last executing test programs:

25m9.300168853s ago: executing program 1 (id=2):
syz_create_resource$binfmt(0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'})
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$ax25_SO_BINDTODEVICE(0xffffffffffffffff, 0x101, 0x19, &(0x7f0000000000)=@bpq0, 0xfffffffffffffe1d)
ioctl$sock_netdev_private(r1, 0x8914, &(0x7f0000000000))
syz_init_net_socket$rose(0xb, 0x5, 0x0)
r2 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000140)={'nr0\x00'})
ioctl$sock_rose_SIOCADDRT(r2, 0x890b, &(0x7f0000000380)={@dev={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0x6, @null, @bpq0, 0x0, [@bcast, @bcast, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @default]})
r3 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
ioctl$sock_rose_SIOCADDRT(r3, 0x890b, &(0x7f00000007c0)={@dev={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0x5, @bcast, @bpq0, 0x5, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}]})
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
bind$netlink(r4, &(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8822d55593a2179}, 0xc)
r5 = socket$inet6(0xa, 0x3, 0x87)
setsockopt$inet6_IPV6_XFRM_POLICY(r5, 0x29, 0x23, &(0x7f0000000280)={{{@in=@private=0xa010101, @in=@multicast2, 0x0, 0x966, 0x0, 0xfffc, 0xa}, {0x1, 0x4, 0x0, 0x80000000, 0x6, 0x9, 0x0, 0x40000000000000}, {0x0, 0x9, 0x53e5, 0x23}, 0x0, 0x1, 0x1, 0x0, 0x3, 0x1}, {{@in=@loopback, 0x0, 0x32}, 0x2, @in=@multicast1, 0x1502, 0x4, 0x0, 0x0, 0x4, 0xfffffffd, 0x1}}, 0xe8)
syz_open_dev$video4linux(&(0x7f0000000100), 0x4000000007, 0x82800)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r6 = getpid()
sched_setscheduler(r6, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
connect$unix(r7, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r8, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r7, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)

25m6.404874279s ago: executing program 1 (id=12):
r0 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000000), 0x80042, 0x0)
ioctl$PTP_PEROUT_REQUEST2(r0, 0x40383d0c, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f00000002c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000000140)="2c385aa3d4", 0x5)
r3 = accept4(r2, 0x0, 0x0, 0x0)
sendmsg$alg(r3, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40010}, 0x14000012)
sendmsg$nl_route_sched_retired(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000009c0)=@deltclass={0x30, 0x29, 0x200, 0x70bd29, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {0xa, 0xa}, {0x6, 0x6}, {0xe, 0xd}}, [@c_cbq={{0x8}, {0x4}}]}, 0x30}}, 0x0)
recvmmsg(r3, &(0x7f0000007480)=[{{0x0, 0x0, &(0x7f0000000840)=[{&(0x7f0000000080)=""/5, 0x5}, {&(0x7f00000001c0)=""/43, 0x2b}], 0x2}, 0x8}], 0x1, 0x2, 0x0)

25m5.081925258s ago: executing program 1 (id=14):
r0 = io_uring_setup(0x4126, &(0x7f0000000180)={0x0, 0x0, 0x2})
io_uring_register$IORING_REGISTER_RING_FDS(r0, 0x13, &(0x7f0000001bc0), 0x2) (fail_nth: 1)

25m3.580054394s ago: executing program 1 (id=19):
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
bind$inet6(0xffffffffffffffff, &(0x7f000047b000)={0xa, 0x4e23, 0x0, @private2}, 0x1c)
mremap(&(0x7f000020e000/0x2000)=nil, 0x2000, 0x400000, 0x3, &(0x7f000082a000/0x400000)=nil)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20008b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000040), 0x2200, 0x0)
read$msr(r0, &(0x7f000001aa40)=""/102400, 0x19000)
r2 = socket$phonet(0x23, 0x2, 0x1)
ioctl$SIOCPNDELRESOURCE(r2, 0x89ef, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x200000a, 0x5d031, 0xffffffffffffffff, 0x0)
ioctl$vim2m_VIDIOC_REQBUFS(0xffffffffffffffff, 0xc0145608, &(0x7f0000000000)={0x20, 0x1, 0x4})
ioctl$vim2m_VIDIOC_CREATE_BUFS(0xffffffffffffffff, 0xc100565c, &(0x7f0000000340)={0x0, 0x2, 0x4, {0x1, @win={{}, 0x0, 0x6, 0x0, 0x0, 0x0}}})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
mmap$xdp(&(0x7f00005b6000/0x1000)=nil, 0x1000, 0x3, 0x10, r1, 0x100000000)

24m48.205718685s ago: executing program 32 (id=19):
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
bind$inet6(0xffffffffffffffff, &(0x7f000047b000)={0xa, 0x4e23, 0x0, @private2}, 0x1c)
mremap(&(0x7f000020e000/0x2000)=nil, 0x2000, 0x400000, 0x3, &(0x7f000082a000/0x400000)=nil)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20008b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000040), 0x2200, 0x0)
read$msr(r0, &(0x7f000001aa40)=""/102400, 0x19000)
r2 = socket$phonet(0x23, 0x2, 0x1)
ioctl$SIOCPNDELRESOURCE(r2, 0x89ef, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x200000a, 0x5d031, 0xffffffffffffffff, 0x0)
ioctl$vim2m_VIDIOC_REQBUFS(0xffffffffffffffff, 0xc0145608, &(0x7f0000000000)={0x20, 0x1, 0x4})
ioctl$vim2m_VIDIOC_CREATE_BUFS(0xffffffffffffffff, 0xc100565c, &(0x7f0000000340)={0x0, 0x2, 0x4, {0x1, @win={{}, 0x0, 0x6, 0x0, 0x0, 0x0}}})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
mmap$xdp(&(0x7f00005b6000/0x1000)=nil, 0x1000, 0x3, 0x10, r1, 0x100000000)

18m36.632041792s ago: executing program 5 (id=1067):
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz0\x00', {0x807, 0x4, 0x6, 0xfffa}, 0x1d, [0x6, 0xc959, 0xfffffff3, 0x9, 0x7f, 0x5, 0x1, 0x7f, 0x6, 0xfffffff9, 0xfffffff2, 0x5f, 0xde5, 0x3, 0xdfff2d37, 0x1dd2, 0x6, 0x7, 0x0, 0x7fffffff, 0x4, 0x407, 0x3, 0x3c5b, 0x1, 0x24, 0xffffffff, 0x5b6, 0x132a, 0x2, 0x5, 0x4, 0x9, 0x3, 0x7fff, 0x4c74, 0x8f00, 0xfffffffb, 0x3, 0xa, 0x0, 0x71, 0x20007, 0x7, 0x103, 0x0, 0x5, 0x3c, 0x91, 0x6, 0xfffffffd, 0x3, 0x40000003, 0x4, 0x8, 0x0, 0x80, 0x0, 0x5, 0x6, 0x8, 0x4, 0x1, 0x40], [0x10000007, 0x8, 0x4012f, 0x8000, 0x10, 0x3d2, 0x129432e2, 0xcb, 0xf9, 0x200d, 0x2bf, 0x6c9, 0x9, 0xfffffffe, 0x3, 0x0, 0x7, 0x5, 0x0, 0xe, 0x312, 0x78, 0xea4, 0xa, 0x4, 0x4000, 0x8000, 0x9, 0x400, 0x1, 0x6, 0xfffffffd, 0xff, 0x1005, 0x7ff, 0x5f31, 0x4, 0x0, 0x6, 0x7, 0x9, 0x0, 0x3ff, 0x8, 0x6, 0x6, 0x5, 0x0, 0x1, 0x8202, 0x4, 0x5, 0x7f, 0x9, 0x5, 0x10003, 0x4, 0x1, 0x401, 0xb, 0x9, 0x48c93690, 0x3, 0xff], [0x7, 0x1, 0x0, 0x64e, 0xfffffdfe, 0x7fffffff, 0x8d2, 0x9, 0x1, 0x7fff, 0x0, 0x5, 0xb, 0x6, 0x5, 0x5, 0x0, 0x1eb, 0x5, 0x8, 0x86, 0x3, 0x10000009, 0x3e7, 0xb, 0x2, 0x2, 0x2, 0xe, 0x8, 0x4, 0x6d04, 0x4, 0x33, 0x3, 0x6, 0x80, 0x3, 0x4, 0x2, 0x0, 0xa2, 0x7, 0x53cf697b, 0x5, 0x6, 0x54fe12d2, 0xbf, 0x200, 0x3, 0x400002, 0xfffffff9, 0x0, 0x6, 0x5, 0x0, 0x6, 0xfffffffb, 0x120000, 0x3, 0x1000006, 0xb, 0x4, 0x3], [0x9, 0xbb2f, 0x3, 0x7, 0x5, 0x938, 0x6, 0x6, 0x0, 0x8, 0xce7, 0x1ff, 0x6, 0x40000005, 0x5, 0x2, 0x101, 0x10000, 0x6, 0x2, 0x8ffff, 0xa620, 0x4, 0x5, 0xffffffff, 0x2, 0x6, 0x60a7, 0x6, 0x5, 0xffffffff, 0x7fffffff, 0x5, 0x8, 0xca, 0x8, 0x4, 0xffff, 0x3, 0x9, 0x100, 0x9602, 0xa, 0x9, 0x4, 0x6, 0x1, 0x10000, 0x5, 0x7, 0x2b91, 0xa1f, 0x8, 0x9, 0x1, 0x6c1b, 0x0, 0x1000004, 0x8000005, 0xb1c, 0x1, 0x200, 0xdfff3440, 0x1]}, 0x45c)
r0 = openat$mice(0xffffffffffffff9c, &(0x7f0000000080), 0x0)
r1 = syz_open_dev$evdev(&(0x7f0000000000), 0x3, 0x822b01)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = eventfd2(0x40004, 0x80801)
ioctl$KVM_HYPERV_EVENTFD(r3, 0x4018aebd, &(0x7f00000000c0)={0x0, r4})
ioctl$KVM_HYPERV_EVENTFD(r3, 0x4018aebd, &(0x7f0000000480)={0x80003, 0xffffffffffffffff, 0x1})
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000001200000024"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000005c0)='sched_switch\x00', r5}, 0x18)
read$ptp(r0, 0x0, 0x0)
write$char_usb(r1, &(0x7f0000000040)="e2", 0x918)

18m36.383416153s ago: executing program 5 (id=1069):
syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
openat$dlm_control(0xffffffffffffff9c, 0x0, 0xad82, 0x0)
r0 = syz_io_uring_setup(0x416f, &(0x7f0000000780)={0x0, 0xfffffffd, 0x10100, 0x200, 0x1}, &(0x7f0000000100)=<r1=>0x0, &(0x7f00000000c0)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000000)=""/4, 0x4}], 0x27})
io_uring_enter(r0, 0x567, 0x1000a387, 0x0, 0x0, 0x0)
r3 = socket$nl_crypto(0x10, 0x3, 0x15)
sendmsg$netlink(r3, &(0x7f0000000880)={0x0, 0x0, &(0x7f0000000840)=[{&(0x7f0000000300)={0xe0, 0x10, 0x509, 0x0, 0x0, "", [@generic="6f6d888f1d1c4e5ad85ce4966d", @typed={0xbd, 0x0, 0x0, 0x0, @binary="2b0e13e735a3184f123d6da2f1acfac0ee2dd2b184b27db1f302de337c0004000000000000bf852c8986626691b01b5f44e4ce2d712d2828da0a9423debbb86f9dba4a2dba4dbe076c292c2800c446a567de243ab0d67683f7bb11c9cab3b3eed8a8bef4ff1631aa78acefca03c1a66db4424a8ba100024db5dd5e995aa0912086d9f4606d2e4cc898739222c5d3a83cb6b707f3336336ebb7d68143be79a8614b52dd4b9657ce940be783c334d2a000"/185}]}, 0xe0}], 0x1}, 0x0)

18m36.111506193s ago: executing program 5 (id=1070):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8d}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x11, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
futex(&(0x7f000000cffc)=0x1, 0xd, 0x0, 0x0, 0x0, 0xfffffffc)
r2 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0)
write$dsp(r2, &(0x7f00000001c0)="5cba91a4", 0xffffffd9)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000280)="0503092c8f0b480301020d00c52cf7c25975e010b02f0800eb2b2ff0dac8", 0x1e, 0x800, 0x0, 0x0)
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
io_getevents(0x0, 0xfffffffffffffffd, 0x1, &(0x7f0000000200)=[{}], &(0x7f0000000240)={0x77359400})
pipe2$9p(&(0x7f00000001c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r4, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff018000000800395032303030"], 0x15)
r5 = dup(r4)
write$FUSE_BMAP(r5, &(0x7f0000000100)={0x18}, 0x18)
r6 = socket(0x1e, 0x4, 0x0)
getsockname$packet(r6, 0x0, &(0x7f00000000c0))
write$FUSE_DIRENTPLUS(r5, &(0x7f0000000280)=ANY=[@ANYBLOB="38010000fe0000"], 0x138)
mount$9p_fd(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000004500), 0x0, &(0x7f0000000600)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r4}})
socket(0x1d, 0x2, 0x6)
r7 = fspick(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r7, 0x7, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r7, 0x7, 0x0, 0x0, 0x0)
ioctl$SNDCTL_DSP_SUBDIVIDE(r2, 0xc0045009, &(0x7f0000000080)=0x2)

18m33.833567111s ago: executing program 5 (id=1075):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$afs(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='dyn'])
chdir(&(0x7f0000000340)='./file0\x00')
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, 0x0)
mount$bind(&(0x7f0000000480)='./file0\x00', &(0x7f00000004c0)='./control\x00', 0x0, 0x2000, 0x0)
sendmsg$NFQNL_MSG_CONFIG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c0000000203039294e54067d4b179327500"/28], 0x1c}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(r1, &(0x7f0000007d80)={0x0, 0x0, &(0x7f0000007d00)=[{&(0x7f0000000b00)={0x14, 0x6a, 0x15, 0x8000000, 0x0, "", [@nested={0x4, 0xf8}]}, 0x14}], 0x1}, 0x0)
sendmsg$NFQNL_MSG_VERDICT_BATCH(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000000)={0x14, 0x3, 0x3, 0x101}, 0x14}, 0x1, 0x0, 0x0, 0x20004000}, 0x4)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000600)={0xffffffffffffffff, 0xe0, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, &(0x7f0000000080)=[0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000280), <r2=>0x0, 0x87, &(0x7f0000000300)=[{}, {}, {}, {}, {}, {}], 0x30, 0x10, &(0x7f0000000380), &(0x7f0000000400), 0x8, 0x89, 0x8, 0xfffffffffffffeec, &(0x7f0000000440)}}, 0x10)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000640)=r2, 0x4)

18m33.486933487s ago: executing program 5 (id=1078):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000700)=ANY=[@ANYBLOB="1201000059d360205f0501d09288000000010902120001000000000904"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0) (async)
syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000e80)={0x2c, &(0x7f0000000e80)=ANY=[], 0x0, 0x0, 0x0, 0x0})

18m31.908188674s ago: executing program 5 (id=1082):
syz_create_resource$binfmt(0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'})
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$ax25_SO_BINDTODEVICE(0xffffffffffffffff, 0x101, 0x19, &(0x7f0000000000)=@bpq0, 0xfffffffffffffe1d)
ioctl$sock_netdev_private(r1, 0x8914, &(0x7f0000000000))
syz_init_net_socket$rose(0xb, 0x5, 0x0)
syz_init_net_socket$x25(0x9, 0x5, 0x0)
r2 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000140)={'nr0\x00'})
ioctl$sock_rose_SIOCADDRT(r2, 0x890b, &(0x7f0000000380)={@dev={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0x6, @null, @bpq0, 0x0, [@bcast, @bcast, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @default]})
r3 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
ioctl$sock_rose_SIOCADDRT(r3, 0x890b, 0x0)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
bind$netlink(r4, &(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8822d55593a2179}, 0xc)
r5 = socket$inet6(0xa, 0x3, 0x87)
setsockopt$inet6_IPV6_XFRM_POLICY(r5, 0x29, 0x23, 0x0, 0x0)
syz_open_dev$video4linux(0x0, 0x4000000007, 0x82800)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r6 = getpid()
sched_setscheduler(r6, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
connect$unix(r7, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r8, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r7, 0x0, 0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)

18m31.554620413s ago: executing program 33 (id=1082):
syz_create_resource$binfmt(0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'})
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$ax25_SO_BINDTODEVICE(0xffffffffffffffff, 0x101, 0x19, &(0x7f0000000000)=@bpq0, 0xfffffffffffffe1d)
ioctl$sock_netdev_private(r1, 0x8914, &(0x7f0000000000))
syz_init_net_socket$rose(0xb, 0x5, 0x0)
syz_init_net_socket$x25(0x9, 0x5, 0x0)
r2 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000140)={'nr0\x00'})
ioctl$sock_rose_SIOCADDRT(r2, 0x890b, &(0x7f0000000380)={@dev={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0x6, @null, @bpq0, 0x0, [@bcast, @bcast, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @default]})
r3 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
ioctl$sock_rose_SIOCADDRT(r3, 0x890b, 0x0)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
bind$netlink(r4, &(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8822d55593a2179}, 0xc)
r5 = socket$inet6(0xa, 0x3, 0x87)
setsockopt$inet6_IPV6_XFRM_POLICY(r5, 0x29, 0x23, 0x0, 0x0)
syz_open_dev$video4linux(0x0, 0x4000000007, 0x82800)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r6 = getpid()
sched_setscheduler(r6, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
connect$unix(r7, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r8, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r7, 0x0, 0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)

16m12.73459262s ago: executing program 2 (id=1513):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x6, 0x8, &(0x7f0000006680))
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000180)={0x8, 0x100}, 0x0)
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000040)=<r1=>0x0)
sched_setscheduler(r1, 0x6, &(0x7f0000000100)=0x4)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
io_uring_enter(0xffffffffffffffff, 0x47f6, 0x0, 0x0, 0x0, 0x0)
madvise(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x10)
syz_open_dev$evdev(&(0x7f00000000c0), 0x0, 0x822b01)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000002880), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000080)={'batadv0\x00', <r4=>0x0})
sendmsg$BATADV_CMD_GET_HARDIF(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000000c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r3, @ANYBLOB="11072abd7000fcdbdf250500000008000300", @ANYRES32=r4], 0x1c}, 0x1, 0x0, 0x0, 0x28008000}, 0x40000)
pipe(&(0x7f0000000000)={<r5=>0xffffffffffffffff})
vmsplice(r5, &(0x7f0000000280)=[{&(0x7f0000000340)="00f4", 0x2}], 0x1, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_INFO(r5, 0xc1105511, &(0x7f0000000340)={{0x0, 0x6, 0x101}, 0x5, 0x4, 0x41d, r1, 0x7, 0x6, 'syz1\x00', &(0x7f0000000240)=['\'[@v^\x1d--\x00', 'DSCP\x00', 'ECN\x00', '/dev/sequencer\x00', 'veth1_vlan\x00', '}}}\x00', 'batadv0\x00'], 0x38})
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x2, 0x0, &(0x7f0000000140))
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f0000000880)=@mangle={'mangle\x00', 0x1f, 0x6, 0x3f0, 0x2c0, 0x130, 0x358, 0x98, 0x0, 0x358, 0x358, 0x358, 0x358, 0x358, 0x6, &(0x7f00000001c0), {[{{@ip={@local, @loopback, 0xff, 0x0, 'veth0_to_bond\x00', 'veth1_vlan\x00', {0xff}, {0xff}, 0x11, 0x3, 0xe}, 0x0, 0x70, 0x98}, @unspec=@CHECKSUM={0x28}}, {{@uncond, 0x0, 0x70, 0x98}, @inet=@DSCP={0x28, 'DSCP\x00', 0x0, {0x16}}}, {{@ip={@dev={0xac, 0x14, 0x14, 0x43}, @remote, 0xff000000, 0x0, 'syzkaller0\x00', 'veth1_macvtap\x00', {}, {0xff}, 0x5224e86f233b7b4e, 0x0, 0x40}, 0x0, 0xc8, 0xf8, 0x0, {}, [@common=@addrtype={{0x30}, {0x104, 0x200, 0x0, 0x1}}, @inet=@rpfilter={{0x28}, {0x1}}]}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x1, 0xfffffff9, @private=0xa010100, 0x4e22}}}, {{@uncond, 0x0, 0x70, 0x98}, @unspec=@CHECKSUM={0x28}}, {{@ip={@dev={0xac, 0x14, 0x14, 0x2b}, @rand_addr=0x64010102, 0xffffffff, 0xff000000, 'veth1_macvtap\x00', 'team0\x00', {}, {}, 0x16, 0x0, 0x17}, 0x0, 0x70, 0x98}, @ECN={0x28, 'ECN\x00', 0x0, {0x0, 0x61, 0x1}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x450)

