last executing test programs:

8.438115364s ago: executing program 3 (id=1632):
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$auto(0x1, 0x1, 0x2b, &(0x7f0000000000)='\x00', 0xbb)
mmap$auto(0x0, 0x40000b, 0x100000df, 0x9b72, 0x2, 0x8000)
setresgid$auto(0x9, 0x100000001, 0x6)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f00000000c0)='ns/pid_for_children\x00')
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x7, 0x1000000004, 0x6b0, 0x6, 0x9)
clone$auto(0x6, 0x401, 0xffffffffffffffff, 0xfffffffffffffffc, 0xa31b)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x3, 0x7)
mremap$auto(0x4000, 0xfee0, 0x3fd6, 0x3, 0x0)
unshare$auto(0x40080)
semtimedop$auto(0x8000, &(0x7f0000000000)={0x2009, 0x7, 0xf961}, 0x7, 0x0)
socket(0x2, 0x3, 0xa)
bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x2, 0x4, 0x0, 0x2, 0x8, 0xc, 0x66b, 0x4, 0x1}, 0x6f4)
prctl$auto(0x800, 0xffffffff, 0x1, 0x3, 0xff)
utimensat$auto(0xff, &(0x7f0000000040)='\x00', &(0x7f0000000080)={0x1, 0x80008}, 0xf)
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)
setsockopt$auto(0x3, 0x0, 0x2b, 0x0, 0x10001)

6.71339158s ago: executing program 3 (id=1640):
mmap$auto(0x6, 0x8, 0xdf, 0x9b72, 0x20000002, 0x8000)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
readahead$auto(0x6, 0x1000, 0x800)
timer_create$auto(0x8, 0x0, 0x0)
timer_gettime$auto(0x0, 0xfffffffffffffffc)
mmap$auto(0x0, 0x61, 0x100001000000004, 0xfa31, 0x400, 0x8000)
write$auto(0x89, 0x0, 0x296)
getitimer$auto(0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1e, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x7fffffffffffffff, 0x9, 0xdf, 0xeb1, 0x2, 0x8000)
getsockopt$auto(0x6, 0x1, 0x15, 0xfffffffffffffffe, 0x0)
mmap$auto(0x0, 0x5, 0xfffffffffffffe01, 0x8011, 0x3, 0x8000)
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006)
mmap$auto(0x8, 0x100, 0x4, 0xfffffffffffffffa, 0x8a, 0x3)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nlctrl(&(0x7f0000000040), 0xffffffffffffffff)
mknod$auto(&(0x7f0000000380)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xe5G7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00', 0x1, 0x1004)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8003, 0x0)
io_uring_setup$auto(0x6, 0x0)
io_uring_register$auto(0x2, 0x19, &(0x7f00000000c0), 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
pidfd_open$auto(0x1, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/mnt\x00')
r1 = socket(0x5, 0x2, 0x0)
sendmsg$auto_CTRL_CMD_GETFAMILY(r0, &(0x7f0000000080)={0x0, 0x2c, &(0x7f0000000100)={&(0x7f00000000c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES32=r1, @ANYBLOB="01002abd77dcb7fcdf25030000000600000000000000010000"], 0x24}, 0x1, 0x0, 0x0, 0x24008811}, 0x10000000)

6.05982028s ago: executing program 3 (id=1644):
madvise$auto(0x0, 0x2000040080000004, 0xe)
madvise$auto(0x1ffff000, 0x208000000010001, 0x8)
sysfs$auto(0x1, 0x0, 0x6)
sysfs$auto(0x1c, 0x53b7, 0x1)
syz_genetlink_get_family_id$auto_nfc(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$auto_nbd(0x0, 0xffffffffffffffff)
sendmsg$auto_NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x20040000)
syz_genetlink_get_family_id$auto_NLBL_CALIPSO(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$auto_nfc(0x0, 0xffffffffffffffff)
r0 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_PAUSE_SET(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000080), 0xc, &(0x7f0000000240)={&(0x7f0000000100)={0x34, r0, 0x10, 0x70bd28, 0x25dfdbfc, {}, [@ETHTOOL_A_PAUSE_HEADER={0x7, 0x1, "e5987a"}, @ETHTOOL_A_PAUSE_RX={0x5}, @ETHTOOL_A_PAUSE_AUTONEG={0x5, 0x2, 0x4}, @ETHTOOL_A_PAUSE_RX={0x5, 0x3, 0x82}]}, 0x34}, 0x1, 0x0, 0x0, 0x100}, 0x5)
mmap$auto(0x4, 0x20009, 0x0, 0xeb4, 0x405, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x3, 0x7)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
close_range$auto(0x0, 0xe903, 0x2)
socket(0x2, 0x1, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000)
socket(0x2, 0x5, 0x0)
io_uring_setup$auto(0x6, 0x0)
mknod$auto(&(0x7f0000000580)='u[,&*}\x00\a\x00\x00\x00?\xa4\x1fN\xa1~5Z\xc7\r\f}M4\xa8m\xe6\x19[11\xab\xff-E\xac9(\xb4O\xa0t4h\x9f-gn\x1f\x01\x00\x00\x00\x00\x00\x00\x00\xaeR\x81\r_\x0e\x19\b\x85\bvv(e\xdax)\t\x15\xf6\xc8\xee\x04\x16\xc1\x9a!\x87I7\x8cD&zg\xb0a\xab|E\xde\x14\xee[\xc8\xc0\xa8Nh\x0f\xa3\xdbT\xb3\xb8\xd2F\xa0\xc4]\xaf\xc43&\xe4\x01\x05\xd2\x15\xf8\xf1!\x9d\x92\xbbH\xd3^aD\x87\xd8\xe7\xd2\xf3[r\xc5S&}D[\x97\xf1\xd9\xf8Y\x1c\x03\x84\xb4\xd7\x16\x19\xe5\x17\x10\xd8fcG:\xfbY8\x17w\x98?\x03@\xe5\x02\x05\x93h\xb9\xf7\xef\x84\x8aGlN\a\x1e\x00\x00\x00\x00\x00\x00\x00\xf1p\xeb\xe9(%\x89\xef\x85\xdfr\xce\x00\x00\x00\x00\xff\x00\xa2M\'d\x12\x1c\x12\xca\xa5_\x8d\xdf\xc5\x8d\x19?\xfc~\xb3X\x14\xa7\xa9M\x87\xfcTW\x1bR\xbci\x8d\x8aNEO\xb3~~\xa8\xa6\x894\x80;s\xb7\xa3V\x1b\x14|\x9e\xd4\x05\x85\x0f!\xab-E\'\x97Y\xb7\xe8fMv_\xf8\xa0S\xef\xb7\b\xe7!T.g\x92\x87\t$\x06\xa4\xfb\x83\x8c\x17^\x82\xe7\xd3\xf6q\x1a\xa0\xf82[W\x90\xdd\xe3\xde\xa9\xde\x94`-\x9a\x1e}\xebO*\xb85,v.\xfc5\xba?vlt\xda%\x06a\x15I\x1f\xe3\x05+\x810T2\xf9\x9b\xc7\xd1<w\xd3:\x835\xac\r\x06\xc9\xc1HG\x1c\xd4J\x8aZ%+\xe6/~\xd6\xe1[+Z\xb1\x8d\xc5\x9b\xcfhb\'\x80\xeb7%>\t\x03\xf2\x8d\x8a\x90\xb54\bH<9\xf1\x91 D\x85g,\xaa\xca\xcd\xd5\xcb\x9a\xb1j\xf2F\xce\x14\x92\xf9\xd7\xec\xc5\x1e\x8aq2\xce\x881f\xd7\xd4\x9e\xf6\xb6P\x01\xe8T\xb5X\xb9d-I\xd6\x91\xc3\xe2\x88S\x82l=\x02t$p\t\x8cY\x06\r\x83\xb0\x86\xc6\x84\x1c\xce\xb6\xf0\xdfC\x9fj<\xfe\xa4\x1f\x82L\xe4\x13+H\x00\x00\x00\x00\x00\x00\x00\x01M\x16\xa0\xbeB6\xfb\xa2-\x17\x93Q\x9fKusl5\xa2$M\xb4\x18\x1db\xf3\xce\x8c\xe5Rna\xd5\xbbQ\xc7\xa7+\vH\xc1l\x1bIv\xe8_', 0x1081, 0x9)
acct$auto(&(0x7f0000000140)='u[,&*}\x00\a\x00\x00\x00?\xa4\x1fN\xa1~5Z\xc7\r\f}M4\xa8m\xe6\x19[11\xab\xff-E\xac9(\xb4O\xa0t4h\x9f-gn\x1f\x0f\x18\xc5\x82-s\x83\xe6\xaeR\x81\r_\x0e\x19\x12\x85\bvf(e\xday)\t\x15\xf6\xc8\xee\x04\x16\xc1\x9a!\x87I7\x8cD&zg\xb0a\xab|E\xde\x14\xee[\xc8\xc0\xa8Nh\x0f\xa3\xdbT\xb3\xb8\xd2F\xa0\xc4]\xaf\xc43&\xe4\x01\x05\xd2\x15\xf8\xf1!\x9d\x92\xbbHL9aD\xb4\x80\xed\xba>\"\xb6\x7f\xa3f\x1d\a\xa1\x87\x84uA\xd8\xe7\xd2\xf3[r\xc5S&}D[\x97\xf1\xd9\xf8Y\x03\x84\xb4\xd7\x16\x19\xe5\x17\x10\xd8fcG:\xfbY8\x17w\x98?\x03@\xf5T\xbd\xbb6k\x81\xf4\xc7\xb6\xc0t\xb2]\xef\x92\x7fk\x90\\\xb0\x11*\x7f5oA\xed\x86\x8d3\xada\xd9\xcd\xc2\x7f\xa3W\xa7\xdc=\v\x84\xc3\x02K')
close_range$auto(0x2, 0x8, 0x0)
acct$auto(&(0x7f0000000000)=',&*%{*@)!,\x00')
socket(0x1e, 0x1, 0x0)
socket(0xa, 0x5, 0x0)
setsockopt$auto(0x2, 0x1, 0x6, &(0x7f0000000000)='\x00', 0x40)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
lsm_get_self_attr$auto(0x5b8d3a5a, &(0x7f00000000c0)={0x8001, 0x7, 0xffff}, 0x0, 0x8)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x5, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)

5.078744129s ago: executing program 2 (id=1650):
madvise$auto(0x0, 0x2000040080000004, 0xe)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
socket$nl_generic(0x10, 0x3, 0x10)
move_pages$auto(0x1, 0x2000000000003, 0xffffffffffffffff, 0x0, 0x0, 0x8000000000000000)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
fanotify_init$auto(0x5, 0x2000000000002)
fanotify_mark$auto(0x0, 0x205, 0x7, 0x4, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000080))
getdents$auto(0x600000000, 0xfffffffffffffffd, 0xd00)
open(&(0x7f00000001c0)='./file0\x00', 0x7ffd, 0x0)
mprotect$auto(0x1ffff000, 0x1003, 0x8)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x20000000000006, 0x2)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
semctl$auto(0x1ff, 0x2, 0x13, 0x1)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x5, 0x0)
getsockopt$auto(0x6, 0x40000000084, 0x7c, 0xfffffffffffffffe, 0x0)
setsockopt$auto(0x3, 0x29, 0x39, 0xffffffffffffffff, 0x1)
close_range$auto(0x10004, 0xfffffffffffff000, 0x2000002)
socket(0xa, 0x3, 0x6)
mbind$auto(0xf000, 0x8000000000000001, 0x100000000, 0x0, 0x6, 0x2)
clone$auto(0x0, 0x5, 0xfffffffffffffffc, 0xfffffffffffffffd, 0x9)
pipe2$auto(0x0, 0x80)

4.201957692s ago: executing program 2 (id=1652):
mmap$auto(0x0, 0x9, 0xdf, 0xeb1, 0x401, 0x8000)
socket(0x2, 0x801, 0x100)
statmount$auto(&(0x7f0000000000)={0x20, 0x8, 0x5, 0xffffffff, 0xfffffffffffffff2}, 0x0, 0x800, 0x0)
connect$auto(0x3, &(0x7f00000000c0)={0x2, @sockaddr_1_1}, 0x55)
setsockopt$auto(0x3, 0x0, 0x1, 0x0, 0x9)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
unshare$auto(0x200)
r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/mnt\x00')
setns(r0, 0x0)
clone$auto(0xfffffffe00000, 0x5, 0xfffffffffffffffc, 0xfffffffffffffffc, 0x4)
clone$auto(0x6, 0x10001, 0x0, 0x0, 0x4)
socket(0xa, 0x2, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
select$auto(0x6d0c, 0x0, &(0x7f0000000100)={[0xd, 0x200, 0x800000000000008, 0xc, 0x9, 0x3, 0x6, 0x1, 0x40009, 0x5e582972, 0x4000000000000000, 0x14, 0x93, 0x8, 0x8, 0x6]}, 0x0, 0x0)
connect$auto(0x3, &(0x7f0000000140)={0xa, @sa_data_min="c4aeed448dc7fe8000"}, 0x55)
connect$auto(0x3, &(0x7f0000000000)={0x2, @sockaddr_1_1={"d9ef7f"}}, 0x55)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x4)

3.858360907s ago: executing program 1 (id=1655):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x3, 0x5, 0x4)
mincore$auto(0x0, 0x8000000000005a, 0x0)
mkdir$auto(0x0, 0x40)
rmdir$auto(0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x17)
mremap$auto(0x4000, 0xfee0, 0x3fd6, 0x3, 0x18000)
ioctl$auto(0xc8, 0x400454d1, 0x5c8d)

3.024786709s ago: executing program 2 (id=1659):
socket(0x11, 0x80003, 0x300)
mmap$auto(0x0, 0x9, 0xfffffffffffffffa, 0x18, 0x3, 0x4000)
socket(0x11, 0x80003, 0x300) (async)
mmap$auto(0x0, 0x9, 0xfffffffffffffffa, 0x18, 0x3, 0x4000) (async)

2.592181048s ago: executing program 3 (id=1661):
mknod$auto(&(0x7f0000000040)=':,\x00', 0xc9, 0xc8)
execve$auto(&(0x7f0000000000)=':,\x00', 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/pid_for_children\x00')
socket(0xa, 0x3, 0x6) (async)
socket(0xa, 0x3, 0x6)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x1c}, 0x1, 0x0, 0x0, 0x40000021}, 0x8004) (async)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x1c}, 0x1, 0x0, 0x0, 0x40000021}, 0x8004)
connect$auto(0x3, &(0x7f0000000140)={0xa, @sa_data_min="c457ffffffffffffff000300"}, 0x55)
getpid() (async)
r0 = getpid()
syz_open_procfs$namespace(r0, &(0x7f0000000080)='ns/time\x00')

2.590358351s ago: executing program 1 (id=1662):
chroot$auto(&(0x7f0000000000)='(\x00')
tgkill$auto(0xffff, 0x5, 0x1)
chroot$auto(&(0x7f0000000040)='}\x00')
chroot$auto(&(0x7f0000000080)='\x00')
io_uring_setup$auto(0x3ff, &(0x7f00000000c0)={0xb, 0x36, 0x7, 0xffffff8d, 0x30000000, 0xffffffff, 0x9, [0xf, 0x8, 0x3], {0x7fffffff, 0x124, 0x3ff, 0x351, 0x43628925, 0x7, 0x4, 0xffff, 0x40}, {0x1, 0x8, 0x400, 0x9, 0x8, 0x808, 0x9, 0x2, 0x9}})
chroot$auto(&(0x7f0000000140)='\x00')
getcpu$auto(&(0x7f0000000180)=0x5, &(0x7f00000001c0)=0x40, &(0x7f0000000200)={[0x7ff, 0x650, 0x1, 0x2, 0x9, 0x28e, 0x2, 0x1, 0xd82, 0x101, 0x6, 0x3, 0x40, 0x34ca, 0xffff, 0x3ebe]})
creat$auto(&(0x7f0000000280)=']\x00', 0x96)
execve$auto(&(0x7f00000002c0)='%--\x00', &(0x7f0000000340)=&(0x7f0000000300)='+.\x00', &(0x7f00000003c0)=&(0x7f0000000380)=',&\'*\'[\x00')
setsockopt$auto(0xe, 0x400, 0x6, &(0x7f0000000400)='\x00', 0xb2)
pidfd_open$auto(0x7, 0xfffffffb)
chroot$auto(&(0x7f0000000440)=']\x00')
chroot$auto(&(0x7f0000000480)='[:\x00')
getcpu$auto(&(0x7f00000004c0)=0x6, &(0x7f0000000500)=0x90000000, &(0x7f0000000540)={[0x2, 0x100, 0xecd5, 0x0, 0x72ff8f0d, 0x2, 0x6247, 0x5, 0x8, 0x32f7, 0x5, 0x8, 0x6, 0x6, 0xfffffffffffffffe, 0xfffffffffffffff7]})
chroot$auto(&(0x7f00000005c0)='\x00')
socket$nl_generic(0x10, 0x3, 0x10)
chroot$auto(&(0x7f0000000600)=']\x00')
chroot$auto(&(0x7f0000000640)='\x00')
execve$auto(&(0x7f0000000680)='%--\x00', &(0x7f0000000700)=&(0x7f00000006c0)='+${\xff-:\x00', &(0x7f0000000780)=&(0x7f0000000740)=']\x00')
creat$auto(&(0x7f00000007c0)='[:\x00', 0x3)
pidfd_open$auto(0xe, 0x3)
chroot$auto(&(0x7f0000000800)='/\xdb\'$\x00')
io_uring_setup$auto(0x3, &(0x7f0000000840)={0x6, 0x3, 0x1, 0x75a, 0x9, 0x1, 0x1b, [0x101, 0x3, 0x10001], {0x1ff, 0x6, 0xf2, 0x3, 0xfffffff7, 0xfffffffa, 0x8869, 0x4, 0xfd}, {0x0, 0x8, 0x4d3, 0x5, 0x4, 0x6, 0x1, 0x1, 0xb}})
setreuid$auto(0x1, 0x4)
setreuid$auto(0xfffc, 0x2)
chroot$auto(&(0x7f00000008c0)='(\x00')
r0 = open(&(0x7f0000000940)='./file0\x00', 0x2, 0x80)
syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000900), r0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL802154_CMD_SET_WPAN_PHY_NETNS(r1, &(0x7f0000000c40)={&(0x7f0000000980)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000c00)={&(0x7f0000000a00)={0x1d8, 0x0, 0xd02, 0x70bd28, 0x25dfdbfe, {}, [@NL802154_ATTR_WPAN_PHY_CAPS={0xe7, 0x18, "6b1c48ed933b424f34475cfbf163583a96f63b0df76684da018b7db75850d0dd8d55e17108d3dfd5d70d0d1bbaaaf1ca583a8bb8326ff866640f3fa8996c0a4e3881c5a3fe7e588d6fa9d726bb3454993836554c079a22f4a33007e7647aeb476c2e818e05214369e11f6d6c99551ec763ddb656d49ce146d6c54e145664631af8f4a1f8f73e3940ac4b0c7c299720955fdbcee535a4f7c421cf57ba426ccb432ddb2abf1a5abf44cdbe91afebcd08465e9a505d60e4b3aa0813fecb3937dc03699708fae3998b101d60cd16a611ab98d96316437e0694a91dd4815b004f1226e6d81e"}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_PEER={0xd4, 0x28, "64f88e3cdf4787bf61191891d732c2679f09f0b2b5635d107db9f2aa86d01c29b3f8ce969768cec35ac2925388bdbe01ea23fd75d9f8ac7790e68549e765c4312273a1ac3cc356ae1d03f3a3a512f5f81c8fad8f8b77444f23029a3a8c082523609fc37a3f821ebcd717e60d6d279e5674058e431603f6e19880b41647afcbc7fc3b8e8dfa4dc3eabf718e25af72c28694a4a370cf4822f6d722195e2ff1976ae5324b5a7df0f39d4d583f132c88ad240f1f191535f8d4edc2de1ca4bc776233f48a429d5ab7aef5bf816d2702f8b50a"}]}, 0x1d8}, 0x1, 0x0, 0x0, 0x20048000}, 0x80)

2.493152169s ago: executing program 2 (id=1663):
open_tree$auto(0x7f, &(0x7f0000000000)='\x00\x00', 0x1000)

