooth: hci3: Opcode 0x0406 failed: -4
[ 1149.240918][T19604] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1149.249517][T19604] 8021q: adding VLAN 0 to HW filter on device team0
[ 1149.268163][T19603] Bluetooth: hci3: Opcode 0x0406 failed: -4
[ 1149.282034][T19604] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[ 1149.496154][T19613] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[ 1149.785809][T19535] netdevsim netdevsim8 netdevsim0: renamed from eth0
[ 1149.864064][T19535] netdevsim netdevsim8 netdevsim1: renamed from eth1
[ 1149.901119][T19535] netdevsim netdevsim8 netdevsim2: renamed from eth2
[ 1149.931482][T19535] netdevsim netdevsim8 netdevsim3: renamed from eth3
[ 1150.048793][T19629] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4294'.
[ 1150.247825][T19535] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1150.305787][T19535] 8021q: adding VLAN 0 to HW filter on device team0
[ 1150.412465][ T6428] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1150.419750][ T6428] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1150.467901][ T6428] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1150.475168][ T6428] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1150.572540][   T29] kauditd_printk_skb: 59 callbacks suppressed
[ 1150.572567][   T29] audit: type=1326 audit(1735399589.848:940): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19642 comm="syz.7.4301" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a2eb85d29 code=0x7ffc0000
[ 1150.648942][   T29] audit: type=1326 audit(1735399589.848:941): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19642 comm="syz.7.4301" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a2eb85d29 code=0x7ffc0000
[ 1150.679987][   T29] audit: type=1326 audit(1735399589.848:942): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19642 comm="syz.7.4301" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7f0a2eb85d29 code=0x7ffc0000
[ 1150.708592][   T29] audit: type=1326 audit(1735399589.848:943): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19642 comm="syz.7.4301" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a2eb85d29 code=0x7ffc0000
[ 1150.736701][   T29] audit: type=1326 audit(1735399589.848:944): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19642 comm="syz.7.4301" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a2eb85d29 code=0x7ffc0000
[ 1150.759870][   T29] audit: type=1326 audit(1735399589.848:945): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19642 comm="syz.7.4301" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f0a2eb85d29 code=0x7ffc0000
[ 1150.923651][   T29] audit: type=1326 audit(1735399589.848:946): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19642 comm="syz.7.4301" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a2eb85d29 code=0x7ffc0000
[ 1150.946351][   T29] audit: type=1326 audit(1735399589.848:947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19642 comm="syz.7.4301" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a2eb85d29 code=0x7ffc0000
[ 1150.968929][   T29] audit: type=1326 audit(1735399589.848:948): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19642 comm="syz.7.4301" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f0a2eb85d29 code=0x7ffc0000
[ 1150.991456][   T29] audit: type=1326 audit(1735399589.848:949): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19642 comm="syz.7.4301" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a2eb85d29 code=0x7ffc0000
[ 1151.003827][T19651] tipc: Enabled bearer <eth:syzkaller0>, priority 31
[ 1151.090941][T19651] ªªªªªª: renamed from syzkaller0
[ 1151.127870][T19651] tipc: Disabling bearer <eth:syzkaller0>
[ 1151.160741][T12586] Bluetooth: hci2: command 0x0405 tx timeout
[ 1151.205141][T12586] Bluetooth: hci3: command 0x040f tx timeout
[ 1151.218495][T12586] Bluetooth: hci0: command 0x0c1a tx timeout
[ 1151.224704][T12586] Bluetooth: hci5: command 0x0c1a tx timeout
[ 1151.230927][T12586] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1151.236992][T12586] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1151.361603][T19663] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4308'.