16m11.16398562s ago: executing program 2 (id=1515):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
r1 = landlock_create_ruleset(&(0x7f00000002c0)={0x7f6e}, 0x18, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d000000"], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r2}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, r2, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x804e20}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB="2c0000003c0007010000000000000000bdc5017c00000400fc800c000180060006002759800a00000800028004007280"], 0x2c}, 0x1, 0x0, 0x0, 0xc000}, 0xc000)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0xc000)
landlock_add_rule$LANDLOCK_RULE_PATH_BENEATH(r1, 0x1, &(0x7f0000000000)={0x210a, r0}, 0x0)
landlock_restrict_self(r1, 0x0)
r6 = syz_open_dev$sndctrl(&(0x7f0000000100), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r6, 0xc1105518, &(0x7f0000000040)={{0x22, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x1, [0x7, 0xfffffffffffffffc, 0x0, 0x2, 0x0, 0x0, 0x4, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x3, 0x0, 0x100000000000, 0x0, 0x0, 0x0, 0x200000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5fa, 0x0, 0x0, 0x8000000000000, 0x0, 0x9, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x5e1, 0x0, 0x7, 0x0, 0x3, 0x8, 0x0, 0x0, 0x2, 0x0, 0x0, 0x8, 0x40000, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x40000000, 0x0, 0x0, 0x0, 0x8, 0x0, 0x2, 0x0, 0x0, 0x3, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x7ff, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x6, 0x4, 0x6, 0x2, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x2000, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x3]})

16m10.160810259s ago: executing program 2 (id=1521):
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$PIO_UNISCRNMAP(r0, 0x4b6a, &(0x7f0000000d40)="97b1320300ba1d580b74aae1042202d47a9857e3198900b5cc32ed6aab654bd22d7a8665edf970461cf53ccb6bc86c243b57245f21cde0ac572161f3d5ba823b0333ebefa6db9bac9cfc638eaa1d888cd36cf559b96fdcb04e1f78419cd3b5d8d87c5f21bf6fae60913372bc2efefe2b530ff1722907503e5f2270cea79a24c97b1e24d44207389d0fa48909a9ae33ca6578ea9c0003fb24507e04eb27d64563883500cb3a35c1e61548d9e08d6ff781c0180e94f1de0169eae3ae47a551fa910ac3e73b14f2f4bb80ae14a26790285b6baf96f15275e05f3f756a4f86cb8edba2c765e72193f9906a16d1b6571e1e7cd5dc838806cb18acd376f4b29a3fd221d95435163226985eaea5fe843d66841872b28857a044e5d2855ebf6837969807b27371a8aae1bf306cdf7817184f5dd8e61c349e41f7c9bcdf3041085e285e854c471b1d06612085220a0eb4fc428da6a2797645403d566dfb4491be3abdefd533637ab58a7225e8b1778fb77cbaf846ec348c2dd27c83dbb199ecb88dcea12dd498432b34ca2e63806380e5c8f9263a773cd7379bd1be07d684179b674f449b9fb0d961c06c7c148b901882bc98fcde36bdbdef656033ba6744d17e947091294363eb6baa604dbcf355498923f11f084c841ce8329398f5a2f1d1f0bf026630ddd5ad64bf593a110496faaa181fa25313c454944472f573d3d2631d8ffa4df5f4c407a1de143bf0b0466a8627c23458172bb85b6845e1c2ed8a87af0aeff4bb6ba8f606985ee2f96c61094f7666800f6166aed16f36bd37bd4ba7287372f4b0e2b44e72a127c1ebbab1af9c8538e2b541a54305f27154d105cc5e0b1631062458d47d77005e9661e2a62696e03c916a6e8a4793")

16m9.383989138s ago: executing program 2 (id=1525):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r1 = socket$igmp6(0xa, 0x3, 0x2)
bind$inet6(r1, &(0x7f0000000300)={0xa, 0x4e24, 0x20000, @mcast1={0xff, 0x5}, 0x2}, 0x1c)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setscheduler(r2, 0x1, &(0x7f0000000040)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="1c000000240001ffffffff00fadbdf250c000000060004"], 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0x40050)

16m8.271752512s ago: executing program 2 (id=1531):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nfc(&(0x7f00000001c0), r0)
sendmsg$NFC_CMD_LLC_SDREQ(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000340)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002cbd7000fcdbdf25130000000400138008000100", @ANYRES32=0x0, @ANYBLOB="72584a2905dd3ae1ead5a4b69aa25d60f8d219a68980bfe6d337a6cfe4077f2453b1a9b0d4367ebdbe80065c9d0689938bc9b1"], 0x20}, 0x1, 0x0, 0x0, 0x4008000}, 0x4000000)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xacc, 0x8}, 0x0)
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
ioctl$sock_SIOCETHTOOL(r3, 0x89f1, &(0x7f00000002c0)={'ip6gre0\x00', &(0x7f00000001c0)=@ethtool_cmd={0x3a, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x0, 0x2, 0x4, 0x0, 0xfffff7fc, 0x0, 0x0, 0x0, 0x47, [0xfffffffc, 0x80]}})
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
r7 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r7, 0x40086602, &(0x7f0000000040)=0x10)
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r8 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r8, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x0, 0x0, 0x111}}, 0x20)
write$RDMA_USER_CM_CMD_CREATE_ID(r8, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x4, &(0x7f0000000000), 0x2, 0xc}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r8, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000580)=ANY=[], 0x58}}, 0x0)
setsockopt$inet6_tcp_int(r2, 0x6, 0x8, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
shmat(0x0, &(0x7f000068f000/0x1000)=nil, 0x4000)
shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x6800)
r9 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x121602, 0x0)
ioctl$TIOCVHANGUP(r9, 0x5437, 0x2)