2.256879715s ago: executing program 0 (id=1664):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) (async)
close_range$auto(0x0, 0xfffffffffffff000, 0x2) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 64)
pidfd_open$auto(0x1, 0x0) (rerun: 64)
socket(0x10, 0x3, 0x6) (async, rerun: 64)
bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x6e4, 0x21eb, 0x7ff, 0x6, 0xa, 0x1, 0x5f, 0x0, 0x3}, 0x6f3) (async, rerun: 64)
socket(0x15, 0x5, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
fanotify_init$auto(0x10000000099b, 0x2) (async)
socket(0x28, 0x1, 0x0) (async)
socket(0x2b, 0xa, 0x6) (async)
bind$auto(0x7, &(0x7f0000000000)={0x1d, @sockaddr_1_1={"aa1f923ebf064f6e96aaeae04593ffff"}}, 0x3e) (async)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2) (async)
socket(0x1e, 0x2, 0x0) (async)
socket(0x23, 0x4, 0x3)
socket(0x1e, 0x80805, 0x0) (async, rerun: 64)
socket(0x2c, 0x80003, 0x0) (rerun: 64)
close_range$auto(0x0, 0xfffffffffffff000, 0x2) (async)
socket(0x1e, 0x2, 0x0) (async)
socket(0x23, 0x80805, 0x0) (async)
socket(0x1e, 0x80805, 0x0) (async)
socket(0x2c, 0x80003, 0x0) (async, rerun: 32)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0xfd, 0x0, 0xfffffffffffffffd) (async, rerun: 32)
munmap$auto(0xafa4, 0x3) (async)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0xfd, 0x0, 0xfffffffffffffffd) (async)
statmount$auto(&(0x7f0000000000)={0x10001, 0x5, 0x4, 0x6, 0x401}, &(0x7f0000000040)={0x401, 0xf48, 0x9, 0x1, 0x7, 0x4, 0x10000, 0x3, 0x4, 0x0, 0x9, 0x80000000, 0xfff, 0x401, 0x5, 0xfff, 0x6, 0x0, 0x813e, 0x7, [0x400000000000000, 0x680, 0x5, 0x1, 0x5, 0x800, 0x1, 0x0, 0x5, 0x3da, 0xfffffffffffffff7, 0xfa, 0x44, 0x8, 0x7, 0x100, 0x100, 0x7, 0x9, 0x3da82a22, 0x2, 0xfffffffffffffffa, 0x100000000, 0x1ac, 0x5, 0xc7e4, 0x0, 0x7, 0xb2, 0x4, 0x4, 0x9, 0x5, 0x7fffffffffffffff, 0x4, 0x7, 0x1, 0x7fffffff, 0x4, 0x373, 0x9, 0x7, 0x7, 0x7, 0x6, 0x7fffffff, 0x369, 0x1, 0x8], "737b27c37b7a586ef1"}, 0x5, 0x1)
sendmsg$auto_NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x20040000) (async)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) (async)
mmap$auto(0x9, 0x100000000, 0x10000000df, 0x1e, 0xeb, 0x5)

2.255033055s ago: executing program 1 (id=1665):
clock_nanosleep$auto(0x80000001, 0x2, 0x0, 0xfffffffffffffffc)
socket(0x21, 0x2, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1d, 0x2, 0x2)
sendmsg$auto_NL80211_CMD_DEL_STATION(0xffffffffffffffff, &(0x7f0000001a40)={0x0, 0x0, &(0x7f0000001a00)={&(0x7f00000000c0)={0x34, 0x0, 0x1, 0x70bd2a, 0x25dfdbfd, {}, [@NL80211_ATTR_HE_CAPABILITY={0x20, 0x10d, "6f46be20118d67c9229d9ccfa2594d3a7be63f9fffc7b6e31f883768"}]}, 0x34}, 0x1, 0x0, 0x0, 0x4800}, 0x10)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40040021}, 0x8011)
socket(0xa, 0x6, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000080), r0)
sendmsg$auto_NFSD_CMD_THREADS_SET(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={0x2c, r1, 0x1, 0x70bd2d, 0x25dfdbff, {}, [@NFSD_A_SERVER_LEASETIME={0x8, 0x3, 0x5e}, @NFSD_A_SERVER_SCOPE={0x5, 0x4, '\x00'}, @NFSD_A_SERVER_THREADS={0x8, 0x1, 0x6f8d}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40000021}, 0x8004)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_procfs$namespace(0x0, 0x0)
connect$auto(0x3, &(0x7f0000000140)={0xa, @sa_data_min="c4aeed448dc7fe8000"}, 0x55)
listen$auto(0x3, 0x81)
mmap$auto(0x9, 0xef9, 0x0, 0x1a, 0x2, 0x80)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
dup2$auto(0x0, 0x3)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
utimensat$auto(0x1, 0x0, 0xfffffffffffffffe, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x3, 0x6)
r3 = syz_genetlink_get_family_id$auto_macsec(0x0, 0xffffffffffffffff)
sendmsg$auto_MACSEC_CMD_ADD_RXSC(r2, &(0x7f0000001340)={0x0, 0x0, &(0x7f0000001300)={&(0x7f0000001380)=ANY=[@ANYBLOB="14000000", @ANYRES16=r3, @ANYBLOB="0100254ffdccb5bda1d6fd000000"], 0x14}, 0x1, 0x0, 0x0, 0x40b4ff743f26f506}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)

2.120568518s ago: executing program 2 (id=1666):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000002500), 0xffffffffffffffff)
sendmsg$auto_OVS_FLOW_CMD_SET(r1, &(0x7f00000025c0)={0x0, 0x0, &(0x7f0000002580)={&(0x7f0000000000)={0x1c, r2, 0x1, 0x70bd28, 0x25cfdbfe, {}, [@OVS_FLOW_ATTR_CLEAR={0x4}, @OVS_FLOW_ATTR_PROBE={0x4}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4}, 0x0)
sendmsg$auto_OVS_FLOW_CMD_DEL(r0, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000180)={&(0x7f0000000380)={0x90, r2, 0x8, 0x70bd2a, 0x25dfdbfe, {}, [@OVS_FLOW_ATTR_UFID={0x5, 0x9, 0x8}, @OVS_FLOW_ATTR_UFID_FLAGS={0x8, 0xa, 0x40000000}, @OVS_FLOW_ATTR_ACTIONS={0x2d, 0x2, "4e2d8662350ae013355fa23e023e0e5b126e16db13e5c6daccd456f961392088f333832c56cc0bf11a"}, @OVS_FLOW_ATTR_UFID={0x5, 0x9, 0x9}, @OVS_FLOW_ATTR_MASK={0x25, 0x7, "435a044533103d93f184d284c626dde6e4abaa2d2fdccac476a126caadb2b61727"}, @OVS_FLOW_ATTR_PROBE={0x4}, @OVS_FLOW_ATTR_UFID_FLAGS={0x8, 0xa, 0x2}]}, 0x90}, 0x1, 0x0, 0x0, 0x4000004}, 0x84010)
socket(0xa, 0x2, 0x0)
setsockopt$auto(0x3, 0x10000000084, 0xc, 0x0, 0x4)
setuid$auto(0x800000000008)
keyctl$auto(0x20, 0x72510000000, 0x69c9, 0x2, 0x6)
mknod$auto(&(0x7f0000000000)='}[,&*}\x00', 0x1, 0x4)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_MAC80211_HWSIM(&(0x7f0000000640), r3)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r3, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f0000000680)={0x18, r4, 0x1, 0x70bd25, 0x25dfdbfc, {}, [@HWSIM_ATTR_DESTROY_RADIO_ON_CLOSE={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x40000}, 0x48000)
sendmsg$auto_HWSIM_CMD_GET_RADIO(r1, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000100)={&(0x7f0000000440)={0x2d0, r4, 0x4, 0x70bd2b, 0x25dfdbfd, {}, [@HWSIM_ATTR_FRAME={0x1a0, 0x3, "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"}, @HWSIM_ATTR_CIPHER_SUPPORT={0x26, 0x18, "f49664555d1f03cb5b97b0abea20c6a9963e493c0201ef7434af0549a8fdedfd4fa4"}, @HWSIM_ATTR_PERM_ADDR={0xf4, 0x16, "a0693ac79f00768646c9c105b8d77b702e72afcb013cf35e280ccbc055f7e82323a135282cb03a18c630bfc7c9886528f44681abfcc96f53cb9d91a5f178ee663b2298539ab4e4982b7a04095558f66c18bab044df84e2cb4577c9b27f8d81e37b6d0d1681748c618075e55233572dd257e953ce63643c69b8616c58927301357e715402254e0f11facd3c686945b5fc6b0f4941938b1a88a3ee6b207f4f87075d3315c400cb7dd69fd14824a74978dadab685a455b3def5339e07e5e870cf74e13a49649451c32c342aeb7d0c46a39253d84d42565ea2c4cd66976090fc2fa769d8151dc94f649c0132a0e54fa35bd5"}]}, 0x2d0}, 0x1, 0x0, 0x0, 0x4040}, 0x881)
mknod$auto(&(0x7f0000000040)='Vq\xf4\xc4z6\xb9\x00', 0x2, 0x401)
mount$auto(&(0x7f0000000280)='Vq\xf4\xc4z6\xb9\x00', &(0x7f00000000c0)='}[,&*}\x00', 0x0, 0xb71e, 0x0)
mount$auto(0x0, &(0x7f0000000180)='}[,&*}\x00', 0x0, 0x72, &(0x7f0000000340)="083a73ae309f27a0130454118102aa2c36")
mmap$auto(0xf000, 0x8, 0x1000000000, 0x9b72, 0x2, 0x20000000007ffe)
semctl$auto(0x0, 0xfffffffffffffffa, 0x100000001, 0x95cc)
setsockopt$auto(0x5, 0x101, 0x8001, &(0x7f0000000000)='-^\x00', 0x80)
setsockopt$auto(0x400000000000003, 0x29, 0x20, 0x0, 0x56b)

1.709138531s ago: executing program 0 (id=1667):
sendmsg$auto_NL802154_CMD_DEL_SEC_DEV(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x8000}, 0x40085)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
munmap$auto(0xfffffffffffffff4, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
socket(0x23, 0x80805, 0x0)
munmap$auto(0x0, 0x1)
socket(0x2, 0x80002, 0x73)
getsockname$auto(0x3, &(0x7f0000000d00)={0xa1e1, @sockaddr_1_1}, &(0x7f0000000d40)=0x4)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
set_mempolicy$auto(0x1, &(0x7f0000000000)=0xc, 0x7)
memfd_secret$auto(0x0)
socket(0x2b, 0x1, 0x1)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
userfaultfd$auto(0x1)
syz_open_procfs$namespace(0x0, &(0x7f0000002700)='ns/net\x00')
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_SET_WIPHY(r0, &(0x7f0000000440)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000400)={&(0x7f0000000180)={0x268, r1, 0x800, 0x70bd28, 0x25dfdbfb, {}, [@NL80211_ATTR_AUTH_DATA={0xf6, 0x9c, "5f520fe4caebf02ca71ebe3479bee89cfd5fd23e34b4c14afe11604955a3cfe300844f0964980862e099e27bd4633f3adda8b92e717a873129504b58583e75e6858131adc73652728ea61f7e6fe06105c4377e8fbb875e2d3799e658c56c45757bf9cc9538ace1665bdbc7bbbd21ca9105111f2f8da81d3f8bb3e948cc15e85a73071a59b0f33d51177055a980b59cf5463081c8f622701729e3d38897c2e89e0f4fe32733df14745653c187a4a7ee04b2b1c63d71bba16efb11980d8c3e5365904d664dc5fa51ef987a1d464a501cf2c8c0cd7edd353e7c04413d838272d0535c9afc2dbb6fd5370db510a4176c57e5a93e"}, @NL80211_ATTR_SSID={0x9, 0x34, "d955fc37a0"}, @NL80211_ATTR_COLOR_CHANGE_ELEMS={0x150, 0x131, "30612fb503de92f1a66bbcdf40b0b997d868389cc1894b515b73b5dcf3ff3b3f2d44228c95f051e71d36e207299f7ace004632fb5d2cad2dd639548cba877af254116079c85fe9eae977f9002ef21ebb9f8d463eb5f58d96ad582d35ab40611d6df8d678c8793f0f09e782d47873764e42e9490f2fbf669fedbfdfbe1a4c17bccf5dc3b673ce10477ed3cf7a581a9454def641784122e61db03f89d5efdb36c14802cfe7f9c30fe48a47f7a9d3026a30ea7520d3e2c922fcc758e474dbbd9f6d0ca3ad1403cd0238d640fb776653cf2be16efea8997e9711a30815ad505dc62da377da5c25caf1c6bf726e9fe4107e5aa91ee26b2cf77de35e11a47c6f4777b54e764b0d5a46bbfa8f07398d2191588140ec70d377ae916626bbbf33b63e006e5167cc5fb37a6fea6cb93acb0a20addfa82b896732f0df022bbce00fa40cdd4de87ef51542bf97507dd17907"}]}, 0x268}, 0x1, 0x0, 0x0, 0x10}, 0x24044091)
socket(0xa, 0x5, 0x0)
getsockopt$auto(0x7, 0x84, 0x0, 0x0, &(0x7f0000000080)=0x10000004)
chown$auto(&(0x7f0000000040)='ns/net\x00', 0x2, 0xfeb2)

1.667987399s ago: executing program 2 (id=1668):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000080), r0) (async)
r1 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000080), r0)
sendmsg$auto_NFSD_CMD_THREADS_SET(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, r1, 0x1, 0x70bd2d, 0x25dfdbff, {}, [@NFSD_A_SERVER_THREADS={0x8, 0x1, 0x7fffffff}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40000021}, 0x8004) (async)
sendmsg$auto_NFSD_CMD_THREADS_SET(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, r1, 0x1, 0x70bd2d, 0x25dfdbff, {}, [@NFSD_A_SERVER_THREADS={0x8, 0x1, 0x7fffffff}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40000021}, 0x8004)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$auto_NBD_CMD_CONNECT(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)={0x14, r3, 0x1, 0x70bd27, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0xc855}, 0x20000000)
syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000380), r2)
r4 = syz_genetlink_get_family_id$auto_HSR(&(0x7f0000000640), r2)
sendmsg$auto_HSR_C_GET_NODE_LIST(r2, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000680)={0x14, r4, 0x1, 0x70bd28, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x10}, 0x24000000)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_tcp_metrics(&(0x7f0000000300), r5)
sendmsg$auto_TCP_METRICS_CMD_GET(r5, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000000c0)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="011f25bd7000fbdbdf250100000008000b00e000000214000200ff0700fe0f000c000500080009000400020a1de0a9cf33cde8b5fb904a9b76a97437c440287b933708a7dfc9231574833a19636ee72edb90b2138b8021efaabf7ab4840c1de74083f14e6b033418001c23"], 0x30}, 0x1, 0x0, 0x0, 0x64048090}, 0x40000)
syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000180), r5) (async)
syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000180), r5)
rt_sigaction$auto(0x6, 0x0, &(0x7f0000000340)={0x0, 0xe2c, 0x0, {0x2}}, 0x8) (async)
rt_sigaction$auto(0x6, 0x0, &(0x7f0000000340)={0x0, 0xe2c, 0x0, {0x2}}, 0x8)
sendmsg$auto_IPVS_CMD_GET_INFO(r2, 0x0, 0x0) (async)
sendmsg$auto_IPVS_CMD_GET_INFO(r2, 0x0, 0x0)
socket(0xa, 0x801, 0x100)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10)
splice$auto(0x2, 0x0, 0x3, &(0x7f0000000040)=0x3e6, 0x80000000000000f7, 0xa)
select$auto(0x6d0c, 0x0, &(0x7f0000000100)={[0xd, 0x200, 0x800000000000008, 0xc, 0x9, 0x3, 0x6, 0x1, 0x9, 0x5e582972, 0x4000000000000000, 0x11, 0x93, 0x200, 0x8, 0x6]}, 0x0, 0x0)
connect$auto(0x3, &(0x7f0000000140)={0xa, @sa_data_min="c4aeed448dc7fe8000"}, 0x55)

1.296597164s ago: executing program 0 (id=1669):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000080), r0)
close_range$auto(0x200, 0xfffffffffffff000, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
splice$auto(0x6, 0xfffffffffffffffd, 0x5, 0xfffffffffffffffc, 0x526, 0x7) (async)
splice$auto(0x6, 0xfffffffffffffffd, 0x5, 0xfffffffffffffffc, 0x526, 0x7)
pidfd_open$auto(0x1, 0x0)
readv$auto(0xbe354bf, &(0x7f0000000000)={&(0x7f0000000100)="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", 0xfffffffffffffffa}, 0x3)
close_range$auto(0x2, 0x8, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/pid_for_children\x00')
socket(0xa, 0x3, 0x3a) (async)
socket(0xa, 0x3, 0x3a)
socket(0x2b, 0x1, 0x1)
socket(0x10, 0x2, 0x4) (async)
r2 = socket(0x10, 0x2, 0x4)
sendmsg$auto_NFSD_CMD_THREADS_SET(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000380)=ANY=[@ANYBLOB="2c0000001400c7d2a2e1917949643de42b"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000)
socket(0x2b, 0x1, 0x1)
recvmmsg$auto(0x5, &(0x7f0000000580)={{0x0, 0x5, 0x0, 0x0, 0x0, 0x1, 0x7fffffff}, 0x4}, 0x3, 0x6, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/mnt\x00') (async)
syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/mnt\x00')
sendmsg$auto_NFSD_CMD_THREADS_SET(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x38, r1, 0x1, 0x70bd2f, 0x25dfdbff, {}, [@NFSD_A_SERVER_THREADS={0x8, 0x1, 0x100001}, @NFSD_A_SERVER_GRACETIME={0x8, 0x2, 0xa}, @NFSD_A_SERVER_SCOPE={0xfffffffffffffe3e, 0x4, 'ns/mjt\x00'}, @NFSD_A_SERVER_THREADS={0x8, 0x1, 0xffff}]}, 0x38}, 0x1, 0x0, 0x0, 0x40000021}, 0x8004) (async)
sendmsg$auto_NFSD_CMD_THREADS_SET(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x38, r1, 0x1, 0x70bd2f, 0x25dfdbff, {}, [@NFSD_A_SERVER_THREADS={0x8, 0x1, 0x100001}, @NFSD_A_SERVER_GRACETIME={0x8, 0x2, 0xa}, @NFSD_A_SERVER_SCOPE={0xfffffffffffffe3e, 0x4, 'ns/mjt\x00'}, @NFSD_A_SERVER_THREADS={0x8, 0x1, 0xffff}]}, 0x38}, 0x1, 0x0, 0x0, 0x40000021}, 0x8004)

1.242577792s ago: executing program 3 (id=1670):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
select$auto(0x7, 0x0, &(0x7f0000000080)={[0x209c, 0xe9e, 0x6, 0x15, 0x1000, 0x100000001, 0xc, 0xf, 0x7d9a, 0x0, 0xe, 0xd59, 0x101, 0xff, 0x6, 0x80000001]}, 0x0, 0x0)

1.072379549s ago: executing program 0 (id=1671):
socket(0xa, 0x801, 0x84)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40000021}, 0x8004)
connect$auto(0x3, &(0x7f0000000140)={0xa, @sa_data_min="c4aeed448dc7fe8000"}, 0x55)
ioperm$auto(0x3, 0x5, 0x149)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x18, 0x5, 0x2)
socket(0x2, 0x1, 0x106)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x2, 0x0)
getsockopt$auto(0x100000008, 0x0, 0xd, 0x0, 0x0)
select$auto(0xa, 0x0, &(0x7f0000000100)={[0x20000000000d, 0x203, 0x0, 0xc, 0x5, 0x3, 0x5, 0x2000000000000002, 0x9, 0x8, 0xff, 0xa, 0x4, 0xaab, 0x5, 0x4006]}, 0x0, 0x0)
connect$auto(0x3, &(0x7f0000000140)={0xa, @sa_data_min="c4aeed448dc7fe8000"}, 0x55)
gettimeofday$auto(&(0x7f0000000080)={0x3, 0x5}, &(0x7f00000000c0)={0xb4, 0x9})
bpf$auto(0x0, &(0x7f0000000000)=@link_update={0x19, @new_map_fd=0x29d, 0x7, @old_map_fd=0x3ff}, 0xa3)
shutdown$auto(0x200000003, 0x2)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, &(0x7f0000000040)={0x0, 0x34000}, 0x4, 0x0, 0x1}, 0xed7138c}, 0x2, 0x9)
write$auto(0x3, 0x0, 0x81)

920.701167ms ago: executing program 1 (id=1672):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x2, 0x1, 0x0)
setsockopt$auto(0x3, 0x0, 0x6, 0x0, 0x28)
setsockopt$auto(0x101, 0x5, 0x10001, &(0x7f0000000180)='TIPCv2\x00', 0x7)
r1 = socket(0x18, 0x4, 0x1)
ioctl$sock_SIOCGIFINDEX(r1, 0x80047453, 0x0)
r2 = syz_genetlink_get_family_id$auto_TIPCv2(&(0x7f0000000040), r0)
r3 = socket(0xa, 0x801, 0x84)
listen$auto(0x3, 0x81)
socket(0x2, 0x2, 0xfffffffc)
read$auto(0x4000000003, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
getpid()
sendmsg$auto_TIPC_NL_PEER_REMOVE(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="02002bbd7000ffdbdf25140000003d009d6ec58147a92984b1cb6a386791450cf7f9f0b15ff3539aff7d5c9616110600000000aa451a476884377fdc6199f38753"], 0x54}, 0x1, 0x0, 0x0, 0x10}, 0x11)