[ 1151.605766][T19535] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1152.222946][T19535] veth0_vlan: entered promiscuous mode
[ 1152.234454][T19535] veth1_vlan: entered promiscuous mode
[ 1152.258246][T19535] veth0_macvtap: entered promiscuous mode
[ 1152.268017][T19535] veth1_macvtap: entered promiscuous mode
[ 1152.291742][T19535] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1152.302635][T19535] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1152.325167][T19535] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1152.335720][T19535] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1152.346582][T19535] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1152.358568][T19535] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1152.396354][T19535] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1152.420254][T19535] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1152.442609][T19535] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1152.452058][T19535] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1152.702967][T19267] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1152.722176][T19267] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1152.758818][T19272] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1152.780376][T19272] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1152.864053][T19703] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[ 1152.871378][T19703] IPv6: NLM_F_CREATE should be set when creating new route
[ 1152.883642][T19703] netlink: 'syz.6.4320': attribute type 27 has an invalid length.
[ 1153.458611][ T5851] Bluetooth: hci3: command 0x040f tx timeout
[ 1153.992254][T19703] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1153.999889][T19703] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1154.410530][T19703] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1154.459050][T19703] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1154.538017][T19703] netdevsim netdevsim6 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1154.547167][T19703] netdevsim netdevsim6 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1154.556162][T19703] netdevsim netdevsim6 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1154.565139][T19703] netdevsim netdevsim6 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1154.743989][T19735] lo speed is unknown, defaulting to 1000
[ 1154.951623][T19743] tipc: Enabled bearer <eth:syzkaller0>, priority 31
[ 1154.963585][T19743] ªªªªªª: renamed from syzkaller0
[ 1155.009166][T19743] tipc: Disabling bearer <eth:syzkaller0>
[ 1155.242276][T19752] Driver unsupported XDP return value 0 on prog  (id 1216) dev N/A, expect packet loss!
[ 1155.521523][ T5851] Bluetooth: hci3: command 0x040f tx timeout
[ 1156.082193][T19771] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4339'.
[ 1156.528321][T19784] lo speed is unknown, defaulting to 1000
[ 1157.600951][ T5851] Bluetooth: hci3: command 0x040f tx timeout
[ 1158.018773][T19830] IPVS: sync thread started: state = MASTER, mcast_ifn = ip6gre0, syncid = 1, id = 0
[ 1158.354764][T19839] netlink: 4 bytes leftover after parsing attributes in process `syz.7.4364'.
[ 1158.406359][T19840] lo speed is unknown, defaulting to 1000
[ 1159.373236][T19860] xt_HMARK: spi-set and port-set can't be combined
[ 1159.681824][ T5851] Bluetooth: hci3: command 0x040f tx timeout
[ 1159.915023][T19859] lo speed is unknown, defaulting to 1000
[ 1160.033756][T19869] rdma_rxe: rxe_newlink: failed to add team_slave_0
[ 1160.331961][T19880] IPVS: Error connecting to the multicast addr
[ 1160.674154][T19887] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1160.680744][T19887] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1160.714967][T19887] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[ 1160.731058][T19887] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1160.739592][T19887] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1161.218720][ T5851] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1161.282506][ T5851] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1161.291360][ T5851] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1161.305643][ T5851] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1161.313554][ T5851] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[ 1161.321764][ T5851] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1161.371505][T19900] lo speed is unknown, defaulting to 1000
[ 1162.095327][T19900] chnl_net:caif_netlink_parms(): no params data found
[ 1162.286443][T19900] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1162.296790][T19900] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1162.304330][T19900] bridge_slave_0: entered allmulticast mode
[ 1162.311848][T19900] bridge_slave_0: entered promiscuous mode
[ 1162.319998][T19900] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1162.327225][T19900] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1162.335024][T19900] bridge_slave_1: entered allmulticast mode
[ 1162.342526][T19900] bridge_slave_1: entered promiscuous mode
[ 1162.452280][T19900] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1162.464886][T19900] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1162.586901][T19900] team0: Port device team_slave_0 added
[ 1162.596029][T19900] team0: Port device team_slave_1 added
[ 1162.720863][T12586] Bluetooth: hci5: command 0x0c1a tx timeout
[ 1162.727318][T12586] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1162.729367][ T5851] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1162.761078][T19900] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1162.826017][T12586] Bluetooth: hci3: command 0x040f tx timeout
[ 1162.833936][T12586] Bluetooth: hci0: command 0x0c1a tx timeout
[ 1162.842359][T19900] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1162.870203][T19900] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1162.878794][T19960] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4402'.