16m4.979524259s ago: executing program 2 (id=1538):
socket$key(0xf, 0x3, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8d}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x8002, 0x0)
read$msr(r0, &(0x7f0000019540)=""/102400, 0x19000)
openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, 0x0, 0x2)
sendmsg$IPSET_CMD_ADD(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000002440)={0x80, 0x9, 0x6, 0x201, 0x0, 0x0, {0x2}, [@IPSET_ATTR_ADT={0x38, 0x8, 0x0, 0x1, [{0x18, 0x7, 0x0, 0x1, @IPSET_ATTR_IFACE={0x14, 0x17, 'ip6gre0\x00'}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_MARK={0x8, 0xa, 0x1, 0x0, 0x7}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_ETHER={0xa, 0x11, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}}}]}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x2c, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0x18, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @remote}}, @IPSET_ATTR_PORT={0x6, 0x4, 0x1, 0x0, 0x4e1f}, @IPSET_ATTR_PROTO={0x5, 0x7, 0x67}]}]}, 0x80}, 0x1, 0x0, 0x0, 0x140088c2}, 0x80)
setregid(0xffffffffffffffff, 0x0)
stat(&(0x7f0000006940)='./file0\x00', &(0x7f00000023c0)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, 0x0)
syz_fuse_handle_req(0xffffffffffffffff, &(0x7f00000042c0)="000000000000000000000000000000000000000000000000000000000000000090c400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000542d0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ea8286a2fba523440000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000633956a1000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001800000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000007d6ab715107fa1820000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f6ffffffffffffff0000000000000e0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000003c58b3bd0000000000000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e1ffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f4000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000286071480000000000b13bc1e6d970884f000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000600000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fcffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f3ffffffffffffff00", 0x2000, 0x0)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000f40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000024c0)=ANY=[@ANYRES32, @ANYRES32, @ANYBLOB], 0x0, 0x0, 0x0})
socket$igmp6(0xa, 0x3, 0x2)
lstat(&(0x7f0000006c40)='./file0\x00', &(0x7f0000006c80)={0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0})
syz_fuse_handle_req(0xffffffffffffffff, &(0x7f0000000380)="64a6a9662be573b47e5513268359ac90e83e89eb8101ec5823514abeffeb02c7f0141f40752f15af9a814c3cf77563ddc23f38fc8cd0bcee86b8a379a674a5b84e63c8901c2a7007f2d2c63cfcdb1f69ec9d72603c3b6147330e79ba7b9748fe7e737fefbecdc6494f35fced8b88746ab506bfc812add4759c247456e6e921a37fc17991edbb2a9d923308b03918075c62e252df76e20f89bc7c3f01380769a72272cdbb4f5fb168808ae21ef725f5344f113630c4e4425256398a9430dd33001af0687fcd378c0d7c04910f735ad6f1c5749800f8217cab133f6bbf6187c0c1e11455d2f57ce8eefeed776a9e2f57bbd03fc0fc7a9a7b84c58ec35760396e60b03b7638adb7169158a09e659a844dd0952037ab86afda09a8c800b65651e35c474d4390543f9158fa8a5fbdf7321e42bee8ef9e553f0f03ab4d5553388caac6776a3c373f10834a0dde4e17f1d889fec74407f8c93469c55cbbb6014564d98b6c7c38e1e5a9e010f3c0d25fdf44c99051bb2ffd4406f15c58327dffd6b8d38106931ac30815d878b64bcfe536a52dd072b16f4f89add2706dfd7de8810fb9b865c1eb8765fb1d580fb1fc5feb09a3b07bff18ea16f12cdb68658647fa53b1a41504d26cba83bdda17893f52173086042b04406850bdfdacd8dfbd0ff9a003edb4fa064ef55bbe3b05156dfa7c6e7fadda83aefab6807b3af2cded7dea40977ab37c57e5253879a19343ebdf229745eb1841bdc70b03010781c0da5929b2bb1745dcf2b32ce78ac6d006e85bb38936a91737c212dff88a4c9b87ac35b0b68d09689b2625ea48d523ba5fd52de055ac70dd9255f3392d8ce0aeee70a64dd80ceea570ab32dd3ce8e81a70e23a5af2f5c2caf668b9e3d10203613d7fd24ae20bb9a570fba52c5ab58bdda56f7474399596c03f8fa793c5045e315ac4755adc5d7b333b418c7af9b4c442333979c3a079a656d72228c2c7425167886b78f634072124fbefd6b7dc3a7c10645311d06fbd67abd5cde51a8ff859fe8cdf253c38d406c5a5962e247b5a90e0e190f62700fc65cf06d97c3104e57bb84417a502e616a11fa83ffe5968e9fcc4d4ece5a2df74e68ceaad1cc9688ad0da1dd81bbc559860db81c18aff97107d0c13cf4eb300a3818cdeddead5a9939e063bc54ae3744b18bd6d09b88fc7e6893913f24a6407725e482997a0bf65cc9ab17db636664eb55cab54cb03ab50bfe4814c540b2a9aa8a10edc1c32e1b84691b01b27398b3e4e3d0f0d86bcf9752afd8dc0fb77056925c9a2950f51e43c5d60d833f8a7011f000d00fd76cfb81710113d8071b54ee3da24c03a340bc0e3be1180f9347fde9d2ce5228eb907d1a2d7361239e74bbcc0c459dc54f833dda83893af8e632ac9a3f0c3fac598d6faf207afa4ce7216cb690946b735f51fdbf6ebc78d5ec91106e1b96227ba8d3f774f5df42cb4a302afa59792a1389255ef864351624a1ce63853848aeb5e57679f8643a2591a70ef4b425ac3641cea1248fc44e95dc922c8eeb7ed577b922dd24693e498b3733541b96221269c6c67c0390a01d8562790dc8afb8126dba00ebcd9390660de9d5dd9ceac3acd9e691bd606ac5840a45ca67dbde6b2ee7e0090481a6c7e16979977dac3c1e76674d22065b484c1c68439f5ab2d92728d64c8baf999ba5f18c0ae60d8fcad90dd9f56f0b0fc44f8beffae26be8e5ad180956b6d1148a9ccd98163338f71d35ff6dc8a489dd9d3a53874910b322ec7796acad8f9248d933416381e02d8635f39b103896c2c9bfe5139096943cdf229e43c82f9c16f1990bb2efbc6d88db27f870f3a4ae34f07baa0c47d982c9a36b6c7bb8d900f4a322a0354b6b55ced55f5bb2f5fb94371f798e0412f3940ac2820491f69fa4a0e8da28c25caeec04ac9ea1dbd5d550f5ed72b0e9cdccb183827cf0440cfdb6ac1292207c5ad430c33bbffe20d1188bdd7256309e17db6b8192e660c154f60f41b6e1729645373aa5a7e60683fcc5beb65f2ad0a85515ce45a4e0fd9a5d37e8baf2c9b0dfbd977845ab2a0f0bbb6fc69795e6654109577e4c727b20a3c316a599b00bb287a0b53b9515937fce05db19e4ec98e3a7cf4a99cbecebf106f046247411203d033f96f08119c53911bffd929de60ebf40c4a30c504f7636d3aae7a582443ab0f8eb97a1f92b0cd4ea577b6048153d8a13c273045b62adf65aa9df351b4f1dff1b3fe64e3e95afb10a30f85c3edf26abdb2e21adf269046b9b5f4f78f3e63ff488510a14f0c15316701555e1a2504796a1a8393ffc72b824c4578eb9587ad34203b5080cdc7debf62a579623159486c746910ca2944873f89ce6c68f05d5e680563fbeda6045c882a713139723c17b300872e763c99116cb8e3d2f92e31f9d646bef8879e9dbc703676113b3fc4ba2e7464226a530e5634c6cb5cc4b942b265c633adf250b3736180a9a54d415f4859fcccd6b1d176380c257be0edfab8ba48a5d2166b835f80b526844224c7fcc6d4c9556cef1a36a30fe0f6e4bad2c398bf03b4bbab09c2b187410c919f2a55683c690f3ce039aded824de311e4c84d2b1fb1239f5ac0b7898ad54134e6912b88971865450a9711b1d466da7b08aa51802781f5d0e5f24386caf8bd3f61232a3db53851ee536e4235fa6ee9fa16cd33b6bfa766e05b20b246b291868f5b3a9c424ef99dd37d1a047ea57aef3589ac63834bc02b1f6db77f3a426fe987b0dae7f63eaa349c3c9acf24a5a8936c7c4700dfa4d9ca75eec005832f291639e157065d0872228911c0c66dc1b105527bfd68e7c1f322a72e9d0f0e3842d7531a9cdea5bc4644ea660c7e198077cf099a68af7671bd503f810b50d6a04bf1d7cb53ec65c5cdf72ffac5d26e5a5af903cdd4f498d3cfa3ccf04acdd694ca97f24d34312aedd0992ba0723075bcc37277ea3b2b1091b67463f53292e4e962aa95af3392db659ca6cc3b198e769af9daa47c27a32e59ca12d54e1b336442ef65b3a5e60b3c7434cb2596e9eaa6f305a637988667d64c43f2cc0de61f10849fe6a0ff98210c57fbce9626124b91ac5c2f7ae1102c7c3302f702b66774ff8e488a75f9769ece41fea345fe9348c6f3f863e017ef3ee63ec4bad6ec48af018ba6fdf186a24b794abe5c5d75b6ec88d074a101ce69053b7d43c3a257d89e85cf662a6783d545d45c2a04edd172244f9807af404377fa46ab1f4232906b680743f1a9087cd7806376f9ebc67c1a1dbc8f831dea05fd4dc3ab84c67fcd978242a4d06b3542928e220c37f20d20ffa0029d5f275bab90e796f0207e8c7b53e692f56569c0b84a83840d5d8d26356b6a9f096543988f67eedb8138b211509b99439d1e3bff6c78ed78f8af3702f084be424538d42085687ecb4029ef762e599b72e7ff964662edefa43f5c7fd305bbd3a25e68b1cb694cc341bd7b9b2956dd9cd567ed91150b0c98c49499470199c818486668c492204af6c65036ce8837421a13beb037c504422cf31e8fb20e452f7eaa7075a114bfba580b21b09fb87e27fd9e1a5703fd3c6bab54341b1741bd5b574400bf9cb313e7589195874972a550ad67be818e5f1a2b6e39f0e0bc7fcc60900eafd75d254f7db6253c416fda87829e4ce5a5bdff420c5a5536ce0dd73f940443f4aa22e732aa7950162fde21ab2f0ed84475b341f88a36a3dd350ae598fa6d6609c46f032868c1f5425d9d0f3185420aebfb3c0eec7ccdb3a97967add7230af39e962209d36010c1479c7c284cbd5b520ddc2b2154b7936b9cd95490e95fce58355a7781818efe805bb4c07505989fbd0409fd60fefb2829dd6348d642e45436cf41910d3daf3bf28ea76e961ccc2d5a38cc1c69792b876bfa1c5c657222e80d1865e8cf4c6c187936115cc0f4643f024a5616a1ace0c6af07ef46c6cacab8a9fb49d2e40d68e7df562c1dcea8315be68c8a34962ab2b6999038cc4805ed17a05f2262a64f5911acfdaab7a8c87c611cb5acc8e4c79bf700e4999fe490730a6ec087a68b684847d899fa7164b0de19d4aa1e11a6bc787fd57b1b1daf94d07ea6dff3b5f7b9f3d0e1c320679b510101b158b3cdecdaa9cb38ee2d2419294e41d18e08e6420b393f78386ff834445a66aec40acc649b62831df83aa99c27ecc0f8b23438d7b23b4d838c1a65d0e4cff2c3bd9f1a2fcc05120bdde8daf5e07038a92247a18cc8ecd7aa6190759971db28f1550b40fd862b2733a1c6a95f1bdb0e73930ceca2d2f8f6c795e9928abe0e94d00dafab4abd3b1058d5b6e4617bc7069d6bfb217fee7022832ba2199da367a01f968d5fdef1a62d7c799e2db696c079c14e511d55e0207806d05fc1048a2001d55197e767e87b4c303cb0b8fcd74627d19157c1879e1fa618b083511e0b8d1224c6c484e2f7149d7cf3b03b2ec007221a9347d2258d1509145dc58dc20041373c286e53d022272cc1c27fa034fbe110b088b6d81c6a91ce08795d07ac9bc89a27774b08294e668e7547454738c9499e5a59e7f1fe0e14b29a4cd75b55cb35c5046d66763161e8df2bb89700feca5136fc882da343988dfa54697bf80c7b237a23a55f568e0995a08023c83d4dbc7bcfc7887715135e96ec6fd01eeef51d762e1b50bf2e4059656492a1ea7a7cea8d66ca2b84302dd8bbbb6b0d962beafa1b850ba6685c207b179900e773785b82f79d6f61289b9c8d2c98bc24e8344a82c41bb28d6bbb9680688c72222cc43427732d193a396633d300f483419871ad6016497128a8f86e6864cfae08f7491ce8c4360d6e98a9924bdff4f4a8107ee4601bedafa4c8ddfcd743ae9a4d2a0e93b018e1975e8b14a22933d42a6c792768b05dfdc55d519ba0b86192b2a11942971fa6365bae1dd77171963e286fb8aaf716e31d48796a8dad768eea2eb56987ef254adca5f8235d302431caa24c20325100cb038faf551a7eec63c6e9828e94215abcf5092c8ba262c7480ed8ef1bfd82a7222a94d154dbb076e1b3e5a979ba15e2dd6fe0508996e07ca7e9f0ad07ba5e4cdd50246946b4fd32ebc79954e78b0c5a32c4a75348f5240c52c1fb915d0cea37abe9f27ba12621c7b5603982cd474f269137afbf790d8e8f7730215cb5b78342bb443ac9e583246fe459c93a26faed7567b4b46d4928e6de8be8fb502194ed8388e4cd9bcd769a38795b6e92d6c615a5d9dd3c00c11dbe1d50497ff90f2f99b3b1ed332e46f2fd1d766410db2476feaed82f8f1c1ed939c05f794336f3374d2531cafc203300ce850e1231d8aae76aff38fdb08f4b901bc280a248f3422c88305d8605134cf4805851f38c21ec542e32107c8c468772840fbb6c4047893a30e9f5e46c5434b4f1c856bd551e3654c6cb457d837bc252eac5297c00bc05cf864ba7e2dd47c7baf7c85bd3a287ad0685b083d9d9520d894c8b2d4031144cf40730d5556907a9d6febaadd2e5c4ceaac9660772716990b584b8b425305770c364c655ad876eedba67f4f30ad20bd731a110a9856fbffa135cdf2b4f665f6610f408fa725a1dc969a3fe788bd06fc97d16e521f846f5366904c7d0357f56c72149d9c18c6aa8bb579d26aac36cabbd44560ce0cb286d957ac5fd12faa5a84dd2d615f8495737158c419e900d813a800f1f125b3f3995c9c64cad7a02ba42568f4786ece8a1796d48685e711af07201d5dca012f5e59028ef1db42c7c5f064854058b30d5d9dde1282ae5a26d0d59892159d62051938a2ba52687077e2c0ec82e6aa9e98ef6ee0870c978b057316a43f4f5d0284cdb00a4f7df2992fe1fc2baff0651b312882f6c8b76b05117c2bfa96e4ec425de81f5a90c9d46c886c201c15151ec919b43c645412c666b99cfaa1286a5413635fd1105ce370edde3b7d9c6357d7f61ceefb573f74547a7c4a44eeb726b26cca2c5a213ee76f6bf731c2d7bb4b4c1ce1374e71b5731b9270ab74d9e1747da10704be4b549e61557cb202162408611501b940ef1b9e9a957dc35cca33a473ec9adb7a160fc6bcd868b5ea2cf6d93a8f729da060b64fec509e89591096c34216329e862962b65b8a8f01300a19a898e8e46232b82250d94183c58847c4703ddbac0f2f8b61be88a5fe5a30090d7468ba11d72c68af92b349a3956d7f5332da3a79a1e427f2333491bf84b7496cb2553572d6027f5244f301c1f1f0c17e83216cd3f5910a1f19b321c925e4cfad95844a89233b6a99ad5f3041ea4f955881d9769151606182f0655e26c55d47999d24d24137cc5cbfd9693e1806b65e04be500583a20fc3fbf827387d9d9f142f2a2407c36a96f7912a824c9a437ebd7451bbc34407d049da00fe5df5762281002de9c8798df389f1d3dda1f29d7f75204513097c0da8f214d9914f9bd3c9bdd974241b124cb810a04fae35856fa2720e552b4a03d1f11700f2bcffa893f5db25245f6adced1a4ba34520f7c159cd144f7a76959b6b3b9a548231f8fbee5a556535dfc2612f80885f8b97897e01f2410b0eaa2cbdab23c8dd7a7a637557bad673dba1a8b48138b8ae782a4640b6b4c49736c38483dbe891712d87cad7c2668601c7462eca71d3a38ccd63d9f2aebe86d54b079953b1c5e5ccf22dd72302c6d28bf32072560041f77e2a8b6ad14d699c96f6afb9aff1421bdaa26299101432564e69c9913e0698d88b66fd38a4a99836090b6c81ffe2b537c175871aa8ca6f93c2931ac577706c245c9067b7fae0275afb64414d285aae507d72b1bbed7039d2dd083b2fe87754d86669541d99e0b270e48be0fe377c7de6f81faba57748376dcd4a721c814253a68a2c953d9b2d6dd75fa2d5667f8b387eea149a9db9c36ff12cb09f885eec4a4728ff27afbc58a88df9d9126a9deb35804f0c54003f583ee91a458e1cba6e1bea08b9db08ecde684199b5e1d4374aba9b6efa02b95770c0ce7d301fa7e6c6840af24a7f1b90500a2af64f92f22df9fd45520563622432b7cc0b3e051960702a7588704bc16c90822a05563d9a143a28342aa2bc3aff8886d65eec2c129fb2709460ddb4349b00d5a0e96fd6ad96df10b7e23e88b65e996935db8d55f5a52b4d5ed510b5d8f4e86fb815ac09bc26e7e1ff24c1fe9e7d4827c0e810469274f4b75e29e6a0d9c293ce3e912d1dced1f84b50c08da1d1ab2904d1ab1893b468de640f018a5c45f8e605bbbf790dc614519c2db7887a8aa3cdae7e05397b4ef463152a42c7b69d3b394890363fba1b85f7de5f20ca3ec373760682021df424b745fbe5cffd41e97fe1da3d4e459f91feab752cecc5b973ace2a98d75f920ceb151965dd08ff1c40324850048f3c5bb031250e89d24437af9eaa57f50c6020411ae725cd0f99ee1742673c2caa56ab2c49438f7e002e3c1192776f605a70ef22b4ce2c6bc54f8fcf1a45d2e0d1260afee7843e1c1f8988c06f186e7782f9e911f7a729d8556188b551d103e70d316a9a76b111a5102f7d8ebcbbaebbb461e6fbc68df5019a02ccfdbe6e4beb787d9f683c71082008c7fb0fdf4fa1ca86ace5bd57ac0c6b7cdc6467b336f0ded17aa83972e0635749894f5005889c84eda4e85468085f8ce2f30656adb18a9e2567693a992b3829d0483a40d651c1598716fa282ead034c874d7c8a435f6fb0de31c3b91253cf3f57b92b921b74f9787c06210d442520f4971f344a11aca09204b5f9059e9c070727b2dbb976315a1b0e87c24974d6989e7b4d3ffc3a278af5873309fff473eb15934f9ce49a31f9e0848c22520e07e41b1bb0bd0af717910bbe78b463cd5e851c0bf0e407db272da5e1cca57767283462c410428ec011c8d271b21cc8b1cbfd4a2e8b83cce0cd91b7c85fc8729c1e0998aacc454696df5c041e8e02299d4ad09f2c5eb1c5862cd33aad3aa69a8f45b715fc4c11ac1c3a5e38c7f08652ae622b305307424dfd4793a8b331d4fbee47ceb562a6199ed6000af744886656d287faababcbdbdbd929bf0ca38e8fb9850f0dd693dde4647dba3ad42b630319ace3ba0c26a4682f1a907a203a1a7750a05343e7e51b18baf27630f009596767270700987b40ca7125f98cf329b9a44036f140348390858e4dff35be17af4022c75ac9a4416885775da248abd4ca7e7e5eb2cfeae9b1e79a013e06de3a7dab0c0960d6b076b3eb8b3590eef09dcb64c97c323c8d1b2731174f2c2bbce23c7cd79c76b107a6fbbfe1381807d53292f337afd6980de31da2c6331cfa3c0e738c11b62b9c09c7e7ded7bd063fb7740db0b7f8c9b595eebc2dcc0a580ca561b8398d1fce62d79e850c80c58bb1e131b0017dfad83a8091dbbd931f012fa1da1ecb4bacffeddfe4e035d55a85bbbe582a832de3c88895ae78c99a492514388942f7cb2b8d30169e8fedc3b31e84c08010205ac6b94f36e88a0c1b660b6e4c9ae353e93104aa8d71346c1d428ffa1d94f1adcf6f8794e28c82977722af97b25a93f33e6b6f1b117cbdd15cdf0e59bcd411d86fcfcba650f2bef3c8d7cc5327dd978491d22ef226a31544020ffab783e45c8bf03229546ecfabfdfc37d523f3a696d003668439633ff7e0a748aa473a44a486f1ad35142d54e6f8fa08c20d8f093c91e8aa9beb2c5d80013df82dfd7fc930c59a199a46b8ba84f1d6ef4f11fe3028717d157de5c086d3c309f337feee71062fa1b6533126e7e113cd928d5d22934e79b249f722690c14a89d61b1b9f700a2906769b69898ab2926cbb5b789da4c5b542177b467b5f3603d4fc61d60c2722fdc8711e2a32c63b03b0afe12564bb00763cfbcf1e9a23e2bd80963f9b3217d6fdf413100b90d348ad2431e4c873fa5fb477f576a3340ae675e70a0e2bb3a41ea4d794d7946afee60214e1619e28520d72b85538ad8cdf55aee0d5951ed8d4154e825e41615d742bccf37793febc0dc4cc3b3f733c2d0ae9a1c22f5c4c84dac4ad606f4a7b9bcf4c5852ea77d685fea84c64e4b76da5695da5d559c516ee25988bbef9a7986d5dd441b027cfe0b37fd743dcffaf04bbd6ca50f2666dd3fafc994f2eeaf510b01e8b7ea13361ff4e02beeddcc18685bd722a7c24ce59a6390b486852988e2050687afdbdcba5bedc76b8cb4479306bf5f7f8a01e4d1f46efde7fc124dea2d4a5671212c48a8d3c3c17aacbdfc5573ba42b16f300195aff388fcb1845da7f7727a7efbbef80b929a8d3f48ba8b411fdf9ded69602dc8d90adf6a29282b47dfffe1b87802a896b51a457d38b578077d90e53edc24d56c9bda63964131f13ea2c0c05801765419c89e8871943d19298fa3870cafd911c6735c7fb2891c333a8c164e5346113ed28c7623e1a08842760fb83579c521653c013a3d70c2f49619f2c7cc1588a33522ef784b79de198d1d8da02aea21472bfd3382f09489656ff84e5e1b6869a147fb8ad0e54599985872e9b54bf8c95f33be7e593885b1df8b022d96afbe1aa1cb0ef3296ccd466e2fc4740e628788ecd309b8dab7f73127cee2dabe7ae37160f033e3f39f26587a28cad0eed02a352b1f7fa6c134c8aa4d7450869aa223c53dc38ef3d287d77564cd55ca617f8f269920a9c48a9b30d0b02341d9b78bc7143515e451b3573bbf4aa0e0af94f242f6c7c9c5f6788d7459c0c65baaaaf3957ae623e7c3e78a6af911eee32745feeb300bd94dcce91bf750d66f1ae29cd812dff2f85d4db3027bf909739d6dccc4b6b1b6b2208dc7b80d2e19d6bcbdbfa7969b13387f1f865b149c484720f1bfbd270396fc870f7db9a06203fea33364e3e6b958c06ae8f45e3c573c5da2bb1f0cb5858c960bc4d77d301ca08dff2ba6a9107ef707b127dd44bd4b002b02dc832c8a1c703e1c7dd583f4883509a94a49eba7a38b69d215efd82b340021be2d972a1ff398c6ce7392bc3418462979d6d2d7881549613f7486ec23a67766dcab5ebc4ae611225df183870d5c9eedaf5ad1e82e6a02547c978bf527e517442a01383715c8f8070a534f9b544e0c35ce2a0606146f3e709c88b7f3393256153a15ed5b63c67b7cd2db4ce33cef56b8e655a2c4faaa28166ce85a2964b2db178ef9808941720cbbd1682d1d2ca32551529c4f843cb9594c683bd344f0c2a621534ca2fd83bb7080d459821d9d468d86e9e0b218be9d58afc42597ee4ede7c2c8d47bb7192c0ca1f34c768a6e8588b77e9b9097252c6c35f2382e7b81db95f179db861206f32e33408ec644d06b1e1191ecaa999b42d51922d95c94f610e1653974a75340ceece889d5405846191a4f9701c480094c13a94519f59d856cc71b9132f21cba0e74807df98ac0b9e03327993725b1cd7ebb22016875e50ce7c8c6361bdbd58711b3d0c0c574e82264eb3fa1ee87b1ca875b92ceafdf275f4ce76d706bcfb303b3f8ebe165ebd809d87a7a69cd4b71121a0890a6fa5622359a1bcac8348d431eb94cbd2dbf6838bfa15d61df04684479e7687f00c85c069dd76440600e78f917a04821f43e0c8489eb18901ccfd4038786ade5743bbe4ed16ae3571ae2edf9e48c977a67cae418f3f244d960e291fcd5085b8286de7cae3a0f1cb28e5b57ec0230979e4edeb3af5e6378f1bd45c5ff7bb826b62538f4779ea4ff8020bde87d09c4b2ad8a1aa4e69b1640cba87fc2d5bee65ae397191b242db9dee47b48f29fe8521584558281c89f5f75971e5bad8324998eff92fbcdc69579e2e3455169ee538482ace9eeb0b52d9038635aeaba964fcfc840f22fc2f7ab727707127b6139b0f403c87a07dba268e3bf8f0add893834585a1ce329d4be02714ed8351fb9101f732c3e7fbf22d7080f88e6c065430039beee8476a66ecab701259001e297d9910977d91435b2114b7e9ac123006eda400b9741fa7fad3027af5c7c317b959a3fef3e6b133909f20dc6d671cc650f2da4971e0e38ed7d8a6411b3cdc8f8eb3603f5c408a909b05f687c6421ec5343aba797d56e11fc0302bb88d58e3687759e2b32b023fbcd5ace5c077d5e2e2bef6456df5fbeffd39999c472e919901426dc01cb884e301da379a9a6615d700be027cc549807cc740e03942540ef62947da48642dccf8e6930ae31b39b84dfffeaf53138ada5764673b6d60f0571d7f23e0b652cb8521642780900b5b20e18e70b6a85d49d58d26f95610f3fff40c1fcea3346b8e8d8066dea9eae3598d80f6ac1768eda953d96f5943fbed0c5bf02ac4ada21ed9faf59eb8e912f9230c78e89945260fc9c4688f35d115e32dc0b2cf2b3729e48f778b7d657b718a219b6398ceca7a4488fe555795b3f8c29819ea649b81dd6e1444bbd91162d3bb17382d2214d652d7c74d4c105104e26dcbcc430654c6b5bffb9c99c2e808cfdc418f24e1a8afd24d918346faa0c2c393f5e88411c25c3f0fe49b789e3fc8d8c195c4a0c3200fbd45d5e1f1cbcbbed78c668ffa8d7e7e25853e2d6d670135c771d270e252893e96cad0901f882e0df432143bc42c86cf4c9f3e627c01b2d1ecd26daade19ac7fce1b0104f7b316695c2efaa2d571b76e3bcab58e2db643824c074c71dac6f801edcd5a88bc3d43480089128ee397959250b01778f1c57aac1dff73410a9cd328a99ea3e91cf1cd33a03a6a95342efc355467", 0x2000, &(0x7f0000006f40)={&(0x7f0000000000)={0x50, 0x7ffffffffffffffa, 0x6, {0x7, 0x2b, 0x5, 0x20000000, 0x9, 0xd0, 0xffff, 0x2, 0x0, 0x0, 0x18, 0x1}}, &(0x7f0000000080)={0x18, 0xfffffffffffffff5, 0x401, {0x8}}, 0x0, 0x0, &(0x7f0000002380)={0x18, 0x0, 0x3, {0x7ff}}, &(0x7f0000004400)={0x28, 0xa224b62f0eb27447, 0x2, {{0x29d2, 0x9, 0x2}}}, &(0x7f0000004440)={0x60, 0x0, 0x5, {{0x800000000, 0x4c75c72c, 0x5c, 0x7, 0x7, 0x0, 0x3, 0x10001}}}, 0x0, &(0x7f0000004500)=ANY=[@ANYBLOB="1f00000000000020080028d800000000"], &(0x7f0000004540)={0x20, 0x0, 0x418, {0x0, 0x6}}, 0x0, &(0x7f0000004780)={0x90, 0x0, 0x9f38, {0x4, 0x0, 0xfffffffffffffffc, 0xa, 0xffffffc0, 0x9, {0x0, 0xb25, 0xfffffffffffffff7, 0x1000, 0x3, 0x8000000000000001, 0x3, 0xff, 0x3ff, 0x0, 0x4, 0x0, 0x0, 0x3349, 0x7}}}, &(0x7f00000025c0)=ANY=[@ANYBLOB="df00000000000000fdffffffffffff7f0600000000000000000002000000030000002f7d000000000000010000000000000001000000000000800a0000000400000068756765746c62667300000000000000020000000000000006000000000000000a000007ff00000068756765741d6c62667300000000000000040000000000000000080000000000000a0000008100000068756765746c62667300000000000000040000000000000001000000000000000000000013090000000000000000"], &(0x7f0000006a00)=ANY=[@ANYRESOCT, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0300000003000000000000000300000000000000f8ffffffffffffff06000000ff03000021822a7b2f21000006000000000000000300000000000000cd2c00000000100000000080000000000200000200000080000000000000000005000000000000000010000000000000030000000000000001040000000000001433000000000000000200009f0f00009d00000000c0000006000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="050000003b0c0000000000000000000000000000e9542f0b000000ff0f000000610a000068756765746c62667300000000000000030000000000000000000000000000000700000000000100000000000000004808000000f0000000020000000000000007000000000000000300000000000000070000000000000018d5000000000000ff7f000000000000d800000000020000050000000070000008000000", @ANYRES32=r3, @ANYRES32, @ANYBLOB="03000000814c0000000000000300000000000000090000000000000001000000700000005b00000000000000"], &(0x7f0000006d00)={0xa0, 0x0, 0x6, {{0x4, 0x2, 0x0, 0x3b3, 0x45, 0xfffffff7, {0x2, 0xfffffffffffff801, 0x9, 0x1, 0x41ce25ea, 0x9, 0x8, 0xe0d, 0x6, 0x1000, 0x4, 0x0, r4, 0xc7, 0x3}}, {0x0, 0xa}}}, 0x0, &(0x7f0000006e00)={0x130, 0xfffffffffffffffe, 0x8, {0x0, 0x5ad1, 0x0, '\x00', {0x904, 0x2, 0xfffffffffffffffa, 0x4, 0x0, 0xee01, 0xc000, '\x00', 0x7, 0x100000001, 0x7f, 0xfffffffffffffff8, {0x1, 0xfffffff7}, {0x3, 0x569}, {0x6, 0xaae}, {0x9, 0x100}, 0x8, 0x6d, 0x100, 0x6}}}})
sendmsg$xdp(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)