344.777863ms ago: executing program 0 (id=1673):
memfd_secret$auto(0x0)
mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0)
ftruncate$auto(0x3, 0x700)
mseal$auto(0x8000, 0xfffffffffffffffa, 0x0)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000000000), r0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8000, 0x4000000000)

179.392533ms ago: executing program 1 (id=1674):
madvise$auto(0x0, 0x2000040080000004, 0xe)
mknod$auto(&(0x7f0000000500)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00', 0x2, 0x4)
rename$auto(&(0x7f0000000280)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00', &(0x7f0000000380)=':-&/\x00')
syz_genetlink_get_family_id$auto_IPVS(&(0x7f00000000c0), 0xffffffffffffffff)
madvise$auto(0x0, 0x20006, 0x6)
madvise$auto(0x1ffff000, 0x5510, 0x1)
syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/mnt\x00')
clone$auto(0x8000000000000000, 0x104, 0xfffffffffffffffc, 0x0, 0x100000002)
madvise$auto(0x0, 0x2000040080000004, 0xe) (async)
mknod$auto(&(0x7f0000000500)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00', 0x2, 0x4) (async)
rename$auto(&(0x7f0000000280)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00', &(0x7f0000000380)=':-&/\x00') (async)
syz_genetlink_get_family_id$auto_IPVS(&(0x7f00000000c0), 0xffffffffffffffff) (async)
madvise$auto(0x0, 0x20006, 0x6) (async)
madvise$auto(0x1ffff000, 0x5510, 0x1) (async)
syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/mnt\x00') (async)
clone$auto(0x8000000000000000, 0x104, 0xfffffffffffffffc, 0x0, 0x100000002) (async)

44.555287ms ago: executing program 0 (id=1675):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
chmod$auto(&(0x7f0000000040)='/\x00', 0x4) (async, rerun: 32)
r0 = socket$nl_generic(0x10, 0x3, 0x10) (rerun: 32)
r1 = syz_genetlink_get_family_id$auto_HSR(&(0x7f0000001280), 0xffffffffffffffff) (async)
mknod$auto(&(0x7f0000000180)=':,\x00', 0xcb, 0xfffffffa) (async)
execve$auto(&(0x7f0000000000)=':,\x00', 0x0, 0x0)
listen$auto(0x3, 0x83)
listen$auto(0x3, 0x81) (async)
listen$auto(0x3, 0x83)
sendmsg$auto_HSR_C_GET_NODE_LIST(r0, &(0x7f0000001340)={0x0, 0x0, &(0x7f0000001300)={&(0x7f00000012c0)={0x1c, r1, 0x1, 0x70bd28, 0x25dfdbfd, {}, [@HSR_A_IFINDEX={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x8000}, 0x4000) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) (async, rerun: 64)
socket(0x2, 0x5, 0x0) (rerun: 64)
setsockopt$auto(0x3, 0x10000000084, 0x76, 0x0, 0x8)
close_range$auto(0x2, 0xa, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
socket(0x3, 0x800, 0xfffefffc) (async)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f00000000c0)='ns/ipc\x00') (async)
tee$auto(0x5, 0x5, 0x4, 0x9)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r3, 0x89b1, &(0x7f0000000040)={'veth1_vlan\x00'}) (async)
select$auto(0x6, 0x0, &(0x7f0000000100)={[0xc6, 0x200, 0x2, 0x9, 0x9, 0x3, 0x6, 0x2, 0x9, 0x5e58296f, 0x0, 0x3, 0x3, 0x3, 0xb, 0xc]}, 0x0, 0x0) (async)
connect$auto(0x3, &(0x7f0000000140)={0xa, @sa_data_min="c4aeed448dc7fe8000"}, 0x55)
connect$auto(0x3, &(0x7f0000000000)={0x2, @sa_data_min="0800e00000010000c1728d2af766"}, 0x55)
r4 = syz_genetlink_get_family_id$auto_NLBL_MGMT(&(0x7f00000001c0), r2)
sendmsg$auto_NLBL_MGMT_C_REMOVE(r0, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x30, r4, 0x8, 0x70bd2a, 0x25dfdbfc, {}, [@NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x6}, @NLBL_MGMT_A_DOMAIN={0xb, 0x1, 'ns/ipc\x00'}, @NLBL_MGMT_A_DOMAIN={0x6, 0x1, '^\x00'}]}, 0x30}, 0x1, 0x0, 0x0, 0x40}, 0x20000000) (async, rerun: 64)
epoll_create$auto(0x4) (rerun: 64)

19.000257ms ago: executing program 3 (id=1676):
r0 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
write$auto(0xc8, 0x0, 0x40f6)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84)
socket(0x2, 0x3, 0x1)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x2, 0x0)
fallocate$auto(0x8000000000000003, 0x0, 0xd, 0xcbd5d)
sendfile$auto(0x6, 0x3, 0x0, 0xc01)
r2 = syz_genetlink_get_family_id$auto_NCSI(&(0x7f00000000c0), r1)
sendmsg$auto_NCSI_CMD_CLEAR_INTERFACE(r1, &(0x7f0000000440)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000400)={&(0x7f0000000100)={0x2d0, r2, 0x20, 0x70bd2c, 0x25dfdbff, {}, [@NCSI_ATTR_CHANNEL_MASK={0x8, 0x8, 0x8}, @NCSI_ATTR_PACKAGE_LIST={0x39, 0x2, "3b0ec179b97f94284df4d2bea63939707156cbc4d17c92dad27df60bb37464ba51019e5ead25d23a1576f5b14c128bf9646f716fa2"}, @NCSI_ATTR_DATA={0x26e, 0x5, "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"}, @NCSI_ATTR_CHANNEL_MASK={0x8, 0x8, 0x7}]}, 0x2d0}, 0x1, 0x0, 0x0, 0x4000880}, 0x40800)
sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r1, &(0x7f0000000580)={0x0, 0x38, &(0x7f0000000540)={&(0x7f0000000000)={0x24, r0, 0x1, 0x70bd2f, 0x25dfdbfc, {}, [@NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0xfc}, @NL80211_ATTR_OPER_CLASS={0x5, 0xd6, 0x3}]}, 0x24}, 0x1, 0x0, 0x0, 0x20008000}, 0x0)

0s ago: executing program 1 (id=1677):
mmap$auto(0x0, 0x9, 0x3ff57696, 0x9b72, 0x2, 0x8000000000008000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x2, 0x1, 0x0)
r0 = socket(0xa, 0x3, 0x3a)
stat$auto(&(0x7f0000000000)='..\x00\x00', 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_CTRL_CMD_GETFAMILY(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="14000e00f4c93d3205230a22fd0275f662a76d9774eeda0e1958f789f962d562458456f1b19b34", @ANYRES16=0x0, @ANYBLOB="040025bd7000fbdbdf2503000000"], 0x14}, 0x1, 0x0, 0x0, 0x81}, 0x20008000)
syz_genetlink_get_family_id$auto_TIPCv2(&(0x7f00000016c0), r1)
r2 = syz_genetlink_get_family_id$auto_IPVS(&(0x7f0000002840), r1)
sendmsg$auto_IPVS_CMD_GET_DAEMON(r1, &(0x7f0000003900)={0x0, 0x0, &(0x7f00000038c0)={&(0x7f0000002880)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="010027bd7000fedb06250b0000000800050017000000"], 0x1c}, 0x1, 0x0, 0x0, 0x4000004}, 0x28000000)
mmap$auto(0x0, 0x20009, 0x4000000e1, 0xeb1, 0x401, 0x8000)
syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000040), r0)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x3, 0x7)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x800000, 0x9, 0x3, 0x1000000eb5, 0x401, 0x8)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
pipe2$auto(0xfffffffffffffffc, 0x2)
madvise$auto(0x0, 0x7ffffffffffffffc, 0xc)
mmap$auto(0x0, 0x3, 0xdf, 0x9b72, 0x2, 0x8000)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000080))
socket(0xa, 0x801, 0x84)
bpf$auto(0x800000000000001f, 0xfffffffffffffffe, 0x0)
connect$auto(0x8, 0x0, 0x5)
mmap$auto(0x2000000000000000, 0x8, 0x1000000000dc, 0x9b72, 0x7, 0x8003)
syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, 0x0, 0x4000010)
madvise$auto(0x0, 0x8000000000000002, 0xd)
clone$auto(0x20001002, 0xd7b0, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x1000004000008)

kernel console output (not intermixed with test programs):