[ 1162.884534][T19900] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1162.899448][T19900] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1162.927518][T19900] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1163.360800][ T8761] Bluetooth: hci2: command tx timeout
[ 1163.508828][T19900] hsr_slave_0: entered promiscuous mode
[ 1163.538111][T19900] hsr_slave_1: entered promiscuous mode
[ 1163.594482][T19900] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1163.602396][T19900] Cannot create hsr debugfs directory
[ 1163.608534][T19965] tipc: Started in network mode
[ 1163.616703][T19966] usb usb8: usbfs: process 19966 (syz.0.4403) did not claim interface 0 before use
[ 1163.629005][T19965] tipc: Node identity 00000000000000000000000000000001, cluster identity 4711
[ 1163.690821][T19965] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[ 1163.841133][T19978] netlink: 'syz.3.4407': attribute type 27 has an invalid length.
[ 1164.763777][T19984] lo speed is unknown, defaulting to 1000
[ 1165.138116][T20004] netlink: 168 bytes leftover after parsing attributes in process `syz.0.4416'.
[ 1165.172522][T20006] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4417'.
[ 1165.379120][T19900] netdevsim netdevsim7 netdevsim0: renamed from eth0
[ 1165.423178][T19900] netdevsim netdevsim7 netdevsim1: renamed from eth1
[ 1165.437391][T19900] netdevsim netdevsim7 netdevsim2: renamed from eth2
[ 1165.443648][ T8761] Bluetooth: hci2: command tx timeout
[ 1165.465581][T19900] netdevsim netdevsim7 netdevsim3: renamed from eth3
[ 1165.901778][T19900] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1165.934173][T19900] 8021q: adding VLAN 0 to HW filter on device team0
[ 1166.012197][T19900] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1166.022963][T19900] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1166.072509][ T7320] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1166.079712][ T7320] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1166.103817][ T7320] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1166.111087][ T7320] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1166.372919][T20022] IPVS: Error connecting to the multicast addr
[ 1166.794283][T19900] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1167.125210][T20045] tmpfs: Unknown parameter 'm'
[ 1167.321061][T20051] netlink: 168 bytes leftover after parsing attributes in process `syz.8.4432'.
[ 1167.388293][T20056] IPVS: Error connecting to the multicast addr
[ 1167.497592][   T29] kauditd_printk_skb: 22 callbacks suppressed
[ 1167.497621][   T29] audit: type=1326 audit(1735399606.768:972): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20059 comm="syz.3.4436" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6956385d29 code=0x7ffc0000
[ 1167.527710][T20058] netem: incorrect ge model size
[ 1167.555747][ T8761] Bluetooth: hci2: command tx timeout
[ 1167.583872][   T29] audit: type=1326 audit(1735399606.768:973): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20059 comm="syz.3.4436" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6956385d29 code=0x7ffc0000
[ 1167.607047][   T29] audit: type=1326 audit(1735399606.768:974): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20059 comm="syz.3.4436" exe="/root/syz-executor" sig=0 arch=c000003e syscall=150 compat=0 ip=0x7f6956385d29 code=0x7ffc0000
[ 1167.619549][T20058] netem: change failed
[ 1167.630007][   T29] audit: type=1326 audit(1735399606.778:975): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20059 comm="syz.3.4436" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6956385d29 code=0x7ffc0000
[ 1167.657111][   T29] audit: type=1326 audit(1735399606.778:976): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20059 comm="syz.3.4436" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6956385d29 code=0x7ffc0000
[ 1167.676789][T20064] rdma_rxe: rxe_newlink: failed to add team_slave_0
[ 1167.768157][T19900] veth0_vlan: entered promiscuous mode
[ 1167.794433][T19900] veth1_vlan: entered promiscuous mode
[ 1167.873264][T19900] veth0_macvtap: entered promiscuous mode
[ 1167.893784][T19900] veth1_macvtap: entered promiscuous mode
[ 1167.897770][T20070] tipc: Started in network mode
[ 1167.897821][T20070] tipc: Node identity 96d7281f2062, cluster identity 4711
[ 1167.897971][T20070] tipc: Enabled bearer <eth:syzkaller0>, priority 31
[ 1167.904804][T20070] ªªªªªª: renamed from syzkaller0
[ 1167.908574][T20070] tipc: Disabling bearer <eth:syzkaller0>