15m49.566940259s ago: executing program 34 (id=1538):
socket$key(0xf, 0x3, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8d}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x8002, 0x0)
read$msr(r0, &(0x7f0000019540)=""/102400, 0x19000)
openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, 0x0, 0x2)
sendmsg$IPSET_CMD_ADD(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000002440)={0x80, 0x9, 0x6, 0x201, 0x0, 0x0, {0x2}, [@IPSET_ATTR_ADT={0x38, 0x8, 0x0, 0x1, [{0x18, 0x7, 0x0, 0x1, @IPSET_ATTR_IFACE={0x14, 0x17, 'ip6gre0\x00'}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_MARK={0x8, 0xa, 0x1, 0x0, 0x7}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_ETHER={0xa, 0x11, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}}}]}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x2c, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0x18, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @remote}}, @IPSET_ATTR_PORT={0x6, 0x4, 0x1, 0x0, 0x4e1f}, @IPSET_ATTR_PROTO={0x5, 0x7, 0x67}]}]}, 0x80}, 0x1, 0x0, 0x0, 0x140088c2}, 0x80)
setregid(0xffffffffffffffff, 0x0)
stat(&(0x7f0000006940)='./file0\x00', &(0x7f00000023c0)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, 0x0)
syz_fuse_handle_req(0xffffffffffffffff, &(0x7f00000042c0)="000000000000000000000000000000000000000000000000000000000000000090c400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000542d0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ea8286a2fba523440000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000633956a1000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001800000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000007d6ab715107fa1820000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f6ffffffffffffff0000000000000e0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000003c58b3bd0000000000000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e1ffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f4000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000286071480000000000b13bc1e6d970884f000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000600000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fcffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f3ffffffffffffff00", 0x2000, 0x0)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000f40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000024c0)=ANY=[@ANYRES32, @ANYRES32, @ANYBLOB], 0x0, 0x0, 0x0})
socket$igmp6(0xa, 0x3, 0x2)
lstat(&(0x7f0000006c40)='./file0\x00', &(0x7f0000006c80)={0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0})
syz_fuse_handle_req(0xffffffffffffffff, &(0x7f0000000380)="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", 0x2000, &(0x7f0000006f40)={&(0x7f0000000000)={0x50, 0x7ffffffffffffffa, 0x6, {0x7, 0x2b, 0x5, 0x20000000, 0x9, 0xd0, 0xffff, 0x2, 0x0, 0x0, 0x18, 0x1}}, &(0x7f0000000080)={0x18, 0xfffffffffffffff5, 0x401, {0x8}}, 0x0, 0x0, &(0x7f0000002380)={0x18, 0x0, 0x3, {0x7ff}}, &(0x7f0000004400)={0x28, 0xa224b62f0eb27447, 0x2, {{0x29d2, 0x9, 0x2}}}, &(0x7f0000004440)={0x60, 0x0, 0x5, {{0x800000000, 0x4c75c72c, 0x5c, 0x7, 0x7, 0x0, 0x3, 0x10001}}}, 0x0, &(0x7f0000004500)=ANY=[@ANYBLOB="1f00000000000020080028d800000000"], &(0x7f0000004540)={0x20, 0x0, 0x418, {0x0, 0x6}}, 0x0, &(0x7f0000004780)={0x90, 0x0, 0x9f38, {0x4, 0x0, 0xfffffffffffffffc, 0xa, 0xffffffc0, 0x9, {0x0, 0xb25, 0xfffffffffffffff7, 0x1000, 0x3, 0x8000000000000001, 0x3, 0xff, 0x3ff, 0x0, 0x4, 0x0, 0x0, 0x3349, 0x7}}}, &(0x7f00000025c0)=ANY=[@ANYBLOB="df00000000000000fdffffffffffff7f0600000000000000000002000000030000002f7d000000000000010000000000000001000000000000800a0000000400000068756765746c62667300000000000000020000000000000006000000000000000a000007ff00000068756765741d6c62667300000000000000040000000000000000080000000000000a0000008100000068756765746c62667300000000000000040000000000000001000000000000000000000013090000000000000000"], &(0x7f0000006a00)=ANY=[@ANYRESOCT, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0300000003000000000000000300000000000000f8ffffffffffffff06000000ff03000021822a7b2f21000006000000000000000300000000000000cd2c00000000100000000080000000000200000200000080000000000000000005000000000000000010000000000000030000000000000001040000000000001433000000000000000200009f0f00009d00000000c0000006000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="050000003b0c0000000000000000000000000000e9542f0b000000ff0f000000610a000068756765746c62667300000000000000030000000000000000000000000000000700000000000100000000000000004808000000f0000000020000000000000007000000000000000300000000000000070000000000000018d5000000000000ff7f000000000000d800000000020000050000000070000008000000", @ANYRES32=r3, @ANYRES32, @ANYBLOB="03000000814c0000000000000300000000000000090000000000000001000000700000005b00000000000000"], &(0x7f0000006d00)={0xa0, 0x0, 0x6, {{0x4, 0x2, 0x0, 0x3b3, 0x45, 0xfffffff7, {0x2, 0xfffffffffffff801, 0x9, 0x1, 0x41ce25ea, 0x9, 0x8, 0xe0d, 0x6, 0x1000, 0x4, 0x0, r4, 0xc7, 0x3}}, {0x0, 0xa}}}, 0x0, &(0x7f0000006e00)={0x130, 0xfffffffffffffffe, 0x8, {0x0, 0x5ad1, 0x0, '\x00', {0x904, 0x2, 0xfffffffffffffffa, 0x4, 0x0, 0xee01, 0xc000, '\x00', 0x7, 0x100000001, 0x7f, 0xfffffffffffffff8, {0x1, 0xfffffff7}, {0x3, 0x569}, {0x6, 0xaae}, {0x9, 0x100}, 0x8, 0x6d, 0x100, 0x6}}}})
sendmsg$xdp(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)

2m53.026394483s ago: executing program 4 (id=3845):
r0 = syz_open_dev$loop(&(0x7f0000000440), 0x81, 0x2a82)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='cpuset.effective_cpus\x00', 0x275a, 0x0)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000005c0)={r1, 0x800, {0x2a00, 0x80010000, 0x0, 0x5, 0x0, 0x0, 0x0, 0x20, 0x1c, "fee8a2ab78fc179fd1f8a0e91ddaaca7bd6447a4b4e00d9683dda1af1ea09de2b7fb0a0100000000000000000300", "2809e8dbe108598927875397bab22d0000b420a9c81f40f05f819e01177d3d458dac00000000000000000000003b00000000000000000200", "90be8b1c5512406c7f00", [0x4, 0x40000000000000]}})
r2 = syz_open_dev$loop(&(0x7f00000001c0), 0x5, 0x88000)
ioctl$LOOP_CONFIGURE(r2, 0x4c0a, &(0x7f0000001280)={r0, 0x13, {0x2a12, 0x80010000, 0x600, 0x0, 0x4, 0x0, 0x0, 0x3, 0x1c, "fee8a2ab78fc179fd1f8a0e91ddaaca7bd64c6a4b4e00d9683dda1af1ea80000000000000000000000deff0000000000000000000000000000000800", "2809e8dbe108038948224ad54afac11d875397bdb22d0000b420a1a93c7540f4767f9e01177d3dd40600000061ac00", "90be8b1c55f96400", [0x800]}})

2m15.541986331s ago: executing program 4 (id=3845):
r0 = syz_open_dev$loop(&(0x7f0000000440), 0x81, 0x2a82)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='cpuset.effective_cpus\x00', 0x275a, 0x0)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000005c0)={r1, 0x800, {0x2a00, 0x80010000, 0x0, 0x5, 0x0, 0x0, 0x0, 0x20, 0x1c, "fee8a2ab78fc179fd1f8a0e91ddaaca7bd6447a4b4e00d9683dda1af1ea09de2b7fb0a0100000000000000000300", "2809e8dbe108598927875397bab22d0000b420a9c81f40f05f819e01177d3d458dac00000000000000000000003b00000000000000000200", "90be8b1c5512406c7f00", [0x4, 0x40000000000000]}})
r2 = syz_open_dev$loop(&(0x7f00000001c0), 0x5, 0x88000)
ioctl$LOOP_CONFIGURE(r2, 0x4c0a, &(0x7f0000001280)={r0, 0x13, {0x2a12, 0x80010000, 0x600, 0x0, 0x4, 0x0, 0x0, 0x3, 0x1c, "fee8a2ab78fc179fd1f8a0e91ddaaca7bd64c6a4b4e00d9683dda1af1ea80000000000000000000000deff0000000000000000000000000000000800", "2809e8dbe108038948224ad54afac11d875397bdb22d0000b420a1a93c7540f4767f9e01177d3dd40600000061ac00", "90be8b1c55f96400", [0x800]}})

1m50.449464898s ago: executing program 4 (id=3845):
r0 = syz_open_dev$loop(&(0x7f0000000440), 0x81, 0x2a82)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='cpuset.effective_cpus\x00', 0x275a, 0x0)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000005c0)={r1, 0x800, {0x2a00, 0x80010000, 0x0, 0x5, 0x0, 0x0, 0x0, 0x20, 0x1c, "fee8a2ab78fc179fd1f8a0e91ddaaca7bd6447a4b4e00d9683dda1af1ea09de2b7fb0a0100000000000000000300", "2809e8dbe108598927875397bab22d0000b420a9c81f40f05f819e01177d3d458dac00000000000000000000003b00000000000000000200", "90be8b1c5512406c7f00", [0x4, 0x40000000000000]}})
r2 = syz_open_dev$loop(&(0x7f00000001c0), 0x5, 0x88000)
ioctl$LOOP_CONFIGURE(r2, 0x4c0a, &(0x7f0000001280)={r0, 0x13, {0x2a12, 0x80010000, 0x600, 0x0, 0x4, 0x0, 0x0, 0x3, 0x1c, "fee8a2ab78fc179fd1f8a0e91ddaaca7bd64c6a4b4e00d9683dda1af1ea80000000000000000000000deff0000000000000000000000000000000800", "2809e8dbe108038948224ad54afac11d875397bdb22d0000b420a1a93c7540f4767f9e01177d3dd40600000061ac00", "90be8b1c55f96400", [0x800]}})

1m18.603176231s ago: executing program 4 (id=3845):
r0 = syz_open_dev$loop(&(0x7f0000000440), 0x81, 0x2a82)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='cpuset.effective_cpus\x00', 0x275a, 0x0)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000005c0)={r1, 0x800, {0x2a00, 0x80010000, 0x0, 0x5, 0x0, 0x0, 0x0, 0x20, 0x1c, "fee8a2ab78fc179fd1f8a0e91ddaaca7bd6447a4b4e00d9683dda1af1ea09de2b7fb0a0100000000000000000300", "2809e8dbe108598927875397bab22d0000b420a9c81f40f05f819e01177d3d458dac00000000000000000000003b00000000000000000200", "90be8b1c5512406c7f00", [0x4, 0x40000000000000]}})
r2 = syz_open_dev$loop(&(0x7f00000001c0), 0x5, 0x88000)
ioctl$LOOP_CONFIGURE(r2, 0x4c0a, &(0x7f0000001280)={r0, 0x13, {0x2a12, 0x80010000, 0x600, 0x0, 0x4, 0x0, 0x0, 0x3, 0x1c, "fee8a2ab78fc179fd1f8a0e91ddaaca7bd64c6a4b4e00d9683dda1af1ea80000000000000000000000deff0000000000000000000000000000000800", "2809e8dbe108038948224ad54afac11d875397bdb22d0000b420a1a93c7540f4767f9e01177d3dd40600000061ac00", "90be8b1c55f96400", [0x800]}})

43.627440181s ago: executing program 4 (id=3845):
r0 = syz_open_dev$loop(&(0x7f0000000440), 0x81, 0x2a82)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='cpuset.effective_cpus\x00', 0x275a, 0x0)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000005c0)={r1, 0x800, {0x2a00, 0x80010000, 0x0, 0x5, 0x0, 0x0, 0x0, 0x20, 0x1c, "fee8a2ab78fc179fd1f8a0e91ddaaca7bd6447a4b4e00d9683dda1af1ea09de2b7fb0a0100000000000000000300", "2809e8dbe108598927875397bab22d0000b420a9c81f40f05f819e01177d3d458dac00000000000000000000003b00000000000000000200", "90be8b1c5512406c7f00", [0x4, 0x40000000000000]}})
r2 = syz_open_dev$loop(&(0x7f00000001c0), 0x5, 0x88000)
ioctl$LOOP_CONFIGURE(r2, 0x4c0a, &(0x7f0000001280)={r0, 0x13, {0x2a12, 0x80010000, 0x600, 0x0, 0x4, 0x0, 0x0, 0x3, 0x1c, "fee8a2ab78fc179fd1f8a0e91ddaaca7bd64c6a4b4e00d9683dda1af1ea80000000000000000000000deff0000000000000000000000000000000800", "2809e8dbe108038948224ad54afac11d875397bdb22d0000b420a1a93c7540f4767f9e01177d3dd40600000061ac00", "90be8b1c55f96400", [0x800]}})

22.012519935s ago: executing program 7 (id=4301):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r0, 0x0)
clock_gettime(0x0, &(0x7f0000003f00)={<r1=>0x0, <r2=>0x0})
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000004440)=ANY=[@ANYRES16=<r4=>r2, @ANYBLOB="0d0e00000000000000000000000000000000006e47f9be28a456b1a06df7984d59719000", @ANYRESHEX=r2, @ANYRES32, @ANYRESHEX=r1], 0x50)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYRESHEX=r3, @ANYRES32=r4, @ANYBLOB="0000000000000000000000000a0000000000000094c35b2c35f7227537ea60b07cd7ef52829d720ad383bb0b8bd42bf786809a9ce85637cde2106160ae3fcb369edf0000b02d269613b101dc980d5232429900000000000013b5651f9b0a348438b77aca456ae2691da2ee534391e044278935a66005de4dcdec91bc6f5ee4599c42ab5ff5fd12c7abad245d32547089e818dbb7e1fb50bec30f4ed1111d4329865482f2f81e03c066c8dc1a4ddc4244ae637e4babd5110000000000000000000000000000241343793aa96387be9be90a5826f848a74812058eec4575cc3cf9105ebbc4620431e3802c46fad703fb8c", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000000e9ffc91b7d440000000000008dd041f500"/43], 0x48)
syz_genetlink_get_family_id$nl802154(0x0, 0xffffffffffffffff)
mknod(&(0x7f0000000080)='./bus\x00', 0xc000, 0x0)
r6 = epoll_create1(0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080))
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r6, &(0x7f0000000600)={0xa0000013})
ppoll(&(0x7f0000000180)=[{0xffffffffffffffff, 0x81}], 0x1f, 0x0, 0x0, 0x0)
mount(&(0x7f0000000000)=@nullb, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000100)='xfs\x00', 0x400080, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
r7 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r7, 0x0, 0x0)
close(r7)
socket(0x8, 0x1, 0xf6c)
connect$pppl2tp(r7, &(0x7f0000000040)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x2, 0x0, 0x4, 0x1, {0xa, 0x4e21, 0x4, @empty, 0x1f}}}, 0x3a)
ioctl$PPPIOCGL2TPSTATS(0xffffffffffffffff, 0x80487436, &(0x7f0000005280))
r8 = syz_open_dev$MSR(&(0x7f0000000280), 0x0, 0x0)
setsockopt$ax25_int(0xffffffffffffffff, 0x101, 0x4, &(0x7f0000000100)=0x780a, 0x4)
read$msr(r8, &(0x7f0000019680)=""/102392, 0x18ff8)
socketpair(0x18, 0x0, 0x2, &(0x7f0000004080))
sendmsg$TIPC_NL_BEARER_GET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x800}, 0x20000010)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0d0000000a000000040000000500000000000000", @ANYRES32=r5], 0x48)

20.691694412s ago: executing program 7 (id=4302):
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000200), 0x141a43, 0x0)
ioctl$IOMMU_HWPT_SET_DIRTY_TRACKING(r0, 0x3b8b, &(0x7f0000000240)={0x10, 0x1000000})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
io_uring_setup(0x1b9b, &(0x7f0000000000)={0x0, 0x5, 0x301, 0x2, 0x400002ca})
socket$alg(0x26, 0x5, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
ioctl$USBDEVFS_DISCONNECT_CLAIM(r2, 0x8108551b, &(0x7f0000000380)={0x0, 0x0, "5a77bd318786aeb879ca62cdab2a0000000086d85b25a5665a3247e500f61681905db88235f8a5447dd2a2ed6e91626f068881e50f6853772b21a100efb76cba37ff3111d6847e8b9398a646717af75fc008daefba68e6222103472bc55704cdb72b4b996ed831f3b802549db3a8ffff7d34171113d806726615380fe65a6a0a72e1ac2b60bd6276fd8bb6363d10f70da60fd53ded22c87eb2be010e4a62fb73c33424b437bb192c9d06ea6ed04983fe5c5ca033dfce0a82575ef14eee686be0fc58e384f93a13f4e8bbf599394baea3a9ca1864f0a35d6cc38fca32ad6b39905a9727d2001457df7be7e1aefe363590d1f600"})
userfaultfd(0x80001)
r3 = userfaultfd(0x801)
ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x1})
ioctl$UFFDIO_CONTINUE(r3, 0xc020aa08, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}})

19.788122378s ago: executing program 7 (id=4303):
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, &(0x7f0000000100)=ANY=[@ANYBLOB="b4050000000000007112660000000000bf9b0000000000009500000000000000e8836f0fc77c0d0ceb54e1aa09c43f6c3c"], 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000000))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_PIT(0xffffffffffffffff, 0x8048ae66, &(0x7f00000000c0)={[{0x80000000, 0x800, 0xff, 0x0, 0x0, 0xa5, 0xbd, 0x9, 0xa9, 0x4, 0x0, 0x0, 0x40000000}, {0x8, 0x4005, 0x0, 0xff, 0x41, 0x0, 0x0, 0x0, 0x99, 0xfd, 0x0, 0x2, 0x6}, {0x3fe, 0x2, 0xfc, 0xfd, 0x3, 0x0, 0xb3, 0x0, 0x3, 0xfe, 0x80, 0xf6, 0x7}], 0x5}) (async)
ioctl$KVM_SET_PIT(0xffffffffffffffff, 0x8048ae66, &(0x7f00000000c0)={[{0x80000000, 0x800, 0xff, 0x0, 0x0, 0xa5, 0xbd, 0x9, 0xa9, 0x4, 0x0, 0x0, 0x40000000}, {0x8, 0x4005, 0x0, 0xff, 0x41, 0x0, 0x0, 0x0, 0x99, 0xfd, 0x0, 0x2, 0x6}, {0x3fe, 0x2, 0xfc, 0xfd, 0x3, 0x0, 0xb3, 0x0, 0x3, 0xfe, 0x80, 0xf6, 0x7}], 0x5})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text32={0x20, &(0x7f0000000180)="66ba4300b006ee0f01c40f009b27000000b9800000c00f3235008000000f30b80e0000000f23d80f21f835800000a00f23f8c9b9490300000f60b932c00a000000328fe858b660002fb90d090000b800680000ba000000000f30", 0x5a}], 0x1, 0x0, 0x0, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text32={0x20, &(0x7f0000000180)="66ba4300b006ee0f01c40f009b27000000b9800000c00f3235008000000f30b80e0000000f23d80f21f835800000a00f23f8c9b9490300000f60b932c00a000000328fe858b660002fb90d090000b800680000ba000000000f30", 0x5a}], 0x1, 0x0, 0x0, 0x0)
syz_open_dev$loop(&(0x7f0000000440), 0x81, 0x2a82) (async)
r3 = syz_open_dev$loop(&(0x7f0000000440), 0x81, 0x2a82)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='cpuset.effective_cpus\x00', 0x275a, 0x0)
ioctl$LOOP_CONFIGURE(r3, 0x4c0a, &(0x7f00000005c0)={r4, 0x800, {0x2a00, 0x80010000, 0x0, 0x5, 0x0, 0x0, 0x0, 0x20, 0x1c, "fee8a2ab78fc179fd1f8a0e91ddaaca7bd6447a4b4e00d9683dda1af1ea09de2b7fb0a0100000000000000000300", "2809e8dbe108598927875397bab22d0000b420a9c81f40f05f819e01177d3d458dac00000000000000000000003b00000000000000000200", "90be8b1c5512406c7f00", [0x4, 0x40000000000000]}})
r5 = syz_open_dev$loop(&(0x7f00000001c0), 0x5, 0x4042)
socket$inet6_udp(0xa, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
socket$nl_netfilter(0x10, 0x3, 0xc)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)) (async)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f0000002380)=@file={0x0, './file0\x00'}, 0x6e) (async)
connect$unix(r6, &(0x7f0000002380)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0) (async)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket(0x28, 0x1, 0x0) (async)
socket(0x28, 0x1, 0x0)
add_key$keyring(0x0, 0x0, 0x1000000, 0x0, 0xffffffffffffffff)
syz_open_dev$ttys(0xc, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
mlock2(&(0x7f0000247000/0x1000)=nil, 0x1000, 0x0) (async)
mlock2(&(0x7f0000247000/0x1000)=nil, 0x1000, 0x0)
munlockall() (async)
munlockall()
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
ioctl$LOOP_CONFIGURE(r5, 0x4c0a, &(0x7f0000000240)={r3, 0xfffffffd, {0x2a12, 0x80010000, 0x0, 0x0, 0x4, 0x0, 0x0, 0x1b, 0x1c, "fee8a2ab78fc179fd1f8a0e91ddaaca7bd64c6a4b4e00d9683dda1af1ea80000000000000000000000deff0000000000000000000000000000000800", "2809e8dbe108038948224ad54afac15397bd8d2d0000b420a1a93c7540f4767f9e0117000283ac00020000684ec3760000000400", "90be8b1c55f96400", [0x800]}})