s leftover after parsing attributes in process `syz.2.919'.
[  294.738425][ T9777] netlink: 20 bytes leftover after parsing attributes in process `syz.0.928'.
[  297.164284][ T9823] nfsd: Unknown parameter ''
[  304.072688][ T5228] Bluetooth: hci2: ISO packet too small
[  304.078411][ T5228] Bluetooth: hci2: ISO packet too small
[  305.165253][ T9964] syz.0.976 (9964): attempted to duplicate a private mapping with mremap.  This is not supported.
[  305.354124][ T9941] delete_channel: no stack
[  305.925230][ T9993] netlink: 16 bytes leftover after parsing attributes in process `syz.2.981'.
[  306.760615][   T29] audit: type=1326 audit(8277292036.190:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10013 comm="syz.0.984" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f58b197dff9 code=0x0
[  306.910915][T10020] netlink: 72 bytes leftover after parsing attributes in process `syz.2.986'.
[  309.229200][   T54] Bluetooth: hci1: command 0x0406 tx timeout
[  309.584297][T10055] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  313.944508][T10122] openvswitch: HSR: Dropping previously announced user features
[  317.345878][ T1268] ieee802154 phy0 wpan0: encryption failed: -22
[  317.352289][ T1268] ieee802154 phy1 wpan1: encryption failed: -22
[  317.475078][T10177] Invalid ELF header magic: != ELF
[  318.603679][T10200] netlink: 244 bytes leftover after parsing attributes in process `syz.3.1026'.
[  321.125950][ T7777] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  321.333111][ T7777] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  321.750164][   T54] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  321.761435][   T54] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  321.769893][   T54] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  321.777854][   T54] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  321.786347][   T54] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  321.799914][   T54] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  322.186610][ T7777] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  322.489455][ T8894] syz.1.723 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  322.810921][ T8894] CPU: 0 UID: 0 PID: 8894 Comm: syz.1.723 Not tainted 6.12.0-rc1-syzkaller-00114-g3840cbe24cf0 #0
[  322.821573][ T8894] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  322.831647][ T8894] Call Trace:
[  322.834938][ T8894]  <TASK>
[  322.837881][ T8894]  dump_stack_lvl+0x16c/0x1f0
[  322.842596][ T8894]  dump_header+0x101/0x900
[  322.847137][ T8894]  oom_kill_process+0x270/0xa60
[  322.852019][ T8894]  out_of_memory+0x351/0x1700
[  322.856731][ T8894]  ? __pfx_out_of_memory+0x10/0x10
[  322.861874][ T8894]  ? rcu_read_unlock+0x17/0x60
[  322.866671][ T8894]  ? find_held_lock+0x2d/0x110
[  322.871471][ T8894]  mem_cgroup_out_of_memory+0x207/0x270
[  322.877127][ T8894]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  322.883234][ T8894]  ? do_raw_spin_unlock+0x172/0x230
[  322.888461][ T8894]  try_charge_memcg+0x5b9/0xaf0
[  322.893354][ T8894]  ? __pfx_try_charge_memcg+0x10/0x10
[  322.898753][ T8894]  ? get_mem_cgroup_from_mm+0x7f/0x5f0
[  322.904242][ T8894]  ? get_mem_cgroup_from_mm+0x129/0x5f0
[  322.909813][ T8894]  __mem_cgroup_charge+0x9b/0x280
[  322.914869][ T8894]  shmem_alloc_and_add_folio+0x507/0xc00
[  322.920540][ T8894]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  322.926725][ T8894]  ? shmem_allowable_huge_orders+0x208/0x440
[  322.932731][ T8894]  shmem_get_folio_gfp+0x689/0x1530
[  322.937956][ T8894]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  322.943624][ T8894]  shmem_write_begin+0x161/0x300
[  322.948593][ T8894]  ? __pfx_shmem_write_begin+0x10/0x10
[  322.954092][ T8894]  ? balance_dirty_pages_ratelimited_flags+0x92/0x1270
[  322.960978][ T8894]  generic_perform_write+0x2ba/0x920
[  322.966311][ T8894]  ? __pfx_generic_perform_write+0x10/0x10
[  322.972149][ T8894]  ? __pfx_generic_write_checks+0x10/0x10
[  322.977902][ T8894]  shmem_file_write_iter+0x10e/0x140
[  322.983222][ T8894]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  322.989064][ T8894]  __kernel_write_iter+0x318/0xa80
[  322.994208][ T8894]  ? __pfx___kernel_write_iter+0x10/0x10
[  322.999859][ T8894]  ? get_dump_page+0x15c/0x220
[  323.004669][ T8894]  dump_user_range+0x389/0x8a0
[  323.009465][ T8894]  ? __pfx_dump_user_range+0x10/0x10
[  323.014779][ T8894]  ? elf_coredump_extra_notes_write+0xbe/0x430
[  323.020963][ T8894]  ? __pfx_writenote+0x10/0x10
[  323.025765][ T8894]  elf_core_dump+0x2766/0x3840
[  323.030581][ T8894]  ? __pfx_elf_core_dump+0x10/0x10
[  323.035720][ T8894]  ? kasan_save_stack+0x42/0x60
[  323.040599][ T8894]  ? kasan_save_stack+0x33/0x60
[  323.045475][ T8894]  ? __kasan_kmalloc+0xaa/0xb0
[  323.050266][ T8894]  ? __kmalloc_node_noprof+0x211/0x440
[  323.055757][ T8894]  ? __kvmalloc_node_noprof+0xad/0x1a0
[  323.061245][ T8894]  ? irqentry_exit_to_user_mode+0x13f/0x280
[  323.067165][ T8894]  ? asm_exc_page_fault+0x26/0x30
[  323.072258][ T8894]  ? rcu_is_watching+0x12/0xc0
[  323.077040][ T8894]  ? trace_lock_acquire+0x14a/0x1d0
[  323.082255][ T8894]  ? get_signal+0x237c/0x26d0
[  323.086961][ T8894]  ? do_coredump+0x2c42/0x4160
[  323.091751][ T8894]  do_coredump+0x2c42/0x4160
[  323.096385][ T8894]  ? __pfx_do_coredump+0x10/0x10
[  323.101358][ T8894]  ? kmem_cache_free+0x152/0x4b0
[  323.106331][ T8894]  ? irqentry_exit_to_user_mode+0x13f/0x280
[  323.112247][ T8894]  ? asm_exc_page_fault+0x26/0x30
[  323.117362][ T8894]  get_signal+0x237c/0x26d0
[  323.121901][ T8894]  ? __pfx_get_signal+0x10/0x10
[  323.126864][ T8894]  ? rcu_is_watching+0x12/0xc0
[  323.131654][ T8894]  ? trace_irq_disable.constprop.0+0xe4/0x130
[  323.137764][ T8894]  arch_do_signal_or_restart+0x90/0x7e0
[  323.143354][ T8894]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  323.149564][ T8894]  ? do_user_addr_fault+0xa4b/0x13f0
[  323.154907][ T8894]  irqentry_exit_to_user_mode+0x13f/0x280
[  323.160660][ T8894]  asm_exc_page_fault+0x26/0x30
[  323.165541][ T8894] RIP: 0033:0x0
[  323.169015][ T8894] Code: Unable to access opcode bytes at 0xffffffffffffffd6.
[  323.176391][ T8894] RSP: 002b:00000000000002d3 EFLAGS: 00010217
[  323.182570][ T8894] RAX: 0000000000000000 RBX: 00007f714cb36130 RCX: 00007f714c97dff9
[  323.190557][ T8894] RDX: 0000000000000000 RSI: 00000000000002cb RDI: 000000000000000b
[  323.198551][ T8894] RBP: 00007f714c9f0296 R08: 0000000000000003 R09: 0000000000000000
[  323.206550][ T8894] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  323.214544][ T8894] R13: 0000000000000000 R14: 00007f714cb36130 R15: 00007ffc0aeaa3d8
[  323.222564][ T8894]  </TASK>
[  323.231815][ T7777] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  323.266866][ T8894] memory: usage 307200kB, limit 307200kB, failcnt 17433
[  323.276995][ T8894] memory+swap: usage 431528kB, limit 9007199254740988kB, failcnt 0
[  323.307280][ T8894] kmem: usage 4452kB, limit 9007199254740988kB, failcnt 0
[  323.327033][ T8894] Memory cgroup stats for /syz1:
[  323.327454][ T8894] cache 308297728
[  323.347985][ T8894] rss 1032192
[  323.351309][ T8894] rss_huge 0
[  323.361785][ T8894] shmem 308285440
[  323.375681][ T8894] mapped_file 16384
[  323.379546][ T8894] dirty 12288
[  323.398753][ T8894] writeback 0
[  323.402089][ T8894] workingset_refault_anon 3995
[  323.422292][ T8894] workingset_refault_file 77
[  323.426931][ T8894] swap 127311872
[  323.430487][ T8894] swapcached 684032
[  323.453645][ T8894] pgpgin 591465
[  323.457876][ T8894] pgpgout 517822
[  323.461449][ T8894] pgfault 131058
[  323.486063][ T8894] pgmajfault 545
[  323.489660][ T8894] inactive_anon 8523776
[  323.526127][ T8894] active_anon 301477888
[  323.548301][ T8894] inactive_file 12288
[  323.553800][ T8894] active_file 0
[  323.637213][ T7777] bridge_slave_1: left allmulticast mode
[  323.647679][ T8894] unevictable 0
[  323.651176][ T8894] hierarchical_memory_limit 314572800
[  323.661233][ T7777] bridge_slave_1: left promiscuous mode
[  323.674778][ T8894] hierarchical_memsw_limit 9223372036854771712
[  323.680971][ T8894] total_cache 308297728
[  323.692913][ T7777] bridge0: port 2(bridge_slave_1) entered disabled state
[  323.702313][ T8894] total_rss 1032192
[  323.707258][ T8894] total_rss_huge 0
[  323.715554][ T7777] bridge_slave_0: left allmulticast mode
[  323.731080][ T7777] bridge_slave_0: left promiscuous mode
[  323.742529][ T7777] bridge0: port 1(bridge_slave_0) entered disabled state
[  323.782319][ T8894] total_shmem 308285440
[  323.787463][ T8894] total_mapped_file 16384
[  323.791898][ T8894] total_dirty 12288
[  323.803480][ T8894] total_writeback 0
[  323.822799][ T8894] total_workingset_refault_anon 3995
[  323.882261][ T8894] total_workingset_refault_file 77
[  323.887428][ T8894] total_swap 127311872
[  323.891604][ T8894] total_swapcached 684032
[  323.904485][   T54] Bluetooth: hci3: command tx timeout
[  323.968359][ T8894] total_pgpgin 591465
[  324.003390][ T8894] total_pgpgout 517822
[  324.007523][ T8894] total_pgfault 131058
[  324.011624][ T8894] total_pgmajfault 545
[  324.076736][ T8894] total_inactive_anon 8523776
[  324.090522][ T5228] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  324.108396][ T5228] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  324.118721][ T5228] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  324.126892][ T5228] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  324.137205][ T5228] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  324.155157][ T5228] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  324.202104][ T8894] total_active_anon 301477888
[  324.207236][ T8894] total_inactive_file 12288
[  324.211996][ T8894] total_active_file 0
[  324.216495][ T8894] total_unevictable 0
[  324.220803][ T8894] anon_cost 0
[  324.242368][ T8894] file_cost 0
[  324.245745][ T8894] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.712,pid=8857,uid=0
[  324.321316][ T8894] Memory cgroup out of memory: Killed process 8857 (syz.1.712) total-vm:95444kB, anon-rss:744kB, file-rss:47628kB, shmem-rss:0kB, UID:0 pgtables:196kB oom_score_adj:1000
[  325.462925][ T8899] syz.1.723 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  325.589869][ T8899] CPU: 1 UID: 0 PID: 8899 Comm: syz.1.723 Not tainted 6.12.0-rc1-syzkaller-00114-g3840cbe24cf0 #0
[  325.600533][ T8899] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  325.610833][ T8899] Call Trace:
[  325.614133][ T8899]  <TASK>
[  325.617258][ T8899]  dump_stack_lvl+0x16c/0x1f0
[  325.621977][ T8899]  dump_header+0x101/0x900
[  325.626433][ T8899]  oom_kill_process+0x270/0xa60
[  325.631325][ T8899]  out_of_memory+0x351/0x1700
[  325.636048][ T8899]  ? __pfx_out_of_memory+0x10/0x10
[  325.641195][ T8899]  ? rcu_read_unlock+0x17/0x60
[  325.645990][ T8899]  ? find_held_lock+0x2d/0x110
[  325.650788][ T8899]  mem_cgroup_out_of_memory+0x207/0x270
[  325.656358][ T8899]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  325.662463][ T8899]  ? do_raw_spin_unlock+0x172/0x230
[  325.667698][ T8899]  try_charge_memcg+0x5b9/0xaf0
[  325.672592][ T8899]  ? __pfx_try_charge_memcg+0x10/0x10
[  325.678001][ T8899]  ? get_mem_cgroup_from_mm+0x7f/0x5f0
[  325.683497][ T8899]  ? get_mem_cgroup_from_mm+0x129/0x5f0
[  325.689075][ T8899]  __mem_cgroup_charge+0x9b/0x280
[  325.694141][ T8899]  shmem_alloc_and_add_folio+0x507/0xc00
[  325.699818][ T8899]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  325.706008][ T8899]  ? shmem_allowable_huge_orders+0x208/0x440
[  325.712022][ T8899]  ? mark_lock+0xb5/0xc60
[  325.716425][ T8899]  shmem_get_folio_gfp+0x689/0x1530
[  325.721664][ T8899]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  325.727336][ T8899]  ? inode_update_timestamps+0x165/0x580
[  325.733014][ T8899]  shmem_write_begin+0x161/0x300
[  325.737990][ T8899]  ? __pfx_shmem_write_begin+0x10/0x10
[  325.743574][ T8899]  ? lockdep_hardirqs_on+0x7c/0x110
[  325.748803][ T8899]  ? balance_dirty_pages_ratelimited_flags+0x92/0x1270
[  325.755680][ T8899]  ? ktime_get_coarse_real_ts64+0x147/0x200
[  325.761613][ T8899]  generic_perform_write+0x2ba/0x920
[  325.766940][ T8899]  ? __pfx_generic_perform_write+0x10/0x10
[  325.772774][ T8899]  ? __mark_inode_dirty+0x2ae/0xe60
[  325.778011][ T8899]  ? generic_update_time+0xcf/0xf0
[  325.783156][ T8899]  ? mnt_put_write_access_file+0x45/0xf0
[  325.788836][ T8899]  shmem_file_write_iter+0x10e/0x140
[  325.794176][ T8899]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  325.800034][ T8899]  __kernel_write_iter+0x318/0xa80
[  325.805185][ T8899]  ? __pfx___kernel_write_iter+0x10/0x10
[  325.810847][ T8899]  ? get_dump_page+0x15c/0x220
[  325.815663][ T8899]  ? copy_mc_enhanced_fast_string+0xa/0x13
[  325.821507][ T8899]  dump_user_range+0x389/0x8a0
[  325.826313][ T8899]  ? __pfx_dump_user_range+0x10/0x10
[  325.831631][ T8899]  ? elf_coredump_extra_notes_write+0xbe/0x430
[  325.837826][ T8899]  ? __pfx_writenote+0x10/0x10
[  325.842653][ T8899]  elf_core_dump+0x2766/0x3840
[  325.847471][ T8899]  ? __pfx_elf_core_dump+0x10/0x10
[  325.852616][ T8899]  ? kasan_save_stack+0x42/0x60
[  325.857496][ T8899]  ? kasan_save_stack+0x33/0x60
[  325.862378][ T8899]  ? __kasan_kmalloc+0xaa/0xb0
[  325.867172][ T8899]  ? __kmalloc_node_noprof+0x211/0x440
[  325.872663][ T8899]  ? __kvmalloc_node_noprof+0xad/0x1a0
[  325.878155][ T8899]  ? irqentry_exit_to_user_mode+0x13f/0x280
[  325.884082][ T8899]  ? asm_exc_page_fault+0x26/0x30
[  325.889180][ T8899]  ? rcu_is_watching+0x12/0xc0
[  325.893975][ T8899]  ? trace_lock_acquire+0x14a/0x1d0
[  325.899204][ T8899]  ? get_signal+0x237c/0x26d0
[  325.903923][ T8899]  ? do_coredump+0x2c42/0x4160
[  325.908714][ T8899]  do_coredump+0x2c42/0x4160
[  325.913342][ T8899]  ? __pfx_do_coredump+0x10/0x10
[  325.918303][ T8899]  ? kmem_cache_free+0x152/0x4b0
[  325.923272][ T8899]  ? irqentry_exit_to_user_mode+0x13f/0x280
[  325.929192][ T8899]  ? asm_exc_page_fault+0x26/0x30
[  325.934312][ T8899]  get_signal+0x237c/0x26d0
[  325.938859][ T8899]  ? __pfx_get_signal+0x10/0x10
[  325.943734][ T8899]  ? rcu_is_watching+0x12/0xc0
[  325.948521][ T8899]  ? trace_irq_disable.constprop.0+0xe4/0x130
[  325.954658][ T8899]  arch_do_signal_or_restart+0x90/0x7e0
[  325.960238][ T8899]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  325.966430][ T8899]  ? do_user_addr_fault+0xa4b/0x13f0
[  325.971759][ T8899]  irqentry_exit_to_user_mode+0x13f/0x280
[  325.977508][ T8899]  asm_exc_page_fault+0x26/0x30
[  325.982402][ T8899] RIP: 0033:0x0
[  325.985880][ T8899] Code: Unable to access opcode bytes at 0xffffffffffffffd6.
[  325.993345][ T8899] RSP: 002b:00000000000002d3 EFLAGS: 00010217
[  325.999432][ T8899] RAX: 0000000000000000 RBX: 00007f714cb36058 RCX: 00007f714c97dff9
[  326.007424][ T8899] RDX: 0000000000000000 RSI: 00000000000002cb RDI: 000000000000000b
[  326.015412][ T8899] RBP: 00007f714c9f0296 R08: 0000000000000003 R09: 0000000000000000
[  326.023404][ T8899] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  326.031392][ T8899] R13: 0000000000000000 R14: 00007f714cb36058 R15: 00007ffc0aeaa3d8
[  326.039401][ T8899]  </TASK>
[  326.047505][   T54] Bluetooth: hci3: command tx timeout
[  326.056920][ T8899] memory: usage 305424kB, limit 307200kB, failcnt 18534
[  326.064440][ T8899] memory+swap: usage 428164kB, limit 9007199254740988kB, failcnt 0
[  326.072414][ T8899] kmem: usage 4188kB, limit 9007199254740988kB, failcnt 0
[  326.079630][ T8899] Memory cgroup stats for /syz1:
[  326.079811][ T8899] cache 306769920
[  326.088542][ T8899] rss 905216
[  326.091855][ T8899] rss_huge 0
[  326.095157][ T8899] shmem 306757632
[  326.098801][ T8899] mapped_file 16384
[  326.103137][ T8899] dirty 12288
[  326.106445][ T8899] writeback 0
[  326.109742][ T8899] workingset_refault_anon 3998
[  326.114659][ T8899] workingset_refault_file 109
[  326.119798][ T8899] swap 125763584
[  326.124142][ T8899] swapcached 643072
[  326.128073][ T8899] pgpgin 592006
[  326.131550][ T8899] pgpgout 518777
[  326.135188][ T8899] pgfault 131181
[  326.138833][ T8899] pgmajfault 548
[  326.142510][ T8899] inactive_anon 122302464
[  326.146854][ T8899] active_anon 184676352
[  326.151116][ T8899] inactive_file 12288
[  326.157897][ T8899] active_file 0
[  326.161486][ T8899] unevictable 0
[  326.165300][ T8899] hierarchical_memory_limit 314572800
[  326.170684][ T8899] hierarchical_memsw_limit 9223372036854771712
[  326.192255][ T8899] total_cache 306769920
[  326.222848][ T8899] total_rss 905216
[  326.233195][   T54] Bluetooth: hci1: command tx timeout
[  326.281033][ T8899] total_rss_huge 0
[  326.346139][ T8899] total_shmem 306757632
[  326.350345][ T8899] total_mapped_file 16384
[  326.362433][ T8899] total_dirty 12288
[  326.366277][ T8899] total_writeback 0
[  326.370366][ T8899] total_workingset_refault_anon 3998
[  326.444614][ T8899] total_workingset_refault_file 109
[  326.496452][ T8899] total_swap 125763584
[  326.500686][ T8899] total_swapcached 643072
[  326.501031][ T7777] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  326.540091][ T8899] total_pgpgin 592006
[  326.548444][ T7777] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  326.561398][ T8899] total_pgpgout 518777
[  326.568039][ T7777] bond0 (unregistering): Released all slaves
[  326.589712][ T8899] total_pgfault 131181
[  326.697051][ T8899] total_pgmajfault 548
[  326.795725][T10276] chnl_net:caif_netlink_parms(): no params data found
[  326.821593][ T8899] total_inactive_anon 122302464
[  326.847738][ T8899] total_active_anon 184676352
[  326.904892][ T8899] total_inactive_file 12288
[  326.909540][ T8899] total_active_file 0
[  326.944917][ T8899] total_unevictable 0
[  326.948949][ T8899] anon_cost 0
[  326.983254][ T8899] file_cost 0
[  327.019189][ T8899] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.712,pid=8833,uid=0
[  327.143135][ T8899] Memory cgroup out of memory: Killed process 8833 (syz.1.712) total-vm:95444kB, anon-rss:620kB, file-rss:36616kB, shmem-rss:0kB, UID:0 pgtables:176kB oom_score_adj:1000
[  328.062404][   T54] Bluetooth: hci3: command tx timeout
[  328.160213][ T8857] syz.1.712 (8857) used greatest stack depth: 19360 bytes left
[  328.283629][T10276] bridge0: port 1(bridge_slave_0) entered blocking state
[  328.290763][T10276] bridge0: port 1(bridge_slave_0) entered disabled state
[  328.302649][   T54] Bluetooth: hci1: command tx timeout
[  328.323088][T10276] bridge_slave_0: entered allmulticast mode
[  328.330128][T10276] bridge_slave_0: entered promiscuous mode
[  328.400585][ T7777] hsr_slave_0: left promiscuous mode
[  328.410995][ T7777] hsr_slave_1: left promiscuous mode
[  328.427621][ T7777] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  328.447167][ T7777] batman_adv: batadv0: Removing interface: batadv_slave_0
[  328.528646][ T7777] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  328.537151][ T7777] batman_adv: batadv0: Removing interface: batadv_slave_1
[  328.643118][ T7777] veth1_macvtap: left promiscuous mode
[  328.655946][ T7777] veth0_macvtap: left promiscuous mode
[  328.666825][ T7777] veth1_vlan: left promiscuous mode
[  328.677405][ T7777] veth0_vlan: left promiscuous mode
[  329.352615][   T31] oom_reaper: reaped process 8833 (syz.1.712), now anon-rss:0kB, file-rss:34116kB, shmem-rss:0kB
[  330.142839][   T54] Bluetooth: hci3: command tx timeout
[  330.383055][   T54] Bluetooth: hci1: command tx timeout
[  330.882317][ T7777] team0 (unregistering): Port device team_slave_1 removed
[  331.101125][ T7777] team0 (unregistering): Port device team_slave_0 removed
[  332.261842][ T8832] syz.1.712 (8832) used greatest stack depth: 19296 bytes left
[  332.462416][   T54] Bluetooth: hci1: command tx timeout
[  332.890731][T10276] bridge0: port 2(bridge_slave_1) entered blocking state
[  332.903114][T10276] bridge0: port 2(bridge_slave_1) entered disabled state
[  332.922470][T10276] bridge_slave_1: entered allmulticast mode
[  332.929673][T10276] bridge_slave_1: entered promiscuous mode
[  333.015249][T10305] chnl_net:caif_netlink_parms(): no params data found
[  333.055502][T10276] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  333.074600][T10276] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  333.392541][T10276] team0: Port device team_slave_0 added
[  333.548682][T10276] team0: Port device team_slave_1 added
[  333.894086][ T8852] syz.1.712 (8852) used greatest stack depth: 18864 bytes left
[  334.128914][T10276] batman_adv: batadv0: Adding interface: batadv_slave_0
[  334.181469][T10276] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  334.260474][T10276] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  334.407840][T10276] batman_adv: batadv0: Adding interface: batadv_slave_1
[  334.444186][T10276] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  334.502726][T10276] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  334.549664][T10305] bridge0: port 1(bridge_slave_0) entered blocking state
[  334.567393][T10305] bridge0: port 1(bridge_slave_0) entered disabled state
[  334.577599][T10305] bridge_slave_0: entered allmulticast mode
[  334.588749][T10305] bridge_slave_0: entered promiscuous mode
[  334.632397][T10305] bridge0: port 2(bridge_slave_1) entered blocking state
[  334.649844][T10305] bridge0: port 2(bridge_slave_1) entered disabled state
[  334.672955][T10305] bridge_slave_1: entered allmulticast mode
[  334.680091][T10305] bridge_slave_1: entered promiscuous mode
[  335.006991][T10276] hsr_slave_0: entered promiscuous mode
[  335.021511][T10276] hsr_slave_1: entered promiscuous mode
[  335.046721][T10305] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  335.079640][T10305] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  335.328672][ T7777] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  335.460951][T10305] team0: Port device team_slave_0 added
[  335.629805][ T7777] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  335.672959][T10305] team0: Port device team_slave_1 added
[  335.746663][ T7777] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  335.994364][ T7777] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  336.033179][T10305] batman_adv: batadv0: Adding interface: batadv_slave_0
[  336.040753][T10305] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  336.102567][T10305] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  336.123828][T10305] batman_adv: batadv0: Adding interface: batadv_slave_1
[  336.142253][T10305] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  336.186512][T10305] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  336.355979][T10305] hsr_slave_0: entered promiscuous mode
[  336.368683][T10305] hsr_slave_1: entered promiscuous mode
[  336.376724][T10305] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  336.390477][T10305] Cannot create hsr debugfs directory
[  337.081177][ T7777] bridge_slave_1: left allmulticast mode
[  337.094858][ T7777] bridge_slave_1: left promiscuous mode
[  337.100616][ T7777] bridge0: port 2(bridge_slave_1) entered disabled state
[  337.125175][ T7777] bridge_slave_0: left allmulticast mode
[  337.130866][ T7777] bridge_slave_0: left promiscuous mode
[  337.137778][ T7777] bridge0: port 1(bridge_slave_0) entered disabled state
[  337.578454][ T8822] syz.1.712 (8822) used greatest stack depth: 18816 bytes left
[  337.865425][ T7777] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  337.905407][ T7777] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  337.917354][ T7777] bond0 (unregistering): Released all slaves
[  338.151004][ T7777] )zV: left promiscuous mode
[  338.938810][T10496] HSR: entered promiscuous mode
[  339.025121][ T7777] hsr_slave_0: left promiscuous mode
[  339.038528][ T7777] hsr_slave_1: left promiscuous mode
[  339.050940][ T7777] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  339.070419][ T7777] batman_adv: batadv0: Removing interface: batadv_slave_0
[  339.118670][ T7777] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  339.127916][ T7777] batman_adv: batadv0: Removing interface: batadv_slave_1
[  339.201525][ T7777] veth1_macvtap: left promiscuous mode
[  339.209690][ T7777] veth0_macvtap: left promiscuous mode
[  339.219980][ T7777] veth1_vlan: left promiscuous mode
[  339.230174][ T7777] veth0_vlan: left promiscuous mode
[  339.883673][T10516] futex_wake_op: syz.1.1086 tries to shift op by -256; fix this program
[  340.237597][ T7777] team0 (unregistering): Port device team_slave_1 removed
[  340.345725][ T7777] team0 (unregistering): Port device team_slave_0 removed
[  341.712996][T10305] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  341.732541][T10305] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  341.792730][T10305] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  341.860831][T10305] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  341.901812][T10276] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  341.969465][T10276] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  342.038936][T10276] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  342.061770][T10276] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  342.242511][T10305] 8021q: adding VLAN 0 to HW filter on device bond0