[ 1167.987017][T19900] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1168.019162][T19900] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1168.035193][T19900] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1168.074054][T19900] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1168.101828][T19900] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1168.142301][T19900] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1168.173393][T19900] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1168.200916][T19900] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1168.209731][T19900] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1168.228157][T19900] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1168.248461][T20076] x_tables: ip_tables: bpf.1 match: invalid size 528 (kernel) != (user) 544
[ 1168.658228][   T29] audit: type=1326 audit(1735399607.928:977): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20066 comm="syz.2.4439" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f81d0785d29 code=0x7fc00000
[ 1168.699821][   T53] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1168.708411][T20086] IPVS: Error connecting to the multicast addr
[ 1168.720818][   T53] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1168.730831][   T29] audit: type=1326 audit(1735399607.928:978): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20066 comm="syz.2.4439" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f81d0785d29 code=0x7fc00000
[ 1168.770276][T20089] syz.0.4447[20089] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1168.773577][T20089] syz.0.4447[20089] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1168.781527][   T29] audit: type=1326 audit(1735399607.928:979): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20066 comm="syz.2.4439" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f81d0785d29 code=0x7fc00000
[ 1168.838736][T20089] syz.0.4447[20089] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1168.869840][   T29] audit: type=1326 audit(1735399607.928:980): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20066 comm="syz.2.4439" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f81d0785d29 code=0x7fc00000
[ 1168.904654][   T29] audit: type=1326 audit(1735399607.928:981): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20066 comm="syz.2.4439" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f81d0785d29 code=0x7fc00000
[ 1168.995892][T19272] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1169.014559][T19272] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1169.042456][T20088] lo speed is unknown, defaulting to 1000
[ 1169.344442][T20099] netlink: 'syz.3.4451': attribute type 27 has an invalid length.
[ 1169.618462][ T8761] Bluetooth: hci2: command tx timeout
[ 1170.160343][ T5898] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x4
[ 1170.198333][ T5898] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x2
[ 1170.248067][T20110] netlink: 4 bytes leftover after parsing attributes in process `syz.6.4453'.
[ 1170.277754][ T5898] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x0
[ 1170.320822][ T5898] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x0
[ 1170.333455][ T5898] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x0
[ 1170.373153][ T5898] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x0
[ 1170.406027][ T5898] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x0
[ 1170.440461][ T5898] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x0
[ 1170.471373][ T5898] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x0
[ 1170.505359][ T5898] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x0
[ 1170.527788][ T5898] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x0
[ 1170.558438][ T5898] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x0
[ 1170.577141][ T5898] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x0
[ 1170.600068][ T5898] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x0
[ 1170.661106][ T5898] hid-generic 0000:3000000:0000.0006: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[ 1171.362339][T20129] IPVS: stopping backup sync thread 20131 ...
[ 1171.368998][T20131] IPVS: sync thread started: state = BACKUP, mcast_ifn = dummy0, syncid = 3, id = 0
[ 1171.385173][T20129] 
[ 1171.387545][T20129] ======================================================
[ 1171.394575][T20129] WARNING: possible circular locking dependency detected
[ 1171.401610][T20129] 6.13.0-rc4-syzkaller-00071-gfd0584d220fe #0 Not tainted
[ 1171.408732][T20129] ------------------------------------------------------
[ 1171.415761][T20129] syz.7.4463/20129 is trying to acquire lock:
[ 1171.421847][T20129] ffffffff8fedeb08 (rtnl_mutex){+.+.}-{4:4}, at: ip_mc_drop_socket+0x9b/0x290
[ 1171.430798][T20129] 
[ 1171.430798][T20129] but task is already holding lock:
[ 1171.438173][T20129] ffff88807c957228 (&smc->clcsock_release_lock){+.+.}-{4:4}, at: smc_setsockopt+0x101/0xa00
[ 1171.448350][T20129] 
[ 1171.448350][T20129] which lock already depends on the new lock.