14.847184885s ago: executing program 7 (id=4312):
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000001c00)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffffffffffe89, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
socket$nl_netfilter(0x10, 0x3, 0xc)
gettid()
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x1e, &(0x7f0000000180)=0x400000001, 0xc2)
setsockopt$inet6_tcp_int(r1, 0x6, 0x2000000000000022, &(0x7f0000000140)=0x1, 0x4)
connect$inet6(r1, &(0x7f0000000240)={0xa, 0x4e23, 0x0, @remote, 0x3}, 0x1c)
sendmmsg$inet(r1, &(0x7f0000000600)=[{{0x0, 0x0, 0x0, 0x1802}}], 0x1, 0x40805)

14.612143942s ago: executing program 7 (id=4315):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x4000, 0x0)
preadv2(r3, &(0x7f0000000080)=[{&(0x7f0000001200)=""/4096, 0x1fee00}], 0x2, 0x0, 0x0, 0x0)
ioctl$IOMMU_IOAS_COPY(r2, 0x3b83, &(0x7f0000000040)={0x28, 0x2, 0x0, 0x0, 0xffffffffffffffff, 0xfe7, 0x4001})
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=@newlink={0x58, 0x10, 0x44b, 0x0, 0x0, {0x7a}, [@IFLA_LINKINFO={0x2c, 0x12, 0x0, 0x1, @ip6erspan={{0xe}, {0x18, 0x2, 0x0, 0x1, [@IFLA_GRE_REMOTE={0x14, 0x7, @empty}]}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x58}}, 0x0)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000540)=ANY=[@ANYBLOB="20010000", @ANYRES16=r4, @ANYBLOB="050000000000000000000f00000008000300", @ANYRES32, @ANYBLOB="47000e001c"], 0x120}, 0x1, 0x0, 0x0, 0x90}, 0x80)

13.02797962s ago: executing program 7 (id=4320):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_genetlink_get_family_id$gtp(&(0x7f0000000000), r0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xc, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xfffff000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={<r4=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
sendmsg$NL80211_CMD_SET_PMKSA(r0, &(0x7f00000003c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000380)={&(0x7f00000004c0)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="040028bd7000fddbdf25340000000c00990003000000630000001400fe00d593b0231c466402fed8ddc06a6138b9b32db2eb457f19b33430deb8912d7f2bc4c2310a000600080300000001000008001f010000000006"], 0x58}, 0x1, 0x0, 0x0, 0x40081}, 0x20000011)
connect$unix(r4, &(0x7f0000002540)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x0, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
r5 = syz_open_dev$tty1(0xc, 0x4, 0x1)
socket$can_bcm(0x1d, 0x2, 0x2)
dup(r5)
socket$inet6_sctp(0xa, 0x1, 0x84)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r6 = getpid()
sched_setscheduler(r6, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0))

11.309333449s ago: executing program 3 (id=4322):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = signalfd(0xffffffffffffffff, &(0x7f00000001c0), 0x8)
mkdir(&(0x7f0000000140)='./control\x00', 0x5)
close(r1)
r2 = inotify_init1(0x800)
fcntl$setstatus(r1, 0x4, 0x2c00)
r3 = gettid()
fcntl$setown(r1, 0x8, r3)
rt_sigprocmask(0x1, &(0x7f0000000000)={[0xfffffffffffffffa]}, 0x0, 0x8)
rt_sigtimedwait(&(0x7f0000000040)={[0xffffffffffff7ff8]}, 0x0, 0x0, 0x8)
inotify_add_watch(r2, &(0x7f0000000180)='./control\x00', 0xa4000960)
rmdir(&(0x7f0000000100)='./control\x00')
openat$cgroup_ro(r1, &(0x7f0000000080)='blkio.bfq.avg_queue_size\x00', 0x0, 0x0)
connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0x80045505, &(0x7f0000000040)=@usbdevfs_connect)
bind$inet6(0xffffffffffffffff, &(0x7f0000000140)={0xa, 0x4e22, 0x0, @empty, 0xffffffff}, 0x1c)
listen(0xffffffffffffffff, 0x0)
syz_extract_tcp_res(&(0x7f00000000c0)={0x41424344, <r4=>0x41424344}, 0x5, 0x1)
syz_emit_ethernet(0x4e, &(0x7f0000000300)={@local, @empty, @val={@void, {0x8100, 0x2, 0x0, 0x2}}, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x14, 0x6, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @local, {[], {{0x0, 0x4e22, 0x41424344, r4, 0x0, 0x0, 0x5, 0x2}}}}}}}, 0x0)
syz_emit_ethernet(0x4e, &(0x7f0000000240)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "e5ff04", 0x18, 0x6, 0x0, @local, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0xc2, 0x1, 0x0, 0x200, {[@window={0x3, 0x3}]}}}}}}}}, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000007c0)=@newqdisc={0x54, 0x10, 0x1, 0x600, 0x0, {0x0, 0x0, 0x0, 0x0, {0x9}, {0xf}, {0xe, 0xd}}, [@TCA_RATE={0x6, 0x5, {0x9, 0x1}}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1a, {0x0, 0x0, 0x491, 0x0, 0x0, 0x0, 0x0, 0x2}}, {0x8, 0x1b, [0x0, 0x0]}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x8c0}, 0x0)

10.967960258s ago: executing program 0 (id=4324):
r0 = socket$inet6(0xa, 0x3, 0xfe)
setsockopt$inet6_IPV6_RTHDRDSTOPTS(r0, 0x29, 0x37, &(0x7f0000000180)=ANY=[], 0x8)
r1 = openat$nvram(0xffffffffffffff9c, &(0x7f00000001c0), 0x314442, 0x0)
sendmmsg$inet(r1, &(0x7f0000007ac0)=[{{0x0, 0x0, &(0x7f0000000280)=[{&(0x7f00000005c0)="99571d60f4a0e56584707f855b9ace89479d8a9980edfc718c475f3212d369cc2e2eebc5e023d2e0e3980e310f4e78159d9c0a7eb3f430bdd964bbce962b96e0ecfa120e374b80bd9e6cf988243adf06d0fa372a110223671f228cc48f1d9c106086700cb006a556e0d4408beb329d4534159a27f437334a4fea94246bfa87831862b05c0ba08b92954d2c74b4b28b421008e2be04a0331bb9d93e16e5e7083e2e62c86609a7ff4388120c11286cb216dd1d6c4cc691895ca780f3253181b7c0bf7b2a26615be7c59278699298e2d3c0106c3c8f60e0", 0xd6}], 0x1}}, {{0x0, 0x0, &(0x7f00000006c0)}}], 0x2, 0x100000c1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000002c0)='contention_begin\x00', 0xffffffffffffffff, 0x0, 0xd}, 0x18)
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
r2 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r2, 0x84, 0x76, &(0x7f0000000080)={0x0, 0x5}, &(0x7f00000000c0)=0x8)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r3, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
syz_clone(0x12200000, &(0x7f0000000000)="81a12047b53d6b6562a8c10b1c32bd2ab91d79e6e169b19e6965b6d27db88e9cca1f8c9b9146bc84f4d2d096505bbd", 0x2f, &(0x7f0000000100), &(0x7f0000000140), &(0x7f0000000500)="1a6783ea54309746f984017b1348793e9345eb54db114b5cfbadc7902dfd8f2b34865b542fe6c99bdfab908e3257a66bb7dedf7ace8abc2ef93b209c0cd4b22ebb9b2d9fcf824a2d573ee64e0f3446ec622d309522748c01166960f441345c3dcd0fa26a504c4f48f71e144c2dc4eb0890b9de2e779ff924741091ad81c29f1022225d9bf7d274495de2857b9a0a087b8739128a6e28c729566b6cbfe4830481514250924a2a62f0271b7c7d735b7dd3d73190068a596c68d0975b83aed4")
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = openat$vimc1(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$VIDIOC_G_CROP(r5, 0xc014563b, 0x0)
sendmsg$ETHTOOL_MSG_STRSET_GET(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x28}}, 0x0)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
syz_open_pts(r6, 0x0)
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r8, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_REGISTER_COALESCED_MMIO(r8, 0x4010ae67, 0x0)
r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0)
ioctl$KVM_RUN(r9, 0xae80, 0x0)
ioctl$KVM_RUN(r9, 0xae80, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
accept4$bt_l2cap(r1, 0x0, &(0x7f0000000040), 0x80800)
ioctl$VIDIOC_QUERYCAP(r5, 0x80685600, &(0x7f0000000380))

10.372543857s ago: executing program 4 (id=3845):
r0 = syz_open_dev$loop(&(0x7f0000000440), 0x81, 0x2a82)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='cpuset.effective_cpus\x00', 0x275a, 0x0)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000005c0)={r1, 0x800, {0x2a00, 0x80010000, 0x0, 0x5, 0x0, 0x0, 0x0, 0x20, 0x1c, "fee8a2ab78fc179fd1f8a0e91ddaaca7bd6447a4b4e00d9683dda1af1ea09de2b7fb0a0100000000000000000300", "2809e8dbe108598927875397bab22d0000b420a9c81f40f05f819e01177d3d458dac00000000000000000000003b00000000000000000200", "90be8b1c5512406c7f00", [0x4, 0x40000000000000]}})
r2 = syz_open_dev$loop(&(0x7f00000001c0), 0x5, 0x88000)
ioctl$LOOP_CONFIGURE(r2, 0x4c0a, &(0x7f0000001280)={r0, 0x13, {0x2a12, 0x80010000, 0x600, 0x0, 0x4, 0x0, 0x0, 0x3, 0x1c, "fee8a2ab78fc179fd1f8a0e91ddaaca7bd64c6a4b4e00d9683dda1af1ea80000000000000000000000deff0000000000000000000000000000000800", "2809e8dbe108038948224ad54afac11d875397bdb22d0000b420a1a93c7540f4767f9e01177d3dd40600000061ac00", "90be8b1c55f96400", [0x800]}})

9.115853622s ago: executing program 3 (id=4326):
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
r0 = socket$xdp(0x2c, 0x3, 0x0)
r1 = syz_usb_connect$hid(0x3, 0x36, &(0x7f0000000240)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x4f3, 0x755, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x40, 0xb1, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x1, 0x0, {0x9, 0x21, 0x101, 0x0, 0x1, {0x22, 0x5}}, {{{0x9, 0x5, 0x81, 0x3, 0x3ff, 0xc}}}}}]}}]}}, 0x0)
syz_usb_control_io(r1, 0x0, 0x0)
syz_usb_control_io(r1, &(0x7f0000000000)={0x2c, &(0x7f0000000040)={0x20, 0x12, 0x7, {0x7, 0x1, "00f4000000"}}, 0x0, 0x0, 0x0, 0x0}, 0x0)
r2 = syz_open_dev$hidraw(&(0x7f0000000280), 0x82, 0x2)
poll(&(0x7f0000000180)=[{r2, 0x10}], 0x1, 0x200)
setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/5, 0x200000, 0x800}, 0x80)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x1, 0x0, 0x0, 0x2)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000001c0)={'wlan1\x00'})
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000080)=ANY=[@ANYBLOB="1201000041436120410e5150e8d5000000010902f98a5c01000000090401001186eee20009058217", @ANYBLOB="f5341829228211bf4578e886"], 0x0)
syz_usb_control_io$uac1(r5, 0x0, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
r7 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000000000106a05310300000000000109022400010000c60009040002010300010009210000000122f80409058103"], 0x0)
syz_usb_connect(0x6, 0x0, 0x0, 0x0)
syz_usb_control_io(r7, 0x0, 0x0)
syz_usb_control_io$hid(r7, &(0x7f0000000340)={0x24, 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="00220508"], 0x0}, 0x0)
sendmsg$NFT_BATCH(r6, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a3000000000090003007379"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000c40)={{0x14}, [@NFT_MSG_NEWRULE={0x27c, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x23c, 0x4, 0x0, 0x1, [{0x238, 0x1, 0x0, 0x1, @match={{0xa}, @val={0x228, 0x2, 0x0, 0x1, [@NFTA_MATCH_REV={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_MATCH_INFO={0x214, 0x3, "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"}, @NFTA_MATCH_NAME={0x8, 0x1, 'bpf\x00'}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_COMPAT={0x14, 0x5, 0x0, 0x1, [@NFTA_RULE_COMPAT_PROTO_BRIDGE={0x8, 0x1, 0x1, 0x0, 0x8864}, @NFTA_RULE_COMPAT_FLAGS={0x4, 0x2, 0x1, 0x0, 0x2}]}]}], {0x14}}, 0x2a4}}, 0x4048010)
ioctl$KVM_CAP_X86_BUS_LOCK_EXIT(r4, 0x4068aea3, &(0x7f0000000100)={0xc1, 0x0, 0x1})
syz_clone(0x201011, 0x0, 0xfffffffffffffdfc, 0x0, 0x0, 0x0)

8.67563604s ago: executing program 0 (id=4328):
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000200), 0x141a43, 0x0)
ioctl$IOMMU_HWPT_SET_DIRTY_TRACKING(r0, 0x3b8b, &(0x7f0000000240)={0x10, 0x1000000})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = io_uring_setup(0x40d0, &(0x7f0000002100)={0x0, 0x5, 0x200, 0x2, 0x400002ca})
socket$alg(0x26, 0x5, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xb, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$USBDEVFS_DISCONNECT_CLAIM(0xffffffffffffffff, 0x8108551b, &(0x7f0000000380)={0x0, 0x0, "5a77bd318786aeb879ca62cdab2a0000000086d85b25a5665a3247e500f61681905db88235f8a5447dd2a2ed6e91626f068881e50f6853772b21a100efb76cba37ff3111d6847e8b9398a646717af75fc008daefba68e6222103472bc55704cdb72b4b996ed831f3b802549db3a8ffff7d34171113d806726615380fe65a6a0a72e1ac2b60bd6276fd8bb6363d10f70da60fd53ded22c87eb2be010e4a62fb73c33424b437bb192c9d06ea6ed04983fe5c5ca033dfce0a82575ef14eee686be0fc58e384f93a13f4e8bbf599394baea3a9ca1864f0a35d6cc38fca32ad6b39905a9727d2001457df7be7e1aefe363590d1f600"})
ioctl$USBDEVFS_CLEAR_HALT(0xffffffffffffffff, 0xc0105502, &(0x7f0000000280)={0x1, 0x1})
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
r3 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r3, 0x6, 0x13, &(0x7f0000000000)=0x1, 0xfef2)
setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x9, &(0x7f0000000040)=0x440, 0x4)
connect$inet(r3, &(0x7f00000000c0)={0x2, 0x4e23, @remote}, 0x10)
r4 = syz_open_procfs(0x0, &(0x7f0000000080)='net/tcp\x00')
read$FUSE(r4, &(0x7f00000000c0)={0x2020}, 0x2020)
ioctl$USBDEVFS_SUBMITURB(0xffffffffffffffff, 0x8038550a, 0x0)
close_range(r1, 0xffffffffffffffff, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
getsockopt(0xffffffffffffffff, 0xf, 0xfd800000, &(0x7f0000000080)=""/244, &(0x7f0000000180)=0xf4)
syz_usb_connect(0x5, 0x0, 0x0, 0x0)

6.854028605s ago: executing program 0 (id=4330):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000180)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_AUTHENTICATE(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000100)={0x54, r2, 0x1, 0x470bd2a, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_SSID={0x4}, @NL80211_ATTR_AUTH_TYPE={0x8, 0x35, 0x5}, @key_params=[@NL80211_ATTR_KEY={0x18, 0x50, 0x0, 0x1, [@NL80211_KEY_DEFAULT={0x4}, @NL80211_KEY_IDX={0x5, 0x2, 0x2}, @NL80211_KEY_TYPE={0x8, 0x7, 0x1}]}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}]]}, 0x54}}, 0x20000880)
r4 = socket(0x11, 0xa, 0x3)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r5=>0x0})
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$NL80211_CMD_FRAME(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000100)={0x8c, r7, 0x1, 0x70bd27, 0x0, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_FRAME={0x56, 0x33, @probe_response={{{0x0, 0x0, 0x5, 0x0, 0x0, 0x1, 0x1, 0x1}, {0x3}, @broadcast, @device_a, @random="bfe8f620cb3a", {0xe, 0x2fc}}, 0x9, @random=0xeb5, 0x8, @val={0x0, 0x6, @default_ap_ssid}, @val, @void, @val={0x4, 0x6, {0xf9, 0x8, 0x9, 0x1d7c}}, @void, @val={0x2d, 0x1a, {0xc, 0x3, 0x5, 0x0, {0x80000001, 0x1, 0x0, 0x7, 0x0, 0x1, 0x0, 0x2, 0x1}, 0x1, 0x10, 0x8}}, @void, @void}}, @chandef_params=[@NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x962}]]}, 0x8c}, 0x1, 0x0, 0x0, 0x6a845ecb4f20be71}, 0x24008080)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000240)={0xd4, r2, 0x100, 0x70bd27, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES={0xa7, 0xbe, "e0bc09e3975104e8f76012e534c64eb73701b9ed42506846e26a5a08b662943d9bca7a8b986158e0bf4103ddfb52c1c141212f8925a2b7b415c05aebe574bc29c152519b2ac49f4edf69e2ed8f282108c8af673cc4ed8e18901cdd150925da3b0c04e962c2bba1812f6f757ff192f360663d6b8a8ddcf00088b1756836736f67eef9be219a658ca0ea2cea8d8373c6b77cc3ce8013f2962ded44fd740b55e2f479a51e"}, @NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0x5}, @NL80211_ATTR_STA_PLINK_STATE={0x5, 0x74, 0x2}]}, 0xd4}, 0x1, 0x0, 0x0, 0x40000}, 0x20040010)
r8 = getpid()
sched_setscheduler(r8, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000780000/0x1000)=nil, 0x1000, 0x1000000, 0x80010, r0, 0xc64c0000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff})
connect$unix(r9, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r10, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r9, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r11 = socket$inet6_sctp(0xa, 0x1, 0x84)
bind$inet6(r11, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r11, &(0x7f0000847fff)='X', 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x33, @loopback}, 0x1c)
r12 = socket$netlink(0x10, 0x3, 0x4)
writev(r12, &(0x7f0000000080)=[{&(0x7f0000000000)="480000001400190d09004beafd0d36020a8429000b4e230f4e230000a2bc5603ca00000f7f89004e002050da742dac0000000101ff05020003000200000000000100000000005839", 0x48}], 0x1)

5.575160527s ago: executing program 3 (id=4334):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
syz_emit_ethernet(0x6f, &(0x7f0000000180)={@link_local, @empty, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, '\x00', 0x39, 0x3a, 0xff, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @mcast2, {[], @ndisc_redir={0x89, 0x0, 0x0, '\x00', @dev, @dev={0xfe, 0x80, '\x00', 0xf}, [{0x2, 0x2, "dbcc983d9d9eee3a90dcaa014d29fd"}]}}}}}}, 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='autofs\x00', 0x0, &(0x7f0000000100))
removexattr(&(0x7f0000000040)='./file0\x00', &(0x7f0000000100)=@known='system.posix_acl_access\x00')

5.364101795s ago: executing program 3 (id=4335):
syz_io_uring_setup(0x110, &(0x7f00000000c0)={0x0, 0x3232, 0x100, 0x0, 0x3de}, 0x0, 0x0)
socket$phonet_pipe(0x23, 0x5, 0x2)
syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
socket(0x2, 0x80805, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000080000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000a3850000007000000095"], &(0x7f0000000200)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000280)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(cipher_null)\x00'}, 0x58)
accept4(r1, 0x0, 0x0, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
socket$igmp6(0xa, 0x3, 0x2)
socket(0x10, 0x803, 0x0)
socket$unix(0x1, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
r2 = socket$kcm(0x2, 0x1000000000000002, 0x0)
bpf$BPF_PROG_DETACH(0x9, &(0x7f00000001c0)=ANY=[@ANYRES32, @ANYRES32, @ANYRES64=r2, @ANYRES64=0x0, @ANYRESHEX], 0x20) (fail_nth: 2)