[  342.331691][T10305] 8021q: adding VLAN 0 to HW filter on device team0
[  342.416782][  T134] bridge0: port 1(bridge_slave_0) entered blocking state
[  342.423984][  T134] bridge0: port 1(bridge_slave_0) entered forwarding state
[  342.499267][ T7945] bridge0: port 2(bridge_slave_1) entered blocking state
[  342.506448][ T7945] bridge0: port 2(bridge_slave_1) entered forwarding state
[  342.538086][T10276] 8021q: adding VLAN 0 to HW filter on device bond0
[  342.598958][T10276] 8021q: adding VLAN 0 to HW filter on device team0
[  342.647908][   T35] bridge0: port 1(bridge_slave_0) entered blocking state
[  342.655088][   T35] bridge0: port 1(bridge_slave_0) entered forwarding state
[  342.691565][   T35] bridge0: port 2(bridge_slave_1) entered blocking state
[  342.698770][   T35] bridge0: port 2(bridge_slave_1) entered forwarding state
[  342.745186][T10305] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  343.113353][T10276] 8021q: adding VLAN 0 to HW filter on device batadv0
[  343.246977][T10305] 8021q: adding VLAN 0 to HW filter on device batadv0
[  343.268412][T10276] veth0_vlan: entered promiscuous mode
[  343.329928][T10276] veth1_vlan: entered promiscuous mode
[  343.370177][T10305] veth0_vlan: entered promiscuous mode
[  343.381546][T10305] veth1_vlan: entered promiscuous mode
[  343.422770][T10305] veth0_macvtap: entered promiscuous mode
[  343.439796][T10305] veth1_macvtap: entered promiscuous mode
[  343.481904][T10276] veth0_macvtap: entered promiscuous mode
[  343.508740][T10305] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  343.545470][T10305] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  343.562353][T10305] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  343.583359][T10305] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  343.594940][T10305] batman_adv: batadv0: Interface activated: batadv_slave_0
[  343.605515][T10276] veth1_macvtap: entered promiscuous mode
[  343.643965][T10305] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  343.686808][T10305] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  343.714436][T10305] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  343.747150][T10305] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  343.774191][T10305] batman_adv: batadv0: Interface activated: batadv_slave_1
[  343.795659][T10305] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  343.817083][T10305] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  343.836357][T10305] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  343.864237][T10305] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  343.916378][T10276] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  343.952296][T10276] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  343.962155][T10276] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  344.017510][T10276] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  344.033520][T10276] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  344.052265][T10276] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  344.079717][T10276] batman_adv: batadv0: Interface activated: batadv_slave_0
[  344.166535][T10276] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  344.194764][T10276] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  344.216354][T10276] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  344.252148][T10276] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  344.265978][T10276] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  344.286764][T10276] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  344.308228][T10276] batman_adv: batadv0: Interface activated: batadv_slave_1
[  344.419936][T10276] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  344.439347][T10276] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  344.459014][T10276] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  344.492301][T10276] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  344.712938][ T7945] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  344.762765][ T7945] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  344.812779][  T134] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  344.851579][  T134] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  344.872580][ T7945] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  344.880440][ T7945] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  344.999944][ T7778] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  345.027543][ T7778] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  345.431235][T10665] netlink: 1 bytes leftover after parsing attributes in process `syz.3.1104'.
[  345.463592][T10660] netlink: zone id is out of range
[  345.468758][T10660] netlink: zone id is out of range
[  345.501655][T10660] netlink: zone id is out of range
[  345.542788][T10660] netlink: zone id is out of range
[  345.561609][T10660] netlink: zone id is out of range
[  345.579476][T10660] netlink: zone id is out of range
[  345.602778][T10660] netlink: zone id is out of range
[  345.610174][T10660] netlink: zone id is out of range
[  345.622363][T10660] netlink: zone id is out of range
[  345.640665][T10660] netlink: zone id is out of range
[  347.875806][ T7777] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  348.134694][ T7777] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  348.372488][ T7777] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  348.577974][ T7777] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  348.888506][ T7777] bridge_slave_1: left allmulticast mode
[  348.894268][ T7777] bridge_slave_1: left promiscuous mode
[  348.899989][ T7777] bridge0: port 2(bridge_slave_1) entered disabled state
[  348.916545][ T7777] bridge_slave_0: left allmulticast mode
[  348.922449][ T7777] bridge_slave_0: left promiscuous mode
[  348.928180][ T7777] bridge0: port 1(bridge_slave_0) entered disabled state
[  350.308356][ T5228] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  350.317797][ T5228] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  350.325757][ T5228] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  350.335165][ T5228] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  350.343737][ T5228] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  350.351085][ T5228] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  351.092062][ T7777] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  351.280344][ T7777] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  351.402682][ T7777] bond0 (unregistering): Released all slaves
[  351.579539][ T7777] HSR: left promiscuous mode
[  352.465953][   T54] Bluetooth: hci0: command tx timeout
[  352.716021][ T7777] hsr_slave_0: left promiscuous mode
[  352.769561][ T7777] hsr_slave_1: left promiscuous mode
[  352.777706][ T7777] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  352.794958][ T7777] batman_adv: batadv0: Removing interface: batadv_slave_0
[  352.806867][ T7777] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  352.816228][ T7777] batman_adv: batadv0: Removing interface: batadv_slave_1
[  352.846737][ T7777] veth1_macvtap: left promiscuous mode
[  352.862310][ T7777] veth0_macvtap: left promiscuous mode
[  352.872580][ T7777] veth1_vlan: left promiscuous mode
[  352.877931][ T7777] veth0_vlan: left promiscuous mode
[  353.200050][T10854] svc: failed to register nfsdv3 RPC service (errno 111).
[  353.232722][T10854] svc: failed to register nfsaclv3 RPC service (errno 111).
[  353.761211][ T7777] team0 (unregistering): Port device team_slave_1 removed
[  353.846723][ T7777] team0 (unregistering): Port device team_slave_0 removed
[  354.473415][T10791] chnl_net:caif_netlink_parms(): no params data found
[  354.542348][   T54] Bluetooth: hci0: command tx timeout
[  354.899185][T10791] bridge0: port 1(bridge_slave_0) entered blocking state
[  354.908306][T10791] bridge0: port 1(bridge_slave_0) entered disabled state
[  354.942795][T10791] bridge_slave_0: entered allmulticast mode
[  354.949902][T10791] bridge_slave_0: entered promiscuous mode
[  354.990530][T10791] bridge0: port 2(bridge_slave_1) entered blocking state
[  355.002488][T10791] bridge0: port 2(bridge_slave_1) entered disabled state
[  355.019940][T10791] bridge_slave_1: entered allmulticast mode
[  355.031053][T10791] bridge_slave_1: entered promiscuous mode
[  355.206749][T10791] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  355.228920][T10791] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  355.365914][ T5228] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  355.378276][ T5228] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  355.392639][ T5228] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  355.421644][T10791] team0: Port device team_slave_0 added
[  355.431536][T10791] team0: Port device team_slave_1 added
[  355.529559][ T5228] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  355.557532][ T5228] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  355.567240][ T5228] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  355.600708][T10791] batman_adv: batadv0: Adding interface: batadv_slave_0
[  355.622372][T10791] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  355.658960][T10791] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  355.697375][T10791] batman_adv: batadv0: Adding interface: batadv_slave_1
[  355.705883][T10791] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  355.772248][T10791] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  355.844636][T10895] svc: failed to register nfsdv3 RPC service (errno 111).
[  355.887155][T10895] svc: failed to register nfsaclv3 RPC service (errno 111).
[  355.966705][ T7777] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  356.038268][T10791] hsr_slave_0: entered promiscuous mode
[  356.056295][T10791] hsr_slave_1: entered promiscuous mode
[  356.078419][T10791] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  356.094660][T10791] Cannot create hsr debugfs directory
[  356.148132][ T7777] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  356.254658][ T7777] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  356.354891][ T7777] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  356.623618][ T5228] Bluetooth: hci0: command tx timeout
[  356.642692][T10874] chnl_net:caif_netlink_parms(): no params data found
[  356.817507][ T7777] bridge_slave_1: left allmulticast mode
[  356.842638][ T7777] bridge_slave_1: left promiscuous mode
[  356.848404][ T7777] bridge0: port 2(bridge_slave_1) entered disabled state
[  356.875070][ T7777] bridge_slave_0: left allmulticast mode
[  356.880784][ T7777] bridge_slave_0: left promiscuous mode
[  356.892563][ T7777] bridge0: port 1(bridge_slave_0) entered disabled state
[  357.663531][ T7777] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  357.675363][ T5228] Bluetooth: hci2: command tx timeout
[  357.685489][ T7777] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  357.700500][ T7777] bond0 (unregistering): Released all slaves
[  357.871729][ T7777] HSR: left promiscuous mode
[  358.110620][T10874] bridge0: port 1(bridge_slave_0) entered blocking state
[  358.118075][T10874] bridge0: port 1(bridge_slave_0) entered disabled state
[  358.127773][T10874] bridge_slave_0: entered allmulticast mode
[  358.135326][T10874] bridge_slave_0: entered promiscuous mode
[  358.242796][T10874] bridge0: port 2(bridge_slave_1) entered blocking state
[  358.255932][T10874] bridge0: port 2(bridge_slave_1) entered disabled state
[  358.272353][T10874] bridge_slave_1: entered allmulticast mode
[  358.289273][T10874] bridge_slave_1: entered promiscuous mode
[  358.416229][T10874] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  358.434477][T10874] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  358.545485][T10874] team0: Port device team_slave_0 added
[  358.618705][T10874] team0: Port device team_slave_1 added
[  358.644796][ T7777] hsr_slave_0: left promiscuous mode
[  358.659181][ T7777] hsr_slave_1: left promiscuous mode
[  358.671920][ T7777] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  358.686257][ T7777] batman_adv: batadv0: Removing interface: batadv_slave_0
[  358.696785][ T7777] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  358.704481][ T7777] batman_adv: batadv0: Removing interface: batadv_slave_1
[  358.712655][ T5228] Bluetooth: hci0: command tx timeout
[  358.730591][ T7777] veth1_macvtap: left promiscuous mode
[  358.745736][ T7777] veth0_macvtap: left promiscuous mode
[  358.751299][ T7777] veth1_vlan: left promiscuous mode
[  358.772384][ T7777] veth0_vlan: left promiscuous mode
[  359.653825][ T7777] team0 (unregistering): Port device team_slave_1 removed
[  359.752327][ T5228] Bluetooth: hci2: command tx timeout
[  359.760574][ T7777] team0 (unregistering): Port device team_slave_0 removed
[  360.458992][T10791] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  360.469116][T10791] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  360.514624][T10874] batman_adv: batadv0: Adding interface: batadv_slave_0
[  360.521608][T10874] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  360.572315][T10874] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  360.611462][T10791] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  360.623953][T10791] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  360.635358][T10874] batman_adv: batadv0: Adding interface: batadv_slave_1
[  360.670891][T10874] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  360.697407][T10874] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  360.807766][T10874] hsr_slave_0: entered promiscuous mode
[  360.820335][T10874] hsr_slave_1: entered promiscuous mode
[  360.830169][T10874] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  360.845494][T10874] Cannot create hsr debugfs directory
[  361.150794][T10791] 8021q: adding VLAN 0 to HW filter on device bond0
[  361.211188][T10791] 8021q: adding VLAN 0 to HW filter on device team0
[  361.230107][ T7777] bridge0: port 1(bridge_slave_0) entered blocking state
[  361.237295][ T7777] bridge0: port 1(bridge_slave_0) entered forwarding state
[  361.315630][T10791] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  361.326212][T10791] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  361.344553][ T7777] bridge0: port 2(bridge_slave_1) entered blocking state
[  361.351771][ T7777] bridge0: port 2(bridge_slave_1) entered forwarding state
[  361.665259][T10874] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  361.763872][T10874] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  361.823060][ T5228] Bluetooth: hci2: command tx timeout
[  361.863153][T10874] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  361.899916][T10874] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  361.988715][T10791] 8021q: adding VLAN 0 to HW filter on device batadv0
[  362.004303][T10992] syz.2.1153(10992): Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored.
[  362.177005][T10791] veth0_vlan: entered promiscuous mode
[  362.224967][T10791] veth1_vlan: entered promiscuous mode
[  362.310435][T10791] veth0_macvtap: entered promiscuous mode
[  362.348576][T10791] veth1_macvtap: entered promiscuous mode
[  362.407911][T10791] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  362.437237][T10791] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  362.463057][T10791] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  362.487664][T10791] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  362.518613][T10791] batman_adv: batadv0: Interface activated: batadv_slave_0
[  362.547460][T10874] 8021q: adding VLAN 0 to HW filter on device bond0
[  362.600585][T10791] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  362.626097][T10791] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  362.652404][T10791] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  362.666627][T10791] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  362.693647][T10791] batman_adv: batadv0: Interface activated: batadv_slave_1
[  362.716092][T10874] 8021q: adding VLAN 0 to HW filter on device team0
[  362.741360][T10791] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  362.752577][T10791] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  362.761323][T10791] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  362.775173][T10791] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  362.798459][T11022] kernel read not supported for file /�)-\&[} (pid: 11022 comm: syz.3.1156)
[  362.812948][   T29] audit: type=1800 audit(8277292038.383:6): pid=11022 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1156" name=FF292D5C265B7D dev="mqueue" ino=36226 res=0 errno=0
[  362.819304][  T134] bridge0: port 1(bridge_slave_0) entered blocking state
[  362.840549][  T134] bridge0: port 1(bridge_slave_0) entered forwarding state
[  362.916158][ T7778] bridge0: port 2(bridge_slave_1) entered blocking state
[  362.923423][ T7778] bridge0: port 2(bridge_slave_1) entered forwarding state
[  363.091392][   T53] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  363.103055][T10874] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  363.122377][   T53] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  363.205681][   T53] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  363.244286][   T53] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  363.626480][T10874] 8021q: adding VLAN 0 to HW filter on device batadv0
[  363.774449][T10874] veth0_vlan: entered promiscuous mode
[  363.822823][T10874] veth1_vlan: entered promiscuous mode
[  363.902397][ T5228] Bluetooth: hci2: command tx timeout
[  363.947206][T10874] veth0_macvtap: entered promiscuous mode
[  363.962099][T10874] veth1_macvtap: entered promiscuous mode
[  363.994984][T10874] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  364.016274][T10874] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  364.036043][T10874] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  364.057305][T10874] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  364.091664][T10874] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  364.106474][T10874] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  364.128829][T10874] batman_adv: batadv0: Interface activated: batadv_slave_0
[  364.167853][T10874] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  364.222977][T10874] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  364.233083][T10874] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  364.243582][T10874] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  364.258379][T10874] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  364.268910][T10874] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  364.280103][T10874] batman_adv: batadv0: Interface activated: batadv_slave_1
[  364.327995][T10874] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  364.351825][T10874] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  364.372255][T10874] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  364.381160][T10874] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  364.615845][ T7778] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  364.645740][ T7778] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  364.723178][ T7945] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  364.740128][ T7945] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  364.827570][T11111] nbd: socks must be embedded in a SOCK_ITEM attr
[  365.576948][T11144] netlink: 'syz.1.1175': attribute type 11 has an invalid length.
[  365.757541][T11156] kernel read not supported for file /#)-\&[} (pid: 11156 comm: syz.0.1178)
[  365.818127][   T29] audit: type=1800 audit(8277292041.383:7): pid=11156 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1178" name="#)-\&[}" dev="mqueue" ino=37263 res=0 errno=0
[  366.290016][T11192] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1183'.
[  366.303955][T11192] net_ratelimit: 19 callbacks suppressed
[  366.303975][T11192] openvswitch: netlink: Flow set message rejected, Key attribute missing.
[  367.255012][   T29] audit: type=1326 audit(8277292042.823:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11225 comm="syz.0.1190" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f75d417dff9 code=0x0
[  369.731607][T11322] svc: failed to register nfsdv3 RPC service (errno 111).
[  369.764318][T11322] svc: failed to register nfsaclv3 RPC service (errno 111).
[  370.256707][T11342] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1209'.
[  373.455176][T11418] xs_local_setup_socket: unhandled error (13) connecting to /var/run/rpcbind.sock
[  373.538866][T11418] svc: failed to register nfsdv3 RPC service (errno 111).
[  373.564871][T11418] svc: failed to register nfsaclv3 RPC service (errno 111).
[  375.442121][ T7778] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  375.724638][ T7778] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  375.839768][T11466] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  375.850391][T11466] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  375.862436][T11466] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  375.870285][T11466] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  375.879747][T11466] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  375.892999][T11466] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  376.269180][ T7778] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  376.465888][ T7778] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  376.636954][T11460] HSR: entered promiscuous mode
[  377.078790][ T7778] bridge_slave_1: left allmulticast mode
[  377.099443][ T7778] bridge_slave_1: left promiscuous mode
[  377.122443][ T7778] bridge0: port 2(bridge_slave_1) entered disabled state
[  377.173058][ T7778] bridge_slave_0: left allmulticast mode
[  377.183792][ T7778] bridge_slave_0: left promiscuous mode
[  377.189990][ T7778] bridge0: port 1(bridge_slave_0) entered disabled state
[  377.986094][ T5228] Bluetooth: hci2: command tx timeout
[  378.535846][ T7778] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  378.572688][ T7778] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  378.600452][ T7778] bond0 (unregistering): Released all slaves
[  378.750387][T11464] chnl_net:caif_netlink_parms(): no params data found
[  378.792681][ T1268] ieee802154 phy0 wpan0: encryption failed: -22
[  378.799105][ T1268] ieee802154 phy1 wpan1: encryption failed: -22
[  379.688965][ T7778] hsr_slave_0: left promiscuous mode
[  379.777917][ T7778] hsr_slave_1: left promiscuous mode
[  379.798720][ T7778] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  379.811182][ T7778] batman_adv: batadv0: Removing interface: batadv_slave_0
[  379.827750][ T7778] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  379.840191][ T7778] batman_adv: batadv0: Removing interface: batadv_slave_1
[  379.893683][ T7778] veth1_macvtap: left promiscuous mode
[  379.914761][ T7778] veth0_macvtap: left promiscuous mode
[  379.932358][ T7778] veth1_vlan: left promiscuous mode
[  379.941420][ T7778] veth0_vlan: left promiscuous mode
[  380.072761][ T5228] Bluetooth: hci2: command tx timeout
[  380.253830][T11547] nfsd: Unknown parameter '���g]�ߓ�%�����r�.����`�k����T�1�N��NF�����$A3�'
[  380.992515][ T7778] team0 (unregistering): Port device team_slave_1 removed
[  381.058633][ T7778] team0 (unregistering): Port device team_slave_0 removed
[  381.614737][T11464] bridge0: port 1(bridge_slave_0) entered blocking state
[  381.621976][T11464] bridge0: port 1(bridge_slave_0) entered disabled state
[  381.631692][T11464] bridge_slave_0: entered allmulticast mode
[  381.639201][T11464] bridge_slave_0: entered promiscuous mode
[  381.689355][T11464] bridge0: port 2(bridge_slave_1) entered blocking state
[  381.718345][T11464] bridge0: port 2(bridge_slave_1) entered disabled state
[  381.739125][T11464] bridge_slave_1: entered allmulticast mode
[  381.746371][T11464] bridge_slave_1: entered promiscuous mode
[  381.904603][T11464] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  381.933147][T11464] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  382.097394][T11464] team0: Port device team_slave_0 added
[  382.123441][T11464] team0: Port device team_slave_1 added
[  382.144048][ T5228] Bluetooth: hci2: command tx timeout
[  382.365272][T11464] batman_adv: batadv0: Adding interface: batadv_slave_0
[  382.380106][T11464] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  382.435701][T11464] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  382.477561][T11464] batman_adv: batadv0: Adding interface: batadv_slave_1
[  382.496274][T11464] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  382.569395][T11464] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  383.003892][T11464] hsr_slave_0: entered promiscuous mode
[  383.030679][T11464] hsr_slave_1: entered promiscuous mode
[  383.049118][T11464] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  383.082415][T11464] Cannot create hsr debugfs directory