[ 1171.448350][T20129] 
[ 1171.458761][T20129] 
[ 1171.458761][T20129] the existing dependency chain (in reverse order) is:
[ 1171.467784][T20129] 
[ 1171.467784][T20129] -> #2 (&smc->clcsock_release_lock){+.+.}-{4:4}:
[ 1171.476429][T20129]        __mutex_lock+0x19b/0xa60
[ 1171.481497][T20129]        smc_switch_to_fallback+0x2d/0xa00
[ 1171.487350][T20129]        smc_sendmsg+0x13d/0x520
[ 1171.492331][T20129]        __sys_sendto+0x48b/0x4f0
[ 1171.497401][T20129]        __x64_sys_sendto+0xe0/0x1c0
[ 1171.502737][T20129]        do_syscall_64+0xcd/0x250
[ 1171.507800][T20129]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1171.514255][T20129] 
[ 1171.514255][T20129] -> #1 (sk_lock-AF_INET){+.+.}-{0:0}:
[ 1171.521944][T20129]        lock_sock_nested+0x3a/0xf0
[ 1171.527171][T20129]        sockopt_lock_sock+0x54/0x70
[ 1171.532486][T20129]        do_ip_setsockopt+0x101/0x3680
[ 1171.537992][T20129]        ip_setsockopt+0x59/0xf0
[ 1171.542981][T20129]        tcp_setsockopt+0xa7/0x100
[ 1171.548121][T20129]        do_sock_setsockopt+0x225/0x480
[ 1171.553702][T20129]        __sys_setsockopt+0x1a0/0x230
[ 1171.559097][T20129]        __x64_sys_setsockopt+0xbd/0x160
[ 1171.564752][T20129]        do_syscall_64+0xcd/0x250
[ 1171.569817][T20129]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1171.576281][T20129] 
[ 1171.576281][T20129] -> #0 (rtnl_mutex){+.+.}-{4:4}:
[ 1171.583541][T20129]        __lock_acquire+0x249e/0x3c40
[ 1171.588941][T20129]        lock_acquire.part.0+0x11b/0x380
[ 1171.594605][T20129]        __mutex_lock+0x19b/0xa60
[ 1171.599677][T20129]        ip_mc_drop_socket+0x9b/0x290
[ 1171.605092][T20129]        inet_release+0xa3/0x280
[ 1171.610071][T20129]        sock_release+0x91/0x1d0
[ 1171.615048][T20129]        stop_sync_thread+0x285/0x720
[ 1171.620459][T20129]        do_ip_vs_set_ctl+0x4ec/0x11c0
[ 1171.625963][T20129]        nf_setsockopt+0x8d/0xf0
[ 1171.630936][T20129]        ip_setsockopt+0xcb/0xf0
[ 1171.635913][T20129]        tcp_setsockopt+0xa7/0x100
[ 1171.641053][T20129]        smc_setsockopt+0x1b7/0xa00
[ 1171.646297][T20129]        do_sock_setsockopt+0x225/0x480
[ 1171.651875][T20129]        __sys_setsockopt+0x1a0/0x230
[ 1171.657270][T20129]        __x64_sys_setsockopt+0xbd/0x160
[ 1171.662926][T20129]        do_syscall_64+0xcd/0x250
[ 1171.668009][T20129]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1171.674496][T20129] 
[ 1171.674496][T20129] other info that might help us debug this:
[ 1171.674496][T20129] 
[ 1171.684734][T20129] Chain exists of:
[ 1171.684734][T20129]   rtnl_mutex --> sk_lock-AF_INET --> &smc->clcsock_release_lock
[ 1171.684734][T20129] 
[ 1171.698559][T20129]  Possible unsafe locking scenario:
[ 1171.698559][T20129] 
[ 1171.706020][T20129]        CPU0                    CPU1
[ 1171.711484][T20129]        ----                    ----
[ 1171.716855][T20129]   lock(&smc->clcsock_release_lock);
[ 1171.722286][T20129]                                lock(sk_lock-AF_INET);
[ 1171.729250][T20129]                                lock(&smc->clcsock_release_lock);
[ 1171.737166][T20129]   lock(rtnl_mutex);
[ 1171.741177][T20129] 
[ 1171.741177][T20129]  *** DEADLOCK ***
[ 1171.741177][T20129] 
[ 1171.749325][T20129] 1 lock held by syz.7.4463/20129:
[ 1171.754450][T20129]  #0: ffff88807c957228 (&smc->clcsock_release_lock){+.+.}-{4:4}, at: smc_setsockopt+0x101/0xa00
[ 1171.765075][T20129] 
[ 1171.765075][T20129] stack backtrace:
[ 1171.770972][T20129] CPU: 1 UID: 0 PID: 20129 Comm: syz.7.4463 Not tainted 6.13.0-rc4-syzkaller-00071-gfd0584d220fe #0
[ 1171.781761][T20129] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1171.791832][T20129] Call Trace:
[ 1171.795121][T20129]  <TASK>
[ 1171.798063][T20129]  dump_stack_lvl+0x116/0x1f0
[ 1171.802782][T20129]  print_circular_bug+0x419/0x5d0
[ 1171.807867][T20129]  check_noncircular+0x31a/0x400
[ 1171.812931][T20129]  ? __pfx_check_noncircular+0x10/0x10
[ 1171.818420][T20129]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1171.824080][T20129]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1171.829745][T20129]  ? lockdep_lock+0xc6/0x200
[ 1171.834378][T20129]  ? __pfx_lockdep_lock+0x10/0x10
[ 1171.839448][T20129]  ? __pfx_mark_lock+0x10/0x10
[ 1171.844249][T20129]  __lock_acquire+0x249e/0x3c40
[ 1171.849139][T20129]  ? __pfx___lock_acquire+0x10/0x10
[ 1171.854368][T20129]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1171.860027][T20129]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1171.865684][T20129]  ? __lock_acquire+0x15a9/0x3c40
[ 1171.870741][T20129]  lock_acquire.part.0+0x11b/0x380
[ 1171.875883][T20129]  ? ip_mc_drop_socket+0x9b/0x290
[ 1171.880945][T20129]  ? __pfx_lock_acquire.part.0+0x10/0x10
[ 1171.886610][T20129]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1171.892267][T20129]  ? rcu_is_watching+0x12/0xc0
[ 1171.897074][T20129]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1171.902730][T20129]  ? trace_lock_acquire+0x14e/0x1f0
[ 1171.907979][T20129]  ? ip_mc_drop_socket+0x9b/0x290
[ 1171.913045][T20129]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1171.918704][T20129]  ? lock_acquire+0x2f/0xb0
[ 1171.923242][T20129]  ? ip_mc_drop_socket+0x9b/0x290
[ 1171.928303][T20129]  __mutex_lock+0x19b/0xa60
[ 1171.932848][T20129]  ? ip_mc_drop_socket+0x9b/0x290
[ 1171.937910][T20129]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1171.943571][T20129]  ? ip_mc_drop_socket+0x9b/0x290
[ 1171.948631][T20129]  ? stop_sync_thread+0x23e/0x720
[ 1171.953694][T20129]  ? __pfx___mutex_lock+0x10/0x10
[ 1171.958757][T20129]  ? mark_held_locks+0x9f/0xe0
[ 1171.963551][T20129]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1171.968788][T20129]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1171.974445][T20129]  ? __mutex_unlock_slowpath+0x164/0x690
[ 1171.980125][T20129]  ? ip_mc_drop_socket+0x9b/0x290
[ 1171.985182][T20129]  ? rtnl_lock+0x9/0x20
[ 1171.989376][T20129]  ip_mc_drop_socket+0x9b/0x290
[ 1171.994267][T20129]  inet_release+0xa3/0x280
[ 1171.998726][T20129]  sock_release+0x91/0x1d0
[ 1172.003186][T20129]  stop_sync_thread+0x285/0x720
[ 1172.008083][T20129]  do_ip_vs_set_ctl+0x4ec/0x11c0
[ 1172.013115][T20129]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1172.018819][T20129]  ? __entry_text_end+0x1020c5/0x1020c9
[ 1172.024420][T20129]  ? __pfx_do_ip_vs_set_ctl+0x10/0x10
[ 1172.029843][T20129]  ? nf_sockopt_find.constprop.0+0x221/0x290
[ 1172.035866][T20129]  ? __pfx_lock_release+0x10/0x10
[ 1172.040925][T20129]  ? rcu_is_watching+0x12/0xc0
[ 1172.045739][T20129]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1172.051402][T20129]  ? __mutex_lock+0x1cc/0xa60
[ 1172.056126][T20129]  ? mark_held_locks+0x9f/0xe0
[ 1172.060925][T20129]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1172.066589][T20129]  ? __mutex_unlock_slowpath+0x164/0x690
[ 1172.072287][T20129]  ? nf_setsockopt+0x8d/0xf0
[ 1172.076913][T20129]  ? __pfx_do_ip_vs_set_ctl+0x10/0x10
[ 1172.082337][T20129]  nf_setsockopt+0x8d/0xf0
[ 1172.086799][T20129]  ip_setsockopt+0xcb/0xf0
[ 1172.091269][T20129]  tcp_setsockopt+0xa7/0x100
[ 1172.095891][T20129]  smc_setsockopt+0x1b7/0xa00
[ 1172.100614][T20129]  ? __pfx_sock_common_setsockopt+0x10/0x10
[ 1172.106637][T20129]  ? __pfx_smc_setsockopt+0x10/0x10