4.632589925s ago: executing program 6 (id=4336):
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-aesni\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r2 = accept4(r1, 0x0, 0x0, 0x800)
sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0x10}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0x4d}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45", 0xc8}], 0x3, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
write$binfmt_misc(r0, &(0x7f0000000240), 0xfffffecc)

4.530121334s ago: executing program 0 (id=4337):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(cast5)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f0000000100)="ad73364256", 0x5)
r5 = accept4(r4, 0x0, 0x0, 0x0)
sendmsg$IPVS_CMD_GET_SERVICE(r5, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000780)={0x88, 0x0, 0x200, 0x70bd2b, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_DEST={0x4c, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_WEIGHT={0x8}, @IPVS_DEST_ATTR_TUN_FLAGS={0x6, 0xf, 0x58d2}, @IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x2}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x9}, @IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x4}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0xb}, @IPVS_DEST_ATTR_TUN_FLAGS={0x6, 0xf, 0x100}, @IPVS_DEST_ATTR_TUN_TYPE={0x5, 0xd, 0x1}, @IPVS_DEST_ATTR_TUN_TYPE={0x5}]}, @IPVS_CMD_ATTR_SERVICE={0x28, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x7}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, @IPVS_SVC_ATTR_PE_NAME={0x8}]}]}, 0x88}, 0x1, 0x0, 0x0, 0x4040000}, 0x4048000)
recvmsg$qrtr(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f00000000c0)=""/31, 0x1f}, {&(0x7f0000000500)=""/101, 0x65}], 0x2, 0x0, 0x0, 0x42}, 0x1c, 0x12080)

3.359015726s ago: executing program 6 (id=4338):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x39, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
setsockopt$TIPC_CONN_TIMEOUT(0xffffffffffffffff, 0x10f, 0x82, &(0x7f0000000280)=0xc7, 0x4)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
setrlimit(0x0, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_NEW(r3, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="c80000000002010400000000000000000a0000003c0001800c00028005000100000000002c0001801400030000000000000000000000ffffac1414bb1400040000000000000000000000ffff000000003c0003800c00028005000100000000002c00018014000300fc00000000000000000000000000000014000400fe8000000000000000000000000000bb3c0002800c00028005000100000000002c00018014000300fc02000000000000000000000000000014000400fe800000000000"], 0xc8}}, 0x20000000) (fail_nth: 2)
read$FUSE(0xffffffffffffffff, &(0x7f0000009780)={0x2020}, 0x2020)
write$FUSE_DIRENTPLUS(0xffffffffffffffff, &(0x7f0000000840)=ANY=[], 0xb0)
socket$nl_netfilter(0x10, 0x3, 0xc)
dup(0xffffffffffffffff)
socket$inet_smc(0x2b, 0x1, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x42)

3.280373496s ago: executing program 0 (id=4339):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000440)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000400)='rcu_utilization\x00', r3, 0x0, 0x1}, 0x18)
socket$inet_sctp(0x2, 0x1, 0x84)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000850000007b00000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='mmap_lock_acquire_returned\x00', r4}, 0x10)
r5 = syz_open_procfs(0x0, &(0x7f0000000000)='map_files\x00')
getdents(r5, &(0x7f0000001fc0)=""/184, 0xb8)

1.997380105s ago: executing program 0 (id=4340):
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/key-users\x00', 0x0, 0x0)
ioctl$USBDEVFS_SETINTERFACE(r0, 0x80085504, &(0x7f0000000140)={0x2, 0x6})
syz_io_uring_setup(0x49a, &(0x7f00000000c0)={0x0, 0x79af, 0x3180, 0x8000, 0x40024e}, &(0x7f0000000340)=<r1=>0x0, &(0x7f0000000040)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000000)=0xffb, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x40, 0x4007, @fd=r0, 0xffffffffffffffff, &(0x7f0000000580)=""/207, 0xcf, 0x2, 0x1})
ioctl$KVM_PRE_FAULT_MEMORY(r0, 0xc040aed5, &(0x7f0000000000)={0x1000, 0x12000})
syz_usb_connect(0x0, 0x24, &(0x7f0000000500)=ANY=[@ANYBLOB="12010000bde5a44070275290f515010203010902120001000000000904"], 0x0)
r3 = syz_io_uring_setup(0x10d2, &(0x7f0000000480)={0x0, 0x7734, 0x1, 0xfffffffd, 0xd3}, &(0x7f00000000c0), &(0x7f0000000080))
writev(r3, 0x0, 0x0)

1.399921161s ago: executing program 6 (id=4341):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000080)=0x474c, 0x4)
bind$inet(r0, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x0)
setsockopt$inet_int(r0, 0x0, 0xd, 0x0, 0x0)
setsockopt$inet_int(r0, 0x0, 0x7, &(0x7f0000000200)=0x40000000, 0x4)
recvmmsg(r0, &(0x7f0000004080)=[{{&(0x7f0000000300)=@nl=@proc, 0x80, &(0x7f0000000400)=[{&(0x7f0000000180)}, {&(0x7f0000000380)=""/80, 0x50}, {&(0x7f00000004c0)=""/156, 0x9c}, {&(0x7f0000000580)=""/204, 0xcc}], 0x4, &(0x7f0000000440)=""/13, 0xd}, 0x7}, {{0x0, 0x0, &(0x7f0000000840)=[{&(0x7f0000000680)=""/124, 0x7c}, {&(0x7f0000000700)=""/73, 0x49}, {&(0x7f0000000780)=""/58, 0x3a}, {&(0x7f00000007c0)=""/97, 0x61}], 0x4, &(0x7f0000000880)=""/165, 0xa5}, 0x9}, {{0x0, 0x0, &(0x7f0000000dc0)=[{&(0x7f0000000940)=""/22, 0x16}, {&(0x7f0000000980)=""/251, 0xfb}, {&(0x7f0000000a80)=""/206, 0xce}, {&(0x7f0000000b80)=""/254, 0xfe}, {&(0x7f0000002080)=""/4096, 0x1000}, {&(0x7f0000000c80)=""/244, 0xf4}, {&(0x7f0000000d80)=""/17, 0x11}], 0x7}, 0x9}, {{&(0x7f0000000e40)=@can, 0x80, &(0x7f00000010c0)=[{&(0x7f0000000ec0)=""/64, 0x40}, {&(0x7f0000000f00)=""/83, 0x53}, {&(0x7f0000000f80)=""/110, 0x6e}, {&(0x7f0000001000)=""/113, 0x71}], 0x4, &(0x7f0000003080)=""/4096, 0x1000}, 0x7b46e821}, {{&(0x7f0000001100)=@hci, 0x80, &(0x7f0000001180), 0x0, &(0x7f00000011c0)=""/227, 0xe3}, 0x40}, {{&(0x7f00000012c0)=@phonet, 0x80, &(0x7f0000001540)=[{&(0x7f0000001340)=""/157, 0x9d}, {&(0x7f0000001400)=""/41, 0x29}, {&(0x7f0000001440)=""/243, 0xf3}], 0x3, &(0x7f0000004280)=""/228, 0xe4}, 0x5}, {{&(0x7f0000001680)=@nfc_llcp, 0x80, &(0x7f0000001940)=[{&(0x7f0000001700)=""/140, 0x8c}, {&(0x7f0000001e00)=""/74, 0x4a}, {&(0x7f0000001840)=""/137, 0x89}, {&(0x7f0000001900)=""/52, 0x34}], 0x4, &(0x7f0000001980)=""/69, 0x45}, 0x23}, {{&(0x7f0000001a00)=@pppoe={0x18, 0x0, {0x0, @multicast}}, 0x80, &(0x7f0000001d80)=[{&(0x7f0000001a80)=""/100, 0x64}, {&(0x7f0000001b00)=""/19, 0x13}, {&(0x7f0000001b40)=""/73, 0x49}, {&(0x7f0000001bc0)=""/154, 0x9a}, {&(0x7f0000001c80)=""/230, 0xe6}], 0x5, &(0x7f0000001f40)=""/216, 0xd8}, 0x6}], 0x8, 0x45833af92e4b39ff, 0x0)

1.323111751s ago: executing program 3 (id=4342):
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-aesni\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r2 = accept4(r1, 0x0, 0x0, 0x800)
sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0x10}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0x4d}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f", 0xcd}], 0x3, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
write$binfmt_misc(r0, &(0x7f0000000240), 0xfffffecc)

1.088839271s ago: executing program 6 (id=4343):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB], 0x50)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x5, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r0 = syz_open_dev$MSR(&(0x7f0000000000), 0x6ffffffffffffffe, 0x0)
mount$cgroup(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000300), 0x900020, &(0x7f0000000340)={[{}], [{@smackfsdef={'smackfsdef', 0x3d, '\x00'}}]})
read$msr(r0, &(0x7f000001b000)=""/102400, 0x19000)
rseq(&(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={0x0, 0x2, 0x3, 0xdf95, 0x4}, 0x1}, 0xfffffffffffffe66, 0x0, 0x0)
r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/sync_threshold\x00', 0x2, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000083c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x25}}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x301, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x3}]}, @NFT_MSG_NEWSETELEM={0x3c, 0x1e, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x1}]}]}]}], {0x14, 0x10}}, 0xc0}}, 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/diskstats\x00', 0x0, 0x0)
sendfile(r1, r3, 0x0, 0x106f)
r4 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000040)={'sit0\x00', <r5=>0x0})
r6 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_int(r6, 0x29, 0x35, 0x0, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000080)={0xffffffffffffffff, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=@ipv6_newnexthop={0x34, 0x68, 0x1, 0x0, 0x0, {0x2}, [@NHA_ENCAP={0xc, 0x8, 0x0, 0x1, @LWTUNNEL_IP6_TC={0x5}}, @NHA_OIF={0x8, 0x5, r5}, @NHA_ENCAP_TYPE={0x6, 0x7, 0x2}]}, 0x34}}, 0x0)
bind$inet6(r3, &(0x7f00000001c0)={0xa, 0x4e20, 0x6, @mcast2, 0x7}, 0x1c)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xc, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, r3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000040)={0x1, 0x1, 0x1000, 0x2000, &(0x7f0000fa2000/0x2000)=nil})
ioctl$BINDER_SET_CONTEXT_MGR_EXT(0xffffffffffffffff, 0x4018620d, 0x0)
timer_create(0x3, 0x0, 0x0)
socket(0x1, 0x6, 0x7ff)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r4)

126.635096ms ago: executing program 6 (id=4344):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f0000000740)=@framed, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000100)='kmem_cache_free\x00', r0}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r1, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10) (async)
bind$inet(r1, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
syz_emit_ethernet(0xfdef, &(0x7f0000000100)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @multicast1}, {0x0, 0x4e20, 0x9c, 0x0, @wg=@response={0x2, 0x0, 0x0, "82d18160f7d8dda36479a6b179161b4bbff2d0508977b3928ebd2dee05607d17", "0194bd7b1b0303c5ba7f602606a285b3", {"30da2d58da817f8a5f77a23de36a2164", "3b33cfa231a427159c7b9f0eceb155f0"}}}}}}}, 0x0)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz0\x00', {0x3, 0x2, 0x6, 0xfffa}, 0x3a, [0x8000, 0xc95a, 0x8, 0x8, 0x80, 0x2, 0x3, 0x7f, 0x20000006, 0x4d, 0x6, 0x5f, 0x9, 0x5, 0xffff2d37, 0xffffff01, 0x6, 0xff, 0x0, 0x5, 0x4, 0x0, 0x7, 0x3c5b, 0x1, 0x24, 0xd, 0x1, 0x4, 0xffffffff, 0xe661, 0x0, 0x7, 0x3, 0x8, 0x4c74, 0x80000000, 0x242, 0x3, 0xe, 0x0, 0x80008071, 0x7, 0x17, 0x1, 0x7, 0x5, 0x3e, 0x8f, 0x6, 0x6, 0x0, 0x5, 0x4, 0x8, 0x3ff, 0x80, 0x0, 0x5, 0x3, 0x8, 0x4, 0x1, 0x40], [0x10000007, 0x9, 0x8000012f, 0x8004, 0x5, 0xfffffff3, 0x129432e6, 0xc8, 0xf9, 0xe, 0x2bb, 0x6c7, 0x9, 0xfffffffc, 0x3, 0x0, 0x0, 0x5, 0x2f, 0xe, 0x312, 0x78, 0xea4, 0x0, 0x4, 0x3, 0x7fff, 0x6, 0x400, 0x401, 0x6, 0x1, 0xff, 0x5, 0x1000005, 0x5f31, 0xd, 0x4e0, 0x2, 0x4, 0xb, 0x4, 0x9, 0x8, 0x9, 0x6, 0x47, 0x8000, 0x1, 0xfe000000, 0x8, 0x2, 0x4, 0x9, 0x3, 0x3, 0x9, 0x1, 0x3, 0x3, 0xbc45, 0x48c93690, 0x42, 0x3], [0x7, 0x408, 0x4, 0x5, 0xfffffffe, 0x100, 0x8d2, 0x9, 0x5, 0x7fff, 0x0, 0x5, 0xb, 0x4, 0x5, 0x5, 0x0, 0x1ef, 0x5, 0x8, 0x86, 0x3, 0x3038, 0x3e7, 0xb, 0x5, 0x4, 0x2, 0x3, 0x20000008, 0x4, 0x6d01, 0x6, 0x38, 0x800003, 0x200, 0x80, 0x3, 0x4, 0x2950bfaf, 0x1000, 0xa2, 0x7, 0xa9, 0x5, 0x6, 0xac8, 0xbf, 0x2, 0x3, 0x7ff, 0x12b, 0x4, 0x1, 0xa, 0x0, 0x5, 0x1c, 0x120000, 0x3, 0x2006, 0x80a2ed, 0x4, 0x25], [0x9, 0xbb33, 0x7, 0xb, 0x5, 0x938, 0x6, 0x6, 0x0, 0xb9, 0xce7, 0x1ff, 0x2, 0x57, 0x5, 0x3, 0x101, 0x10000, 0x4, 0x7fff, 0xffff, 0xa620, 0x1, 0x5, 0x1, 0x2, 0x14c, 0x60a7, 0x6, 0x16, 0xffffffff, 0x80000000, 0x5, 0x4, 0xc8, 0x7ff, 0xfffff000, 0x10000, 0x3, 0x7e, 0x100, 0x9602, 0x7, 0xaf, 0x8, 0x6, 0x226, 0x5, 0x5, 0x8, 0x30b1d693, 0xa1f, 0xf40, 0x7, 0x1, 0x6c1b, 0x0, 0x4, 0x5, 0xb1e, 0xd7, 0x200, 0xffff3441, 0xfff]}, 0x45c)
ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0)

86.050235ms ago: executing program 3 (id=4345):
openat$uinput(0xffffffffffffff9c, &(0x7f0000001280), 0x2, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000300)='net/netstat\x00')
r1 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
ioctl$SIOCNRDECOBS(r1, 0x89e2)
io_setup(0x6, &(0x7f0000001380)=<r2=>0x0)
io_submit(r2, 0x1, &(0x7f0000000340)=[&(0x7f0000000100)={0x1000000, 0x0, 0x0, 0x5, 0x8001, r0, 0x0}])
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
add_key$fscrypt_provisioning(0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="0100000000000000616161616161616161616161616161616161610cab3661616161616161616161616161313131313131313131313131313131313131318525cd31313131313131313131"], 0x48, 0xfffffffffffffffd)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r5 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r4, &(0x7f0000000400)=ANY=[@ANYBLOB="000086dd000411000400000000006eec00be00442ffffe8000000000000000000000000000aaff020000000000000000000000000001042008"], 0xfdef)
r6 = openat$ppp(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x18, 0x5, &(0x7f0000000100)=ANY=[@ANYBLOB="18000000090f00080000000000000000850000000e000000850000007d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, &(0x7f0000000640)={0x0, 0x0, {}, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @struct, <r8=>0x0}})
ioctl$BTRFS_IOC_GET_DEV_STATS(r4, 0xc4089434, &(0x7f0000000a40)={r8, 0x6, 0x0, [0x100000001, 0xfffffffffffffffd, 0xfffffffffffeffff, 0x3, 0x40], [0x1, 0x7a, 0xe, 0x7, 0x3, 0x2, 0xfffffffffffffde1, 0x8, 0x767, 0x8, 0x86, 0x8, 0xffffffffffffffff, 0x800, 0xffffffff, 0x81, 0x8, 0x3, 0x200, 0x5, 0x1aea, 0x5, 0xe, 0xa, 0xffffffffffffdf40, 0x6, 0x2, 0xcd, 0x3ff, 0x2, 0x7, 0x2, 0x415, 0x8000000000000001, 0x7fff, 0x101, 0x4, 0x8000, 0x9, 0x77, 0x80000000, 0x3, 0x7ff, 0x100000001, 0x5, 0x2, 0x80000000, 0x3, 0x3, 0x9, 0x6, 0x8d4a, 0x1, 0x7, 0x6, 0x8, 0x7, 0x0, 0x4, 0x7, 0x4, 0x1, 0x8001, 0x6, 0x3, 0x4ce6, 0xb9f, 0x1, 0x5, 0x9f, 0x3, 0x401, 0x3d, 0x3, 0x400, 0x80, 0x2, 0xfffffffffffffff8, 0xfffffffffffffff9, 0x8000, 0x8, 0x2, 0x5, 0x1ff, 0x3, 0x6, 0xfffffffffffffffd, 0xe97b, 0x7, 0x3, 0xfffffffffffffff9, 0x4, 0x6, 0x9, 0x0, 0x401, 0x5, 0xf, 0x6, 0xff, 0x8, 0x8, 0x8, 0x3, 0x8, 0xffffffffffffffc4, 0x1, 0xa, 0x401, 0x8, 0x2, 0x1, 0x401, 0xfffffffffffffffd, 0x4, 0x1, 0x2, 0x7, 0x7fffffff, 0x6d, 0xfffffffffffffff8]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000500)='sys_exit\x00', r7}, 0x10)
r9 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
pwritev2(r9, 0x0, 0x0, 0x1200, 0x0, 0x3)
ioctl$PPPIOCNEWUNIT(r6, 0xc004743e, &(0x7f00000000c0))
ioctl$PPPIOCSMRRU(r6, 0x4010744d, &(0x7f0000000080)=0xc)
sendmsg$NFT_BATCH(r3, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a70000000060a090400000000000000000200000044000480140001800c0001006e6f747261636b00040002802c0001800e000100696d6d656469617465000000180002800c00028005000100c400000008000140000000090900010073797a30000000000900020073797a320000000020000000080a050000000000000000000200000009000100"], 0xb8}}, 0x0)
r10 = socket$packet(0x11, 0x3, 0x300)
r11 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r11, 0x8933, &(0x7f0000000040)={'ip6gretap0\x00', <r12=>0x0})
sendto$packet(r10, &(0x7f0000000180)="a6bea8a120e5f8320c30ce5086dda5e986f34c10d8c39c3002de8ec445ae083a4b7fc08a086fc691", 0x28, 0x0, &(0x7f0000000140)={0x11, 0x0, r12, 0x1, 0x0, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}}, 0x14)