[  383.357195][T11466] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  383.366037][T11466] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  383.382478][T11466] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  383.393842][T11466] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  383.401512][T11466] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  383.409724][T11466] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  384.114701][T11607] chnl_net:caif_netlink_parms(): no params data found
[  384.223910][ T5228] Bluetooth: hci2: command tx timeout
[  384.495836][ T7945] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  384.763392][ T7945] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  384.818182][T11607] bridge0: port 1(bridge_slave_0) entered blocking state
[  384.851941][T11607] bridge0: port 1(bridge_slave_0) entered disabled state
[  384.881105][T11607] bridge_slave_0: entered allmulticast mode
[  384.913730][T11607] bridge_slave_0: entered promiscuous mode
[  384.934948][T11607] bridge0: port 2(bridge_slave_1) entered blocking state
[  384.942082][T11607] bridge0: port 2(bridge_slave_1) entered disabled state
[  384.959590][T11607] bridge_slave_1: entered allmulticast mode
[  384.980793][T11607] bridge_slave_1: entered promiscuous mode
[  385.109143][ T7945] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  385.304000][ T7945] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  385.414427][T11607] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  385.467633][T11607] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  385.503989][ T5228] Bluetooth: hci1: command tx timeout
[  385.680899][T11464] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  385.720234][T11464] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  385.749508][T11607] team0: Port device team_slave_0 added
[  385.767923][T11607] team0: Port device team_slave_1 added
[  385.788648][T11464] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  385.876168][T11464] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  385.938768][T11607] batman_adv: batadv0: Adding interface: batadv_slave_0
[  385.952555][T11607] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  385.998229][T11607] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  386.072834][T11607] batman_adv: batadv0: Adding interface: batadv_slave_1
[  386.079823][T11607] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  386.114938][T11607] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  386.179489][ T7945] bridge_slave_1: left allmulticast mode
[  386.185301][ T7945] bridge_slave_1: left promiscuous mode
[  386.191015][ T7945] bridge0: port 2(bridge_slave_1) entered disabled state
[  386.237316][ T7945] bridge_slave_0: left allmulticast mode
[  386.249224][ T7945] bridge_slave_0: left promiscuous mode
[  386.266710][ T7945] bridge0: port 1(bridge_slave_0) entered disabled state
[  387.482761][ T7945] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  387.495274][ T7945] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  387.527645][ T7945] bond0 (unregistering): Released all slaves
[  387.577876][T11607] hsr_slave_0: entered promiscuous mode
[  387.583908][ T5228] Bluetooth: hci1: command tx timeout
[  387.596356][T11607] hsr_slave_1: entered promiscuous mode
[  387.624723][T11607] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  387.636236][T11607] Cannot create hsr debugfs directory
[  387.886084][   T29] audit: type=1326 audit(8277292051.651:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11715 comm="syz.2.1291" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f5282b7dff9 code=0x0
[  388.007334][   T29] audit: type=1326 audit(8277292051.761:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11715 comm="syz.2.1291" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f5282b7dff9 code=0x0
[  388.251907][ T7945] hsr_slave_0: left promiscuous mode
[  388.258062][ T7945] hsr_slave_1: left promiscuous mode
[  388.266731][ T7945] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  388.281467][ T7945] batman_adv: batadv0: Removing interface: batadv_slave_0
[  388.295526][ T7945] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  388.312251][ T7945] batman_adv: batadv0: Removing interface: batadv_slave_1
[  388.343381][ T7945] veth1_macvtap: left promiscuous mode
[  388.348970][ T7945] veth0_macvtap: left promiscuous mode
[  388.361576][ T7945] veth1_vlan: left promiscuous mode
[  388.370980][ T7945] veth0_vlan: left promiscuous mode
[  389.471827][ T7945] team0 (unregistering): Port device team_slave_1 removed
[  389.600475][ T7945] team0 (unregistering): Port device team_slave_0 removed
[  389.670131][ T5228] Bluetooth: hci1: command tx timeout
[  390.074235][T11750] netlink: 196 bytes leftover after parsing attributes in process `syz.2.1301'.
[  390.840658][T11464] 8021q: adding VLAN 0 to HW filter on device bond0
[  390.905247][T11464] 8021q: adding VLAN 0 to HW filter on device team0
[  390.948174][  T134] bridge0: port 1(bridge_slave_0) entered blocking state
[  390.955367][  T134] bridge0: port 1(bridge_slave_0) entered forwarding state
[  390.993716][ T7778] bridge0: port 2(bridge_slave_1) entered blocking state
[  391.000830][ T7778] bridge0: port 2(bridge_slave_1) entered forwarding state
[  391.689098][T11464] 8021q: adding VLAN 0 to HW filter on device batadv0
[  391.742395][ T5228] Bluetooth: hci1: command tx timeout
[  391.925523][T11464] veth0_vlan: entered promiscuous mode
[  391.941305][T11607] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  391.942103][T11770] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1303'.
[  392.206969][ T7945] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  392.256554][T11464] veth1_vlan: entered promiscuous mode
[  392.274580][T11607] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  392.313408][T11607] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  392.447725][ T7945] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  392.483259][T11607] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  392.553395][T11466] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  392.572461][T11466] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  392.573576][ T7945] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  392.603037][T11466] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  392.611000][T11466] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  392.619783][T11466] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  392.628540][T11466] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  392.747190][ T7945] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  392.825155][T11464] veth0_macvtap: entered promiscuous mode
[  392.902345][T11607] 8021q: adding VLAN 0 to HW filter on device bond0
[  392.918345][T11607] 8021q: adding VLAN 0 to HW filter on device team0
[  392.936163][T11464] veth1_macvtap: entered promiscuous mode
[  393.001083][ T7778] bridge0: port 1(bridge_slave_0) entered blocking state
[  393.008263][ T7778] bridge0: port 1(bridge_slave_0) entered forwarding state
[  393.025092][ T7778] bridge0: port 2(bridge_slave_1) entered blocking state
[  393.032276][ T7778] bridge0: port 2(bridge_slave_1) entered forwarding state
[  393.067896][T11464] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  393.079738][T11464] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  393.099041][T11464] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  393.126670][T11464] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  393.144130][T11464] batman_adv: batadv0: Interface activated: batadv_slave_0
[  393.189263][T11464] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  393.206281][T11464] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  393.226036][T11464] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  393.252221][T11464] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  393.287326][T11464] batman_adv: batadv0: Interface activated: batadv_slave_1
[  393.311827][ T7945] bridge_slave_1: left allmulticast mode
[  393.318144][ T7945] bridge_slave_1: left promiscuous mode
[  393.330822][ T7945] bridge0: port 2(bridge_slave_1) entered disabled state
[  393.354410][ T7945] bridge_slave_0: left allmulticast mode
[  393.360101][ T7945] bridge_slave_0: left promiscuous mode
[  393.367787][ T7945] bridge0: port 1(bridge_slave_0) entered disabled state
[  394.176126][ T7945] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  394.228999][ T7945] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  394.248524][ T7945] bond0 (unregistering): Released all slaves
[  394.331307][T11464] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  394.350187][T11464] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  394.363186][T11464] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  394.372480][T11464] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  394.402841][ T7945] HSR: left promiscuous mode
[  394.703465][ T5228] Bluetooth: hci3: command tx timeout
[  394.878397][ T7945] hsr_slave_0: left promiscuous mode
[  394.890656][ T7945] hsr_slave_1: left promiscuous mode
[  394.910019][ T7945] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  394.918566][ T7945] batman_adv: batadv0: Removing interface: batadv_slave_0
[  394.927213][ T7945] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  394.937626][ T7945] batman_adv: batadv0: Removing interface: batadv_slave_1
[  394.964619][ T7945] veth1_macvtap: left promiscuous mode
[  394.970387][ T7945] veth0_macvtap: left promiscuous mode
[  394.980531][ T7945] veth1_vlan: left promiscuous mode
[  394.987580][ T7945] veth0_vlan: left promiscuous mode
[  395.906024][ T7945] team0 (unregistering): Port device team_slave_1 removed
[  395.959847][ T7945] team0 (unregistering): Port device team_slave_0 removed
[  396.544105][  T134] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  396.553037][  T134] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  396.593824][T11812] chnl_net:caif_netlink_parms(): no params data found
[  396.606247][T11607] 8021q: adding VLAN 0 to HW filter on device batadv0
[  396.706314][ T7777] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  396.752424][ T7777] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  396.783362][ T5228] Bluetooth: hci3: command tx timeout
[  396.877465][T11812] bridge0: port 1(bridge_slave_0) entered blocking state
[  396.892334][T11812] bridge0: port 1(bridge_slave_0) entered disabled state
[  396.899568][T11812] bridge_slave_0: entered allmulticast mode
[  396.923923][T11812] bridge_slave_0: entered promiscuous mode
[  396.944737][T11812] bridge0: port 2(bridge_slave_1) entered blocking state
[  396.951871][T11812] bridge0: port 2(bridge_slave_1) entered disabled state
[  396.961671][T11812] bridge_slave_1: entered allmulticast mode
[  396.968959][T11812] bridge_slave_1: entered promiscuous mode
[  397.076482][T11812] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  397.129295][T11607] veth0_vlan: entered promiscuous mode
[  397.150438][T11812] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  397.239522][T11812] team0: Port device team_slave_0 added
[  397.256131][T11607] veth1_vlan: entered promiscuous mode
[  397.291813][T11812] team0: Port device team_slave_1 added
[  397.380048][T11812] batman_adv: batadv0: Adding interface: batadv_slave_0
[  397.392277][T11812] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  397.423562][T11812] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  397.488836][T11466] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  397.490212][  T134] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  397.501609][T11466] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  397.529365][T11466] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  397.540270][T11812] batman_adv: batadv0: Adding interface: batadv_slave_1
[  397.547536][T11812] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  397.583520][T11812] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  397.595604][T11466] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  397.616623][T11466] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  397.626294][T11466] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  397.645051][T11607] veth0_macvtap: entered promiscuous mode
[  397.699320][  T134] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  397.736494][T11607] veth1_macvtap: entered promiscuous mode
[  397.757103][T11607] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  397.767677][T11607] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  397.777946][T11607] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  397.788604][T11607] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  397.799997][T11607] batman_adv: batadv0: Interface activated: batadv_slave_0
[  397.810417][T11607] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  397.822046][T11607] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  397.837520][T11607] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  397.848289][T11607] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  397.865553][T11607] batman_adv: batadv0: Interface activated: batadv_slave_1
[  397.903636][  T134] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  397.938269][T11812] hsr_slave_0: entered promiscuous mode
[  397.955718][T11812] hsr_slave_1: entered promiscuous mode
[  398.011150][  T134] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  398.031235][T11607] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  398.044487][T11607] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  398.058019][T11607] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  398.072373][T11607] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  398.574537][ T7777] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  398.594317][ T7777] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  398.607611][  T134] bridge_slave_1: left allmulticast mode
[  398.613884][  T134] bridge_slave_1: left promiscuous mode
[  398.619613][  T134] bridge0: port 2(bridge_slave_1) entered disabled state
[  398.666374][  T134] bridge_slave_0: left allmulticast mode
[  398.672071][  T134] bridge_slave_0: left promiscuous mode
[  398.680635][  T134] bridge0: port 1(bridge_slave_0) entered disabled state
[  398.866034][T11466] Bluetooth: hci3: command tx timeout
[  399.110152][  T134] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  399.127588][  T134] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  399.141564][  T134] bond0 (unregistering): Released all slaves
[  399.249305][ T7945] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  399.284985][ T7945] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  399.731552][T11949] chnl_net:caif_netlink_parms(): no params data found
[  399.762296][T11466] Bluetooth: hci0: command tx timeout
[  399.961029][  T134] hsr_slave_0: left promiscuous mode
[  399.980268][  T134] hsr_slave_1: left promiscuous mode
[  399.987531][  T134] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  400.001321][  T134] batman_adv: batadv0: Removing interface: batadv_slave_0
[  400.011105][  T134] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  400.019469][  T134] batman_adv: batadv0: Removing interface: batadv_slave_1
[  400.052668][  T134] veth1_macvtap: left promiscuous mode
[  400.059878][  T134] veth0_macvtap: left promiscuous mode
[  400.071373][  T134] veth1_vlan: left promiscuous mode
[  400.084777][  T134] veth0_vlan: left promiscuous mode
[  400.958529][T11466] Bluetooth: hci3: command tx timeout
[  401.043798][  T134] team0 (unregistering): Port device team_slave_1 removed
[  401.133451][  T134] team0 (unregistering): Port device team_slave_0 removed
[  401.559836][T11949] bridge0: port 1(bridge_slave_0) entered blocking state
[  401.567947][T11949] bridge0: port 1(bridge_slave_0) entered disabled state
[  401.577821][T11949] bridge_slave_0: entered allmulticast mode
[  401.593693][T11949] bridge_slave_0: entered promiscuous mode
[  401.627224][T11949] bridge0: port 2(bridge_slave_1) entered blocking state
[  401.634644][T11949] bridge0: port 2(bridge_slave_1) entered disabled state
[  401.641770][T11949] bridge_slave_1: entered allmulticast mode
[  401.649324][T11949] bridge_slave_1: entered promiscuous mode
[  401.695155][T11949] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  401.753254][T11949] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  401.828434][T11466] Bluetooth: hci0: command tx timeout
[  401.895798][T11949] team0: Port device team_slave_0 added
[  401.949412][T11949] team0: Port device team_slave_1 added
[  402.027522][T11812] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  402.052966][T11949] batman_adv: batadv0: Adding interface: batadv_slave_0
[  402.059958][T11949] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  402.102862][T11949] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  402.116909][T11949] batman_adv: batadv0: Adding interface: batadv_slave_1
[  402.125600][T11949] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  402.154171][T11949] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  402.171200][T11812] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  402.193734][T11812] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  402.242057][T11812] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  402.269665][T11949] hsr_slave_0: entered promiscuous mode
[  402.277180][T11949] hsr_slave_1: entered promiscuous mode
[  402.287274][T11949] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  402.295279][T11949] Cannot create hsr debugfs directory
[  402.549440][T11812] 8021q: adding VLAN 0 to HW filter on device bond0
[  402.565301][T12063] netlink: 'syz.3.1331': attribute type 2 has an invalid length.
[  402.771694][T11812] 8021q: adding VLAN 0 to HW filter on device team0
[  402.801578][ T7945] bridge0: port 1(bridge_slave_0) entered blocking state
[  402.808752][ T7945] bridge0: port 1(bridge_slave_0) entered forwarding state
[  402.868141][ T7945] bridge0: port 2(bridge_slave_1) entered blocking state
[  402.875299][ T7945] bridge0: port 2(bridge_slave_1) entered forwarding state
[  403.258082][T11949] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  403.290931][T11949] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  403.306898][T11949] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  403.340880][T11949] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  403.410172][T11812] 8021q: adding VLAN 0 to HW filter on device batadv0
[  403.539222][T11812] veth0_vlan: entered promiscuous mode
[  403.568107][T11812] veth1_vlan: entered promiscuous mode
[  403.666793][T11812] veth0_macvtap: entered promiscuous mode
[  403.712929][T11949] 8021q: adding VLAN 0 to HW filter on device bond0
[  403.735330][T11812] veth1_macvtap: entered promiscuous mode
[  403.784641][T11949] 8021q: adding VLAN 0 to HW filter on device team0
[  403.817898][  T134] bridge0: port 1(bridge_slave_0) entered blocking state
[  403.825080][  T134] bridge0: port 1(bridge_slave_0) entered forwarding state
[  403.896229][  T134] bridge0: port 2(bridge_slave_1) entered blocking state
[  403.903414][  T134] bridge0: port 2(bridge_slave_1) entered forwarding state
[  403.912987][T11466] Bluetooth: hci0: command tx timeout
[  403.936486][T11812] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  403.976197][T11812] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  403.999249][T11812] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  404.034592][T11812] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  404.059942][T11812] batman_adv: batadv0: Interface activated: batadv_slave_0
[  404.140524][T11812] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  404.171616][T11812] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  404.186880][T11812] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  404.213848][T11812] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  404.243579][T11812] batman_adv: batadv0: Interface activated: batadv_slave_1
[  404.275011][T11949] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  404.300538][T11949] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  404.340584][T11812] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  404.362275][T11812] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  404.371037][T11812] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  404.422215][T11812] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  404.607079][ T7777] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  404.649002][ T7777] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  404.764918][ T7777] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  404.777279][ T7777] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  404.814787][T11949] 8021q: adding VLAN 0 to HW filter on device batadv0
[  404.879303][T11949] veth0_vlan: entered promiscuous mode
[  404.911755][T11949] veth1_vlan: entered promiscuous mode
[  404.983045][T11949] veth0_macvtap: entered promiscuous mode
[  405.003140][T11949] veth1_macvtap: entered promiscuous mode
[  405.035401][T11949] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  405.062254][T11949] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  405.072970][T11949] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  405.092264][T11949] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  405.109754][T11949] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  405.120475][T11949] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  405.132050][T11949] batman_adv: batadv0: Interface activated: batadv_slave_0
[  405.161977][T11949] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  405.183099][T11949] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  405.213006][T11949] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  405.242276][T11949] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  405.262423][T11949] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  405.289247][T11949] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  405.312814][T11949] batman_adv: batadv0: Interface activated: batadv_slave_1
[  405.345813][T11949] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  405.366600][T11949] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  405.382360][T11949] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  405.401092][T11949] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  405.767844][ T7942] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  405.792208][ T7942] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  405.828409][ T7949] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  405.872237][ T7949] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  405.993131][T11466] Bluetooth: hci0: command tx timeout
[  406.063504][ T7945] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  406.261833][ T7945] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  406.590947][ T5228] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  406.601119][ T5228] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  406.609511][ T5228] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  406.634746][ T5228] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  406.646496][ T5228] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  406.654639][ T5228] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  406.667612][ T7945] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  406.917324][ T7945] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  407.236531][T12204] netlink: 'syz.2.1356': attribute type 282 has an invalid length.
[  407.475288][T12173] chnl_net:caif_netlink_parms(): no params data found
[  407.501459][ T7945] bridge_slave_1: left allmulticast mode
[  407.514637][ T7945] bridge_slave_1: left promiscuous mode
[  407.520405][ T7945] bridge0: port 2(bridge_slave_1) entered disabled state
[  407.557494][ T7945] bridge_slave_0: left allmulticast mode
[  407.565823][ T7945] bridge_slave_0: left promiscuous mode
[  407.571929][ T7945] bridge0: port 1(bridge_slave_0) entered disabled state
[  408.253028][ T7945] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  408.265344][ T7945] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  408.278925][ T7945] bond0 (unregistering): Released all slaves
[  408.718419][T11466] Bluetooth: hci1: command tx timeout
[  408.913701][T12173] bridge0: port 1(bridge_slave_0) entered blocking state
[  408.920849][T12173] bridge0: port 1(bridge_slave_0) entered disabled state
[  408.987853][T12173] bridge_slave_0: entered allmulticast mode
[  409.013339][T12173] bridge_slave_0: entered promiscuous mode
[  409.072475][ T7945] hsr_slave_0: left promiscuous mode
[  409.091649][ T5228] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  409.100296][ T5228] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  409.108974][ T7945] hsr_slave_1: left promiscuous mode
[  409.116169][ T7945] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  409.124031][ T5228] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  409.131397][ T7945] batman_adv: batadv0: Removing interface: batadv_slave_0
[  409.140154][ T7945] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  409.147986][ T5228] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  409.157109][ T7945] batman_adv: batadv0: Removing interface: batadv_slave_1