[ 1172.111882][T20129]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1172.117541][T20129]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1172.123201][T20129]  ? find_held_lock+0x2d/0x110
[ 1172.128024][T20129]  ? __pfx_smc_setsockopt+0x10/0x10
[ 1172.133272][T20129]  do_sock_setsockopt+0x225/0x480
[ 1172.138364][T20129]  ? __pfx_do_sock_setsockopt+0x10/0x10
[ 1172.143950][T20129]  ? lock_acquire+0x2f/0xb0
[ 1172.148508][T20129]  __sys_setsockopt+0x1a0/0x230
[ 1172.153389][T20129]  __x64_sys_setsockopt+0xbd/0x160
[ 1172.158524][T20129]  ? do_syscall_64+0x91/0x250
[ 1172.163244][T20129]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1172.169000][T20129]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1172.174248][T20129]  do_syscall_64+0xcd/0x250
[ 1172.178807][T20129]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1172.184834][T20129] RIP: 0033:0x7f3d55785d29
[ 1172.189270][T20129] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[ 1172.208924][T20129] RSP: 002b:00007f3d56583038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[ 1172.217384][T20129] RAX: ffffffffffffffda RBX: 00007f3d55975fa0 RCX: 00007f3d55785d29
[ 1172.225412][T20129] RDX: 000000000000048c RSI: 0000000000000000 RDI: 0000000000000007
[ 1172.233409][T20129] RBP: 00007f3d55801b08 R08: 0000000000000018 R09: 0000000000000000
[ 1172.241403][T20129] R10: 00000000200002c0 R11: 0000000000000246 R12: 0000000000000000
[ 1172.249394][T20129] R13: 0000000000000000 R14: 00007f3d55975fa0 R15: 00007ffeb4a7ce08
[ 1172.257400][T20129]  </TASK>
[ 1173.102378][   T53] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1173.213888][   T53] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1173.317385][   T53] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1173.405712][   T53] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1173.496000][   T53] bridge_slave_1: left allmulticast mode
[ 1173.508671][   T53] bridge_slave_1: left promiscuous mode
[ 1173.514579][   T53] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1173.527272][   T53] bridge_slave_0: left allmulticast mode
[ 1173.533586][   T53] bridge_slave_0: left promiscuous mode
[ 1173.539346][   T53] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1173.678270][   T53] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1173.688983][   T53] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1173.699433][   T53] bond0 (unregistering): Released all slaves
[ 1173.920524][   T53] hsr_slave_0: left promiscuous mode
[ 1173.939124][   T53] hsr_slave_1: left promiscuous mode
[ 1173.958804][   T53] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1173.966692][   T53] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1173.977802][   T53] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1173.985339][   T53] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1173.996686][   T53] veth1_macvtap: left promiscuous mode
[ 1174.002565][   T53] veth0_macvtap: left promiscuous mode
[ 1174.008263][   T53] veth1_vlan: left promiscuous mode
[ 1174.013780][   T53] veth0_vlan: left promiscuous mode
[ 1174.159512][   T53] team0 (unregistering): Port device team_slave_1 removed
[ 1174.190722][   T53] team0 (unregistering): Port device team_slave_0 removed
[ 1174.631835][   T53] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1174.687122][   T53] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1174.735002][   T53] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1174.786171][   T53] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1175.530124][   T53] bridge_slave_1: left allmulticast mode
[ 1175.535931][   T53] bridge_slave_1: left promiscuous mode