0s ago: executing program 6 (id=4346):
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000200), 0x141a43, 0x0)
ioctl$IOMMU_HWPT_SET_DIRTY_TRACKING(r0, 0x3b8b, &(0x7f0000000240)={0x10, 0x1000000})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = io_uring_setup(0x40d0, &(0x7f0000002100)={0x0, 0x5, 0x200, 0x2, 0x400002ca})
socket$alg(0x26, 0x5, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xb, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
ioctl$USBDEVFS_DISCONNECT_CLAIM(r2, 0x8108551b, &(0x7f0000000380)={0x0, 0x0, "5a77bd318786aeb879ca62cdab2a0000000086d85b25a5665a3247e500f61681905db88235f8a5447dd2a2ed6e91626f068881e50f6853772b21a100efb76cba37ff3111d6847e8b9398a646717af75fc008daefba68e6222103472bc55704cdb72b4b996ed831f3b802549db3a8ffff7d34171113d806726615380fe65a6a0a72e1ac2b60bd6276fd8bb6363d10f70da60fd53ded22c87eb2be010e4a62fb73c33424b437bb192c9d06ea6ed04983fe5c5ca033dfce0a82575ef14eee686be0fc58e384f93a13f4e8bbf599394baea3a9ca1864f0a35d6cc38fca32ad6b39905a9727d2001457df7be7e1aefe363590d1f600"})
ioctl$USBDEVFS_CLEAR_HALT(r2, 0xc0105502, &(0x7f0000000280)={0x1, 0x1})
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
r3 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r3, 0x6, 0x13, &(0x7f0000000000)=0x1, 0xfef2)
setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x9, &(0x7f0000000040)=0x440, 0x4)
connect$inet(r3, &(0x7f00000000c0)={0x2, 0x4e23, @remote}, 0x10)
r4 = syz_open_procfs(0x0, &(0x7f0000000080)='net/tcp\x00')
read$FUSE(r4, &(0x7f00000000c0)={0x2020}, 0x2020)
ioctl$USBDEVFS_SUBMITURB(0xffffffffffffffff, 0x8038550a, 0x0)
close_range(r1, 0xffffffffffffffff, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
getsockopt(0xffffffffffffffff, 0xf, 0xfd800000, &(0x7f0000000080)=""/244, &(0x7f0000000180)=0xf4)
syz_usb_connect(0x5, 0x0, 0x0, 0x0)

kernel console output (not intermixed with test programs):