[  409.164872][ T5228] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  409.172656][ T5228] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  409.238434][ T7945] veth1_macvtap: left promiscuous mode
[  409.266412][ T7945] veth0_macvtap: left promiscuous mode
[  409.272060][ T7945] veth1_vlan: left promiscuous mode
[  409.303055][ T7945] veth0_vlan: left promiscuous mode
[  409.796439][ T7945] team0 (unregistering): Port device team_slave_1 removed
[  409.841371][ T7945] team0 (unregistering): Port device team_slave_0 removed
[  410.187308][T12173] bridge0: port 2(bridge_slave_1) entered blocking state
[  410.195149][T12173] bridge0: port 2(bridge_slave_1) entered disabled state
[  410.204026][T12173] bridge_slave_1: entered allmulticast mode
[  410.210694][T12173] bridge_slave_1: entered promiscuous mode
[  410.244301][T12275] HSR: entered promiscuous mode
[  410.347811][T12173] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  410.494694][T12173] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  410.562377][T12173] team0: Port device team_slave_0 added
[  410.565166][T12291] openvswitch: netlink: Flow key attribute not present in set flow.
[  410.577531][T12173] team0: Port device team_slave_1 added
[  410.783140][T11466] Bluetooth: hci1: command tx timeout
[  410.789261][T12173] batman_adv: batadv0: Adding interface: batadv_slave_0
[  410.828390][T12173] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  410.885628][T12173] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  410.910390][T12173] batman_adv: batadv0: Adding interface: batadv_slave_1
[  410.922217][T12173] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  410.979336][T12173] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  411.142968][ T7945] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  411.227070][T12173] hsr_slave_0: entered promiscuous mode
[  411.234028][T12173] hsr_slave_1: entered promiscuous mode
[  411.241026][T12173] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  411.249251][T12173] Cannot create hsr debugfs directory
[  411.264047][T11466] Bluetooth: hci3: command tx timeout
[  411.326891][ T7945] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  411.378911][T12264] chnl_net:caif_netlink_parms(): no params data found
[  411.472058][ T7945] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  411.714846][ T7945] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  411.901925][T12264] bridge0: port 1(bridge_slave_0) entered blocking state
[  411.911834][T12264] bridge0: port 1(bridge_slave_0) entered disabled state
[  411.919261][T12264] bridge_slave_0: entered allmulticast mode
[  411.926678][T12264] bridge_slave_0: entered promiscuous mode
[  411.985854][T12264] bridge0: port 2(bridge_slave_1) entered blocking state
[  412.012342][T12264] bridge0: port 2(bridge_slave_1) entered disabled state
[  412.027590][T12264] bridge_slave_1: entered allmulticast mode
[  412.041699][T12264] bridge_slave_1: entered promiscuous mode
[  412.298438][T12264] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  412.319542][T12264] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  412.586558][T12378] could not allocate digest TFM handle 
[  412.606002][T12264] team0: Port device team_slave_0 added
[  412.739791][ T7945] bridge_slave_1: left allmulticast mode
[  412.745757][ T7945] bridge_slave_1: left promiscuous mode
[  412.751501][ T7945] bridge0: port 2(bridge_slave_1) entered disabled state
[  412.770009][ T7945] bridge_slave_0: left allmulticast mode
[  412.777448][ T7945] bridge_slave_0: left promiscuous mode
[  412.784497][ T7945] bridge0: port 1(bridge_slave_0) entered disabled state
[  412.875714][T11466] Bluetooth: hci1: command tx timeout
[  413.347698][T11466] Bluetooth: hci3: command tx timeout
[  413.365099][T12388] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1387'.
[  413.395321][ T7945] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  413.410918][ T7945] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  413.424408][ T7945] bond0 (unregistering): Released all slaves
[  413.436906][T12264] team0: Port device team_slave_1 added
[  413.635497][T12264] batman_adv: batadv0: Adding interface: batadv_slave_0
[  413.648993][T12264] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  413.681685][T12264] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  413.704036][T12264] batman_adv: batadv0: Adding interface: batadv_slave_1
[  413.713320][T12264] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  413.741776][T12264] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  413.978585][T12264] hsr_slave_0: entered promiscuous mode
[  414.003225][T12264] hsr_slave_1: entered promiscuous mode
[  414.032241][T12264] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  414.039838][T12264] Cannot create hsr debugfs directory
[  414.168688][ T7945] hsr_slave_0: left promiscuous mode
[  414.193143][ T7945] hsr_slave_1: left promiscuous mode
[  414.240467][ T7945] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  414.258562][ T7945] batman_adv: batadv0: Removing interface: batadv_slave_0
[  414.279264][ T7945] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  414.288252][ T5228] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  414.297998][ T7945] batman_adv: batadv0: Removing interface: batadv_slave_1
[  414.305461][ T5228] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  414.324097][ T5228] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  414.333596][ T7945] veth1_macvtap: left promiscuous mode
[  414.333867][ T5228] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  414.339125][ T7945] veth0_macvtap: left promiscuous mode
[  414.352530][ T7945] veth1_vlan: left promiscuous mode
[  414.357895][ T5228] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  414.357961][ T7945] veth0_vlan: left promiscuous mode
[  414.370288][ T5228] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  414.816968][ T7945] team0 (unregistering): Port device team_slave_1 removed
[  414.855573][ T7945] team0 (unregistering): Port device team_slave_0 removed
[  414.942514][ T5228] Bluetooth: hci1: command tx timeout
[  415.269467][T12173] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  415.318860][T12173] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  415.327972][T12173] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  415.350622][T12173] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  415.422938][ T5228] Bluetooth: hci3: command tx timeout
[  415.660299][T12415] chnl_net:caif_netlink_parms(): no params data found
[  415.810484][T12415] bridge0: port 1(bridge_slave_0) entered blocking state
[  415.818473][T12415] bridge0: port 1(bridge_slave_0) entered disabled state
[  415.833483][T12415] bridge_slave_0: entered allmulticast mode
[  415.847168][T12415] bridge_slave_0: entered promiscuous mode
[  415.855921][T12415] bridge0: port 2(bridge_slave_1) entered blocking state
[  415.878133][T12415] bridge0: port 2(bridge_slave_1) entered disabled state
[  415.885491][T12415] bridge_slave_1: entered allmulticast mode
[  415.899668][T12415] bridge_slave_1: entered promiscuous mode
[  415.971178][ T7945] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  416.095319][ T7945] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  416.144093][T12415] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  416.164936][T12415] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  416.195010][T12173] 8021q: adding VLAN 0 to HW filter on device bond0
[  416.288477][ T7945] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  416.387978][T12415] team0: Port device team_slave_0 added
[  416.419889][ T7945] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  416.453257][T12415] team0: Port device team_slave_1 added
[  416.463427][T11466] Bluetooth: hci0: command tx timeout
[  416.499265][T12173] 8021q: adding VLAN 0 to HW filter on device team0
[  416.530437][T12415] batman_adv: batadv0: Adding interface: batadv_slave_0
[  416.537580][T12415] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  416.566455][T12415] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  416.611764][T12415] batman_adv: batadv0: Adding interface: batadv_slave_1
[  416.626011][T12415] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  416.652463][T12415] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  416.671839][ T7778] bridge0: port 1(bridge_slave_0) entered blocking state
[  416.679079][ T7778] bridge0: port 1(bridge_slave_0) entered forwarding state
[  416.712477][T12264] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  416.726462][T12264] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  416.785104][ T7778] bridge0: port 2(bridge_slave_1) entered blocking state
[  416.792274][ T7778] bridge0: port 2(bridge_slave_1) entered forwarding state
[  416.817748][T12264] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  416.842093][T12415] hsr_slave_0: entered promiscuous mode
[  416.861410][T12415] hsr_slave_1: entered promiscuous mode
[  416.924460][T12264] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  416.966870][ T7945] bridge_slave_1: left allmulticast mode
[  416.982771][ T7945] bridge_slave_1: left promiscuous mode
[  416.988619][ T7945] bridge0: port 2(bridge_slave_1) entered disabled state
[  417.009832][ T7945] bridge_slave_0: left allmulticast mode
[  417.016823][ T7945] bridge_slave_0: left promiscuous mode
[  417.022960][ T7945] bridge0: port 1(bridge_slave_0) entered disabled state
[  417.512489][T11466] Bluetooth: hci3: command tx timeout
[  417.548069][ T7945] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  417.558873][ T7945] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  417.573474][ T7945] bond0 (unregistering): Released all slaves
[  417.670312][ T7945] HSR: left promiscuous mode
[  418.109997][ T7945] hsr_slave_0: left promiscuous mode
[  418.131153][ T7945] hsr_slave_1: left promiscuous mode
[  418.149193][ T7945] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  418.157756][ T7945] batman_adv: batadv0: Removing interface: batadv_slave_0
[  418.173959][ T7945] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  418.192478][ T7945] batman_adv: batadv0: Removing interface: batadv_slave_1
[  418.225453][ T7945] veth1_macvtap: left promiscuous mode
[  418.231027][ T7945] veth0_macvtap: left promiscuous mode
[  418.238341][ T7945] veth1_vlan: left promiscuous mode
[  418.243779][ T7945] veth0_vlan: left promiscuous mode
[  418.557605][T11466] Bluetooth: hci0: command tx timeout
[  418.922061][ T7945] team0 (unregistering): Port device team_slave_1 removed
[  418.981531][ T7945] team0 (unregistering): Port device team_slave_0 removed
[  419.678277][T12264] 8021q: adding VLAN 0 to HW filter on device bond0
[  419.749840][T12264] 8021q: adding VLAN 0 to HW filter on device team0
[  419.823825][ T7777] bridge0: port 1(bridge_slave_0) entered blocking state
[  419.831018][ T7777] bridge0: port 1(bridge_slave_0) entered forwarding state
[  419.886958][T12173] 8021q: adding VLAN 0 to HW filter on device batadv0
[  419.931965][  T134] bridge0: port 2(bridge_slave_1) entered blocking state
[  419.939155][  T134] bridge0: port 2(bridge_slave_1) entered forwarding state
[  420.044027][T12415] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  420.058506][T12415] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  420.111273][T12173] veth0_vlan: entered promiscuous mode
[  420.131239][T12415] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  420.147444][T12415] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  420.188246][T12173] veth1_vlan: entered promiscuous mode
[  420.261050][T12173] veth0_macvtap: entered promiscuous mode
[  420.304660][T12173] veth1_macvtap: entered promiscuous mode
[  420.358630][T12173] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  420.382392][T12173] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  420.405502][T12173] batman_adv: batadv0: Interface activated: batadv_slave_0
[  420.449181][T12173] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  420.484688][T12173] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  420.503413][T12173] batman_adv: batadv0: Interface activated: batadv_slave_1
[  420.537494][T12415] 8021q: adding VLAN 0 to HW filter on device bond0
[  420.569991][T12173] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  420.592973][T12173] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  420.601731][T12173] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  420.622847][T11466] Bluetooth: hci0: command tx timeout
[  420.629128][T12173] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  420.690545][T12577] nbd: must specify at least one socket
[  420.692001][T12415] 8021q: adding VLAN 0 to HW filter on device team0
[  420.734137][T12264] 8021q: adding VLAN 0 to HW filter on device batadv0
[  420.750430][   T53] bridge0: port 1(bridge_slave_0) entered blocking state
[  420.757623][   T53] bridge0: port 1(bridge_slave_0) entered forwarding state
[  420.831061][ T7949] bridge0: port 2(bridge_slave_1) entered blocking state
[  420.839092][ T7949] bridge0: port 2(bridge_slave_1) entered forwarding state
[  420.931534][ T7778] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  420.959982][ T7778] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  421.028402][ T7778] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  421.039545][ T7778] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  421.049410][T12264] veth0_vlan: entered promiscuous mode
[  421.079278][T12264] veth1_vlan: entered promiscuous mode
[  421.167234][T12264] veth0_macvtap: entered promiscuous mode
[  421.206733][T12264] veth1_macvtap: entered promiscuous mode
[  421.245246][T12415] 8021q: adding VLAN 0 to HW filter on device batadv0
[  421.294733][T12264] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  421.314808][T12264] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  421.325270][T12264] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  421.338587][T12264] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  421.350487][T12264] batman_adv: batadv0: Interface activated: batadv_slave_0
[  421.375373][T12264] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  421.394054][T12264] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  421.408406][T12264] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  421.420278][T12264] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  421.438781][T12264] batman_adv: batadv0: Interface activated: batadv_slave_1
[  421.498990][T12264] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  421.525416][T12264] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  421.539386][T12264] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  421.549686][T12264] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  421.581038][T12415] veth0_vlan: entered promiscuous mode
[  421.626404][T12415] veth1_vlan: entered promiscuous mode
[  421.828805][  T134] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  421.847925][  T134] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  421.894598][T12415] veth0_macvtap: entered promiscuous mode
[  421.928066][T12415] veth1_macvtap: entered promiscuous mode
[  421.949299][  T134] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  421.987355][  T134] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  422.001900][T12415] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  422.022981][T12415] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  422.042302][T12415] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  422.062707][T12415] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  422.082525][T12415] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  422.102292][T12415] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  422.134016][T12415] batman_adv: batadv0: Interface activated: batadv_slave_0
[  422.177515][T12415] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  422.207579][T12415] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  422.227776][T12415] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  422.238870][T12415] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  422.255985][T12415] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  422.268367][T12415] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  422.297811][T12415] batman_adv: batadv0: Interface activated: batadv_slave_1
[  422.497879][T12415] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  422.527263][T12415] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  422.555211][T12415] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  422.588275][T12415] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  422.702698][T11466] Bluetooth: hci0: command tx timeout
[  423.053009][   T53] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  423.060867][   T53] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  423.154028][ T7945] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  423.190506][ T7945] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  424.200881][T12714] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1426'.
[  434.822486][T12867] svc: failed to register nfsdv3 RPC service (errno 101).
[  434.857473][T12867] svc: failed to register nfsaclv3 RPC service (errno 101).
[  436.115260][T12898] HSR: entered promiscuous mode
[  437.822652][T12935] netlink: 'syz.1.1478': attribute type 2 has an invalid length.
[  440.223944][ T1268] ieee802154 phy0 wpan0: encryption failed: -22
[  440.230285][ T1268] ieee802154 phy1 wpan1: encryption failed: -22
[  441.116771][T12976] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1490'.
[  441.448879][   T29] audit: type=1800 audit(2147483674.279:11): pid=12979 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1492" name="SYSV00000008" dev="hugetlbfs" ino=0 res=0 errno=0
[  442.880966][ T7949] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  443.115504][ T5228] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  443.125313][ T5228] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  443.138154][ T5228] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  443.146724][ T5228] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  443.154720][ T5228] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  443.162214][ T5228] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  443.215687][ T7949] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  443.545219][ T7949] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  443.683634][ T7949] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  444.132328][T12996] chnl_net:caif_netlink_parms(): no params data found
[  444.193354][ T7949] bridge_slave_1: left allmulticast mode
[  444.200488][ T7949] bridge_slave_1: left promiscuous mode
[  444.224271][ T7949] bridge0: port 2(bridge_slave_1) entered disabled state
[  444.313258][ T7949] bridge_slave_0: left allmulticast mode
[  444.319486][ T7949] bridge_slave_0: left promiscuous mode
[  444.335074][ T7949] bridge0: port 1(bridge_slave_0) entered disabled state
[  444.946448][ T7949] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  444.962236][ T7949] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  444.974426][ T7949] bond0 (unregistering): Released all slaves
[  445.121288][ T7949] HSR: left promiscuous mode
[  445.220763][T12996] bridge0: port 1(bridge_slave_0) entered blocking state
[  445.238712][T12996] bridge0: port 1(bridge_slave_0) entered disabled state
[  445.269727][ T5228] Bluetooth: hci1: command tx timeout
[  445.276745][T12996] bridge_slave_0: entered allmulticast mode
[  445.300495][T12996] bridge_slave_0: entered promiscuous mode
[  445.564387][T12996] bridge0: port 2(bridge_slave_1) entered blocking state
[  445.585787][T12996] bridge0: port 2(bridge_slave_1) entered disabled state
[  445.622394][T12996] bridge_slave_1: entered allmulticast mode
[  445.631115][T12996] bridge_slave_1: entered promiscuous mode
[  445.821875][T12996] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  446.104379][T12996] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  446.187083][T13065] HSR: entered promiscuous mode
[  446.387141][ T7949] hsr_slave_0: left promiscuous mode
[  446.412222][ T7949] hsr_slave_1: left promiscuous mode
[  446.442379][ T7949] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  446.465041][ T7949] batman_adv: batadv0: Removing interface: batadv_slave_0
[  446.521890][ T7949] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  446.539954][ T7949] batman_adv: batadv0: Removing interface: batadv_slave_1
[  446.575136][ T7949] veth1_macvtap: left promiscuous mode
[  446.591216][ T7949] veth0_macvtap: left promiscuous mode
[  446.601644][ T7949] veth1_vlan: left promiscuous mode
[  446.621374][ T7949] veth0_vlan: left promiscuous mode
[  447.349135][ T5228] Bluetooth: hci1: command tx timeout
[  447.449484][ T7949] team0 (unregistering): Port device team_slave_1 removed
[  447.500530][ T7949] team0 (unregistering): Port device team_slave_0 removed
[  448.066594][T12996] team0: Port device team_slave_0 added
[  448.075545][T13093] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1516'.
[  448.088922][T12996] team0: Port device team_slave_1 added
[  448.231801][T12996] batman_adv: batadv0: Adding interface: batadv_slave_0
[  448.258864][T12996] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  448.285635][T12996] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  448.308458][T12996] batman_adv: batadv0: Adding interface: batadv_slave_1
[  448.325821][T12996] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  448.402280][T12996] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  448.708859][T12996] hsr_slave_0: entered promiscuous mode
[  448.762585][T12996] hsr_slave_1: entered promiscuous mode
[  448.803829][T12996] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  448.811443][T12996] Cannot create hsr debugfs directory
[  449.442890][ T5228] Bluetooth: hci1: command tx timeout
[  449.796006][T13137] netlink: 5 bytes leftover after parsing attributes in process `syz.0.1524'.
[  450.175776][T12996] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  450.234814][T12996] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  450.258727][T12996] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  450.277928][T12996] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  450.476682][T12996] 8021q: adding VLAN 0 to HW filter on device bond0
[  450.563740][ T7949] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  450.708204][ T7949] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  450.769561][T12996] 8021q: adding VLAN 0 to HW filter on device team0
[  450.807958][ T7777] bridge0: port 1(bridge_slave_0) entered blocking state
[  450.815187][ T7777] bridge0: port 1(bridge_slave_0) entered forwarding state
[  450.826585][ T7777] bridge0: port 2(bridge_slave_1) entered blocking state
[  450.833817][ T7777] bridge0: port 2(bridge_slave_1) entered forwarding state
[  450.874663][ T7949] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  451.011086][ T7949] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  451.253482][T11466] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  451.274911][T11466] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  451.284315][T11466] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  451.298821][T11466] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  451.309151][T11466] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  451.320320][T11466] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  451.371218][ T7949] bridge_slave_1: left allmulticast mode
[  451.402527][ T7949] bridge_slave_1: left promiscuous mode
[  451.408585][ T7949] bridge0: port 2(bridge_slave_1) entered disabled state
[  451.486390][ T7949] bridge_slave_0: left allmulticast mode
[  451.492092][ T7949] bridge_slave_0: left promiscuous mode
[  451.503960][T11466] Bluetooth: hci1: command tx timeout
[  451.520792][ T7949] bridge0: port 1(bridge_slave_0) entered disabled state
[  451.693162][T13191] unsupported nlmsg_type 40
[  452.832816][ T7949] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  452.848848][ T7949] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  452.860815][ T7949] bond0 (unregistering): Released all slaves
[  453.039494][T12996] 8021q: adding VLAN 0 to HW filter on device batadv0
[  453.397340][T12996] veth0_vlan: entered promiscuous mode
[  453.408652][T12996] veth1_vlan: entered promiscuous mode
[  453.431029][T12996] veth0_macvtap: entered promiscuous mode
[  453.440238][T12996] veth1_macvtap: entered promiscuous mode
[  453.459447][T12996] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  453.470205][T12996] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  453.480148][T12996] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  453.488478][T11466] Bluetooth: hci2: command tx timeout