[ 1175.544860][   T53] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1175.554515][   T53] bridge_slave_0: left allmulticast mode
[ 1175.560363][   T53] bridge_slave_0: left promiscuous mode
[ 1175.566395][   T53] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1175.575284][   T53] bridge_slave_1: left allmulticast mode
[ 1175.581114][   T53] bridge_slave_1: left promiscuous mode
[ 1175.586798][   T53] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1175.595760][   T53] bridge_slave_0: left allmulticast mode
[ 1175.604154][   T53] bridge_slave_0: left promiscuous mode
[ 1175.609879][   T53] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1176.077568][   T53] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1176.088104][   T53] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1176.101062][   T53] bond0 (unregistering): Released all slaves
[ 1176.180673][   T53] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1176.190099][   T53] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1176.199586][   T53] bond0 (unregistering): Released all slaves
[ 1176.275551][   T53] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1176.285343][   T53] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1176.295393][   T53] bond0 (unregistering): Released all slaves
[ 1176.374473][   T53] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1176.385760][   T53] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1176.395362][   T53] bond0 (unregistering): Released all slaves
[ 1176.465005][   T53] tipc: Left network mode
[ 1176.477928][   T53] tipc: Left network mode
[ 1176.496661][   T53] IPVS: stopping master sync thread 19830 ...
[ 1177.094212][   T53] hsr_slave_0: left promiscuous mode
[ 1177.100318][   T53] hsr_slave_1: left promiscuous mode
[ 1177.107174][   T53] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1177.115016][   T53] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1177.123493][   T53] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1177.131281][   T53] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1177.140024][   T53] hsr_slave_0: left promiscuous mode
[ 1177.147257][   T53] hsr_slave_1: left promiscuous mode
[ 1177.154042][   T53] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1177.161995][   T53] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1177.170706][   T53] hsr_slave_0: left promiscuous mode
[ 1177.179466][   T53] hsr_slave_1: left promiscuous mode
[ 1177.185438][   T53] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1177.193102][   T53] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1177.206606][   T53] hsr_slave_0: left promiscuous mode
[ 1177.212636][   T53] hsr_slave_1: left promiscuous mode
[ 1177.218440][   T53] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1177.226759][   T53] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1177.236734][   T53] veth1_macvtap: left promiscuous mode
[ 1177.242328][   T53] veth0_macvtap: left promiscuous mode
[ 1177.247875][   T53] veth1_vlan: left promiscuous mode
[ 1177.253607][   T53] veth0_vlan: left promiscuous mode
[ 1177.403523][   T53] team0 (unregistering): Port device team_slave_1 removed
[ 1177.418077][   T53] team0 (unregistering): Port device team_slave_0 removed
[ 1177.768517][   T53] team0 (unregistering): Port device team_slave_1 removed
[ 1177.803397][   T53] team0 (unregistering): Port device team_slave_0 removed
[ 1178.366132][   T53] team0 (unregistering): Port device team_slave_1 removed
[ 1178.408549][   T53] team0 (unregistering): Port device team_slave_0 removed
[ 1178.930485][   T53] team0 (unregistering): Port device team_slave_1 removed
[ 1178.975024][   T53] team0 (unregistering): Port device team_slave_0 removed