[  453.490753][T12996] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  453.506441][T12996] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  453.516922][T12996] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  453.528275][T12996] batman_adv: batadv0: Interface activated: batadv_slave_0
[  453.626976][T12996] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  453.649068][T12996] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  453.658965][T12996] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  453.670128][T12996] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  453.680884][T12996] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  453.691419][T12996] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  453.703366][T12996] batman_adv: batadv0: Interface activated: batadv_slave_1
[  453.740423][T13174] chnl_net:caif_netlink_parms(): no params data found
[  454.006809][T12996] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  454.022299][T12996] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  454.042313][T12996] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  454.061381][T12996] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  454.632284][ T7949] hsr_slave_0: left promiscuous mode
[  454.685858][ T7949] hsr_slave_1: left promiscuous mode
[  454.730107][ T7949] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  454.738254][ T7949] batman_adv: batadv0: Removing interface: batadv_slave_0
[  454.752993][ T7949] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  454.760823][ T7949] batman_adv: batadv0: Removing interface: batadv_slave_1
[  454.844679][ T7949] veth1_macvtap: left promiscuous mode
[  454.850257][ T7949] veth0_macvtap: left promiscuous mode
[  454.872355][ T7949] veth1_vlan: left promiscuous mode
[  454.881803][ T7949] veth0_vlan: left promiscuous mode
[  455.510245][T11466] Bluetooth: hci2: command tx timeout
[  456.407909][ T7949] team0 (unregistering): Port device team_slave_1 removed
[  456.493125][ T7949] team0 (unregistering): Port device team_slave_0 removed
[  457.443807][T13174] bridge0: port 1(bridge_slave_0) entered blocking state
[  457.451562][T13174] bridge0: port 1(bridge_slave_0) entered disabled state
[  457.458878][T13174] bridge_slave_0: entered allmulticast mode
[  457.465957][T13174] bridge_slave_0: entered promiscuous mode
[  457.480092][T13306] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1544'.
[  457.517377][T13174] bridge0: port 2(bridge_slave_1) entered blocking state
[  457.525935][T13174] bridge0: port 2(bridge_slave_1) entered disabled state
[  457.533341][T13174] bridge_slave_1: entered allmulticast mode
[  457.540383][T13174] bridge_slave_1: entered promiscuous mode
[  457.583745][T11466] Bluetooth: hci2: command tx timeout
[  457.710112][T13174] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  457.735876][T13174] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  457.866540][T13174] team0: Port device team_slave_0 added
[  457.890850][T13174] team0: Port device team_slave_1 added
[  457.909288][ T7945] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  457.926551][ T7945] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  457.939618][T13343] cgroup: fork rejected by pids controller in /syz2
[  458.061242][T13174] batman_adv: batadv0: Adding interface: batadv_slave_0
[  458.080090][T13174] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  458.168513][T13174] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  458.207074][T13174] batman_adv: batadv0: Adding interface: batadv_slave_1
[  458.238708][T13174] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  458.310150][T13174] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  458.350801][ T7948] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  458.368948][ T7948] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  458.444774][T13174] hsr_slave_0: entered promiscuous mode
[  458.481820][T13174] hsr_slave_1: entered promiscuous mode
[  458.507762][T13174] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  458.521169][T13174] Cannot create hsr debugfs directory
[  459.642988][T13174] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  459.663047][T11466] Bluetooth: hci2: command tx timeout
[  459.681029][T13174] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  459.702408][T13174] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  459.725764][T13174] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  459.971347][T13174] 8021q: adding VLAN 0 to HW filter on device bond0
[  460.025795][T13174] 8021q: adding VLAN 0 to HW filter on device team0
[  460.066355][ T7779] bridge0: port 1(bridge_slave_0) entered blocking state
[  460.073533][ T7779] bridge0: port 1(bridge_slave_0) entered forwarding state
[  460.105666][ T7949] bridge0: port 2(bridge_slave_1) entered blocking state
[  460.112814][ T7949] bridge0: port 2(bridge_slave_1) entered forwarding state
[  460.676945][T13174] 8021q: adding VLAN 0 to HW filter on device batadv0
[  460.829331][T13174] veth0_vlan: entered promiscuous mode
[  460.868588][T13174] veth1_vlan: entered promiscuous mode
[  460.957001][T13174] veth0_macvtap: entered promiscuous mode
[  461.014936][T13174] veth1_macvtap: entered promiscuous mode
[  461.074589][T13174] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  461.109416][T13174] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  461.146734][T13174] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  461.184535][T13174] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  461.225082][T13174] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  461.260209][T13174] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  461.300695][T13174] batman_adv: batadv0: Interface activated: batadv_slave_0
[  461.355332][T13174] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  461.403437][T13174] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  461.446731][T13174] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  461.473320][T13174] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  461.523613][T13174] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  461.562293][T13174] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  461.593860][T13174] batman_adv: batadv0: Interface activated: batadv_slave_1
[  461.664854][T13174] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  461.721331][T13174] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  461.750988][T13174] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  461.778407][T13174] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  461.873407][T13476] HSR: entered promiscuous mode
[  462.211690][  T134] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  462.237849][  T134] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  462.304113][ T7778] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  462.342271][ T7778] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  464.539150][T13547] netlink: 'syz.0.1576': attribute type 1 has an invalid length.
[  464.586846][T13547] netlink: 48 bytes leftover after parsing attributes in process `syz.0.1576'.
[  464.730631][   T29] audit: type=1326 audit(8277292056.920:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13546 comm="syz.3.1577" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fcaa3b7dff9 code=0x0
[  465.522287][T13563] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1580'.
[  467.773293][T13613] tmpfs: Unknown parameter 'rэ"�۾���lG����OW��B��\��7�iаe٣��w�:'
[  469.279722][T13651] HSR: entered promiscuous mode
[  470.548442][T13694] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1613'.
[  470.573339][T13702] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1613'.
[  479.660891][T13898] svc: failed to register nfsdv3 RPC service (errno 111).
[  479.745619][T13898] svc: failed to register nfsaclv3 RPC service (errno 111).
[  480.183333][T13918] nbd: must specify at least one socket
[  480.666363][T13913] __kmem_cache_create_args(nfsd_file) failed with error -22
[  480.746777][T13913] CPU: 1 UID: 0 PID: 13913 Comm: syz.2.1668 Not tainted 6.12.0-rc1-syzkaller-00114-g3840cbe24cf0 #0
[  480.757597][T13913] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  480.767673][T13913] Call Trace:
[  480.770961][T13913]  <TASK>
[  480.773908][T13913]  dump_stack_lvl+0x16c/0x1f0
[  480.778695][T13913]  __kmem_cache_create_args+0x130/0x3c0
[  480.784248][T13913]  nfsd_file_cache_init+0x126/0x4d0
[  480.789457][T13913]  ? net_generic+0xf4/0x2a0
[  480.793974][T13913]  nfsd_svc+0x5db/0x940
[  480.798137][T13913]  nfsd_nl_threads_set_doit+0x535/0xbe0
[  480.803702][T13913]  genl_family_rcv_msg_doit+0x202/0x2f0
[  480.809263][T13913]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  480.815351][T13913]  ? bpf_lsm_capable+0x9/0x10
[  480.820037][T13913]  ? security_capable+0x7e/0x260
[  480.824985][T13913]  genl_rcv_msg+0x565/0x800
[  480.829497][T13913]  ? __pfx_genl_rcv_msg+0x10/0x10
[  480.834535][T13913]  ? __pfx_nfsd_nl_threads_set_doit+0x10/0x10
[  480.840615][T13913]  netlink_rcv_skb+0x165/0x410
[  480.845383][T13913]  ? __pfx_genl_rcv_msg+0x10/0x10
[  480.850415][T13913]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  480.855715][T13913]  ? down_read+0xc9/0x330
[  480.860053][T13913]  ? __pfx_down_read+0x10/0x10
[  480.864829][T13913]  ? netlink_deliver_tap+0x1ae/0xcf0
[  480.870123][T13913]  genl_rcv+0x28/0x40
[  480.874109][T13913]  netlink_unicast+0x53c/0x7f0
[  480.878879][T13913]  ? __pfx_netlink_unicast+0x10/0x10
[  480.884174][T13913]  ? __phys_addr_symbol+0x30/0x80
[  480.889203][T13913]  ? __check_object_size+0x488/0x710
[  480.894498][T13913]  netlink_sendmsg+0x8b8/0xd70
[  480.899358][T13913]  ? __pfx_netlink_sendmsg+0x10/0x10
[  480.904670][T13913]  ____sys_sendmsg+0x9ae/0xb40
[  480.909528][T13913]  ? copy_msghdr_from_user+0x10b/0x160
[  480.914995][T13913]  ? __pfx_____sys_sendmsg+0x10/0x10
[  480.920296][T13913]  ? __pfx___lock_acquire+0x10/0x10
[  480.925507][T13913]  ___sys_sendmsg+0x135/0x1e0
[  480.930194][T13913]  ? __pfx____sys_sendmsg+0x10/0x10
[  480.935413][T13913]  ? lock_acquire+0x2f/0xb0
[  480.939928][T13913]  ? __fget_files+0x40/0x3f0
[  480.944532][T13913]  ? fdget+0x176/0x210
[  480.948603][T13913]  __sys_sendmsg+0x117/0x1f0
[  480.953199][T13913]  ? __pfx___sys_sendmsg+0x10/0x10
[  480.958332][T13913]  ? __x64_sys_futex+0x1e1/0x4c0
[  480.963297][T13913]  do_syscall_64+0xcd/0x250
[  480.967815][T13913]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  480.973711][T13913] RIP: 0033:0x7fe58997dff9
[  480.978141][T13913] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  480.997747][T13913] RSP: 002b:00007fe58a69b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  481.006253][T13913] RAX: ffffffffffffffda RBX: 00007fe589b35f80 RCX: 00007fe58997dff9
[  481.014224][T13913] RDX: 0000000000008004 RSI: 0000000020000140 RDI: 0000000000000003
[  481.022201][T13913] RBP: 00007fe5899f0296 R08: 0000000000000000 R09: 0000000000000000
[  481.030169][T13913] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  481.038158][T13913] R13: 0000000000000000 R14: 00007fe589b35f80 R15: 00007fff72678568
[  481.046148][T13913]  </TASK>
[  481.422250][T13913] nfsd: unable to create nfsd_file_slab
[  481.690702][T13917] svc: failed to register nfsdv3 RPC service (errno 512).
[  481.746554][T13917] svc: failed to register nfsaclv3 RPC service (errno 512).
[  481.793924][T13953] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  481.856915][T13917] ==================================================================
[  481.865018][T13917] BUG: KASAN: slab-use-after-free in shrinker_free+0x3b7/0x430
[  481.872589][T13917] Read of size 4 at addr ffff88802d11df1c by task syz.2.1668/13917
[  481.880498][T13917] 
[  481.882831][T13917] CPU: 0 UID: 0 PID: 13917 Comm: syz.2.1668 Not tainted 6.12.0-rc1-syzkaller-00114-g3840cbe24cf0 #0
[  481.892262][T13953] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  481.893590][T13917] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  481.893606][T13917] Call Trace:
[  481.893615][T13917]  <TASK>
[  481.893624][T13917]  dump_stack_lvl+0x116/0x1f0
[  481.923170][T13917]  print_report+0xc3/0x620
[  481.927627][T13917]  ? __virt_addr_valid+0x5e/0x590
[  481.932692][T13917]  ? __phys_addr+0xc6/0x150
[  481.937234][T13917]  kasan_report+0xd9/0x110
[  481.941678][T13917]  ? shrinker_free+0x3b7/0x430
[  481.946471][T13917]  ? shrinker_free+0x3b7/0x430
[  481.951261][T13917]  shrinker_free+0x3b7/0x430
[  481.955879][T13917]  nfsd_file_cache_shutdown+0xbc/0x4e0
[  481.961381][T13917]  nfsd_svc+0x6a9/0x940
[  481.965557][T13917]  nfsd_nl_threads_set_doit+0x535/0xbe0
[  481.971132][T13917]  genl_family_rcv_msg_doit+0x202/0x2f0
[  481.976706][T13917]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  481.982814][T13917]  ? bpf_lsm_capable+0x9/0x10
[  481.987513][T13917]  ? security_capable+0x7e/0x260
[  481.992466][T13917]  genl_rcv_msg+0x565/0x800
[  481.996995][T13917]  ? __pfx_genl_rcv_msg+0x10/0x10
[  482.002040][T13917]  ? __pfx_nfsd_nl_threads_set_doit+0x10/0x10
[  482.008137][T13917]  netlink_rcv_skb+0x165/0x410
[  482.012922][T13917]  ? __pfx_genl_rcv_msg+0x10/0x10
[  482.018063][T13917]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  482.023376][T13917]  ? down_read+0xc9/0x330
[  482.027732][T13917]  ? __pfx_down_read+0x10/0x10
[  482.032525][T13917]  ? netlink_deliver_tap+0x1ae/0xcf0
[  482.037827][T13917]  genl_rcv+0x28/0x40
[  482.041827][T13917]  netlink_unicast+0x53c/0x7f0
[  482.046615][T13917]  ? __pfx_netlink_unicast+0x10/0x10
[  482.051918][T13917]  ? __phys_addr_symbol+0x30/0x80
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  482.056962][T13917]  ? __check_object_size+0x488/0x710
[  482.062273][T13917]  netlink_sendmsg+0x8b8/0xd70
[  482.067058][T13917]  ? __pfx_netlink_sendmsg+0x10/0x10
[  482.072383][T13917]  ____sys_sendmsg+0x9ae/0xb40
[  482.077179][T13917]  ? copy_msghdr_from_user+0x10b/0x160
[  482.082674][T13917]  ? __pfx_____sys_sendmsg+0x10/0x10
[  482.087992][T13917]  ? __pfx_lock_release+0x10/0x10
[  482.093059][T13917]  ? __pfx___lock_acquire+0x10/0x10
[  482.098287][T13917]  ___sys_sendmsg+0x135/0x1e0
[  482.102993][T13917]  ? __pfx____sys_sendmsg+0x10/0x10
[  482.108227][T13917]  ? lock_acquire+0x2f/0xb0
[  482.112758][T13917]  ? __fget_files+0x40/0x3f0
[  482.117376][T13917]  ? fdget+0x176/0x210
[  482.121464][T13917]  __sys_sendmsg+0x117/0x1f0
[  482.126082][T13917]  ? __pfx___sys_sendmsg+0x10/0x10
[  482.131226][T13917]  ? do_user_addr_fault+0xe50/0x13f0
[  482.136546][T13917]  ? trace_lock_acquire+0x14a/0x1d0
[  482.141769][T13917]  ? do_user_addr_fault+0x83d/0x13f0
[  482.147087][T13917]  do_syscall_64+0xcd/0x250
[  482.151612][T13917]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  482.157526][T13917] RIP: 0033:0x7fe58997dff9
[  482.161955][T13917] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  482.181583][T13917] RSP: 002b:00007fe5893ff038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  482.190115][T13917] RAX: ffffffffffffffda RBX: 00007fe589b36058 RCX: 00007fe58997dff9
[  482.198113][T13917] RDX: 0000000000008004 RSI: 0000000020000140 RDI: 0000000000000003
[  482.206103][T13917] RBP: 00007fe5899f0296 R08: 0000000000000000 R09: 0000000000000000
[  482.214091][T13917] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  482.222080][T13917] R13: 0000000000000001 R14: 00007fe589b36058 R15: 00007fff72678568
[  482.230086][T13917]  </TASK>
[  482.233114][T13917] 
[  482.235535][T13917] Allocated by task 13898:
[  482.240038][T13917]  kasan_save_stack+0x33/0x60
[  482.244739][T13917]  kasan_save_track+0x14/0x30
[  482.249436][T13917]  __kasan_kmalloc+0xaa/0xb0
[  482.254050][T13917]  shrinker_alloc+0xf8/0xb00
[  482.258660][T13917]  nfsd_file_cache_init+0x1cb/0x4d0
[  482.263889][T13917]  nfsd_svc+0x5db/0x940
[  482.268058][T13917]  nfsd_nl_threads_set_doit+0x535/0xbe0
[  482.273626][T13917]  genl_family_rcv_msg_doit+0x202/0x2f0
[  482.279198][T13917]  genl_rcv_msg+0x565/0x800
[  482.283729][T13917]  netlink_rcv_skb+0x165/0x410
[  482.288510][T13917]  genl_rcv+0x28/0x40
[  482.292516][T13917]  netlink_unicast+0x53c/0x7f0
[  482.297295][T13917]  netlink_sendmsg+0x8b8/0xd70
[  482.302070][T13917]  ____sys_sendmsg+0x9ae/0xb40
[  482.306850][T13917]  ___sys_sendmsg+0x135/0x1e0
[  482.311551][T13917]  __sys_sendmsg+0x117/0x1f0
[  482.316166][T13917]  do_syscall_64+0xcd/0x250
[  482.320698][T13917]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  482.326608][T13917] 
[  482.328931][T13917] Freed by task 24:
[  482.332736][T13917]  kasan_save_stack+0x33/0x60
[  482.337437][T13917]  kasan_save_track+0x14/0x30
[  482.342138][T13917]  kasan_save_free_info+0x3b/0x60
[  482.347192][T13917]  __kasan_slab_free+0x51/0x70
[  482.351997][T13917]  kfree+0x14f/0x4b0
[  482.355921][T13917]  rcu_core+0x79d/0x14d0
[  482.360187][T13917]  handle_softirqs+0x213/0x8f0
[  482.364977][T13917]  run_ksoftirqd+0x3a/0x60
[  482.369411][T13917]  smpboot_thread_fn+0x661/0xa30
[  482.374370][T13917]  kthread+0x2c1/0x3a0
[  482.378460][T13917]  ret_from_fork+0x45/0x80
[  482.382906][T13917]  ret_from_fork_asm+0x1a/0x30
[  482.387695][T13917] 
[  482.390033][T13917] Last potentially related work creation:
[  482.395757][T13917]  kasan_save_stack+0x33/0x60
[  482.400458][T13917]  __kasan_record_aux_stack+0xba/0xd0
[  482.405846][T13917]  __call_rcu_common.constprop.0+0x99/0x7a0
[  482.411776][T13917]  shrinker_free+0xfe/0x430
[  482.416302][T13917]  nfsd_file_cache_shutdown+0xbc/0x4e0
[  482.421785][T13917]  nfsd_svc+0x6a9/0x940
[  482.425954][T13917]  nfsd_nl_threads_set_doit+0x535/0xbe0
[  482.431514][T13917]  genl_family_rcv_msg_doit+0x202/0x2f0
[  482.437077][T13917]  genl_rcv_msg+0x565/0x800
[  482.441600][T13917]  netlink_rcv_skb+0x165/0x410
[  482.446378][T13917]  genl_rcv+0x28/0x40
[  482.450371][T13917]  netlink_unicast+0x53c/0x7f0
[  482.455146][T13917]  netlink_sendmsg+0x8b8/0xd70
[  482.460010][T13917]  ____sys_sendmsg+0x9ae/0xb40
[  482.464788][T13917]  ___sys_sendmsg+0x135/0x1e0
[  482.469484][T13917]  __sys_sendmsg+0x117/0x1f0
[  482.474096][T13917]  do_syscall_64+0xcd/0x250
[  482.478621][T13917]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  482.484530][T13917] 
[  482.486854][T13917] The buggy address belongs to the object at ffff88802d11df00
[  482.486854][T13917]  which belongs to the cache kmalloc-192 of size 192
[  482.500921][T13917] The buggy address is located 28 bytes inside of
[  482.500921][T13917]  freed 192-byte region [ffff88802d11df00, ffff88802d11dfc0)
[  482.514644][T13917] 
[  482.516974][T13917] The buggy address belongs to the physical page:
[  482.523398][T13917] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x2d11d
[  482.532172][T13917] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  482.539288][T13917] page_type: f5(slab)
[  482.543280][T13917] raw: 00fff00000000000 ffff88801ac413c0 ffffea0001f96fc0 dead000000000004
[  482.551874][T13917] raw: 0000000000000000 0000000000100010 00000001f5000000 0000000000000000
[  482.560464][T13917] page dumped because: kasan: bad access detected
[  482.566892][T13917] page_owner tracks the page as allocated
[  482.572616][T13917] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x52cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 1, tgid 1 (swapper/0), ts 12245547179, free_ts 12180684129
[  482.591132][T13917]  post_alloc_hook+0x2d1/0x350
[  482.595942][T13917]  get_page_from_freelist+0x101e/0x3070
[  482.601511][T13917]  __alloc_pages_noprof+0x223/0x25c0
[  482.606827][T13917]  alloc_pages_mpol_noprof+0x2c9/0x610
[  482.612314][T13917]  new_slab+0x2ba/0x3f0
[  482.616484][T13917]  ___slab_alloc+0xd1d/0x16f0
[  482.621181][T13917]  __slab_alloc.constprop.0+0x56/0xb0
[  482.626572][T13917]  __kmalloc_cache_noprof+0x2c5/0x310
[  482.631961][T13917]  call_usermodehelper_setup+0x9a/0x340
[  482.637519][T13917]  kobject_uevent_env+0xde3/0x1670
[  482.642645][T13917]  param_sysfs_builtin_init+0x2b0/0x3c0
[  482.648219][T13917]  do_one_initcall+0x128/0x630
[  482.653005][T13917]  kernel_init_freeable+0x58f/0x8b0
[  482.658215][T13917]  kernel_init+0x1c/0x2b0
[  482.662560][T13917]  ret_from_fork+0x45/0x80
[  482.666992][T13917]  ret_from_fork_asm+0x1a/0x30
[  482.671776][T13917] page last free pid 8 tgid 8 stack trace:
[  482.677581][T13917]  free_unref_page+0x5f4/0xdc0
[  482.682364][T13917]  vfree+0x17a/0x890
[  482.686269][T13917]  delayed_vfree_work+0x56/0x70
[  482.691133][T13917]  process_one_work+0x958/0x1b30
[  482.696095][T13917]  worker_thread+0x6c8/0xf00
[  482.700708][T13917]  kthread+0x2c1/0x3a0
[  482.704785][T13917]  ret_from_fork+0x45/0x80
[  482.709212][T13917]  ret_from_fork_asm+0x1a/0x30
[  482.713999][T13917] 
[  482.716322][T13917] Memory state around the buggy address:
[  482.721949][T13917]  ffff88802d11de00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  482.730105][T13917]  ffff88802d11de80: 00 fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  482.738174][T13917] >ffff88802d11df00: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  482.746241][T13917]                             ^
[  482.751092][T13917]  ffff88802d11df80: fb fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc
[  482.759172][T13917]  ffff88802d11e000: 05 fc fc fc fa fc fc fc fa fc fc fc fa fc fc fc
[  482.767246][T13917] ==================================================================
[  482.858717][T13917] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  482.865946][T13917] CPU: 1 UID: 0 PID: 13917 Comm: syz.2.1668 Not tainted 6.12.0-rc1-syzkaller-00114-g3840cbe24cf0 #0
[  482.876704][T13917] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  482.886756][T13917] Call Trace:
[  482.890029][T13917]  <TASK>
[  482.892953][T13917]  dump_stack_lvl+0x3d/0x1f0
[  482.897548][T13917]  panic+0x71d/0x800
[  482.901440][T13917]  ? __pfx_panic+0x10/0x10
[  482.905956][T13917]  ? preempt_schedule_thunk+0x1a/0x30
[  482.911326][T13917]  ? preempt_schedule_common+0x44/0xc0
[  482.916785][T13917]  ? check_panic_on_warn+0x1f/0xb0
[  482.921904][T13917]  check_panic_on_warn+0xab/0xb0
[  482.926849][T13917]  end_report+0x117/0x180
[  482.931187][T13917]  kasan_report+0xe9/0x110
[  482.935604][T13917]  ? shrinker_free+0x3b7/0x430
[  482.940366][T13917]  ? shrinker_free+0x3b7/0x430
[  482.945130][T13917]  shrinker_free+0x3b7/0x430
[  482.949736][T13917]  nfsd_file_cache_shutdown+0xbc/0x4e0
[  482.955206][T13917]  nfsd_svc+0x6a9/0x940
[  482.959360][T13917]  nfsd_nl_threads_set_doit+0x535/0xbe0
[  482.964909][T13917]  genl_family_rcv_msg_doit+0x202/0x2f0
[  482.970473][T13917]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  482.976543][T13917]  ? bpf_lsm_capable+0x9/0x10
[  482.981221][T13917]  ? security_capable+0x7e/0x260
[  482.986157][T13917]  genl_rcv_msg+0x565/0x800
[  482.990661][T13917]  ? __pfx_genl_rcv_msg+0x10/0x10
[  482.995683][T13917]  ? __pfx_nfsd_nl_threads_set_doit+0x10/0x10
[  483.001754][T13917]  netlink_rcv_skb+0x165/0x410
[  483.006524][T13917]  ? __pfx_genl_rcv_msg+0x10/0x10
[  483.011555][T13917]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  483.016843][T13917]  ? down_read+0xc9/0x330
[  483.021178][T13917]  ? __pfx_down_read+0x10/0x10
[  483.025944][T13917]  ? netlink_deliver_tap+0x1ae/0xcf0
[  483.031229][T13917]  genl_rcv+0x28/0x40
[  483.035206][T13917]  netlink_unicast+0x53c/0x7f0
[  483.039971][T13917]  ? __pfx_netlink_unicast+0x10/0x10
[  483.045251][T13917]  ? __phys_addr_symbol+0x30/0x80
[  483.050273][T13917]  ? __check_object_size+0x488/0x710
[  483.055558][T13917]  netlink_sendmsg+0x8b8/0xd70
[  483.060320][T13917]  ? __pfx_netlink_sendmsg+0x10/0x10
[  483.065689][T13917]  ____sys_sendmsg+0x9ae/0xb40
[  483.070447][T13917]  ? copy_msghdr_from_user+0x10b/0x160
[  483.075907][T13917]  ? __pfx_____sys_sendmsg+0x10/0x10
[  483.081186][T13917]  ? __pfx_lock_release+0x10/0x10
[  483.086210][T13917]  ? __pfx___lock_acquire+0x10/0x10
[  483.091409][T13917]  ___sys_sendmsg+0x135/0x1e0
[  483.096087][T13917]  ? __pfx____sys_sendmsg+0x10/0x10
[  483.101293][T13917]  ? lock_acquire+0x2f/0xb0
[  483.105805][T13917]  ? __fget_files+0x40/0x3f0
[  483.110418][T13917]  ? fdget+0x176/0x210
[  483.114487][T13917]  __sys_sendmsg+0x117/0x1f0
[  483.119081][T13917]  ? __pfx___sys_sendmsg+0x10/0x10
[  483.124278][T13917]  ? do_user_addr_fault+0xe50/0x13f0
[  483.129564][T13917]  ? trace_lock_acquire+0x14a/0x1d0
[  483.134761][T13917]  ? do_user_addr_fault+0x83d/0x13f0
[  483.140062][T13917]  do_syscall_64+0xcd/0x250
[  483.144565][T13917]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  483.150453][T13917] RIP: 0033:0x7fe58997dff9
[  483.154859][T13917] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  483.174470][T13917] RSP: 002b:00007fe5893ff038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  483.182884][T13917] RAX: ffffffffffffffda RBX: 00007fe589b36058 RCX: 00007fe58997dff9
[  483.190846][T13917] RDX: 0000000000008004 RSI: 0000000020000140 RDI: 0000000000000003
[  483.198831][T13917] RBP: 00007fe5899f0296 R08: 0000000000000000 R09: 0000000000000000
[  483.206800][T13917] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  483.214766][T13917] R13: 0000000000000001 R14: 00007fe589b36058 R15: 00007fff72678568
[  483.222738][T13917]  </TASK>
[  483.226233][T13917] Kernel Offset: disabled
[  483.230539][T13917] Rebooting in 86400 seconds..