03.689202][ T1151] team0 (unregistering): Port device team_slave_1 removed
[ 1403.764429][ T1151] team0 (unregistering): Port device team_slave_0 removed
[ 1403.896872][T16095] Bluetooth: hci0: command tx timeout
[ 1406.006101][T16095] Bluetooth: hci0: command tx timeout
[ 1406.905226][T18865] : entered promiscuous mode
[ 1407.492313][T18796] chnl_net:caif_netlink_parms(): no params data found
[ 1407.756497][T15317] usb 4-1: new high-speed USB device number 65 using dummy_hcd
[ 1407.824865][T18796] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1407.825031][T18796] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1407.825190][T18796] bridge_slave_0: entered allmulticast mode
[ 1407.827331][T18796] bridge_slave_0: entered promiscuous mode
[ 1407.856016][T18796] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1407.856198][T18796] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1407.856360][T18796] bridge_slave_1: entered allmulticast mode
[ 1407.858290][T18796] bridge_slave_1: entered promiscuous mode
[ 1407.899961][T18796] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1407.904601][T18796] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1407.940175][T15317] usb 4-1: New USB device found, idVendor=04f3, idProduct=0755, bcdDevice= 0.00
[ 1407.940210][T15317] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1407.943380][T15317] usb 4-1: config 0 descriptor??
[ 1407.977893][T18796] team0: Port device team_slave_0 added
[ 1408.035413][T16095] Bluetooth: hci0: command tx timeout
[ 1408.068754][T18796] team0: Port device team_slave_1 added
[ 1408.178459][T18796] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1408.201031][T18796] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1408.201450][T18796] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1408.204978][T18796] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1408.204996][T18796] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1408.205040][T18796] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1408.342342][T18796] hsr_slave_0: entered promiscuous mode
[ 1408.357886][T15317] elan 0003:04F3:0755.0029: hidraw0: USB HID v1.01 Device [HID 04f3:0755] on usb-dummy_hcd.3-1/input0
[ 1408.383609][T18796] hsr_slave_1: entered promiscuous mode
[ 1408.783621][T18898] netlink: 24 bytes leftover after parsing attributes in process `syz.6.3878'.
[ 1408.846154][T18897] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1408.871884][T18897] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1408.918830][T18897] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1408.937908][T18897] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1409.205576][T18906] netlink: 'syz.7.3881': attribute type 10 has an invalid length.
[ 1409.239262][T18906] netlink: 156 bytes leftover after parsing attributes in process `syz.7.3881'.
[ 1410.027767][T18918] mac80211_hwsim hwsim24 
: renamed from wlan1 (while UP)
[ 1410.546077][T18912] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1410.620041][T18912] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1411.492679][T18796] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1411.512027][T18796] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1411.536329][T18796] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1411.563710][T18796] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1411.922597][T15317] usb 4-1: USB disconnect, device number 65
[ 1411.930928][T18796] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1412.013945][T18796] 8021q: adding VLAN 0 to HW filter on device team0
[ 1412.027452][ T3466] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1412.034638][ T3466] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1412.109110][T18943] loop6: detected capacity change from 0 to 524287999
[ 1413.022891][ T3466] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1413.030237][ T3466] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1413.157027][   T30] audit: type=1400 audit(1749479273.900:1451): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="]-{" requested=w pid=18948 comm="syz.7.3889" daddr=::ffff:172.20.20.0
[ 1413.226802][   T30] audit: type=1400 audit(1749479273.940:1452): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="]-{" requested=w pid=18948 comm="syz.7.3889" daddr=::ffff:172.20.20.0
[ 1413.411160][T18956] raw-gadget.1 gadget.7: failed to queue resume event
[ 1413.931377][T18952] raw-gadget.1 gadget.7: failed to queue suspend event
[ 1414.082274][T18964] netlink: 28 bytes leftover after parsing attributes in process `syz.6.3893'.
[ 1414.324398][T18796] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1414.957344][T18985] F2FS-fs (loop13): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[ 1414.965515][T18985] F2FS-fs (loop13): Can't find valid F2FS filesystem in 1th superblock
[ 1414.974297][T18985] F2FS-fs (loop13): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[ 1414.982363][T18985] F2FS-fs (loop13): Can't find valid F2FS filesystem in 2th superblock
[ 1414.994863][T18985] F2FS-fs (loop13): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[ 1415.002897][T18985] F2FS-fs (loop13): Can't find valid F2FS filesystem in 1th superblock
[ 1415.023995][T18985] F2FS-fs (loop13): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[ 1415.041913][T18985] F2FS-fs (loop13): Can't find valid F2FS filesystem in 2th superblock
[ 1415.589110][T18992] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1415.621059][T18992] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1415.659087][T18796] veth0_vlan: entered promiscuous mode
[ 1415.728541][T18796] veth1_vlan: entered promiscuous mode
[ 1415.929982][T18796] veth0_macvtap: entered promiscuous mode
[ 1415.962171][T18796] veth1_macvtap: entered promiscuous mode
[ 1416.086526][T18796] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1416.162094][T18796] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1416.216712][T18796] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1416.258202][T18796] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1416.286383][T18796] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1416.297934][T18796] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1416.553142][ T6664] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1417.488037][ T6664] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1417.535156][T19005] Falling back ldisc for ptm0.
[ 1417.672188][T13615] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1417.721631][T13615] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1417.991084][T14836] Bluetooth: hci0: command 0x0405 tx timeout
[ 1419.072714][T19024] raw-gadget.1 gadget.7: failed to queue resume event
[ 1419.568838][T19030] netlink: zone id is out of range
[ 1419.616486][T19030] netlink: zone id is out of range
[ 1419.636325][T19030] netlink: zone id is out of range
[ 1419.653268][T19030] netlink: zone id is out of range
[ 1419.669759][ T7217] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1419.680655][T19030] netlink: zone id is out of range
[ 1419.714988][T19022] raw-gadget.1 gadget.7: failed to queue suspend event
[ 1419.873348][T15317] usb 7-1: new high-speed USB device number 90 using dummy_hcd
[ 1419.897370][ T7217] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1419.996580][ T7217] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1420.044189][T15317] usb 7-1: Using ep0 maxpacket: 8
[ 1420.074887][T15317] usb 7-1: New USB device found, idVendor=1660, idProduct=0932, bcdDevice=80.ea
[ 1420.102469][T15317] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1420.110540][T15317] usb 7-1: Product: syz
[ 1420.115283][T15317] usb 7-1: Manufacturer: syz
[ 1420.119944][T15317] usb 7-1: SerialNumber: syz
[ 1420.130509][T15317] usb 7-1: config 0 descriptor??
[ 1420.138750][T15317] dvb-usb: found a 'Medion MD95700 (MDUSBTV-HYBRID)' in warm state.
[ 1420.183703][T15317] usb 7-1: setting power ON
[ 1420.188286][T15317] dvb-usb: bulk message failed: -22 (2/0)
[ 1420.205578][ T7217] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1420.215359][T15317] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[ 1420.263372][T15317] dvbdev: DVB: registering new adapter (Medion MD95700 (MDUSBTV-HYBRID))
[ 1420.279827][T15317] usb 7-1: media controller created
[ 1420.338696][T19031] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1420.351440][T19031] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1420.370825][T15317] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[ 1420.430645][T15317] usb 7-1: selecting invalid altsetting 6
[ 1420.447932][T15317] usb 7-1: digital interface selection failed (-22)
[ 1420.463647][T15317] dvb-usb: no frontend was attached by 'Medion MD95700 (MDUSBTV-HYBRID)'
[ 1420.483030][T15317] usb 7-1: setting power OFF
[ 1420.487701][T15317] dvb-usb: bulk message failed: -22 (2/0)
[ 1420.500814][T15317] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully initialized and connected.
[ 1420.520467][T15317] (NULL device *): no alternate interface
[ 1420.569722][T15317] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully deinitialized and disconnected.
[ 1420.597611][ T7217] bridge_slave_1: left allmulticast mode
[ 1420.615818][ T7217] bridge_slave_1: left promiscuous mode
[ 1420.628711][ T7217] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1420.631021][T15317] usb 7-1: USB disconnect, device number 90
[ 1420.749924][ T7217] bridge_slave_0: left allmulticast mode
[ 1420.756383][T16095] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1420.774202][ T7217] bridge_slave_0: left promiscuous mode
[ 1420.781846][T16095] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1420.790228][ T7217] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1420.799170][T16095] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1420.812873][T16095] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1420.822813][T16095] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1421.073355][T19055] netlink: 4 bytes leftover after parsing attributes in process `syz.7.3917'.
[ 1421.119684][T19055] netlink: 12 bytes leftover after parsing attributes in process `syz.7.3917'.
[ 1421.155549][T19055] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3917'.
[ 1422.059095][ T7217] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1422.070954][ T7217] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1422.082033][ T7217] bond0 (unregistering): Released all slaves
[ 1422.084857][    T9] usb 7-1: new high-speed USB device number 91 using dummy_hcd
[ 1422.172939][T19048] lo speed is unknown, defaulting to 1000
[ 1422.201551][T19048] lo speed is unknown, defaulting to 1000
[ 1422.266920][    T9] usb 7-1: Using ep0 maxpacket: 16
[ 1422.553407][    T9] usb 7-1: config 8 has an invalid interface number: 206 but max is 0
[ 1422.730238][    T9] usb 7-1: config 8 has no interface number 0
[ 1422.796140][    T9] usb 7-1: config 8 interface 206 altsetting 1 has an endpoint descriptor with address 0xF7, changing to 0x87
[ 1422.811608][    T9] usb 7-1: config 8 interface 206 altsetting 1 endpoint 0x87 has invalid maxpacket 33058, setting to 1024
[ 1422.854261][T16095] Bluetooth: hci0: command tx timeout
[ 1422.873522][    T9] usb 7-1: config 8 interface 206 altsetting 1 has 2 endpoint descriptors, different from the interface descriptor's value: 9
[ 1422.893637][    T9] usb 7-1: config 8 interface 206 has no altsetting 0
[ 1422.903395][    T9] usb 7-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=35.bb
[ 1422.912483][    T9] usb 7-1: New USB device strings: Mfr=1, Product=6, SerialNumber=3
[ 1422.921307][    T9] usb 7-1: Product: syz
[ 1422.926125][    T9] usb 7-1: Manufacturer: syz
[ 1422.930907][    T9] usb 7-1: SerialNumber: syz
[ 1423.160417][ T7217] hsr_slave_0: left promiscuous mode
[ 1423.224664][ T7217] hsr_slave_1: left promiscuous mode
[ 1423.235570][ T7217] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1423.251045][ T7217] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1423.269895][ T7217] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1423.290756][ T7217] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1423.369271][ T7217] veth1_macvtap: left promiscuous mode
[ 1423.386892][ T7217] veth0_macvtap: left promiscuous mode
[ 1423.400523][ T7217] veth1_vlan: left promiscuous mode
[ 1423.419839][ T7217] veth0_vlan: left promiscuous mode
[ 1423.470308][    T9] garmin_gps 7-1:8.206: Garmin GPS usb/tty converter detected
[ 1423.500270][    T9] usb 7-1: Garmin GPS usb/tty converter now attached to ttyUSB0
[ 1423.527374][    T9] usb 7-1: USB disconnect, device number 91
[ 1423.557502][    T9] garmin_gps ttyUSB0: Garmin GPS usb/tty converter now disconnected from ttyUSB0
[ 1423.569849][    T9] garmin_gps 7-1:8.206: device disconnected
[ 1424.159496][ T7217] team0 (unregistering): Port device team_slave_1 removed
[ 1424.208830][ T7217] team0 (unregistering): Port device team_slave_0 removed
[ 1424.405660][T15317] usb 7-1: new high-speed USB device number 92 using dummy_hcd
[ 1424.583446][T15317] usb 7-1: Using ep0 maxpacket: 32
[ 1424.591145][T15317] usb 7-1: config 0 has an invalid interface number: 12 but max is 0
[ 1424.599508][T15317] usb 7-1: config 0 has no interface number 0
[ 1424.605776][T15317] usb 7-1: config 0 interface 12 has no altsetting 0
[ 1424.627965][T15317] usb 7-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[ 1424.637289][T15317] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1424.645379][T15317] usb 7-1: Product: syz
[ 1424.649589][T15317] usb 7-1: Manufacturer: syz
[ 1424.654452][T15317] usb 7-1: SerialNumber: syz
[ 1424.664683][T15317] usb 7-1: config 0 descriptor??
[ 1425.003557][T16095] Bluetooth: hci0: command tx timeout
[ 1425.107637][T19048] chnl_net:caif_netlink_parms(): no params data found
[ 1426.202115][T19084] raw-gadget.1 gadget.7: failed to queue resume event
[ 1426.595275][T19078] raw-gadget.1 gadget.7: failed to queue suspend event
[ 1426.683275][T15317] f81534 7-1:0.12: f81534_get_register: reg: 1003 failed: -71
[ 1426.691222][T15317] f81534 7-1:0.12: f81534_find_config_idx: read failed: -71
[ 1426.707278][T19048] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1426.731719][T15317] f81534 7-1:0.12: f81534_calc_num_ports: find idx failed: -71
[ 1426.735724][T19048] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1426.749798][T15317] f81534 7-1:0.12: probe with driver f81534 failed with error -71
[ 1427.086441][T16095] Bluetooth: hci0: command tx timeout
[ 1427.463818][T19048] bridge_slave_0: entered allmulticast mode
[ 1427.471997][T19048] bridge_slave_0: entered promiscuous mode
[ 1427.480889][T19048] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1427.488182][T19048] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1427.495710][T19048] bridge_slave_1: entered allmulticast mode
[ 1427.503667][T19048] bridge_slave_1: entered promiscuous mode
[ 1427.622657][T15317] usb 7-1: USB disconnect, device number 92
[ 1427.865912][T19107] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3930'.
[ 1428.655139][ T1306] ieee802154 phy0 wpan0: encryption failed: -22
[ 1428.683818][T19107] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3930'.
[ 1428.709912][T19107] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3930'.
[ 1428.729540][T19048] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1428.924642][T19048] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1429.037527][T19048] team0: Port device team_slave_0 added
[ 1429.493408][T16095] Bluetooth: hci0: command tx timeout
[ 1430.074490][T19048] team0: Port device team_slave_1 added
[ 1430.729035][T19048] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1430.736469][T19048] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1430.768968][T19048] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1430.790999][T19048] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1430.801434][T19048] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1430.831098][T19048] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1432.023620][T10868] usb 7-1: new full-speed USB device number 93 using dummy_hcd
[ 1432.050669][T19150] netlink: 68 bytes leftover after parsing attributes in process `syz.7.3940'.
[ 1432.063262][T19048] hsr_slave_0: entered promiscuous mode
[ 1432.075643][T19048] hsr_slave_1: entered promiscuous mode
[ 1432.223705][T10868] usb 7-1: device descriptor read/64, error -71
[ 1432.378700][T19151] netlink: 4 bytes leftover after parsing attributes in process `syz.7.3940'.
[ 1433.184088][T10868] usb 7-1: new full-speed USB device number 94 using dummy_hcd
[ 1433.226453][T19159] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3944'.
[ 1433.235553][T19159] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3944'.
[ 1433.244576][T19159] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3944'.
[ 1433.343544][T10868] usb 7-1: device descriptor read/64, error -71
[ 1433.517386][T10868] usb usb7-port1: attempt power cycle
[ 1434.693999][T10868] usb 7-1: new full-speed USB device number 95 using dummy_hcd
[ 1434.748427][T10868] usb 7-1: device descriptor read/8, error -71
[ 1434.797428][T19175] bond0: entered promiscuous mode
[ 1434.804878][T19175] bond_slave_0: entered promiscuous mode
[ 1434.813238][T19175] bond_slave_1: entered promiscuous mode
[ 1434.836908][T19175] batadv0: entered promiscuous mode
[ 1434.845843][T19175] debugfs: Directory 'hsr1' with parent 'hsr' already present!
[ 1434.855799][T19175] Cannot create hsr debugfs directory
[ 1434.864170][T19175] 8021q: adding VLAN 0 to HW filter on device hsr1
[ 1434.874918][T19175] bond0: left promiscuous mode
[ 1434.881740][T19175] bond_slave_0: left promiscuous mode
[ 1434.922042][T19175] bond_slave_1: left promiscuous mode
[ 1434.939931][T19175] batadv0: left promiscuous mode
[ 1434.948813][T19176] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1435.000163][T19176] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1435.013647][T10868] usb 7-1: new full-speed USB device number 96 using dummy_hcd
[ 1435.098750][T10868] usb 7-1: device descriptor read/8, error -71
[ 1435.223991][T10868] usb usb7-port1: unable to enumerate USB device
[ 1435.525839][T19048] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1435.546572][T19048] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1435.568555][T19048] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1435.622419][T19048] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1435.957259][T19188] netlink: 'syz.6.3950': attribute type 4 has an invalid length.
[ 1435.988200][T19048] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1435.995343][T19188] netlink: 152 bytes leftover after parsing attributes in process `syz.6.3950'.
[ 1436.095337][T19188] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[ 1436.171253][T19048] 8021q: adding VLAN 0 to HW filter on device team0
[ 1436.211584][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1436.218850][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1436.268505][ T7213] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1436.275857][ T7213] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1436.313084][T19194] F2FS-fs (loop7): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[ 1436.330458][T19194] F2FS-fs (loop7): Can't find valid F2FS filesystem in 1th superblock
[ 1436.346389][T19194] F2FS-fs (loop7): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[ 1436.372775][T19194] F2FS-fs (loop7): Can't find valid F2FS filesystem in 2th superblock
[ 1436.806140][T19198] input: syz1 as /devices/virtual/input/input60
[ 1437.138917][T19200] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1437.145180][T19200] Bluetooth: hci3: Error when powering off device on rfkill (-4)
[ 1437.226044][T19200] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1437.247099][T19200] Bluetooth: hci2: Error when powering off device on rfkill (-4)
[ 1437.397991][T19200] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1437.420417][T19200] Bluetooth: hci0: Error when powering off device on rfkill (-4)
[ 1437.455901][T19048] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1438.031703][T19217] raw-gadget.1 gadget.7: failed to queue resume event
[ 1438.513753][T19214] raw-gadget.1 gadget.7: failed to queue suspend event
[ 1438.817907][T19048] veth0_vlan: entered promiscuous mode
[ 1438.862287][T19048] veth1_vlan: entered promiscuous mode
[ 1438.920181][T19048] veth0_macvtap: entered promiscuous mode
[ 1438.930836][T19048] veth1_macvtap: entered promiscuous mode
[ 1438.953930][T19048] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1438.990031][T19048] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1439.005322][T19048] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1439.014619][T19048] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1439.024310][T19048] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1439.061373][T19048] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1439.149933][T19233] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3961'.
[ 1439.169845][T19233] netlink: 12 bytes leftover after parsing attributes in process `syz.6.3961'.
[ 1439.216887][T19233] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3961'.
[ 1439.263425][ T3498] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1439.282167][ T3498] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1439.342957][ T3466] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1439.352494][ T3466] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1441.120137][   T65] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1441.532337][   T65] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1441.723413][ T5974] usb 4-1: new high-speed USB device number 66 using dummy_hcd
[ 1441.888110][ T5974] usb 4-1: Using ep0 maxpacket: 8
[ 1441.910778][ T5974] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1441.922194][ T5974] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1441.946169][ T5974] usb 4-1: New USB device found, idVendor=046d, idProduct=c20e, bcdDevice= 0.00
[ 1441.963542][ T5974] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1441.986155][ T5974] usb 4-1: config 0 descriptor??
[ 1442.346844][   T65] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1442.883515][   T65] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1443.851447][T14836] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1443.862425][T14836] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1443.875549][T14836] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1443.887586][T14836] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1443.908012][T14836] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1443.963244][T19268] netlink: 12 bytes leftover after parsing attributes in process `syz.6.3970'.
[ 1443.984378][T19268] vhci_hcd vhci_hcd.0: pdev(6) rhport(0) sockfd(14)
[ 1443.991048][T19268] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[ 1444.001089][T19268] vhci_hcd vhci_hcd.0: Device attached
[ 1444.011242][T19270] vhci_hcd: connection closed
[ 1444.011657][ T7213] vhci_hcd: stop threads
[ 1444.054949][   T65] bridge_slave_1: left allmulticast mode
[ 1444.061946][   T65] bridge_slave_1: left promiscuous mode
[ 1444.071247][   T65] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1444.076448][ T7213] vhci_hcd: release socket
[ 1444.082846][ T7213] vhci_hcd: disconnect device
[ 1444.110309][   T65] bridge_slave_0: left allmulticast mode
[ 1444.129289][   T65] bridge_slave_0: left promiscuous mode
[ 1444.143056][   T65] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1444.852445][ T5974] usbhid 4-1:0.0: can't add hid device: -71
[ 1444.863120][T19283] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3973'.
[ 1444.878121][ T5974] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[ 1444.893079][ T5974] usb 4-1: USB disconnect, device number 66
[ 1444.913561][T19283] netlink: 12 bytes leftover after parsing attributes in process `syz.6.3973'.
[ 1444.942300][T19283] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3973'.
[ 1446.203536][T16095] Bluetooth: hci0: command tx timeout
[ 1446.660102][   T65] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1446.677497][   T65] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1446.691955][   T65] bond0 (unregistering): Released all slaves
[ 1446.939770][T19265] lo speed is unknown, defaulting to 1000
[ 1446.955289][T19265] lo speed is unknown, defaulting to 1000
[ 1447.093955][T19302] F2FS-fs (loop15): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[ 1447.120839][T19302] F2FS-fs (loop15): Can't find valid F2FS filesystem in 1th superblock
[ 1447.152123][T19302] F2FS-fs (loop15): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[ 1447.160262][T19302] F2FS-fs (loop15): Can't find valid F2FS filesystem in 2th superblock
[ 1447.204069][T19302] F2FS-fs (loop15): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[ 1447.211964][T19302] F2FS-fs (loop15): Can't find valid F2FS filesystem in 1th superblock
[ 1447.238802][T19302] F2FS-fs (loop15): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[ 1447.249368][T19302] F2FS-fs (loop15): Can't find valid F2FS filesystem in 2th superblock
[ 1447.308777][   T30] audit: type=1326 audit(1749479820.086:1453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19311 comm="syz.3.3980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f914298e929 code=0x7ffc0000
[ 1447.420712][   T30] audit: type=1326 audit(1749479820.086:1454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19311 comm="syz.3.3980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f914298e929 code=0x7ffc0000
[ 1447.545400][T19316] F2FS-fs (loop13): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[ 1447.553603][   T30] audit: type=1326 audit(1749479820.116:1455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19311 comm="syz.3.3980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f914298e929 code=0x7ffc0000
[ 1447.564444][T19316] F2FS-fs (loop13): Can't find valid F2FS filesystem in 1th superblock
[ 1447.585446][T19316] F2FS-fs (loop13): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[ 1447.593586][T19316] F2FS-fs (loop13): Can't find valid F2FS filesystem in 2th superblock
[ 1447.632206][T19315] F2FS-fs (loop13): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[ 1447.643543][   T30] audit: type=1326 audit(1749479820.116:1456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19311 comm="syz.3.3980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f914298e929 code=0x7ffc0000
[ 1447.670170][T19315] F2FS-fs (loop13): Can't find valid F2FS filesystem in 1th superblock
[ 1447.678911][T19315] F2FS-fs (loop13): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[ 1447.686996][T19315] F2FS-fs (loop13): Can't find valid F2FS filesystem in 2th superblock
[ 1447.733664][   T30] audit: type=1326 audit(1749479820.116:1457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19311 comm="syz.3.3980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f914298e929 code=0x7ffc0000
[ 1447.761171][   T30] audit: type=1326 audit(1749479820.116:1458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19311 comm="syz.3.3980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f914298e929 code=0x7ffc0000
[ 1447.792991][   T30] audit: type=1326 audit(1749479820.116:1459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19311 comm="syz.3.3980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f914298e929 code=0x7ffc0000
[ 1448.690465][T16095] Bluetooth: hci0: command tx timeout
[ 1449.142993][   T30] audit: type=1326 audit(1749479820.116:1460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19311 comm="syz.3.3980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f914298e929 code=0x7ffc0000
[ 1449.261189][   T30] audit: type=1326 audit(1749479820.116:1461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19311 comm="syz.3.3980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=83 compat=0 ip=0x7f914298e929 code=0x7ffc0000
[ 1449.386096][   T30] audit: type=1326 audit(1749479820.116:1462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19311 comm="syz.3.3980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f914298e929 code=0x7ffc0000
[ 1449.493506][   T65] hsr_slave_0: left promiscuous mode
[ 1450.119943][   T65] hsr_slave_1: left promiscuous mode
[ 1450.141135][   T65] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1450.161475][   T65] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1450.197906][   T65] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1450.231159][   T65] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1450.364614][T19342] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1450.378638][T19342] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1450.778525][T14836] Bluetooth: hci0: command tx timeout
[ 1450.828276][   T65] veth1_macvtap: left promiscuous mode
[ 1450.834172][   T65] veth0_macvtap: left promiscuous mode
[ 1450.841061][   T65] veth1_vlan: left promiscuous mode
[ 1450.846587][   T65] veth0_vlan: left promiscuous mode
[ 1452.853671][T14836] Bluetooth: hci0: command tx timeout
[ 1455.774833][   T65] team0 (unregistering): Port device team_slave_1 removed
[ 1455.854558][   T65] team0 (unregistering): Port device team_slave_0 removed
[ 1455.931037][   T30] kauditd_printk_skb: 33 callbacks suppressed
[ 1455.931057][   T30] audit: type=1400 audit(1749479828.706:1496): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="]-{" requested=w pid=19364 comm="syz.7.3992" dest=20004
[ 1455.933175][T19366] 9pnet_fd: p9_fd_create_tcp (19366): problem connecting socket to 127.0.0.1
[ 1456.510748][T19265] chnl_net:caif_netlink_parms(): no params data found
[ 1457.858765][T19380] 9pnet: p9_errstr2errno: server reported unknown error �<jq
[ 1458.522786][T19265] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1458.537462][T19265] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1458.545294][T19265] bridge_slave_0: entered allmulticast mode
[ 1458.553132][T19265] bridge_slave_0: entered promiscuous mode
[ 1458.570831][T19265] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1458.593477][T19265] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1458.621015][T19265] bridge_slave_1: entered allmulticast mode
[ 1458.639323][T19265] bridge_slave_1: entered promiscuous mode
[ 1458.828752][T19400] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1458.869657][T19400] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1459.994643][T19265] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1460.023061][T19265] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1460.373443][T17354] usb 4-1: new high-speed USB device number 67 using dummy_hcd
[ 1461.051981][T19265] team0: Port device team_slave_0 added
[ 1461.064489][T19265] team0: Port device team_slave_1 added
[ 1461.123441][T17354] usb 4-1: Using ep0 maxpacket: 16
[ 1461.133629][T17354] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1461.162748][T17354] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[ 1461.179572][T17354] usb 4-1: New USB device found, idVendor=1223, idProduct=3f07, bcdDevice= 0.00
[ 1461.189348][T17354] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1461.213167][T17354] usb 4-1: config 0 descriptor??
[ 1461.229785][T19265] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1461.240068][T19265] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1461.274741][T19265] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1461.288542][T19265] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1461.295649][T19265] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1461.321787][T19265] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1462.135302][T19421] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1462.144134][T19421] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1462.274180][T17354] ortek 0003:1223:3F07.002A: unknown main item tag 0x6
[ 1462.336877][T17354] ortek 0003:1223:3F07.002A: report_id 29495 is invalid
[ 1462.351439][T17354] ortek 0003:1223:3F07.002A: item 0 2 1 8 parsing failed
[ 1462.388506][T17354] ortek 0003:1223:3F07.002A: probe with driver ortek failed with error -22
[ 1462.421603][T19265] hsr_slave_0: entered promiscuous mode
[ 1462.428614][T19265] hsr_slave_1: entered promiscuous mode
[ 1462.676558][T19434] ipvlan1: mtu less than device minimum
[ 1463.198428][T19449] F2FS-fs (loop13): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[ 1463.230659][T19449] F2FS-fs (loop13): Can't find valid F2FS filesystem in 1th superblock
[ 1464.240963][T19449] F2FS-fs (loop13): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[ 1464.259053][T19449] F2FS-fs (loop13): Can't find valid F2FS filesystem in 2th superblock
[ 1464.303746][T17354] usb 4-1: USB disconnect, device number 67
[ 1464.314134][T19447] F2FS-fs (loop13): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[ 1464.347346][T19450] gretap1: entered promiscuous mode
[ 1464.373612][T19447] F2FS-fs (loop13): Can't find valid F2FS filesystem in 1th superblock
[ 1464.404385][T19447] F2FS-fs (loop13): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[ 1464.412350][T19447] F2FS-fs (loop13): Can't find valid F2FS filesystem in 2th superblock
[ 1465.984110][T19469] F2FS-fs (loop7): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[ 1466.015487][T19469] F2FS-fs (loop7): Can't find valid F2FS filesystem in 1th superblock
[ 1466.089343][T19469] F2FS-fs (loop7): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[ 1466.201063][T19478] : entered promiscuous mode
[ 1466.296773][T19469] F2FS-fs (loop7): Can't find valid F2FS filesystem in 2th superblock
[ 1467.086011][T19474] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1467.183763][T19474] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1467.334345][T19265] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1467.387281][T19265] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1467.410494][T19484] random: crng reseeded on system resumption
[ 1467.412934][T19265] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1467.451324][T19265] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1467.701845][T19265] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1467.749523][T19265] 8021q: adding VLAN 0 to HW filter on device team0
[ 1467.774819][ T1095] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1467.782075][ T1095] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1467.818219][T14957] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1467.825466][T14957] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1469.058982][T19265] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1469.268821][T19517] F2FS-fs (loop1): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[ 1469.276740][T19517] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[ 1469.285201][T19517] F2FS-fs (loop1): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[ 1469.292992][T19517] F2FS-fs (loop1): Can't find valid F2FS filesystem in 2th superblock
[ 1469.306867][T19517] F2FS-fs (loop1): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[ 1469.314789][T19517] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[ 1469.323168][T19517] F2FS-fs (loop1): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[ 1469.331015][T19517] F2FS-fs (loop1): Can't find valid F2FS filesystem in 2th superblock
[ 1469.628548][   T30] audit: type=1800 audit(1749480098.409:1497): pid=19516 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.7.4028" name="bus" dev="tmpfs" ino=2895 res=0 errno=0
[ 1474.112252][T19265] veth0_vlan: entered promiscuous mode
[ 1474.125802][T19556] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1474.150849][T19556] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1474.162079][T19265] veth1_vlan: entered promiscuous mode
[ 1474.342339][T19562] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4035'.
[ 1474.797333][T19265] veth0_macvtap: entered promiscuous mode
[ 1475.158944][T19265] veth1_macvtap: entered promiscuous mode
[ 1475.434225][T19265] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1475.490132][T19265] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1475.520676][T19265] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1475.538069][T19265] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1475.548225][T19265] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1475.560594][T19265] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1475.736160][T19574] netlink: 8 bytes leftover after parsing attributes in process `syz.6.4038'.
[ 1476.062990][T14957] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1476.071734][   T65] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1476.079862][T14957] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1476.087257][   T65] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1477.491897][   T65] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1478.651395][   T65] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1478.769237][   T65] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1478.851836][   T65] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1478.986807][   T65] bridge_slave_1: left allmulticast mode
[ 1478.992509][   T65] bridge_slave_1: left promiscuous mode
[ 1478.998361][   T65] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1479.008499][   T65] bridge_slave_0: left allmulticast mode
[ 1479.015118][   T65] bridge_slave_0: left promiscuous mode
[ 1479.020851][   T65] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1481.373362][T19608] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1481.811960][   T30] audit: type=1400 audit(1749480110.549:1498): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="]-{" requested=w pid=19598 comm="syz.3.4046" daddr=::ffff:0.0.0.0
[ 1481.993221][   T30] audit: type=1400 audit(1749480110.559:1499): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="]-{" requested=w pid=19598 comm="syz.3.4046" daddr=::ffff:172.20.20.170 dest=20002
[ 1482.719086][T16095] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1482.729082][T16095] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1482.737534][T16095] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1482.745524][T16095] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1482.752996][T16095] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1482.843487][T10868] usb 4-1: new high-speed USB device number 68 using dummy_hcd
[ 1482.884237][   T65] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1482.918659][   T65] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1482.936082][   T65] bond0 (unregistering): Released all slaves
[ 1483.065706][T10868] usb 4-1: Using ep0 maxpacket: 8
[ 1483.105051][T10868] usb 4-1: New USB device found, idVendor=10c4, idProduct=8244, bcdDevice=dc.00
[ 1483.134363][T19622] lo speed is unknown, defaulting to 1000
[ 1483.142570][T19622] lo speed is unknown, defaulting to 1000
[ 1483.154864][T10868] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1483.198558][T10868] usb 4-1: Product: syz
[ 1483.202787][T10868] usb 4-1: Manufacturer: syz
[ 1483.223435][T10868] usb 4-1: SerialNumber: syz
[ 1483.294950][T19628] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1483.305128][T19628] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1483.382788][T10868] usb 4-1: config 0 descriptor??
[ 1483.428221][T10868] radio-usb-si4713 4-1:0.0: Si4713 development board discovered: (10C4:8244)
[ 1483.473102][T19635] netlink: 56 bytes leftover after parsing attributes in process `syz.6.4049'.
[ 1483.769329][   T65] hsr_slave_0: left promiscuous mode
[ 1483.775790][   T65] hsr_slave_1: left promiscuous mode
[ 1483.784608][   T65] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1483.792178][   T65] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1483.803784][   T65] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1483.811662][   T65] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1483.853627][   T65] veth1_macvtap: left promiscuous mode
[ 1483.859299][   T65] veth0_macvtap: left promiscuous mode
[ 1483.866096][   T65] veth1_vlan: left promiscuous mode
[ 1483.872634][   T65] veth0_vlan: left promiscuous mode
[ 1484.338475][T19643] openvswitch: netlink: Message has 4 unknown bytes.
[ 1484.515409][T10868] radio-usb-si4713 4-1:0.0: probe with driver radio-usb-si4713 failed with error -32
[ 1484.539957][T10868] usbhid 4-1:0.0: couldn't find an input interrupt endpoint
[ 1484.783854][T16095] Bluetooth: hci0: command tx timeout
[ 1485.191284][T10868] hid-generic 0000:3000000:0000.002B: unknown main item tag 0x4
[ 1485.201744][T10868] hid-generic 0000:3000000:0000.002B: unknown main item tag 0x2
[ 1485.215698][T10868] hid-generic 0000:3000000:0000.002B: unknown main item tag 0x0
[ 1485.226169][T10868] hid-generic 0000:3000000:0000.002B: unknown main item tag 0x0
[ 1485.236307][T10868] hid-generic 0000:3000000:0000.002B: unknown main item tag 0x0
[ 1485.246524][T10868] hid-generic 0000:3000000:0000.002B: unknown main item tag 0x0
[ 1485.258380][T10868] hid-generic 0000:3000000:0000.002B: unknown main item tag 0x0
[ 1485.268723][T10868] hid-generic 0000:3000000:0000.002B: unknown main item tag 0x0
[ 1485.282689][T10868] hid-generic 0000:3000000:0000.002B: unknown main item tag 0x0
[ 1485.292977][T10868] hid-generic 0000:3000000:0000.002B: unknown main item tag 0x0
[ 1485.301601][T10868] hid-generic 0000:3000000:0000.002B: unknown main item tag 0x0
[ 1485.316623][T10868] hid-generic 0000:3000000:0000.002B: unknown main item tag 0x0
[ 1485.328135][T10868] hid-generic 0000:3000000:0000.002B: unknown main item tag 0x0
[ 1485.337246][   T65] team0 (unregistering): Port device team_slave_1 removed
[ 1485.345462][T10868] hid-generic 0000:3000000:0000.002B: unknown main item tag 0x0
[ 1485.353923][T10868] hid-generic 0000:3000000:0000.002B: unknown main item tag 0x0
[ 1485.361704][T10868] hid-generic 0000:3000000:0000.002B: unknown main item tag 0x0
[ 1485.389260][T10868] hid-generic 0000:3000000:0000.002B: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[ 1485.429079][   T65] team0 (unregistering): Port device team_slave_0 removed
[ 1485.615789][    T9] usb 4-1: USB disconnect, device number 68
[ 1486.743204][T19622] chnl_net:caif_netlink_parms(): no params data found
[ 1486.854981][T16095] Bluetooth: hci0: command tx timeout
[ 1488.458956][T19622] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1488.477429][T19622] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1488.494029][T19622] bridge_slave_0: entered allmulticast mode
[ 1488.511351][T19622] bridge_slave_0: entered promiscuous mode
[ 1488.529943][T19622] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1488.544085][T19622] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1488.551677][T19622] bridge_slave_1: entered allmulticast mode
[ 1488.562085][T19622] bridge_slave_1: entered promiscuous mode
[ 1488.620592][T19622] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1488.635482][T19622] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1488.660756][T19688] netlink: 8 bytes leftover after parsing attributes in process `syz.7.4060'.
[ 1488.779773][T19622] team0: Port device team_slave_0 added
[ 1488.803131][T19622] team0: Port device team_slave_1 added
[ 1488.912582][T19622] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1488.930768][T19622] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1488.956855][T16095] Bluetooth: hci0: command tx timeout
[ 1489.002767][T19622] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1489.041692][T19622] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1489.056682][T19622] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1489.121719][T19622] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1489.267108][T19622] hsr_slave_0: entered promiscuous mode
[ 1489.283167][T19622] hsr_slave_1: entered promiscuous mode
[ 1489.580171][ T1306] ieee802154 phy0 wpan0: encryption failed: -22
[ 1490.752280][T19701] A link change request failed with some changes committed already. Interface ip6tnl0 may have been left with an inconsistent configuration, please check.
[ 1490.983447][   T30] audit: type=1804 audit(1749480119.759:1500): pid=19705 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz.3.4067" name="[landlock-ruleset]" dev="anon_inodefs" ino=19 res=1 errno=0
[ 1491.013969][T16095] Bluetooth: hci0: command tx timeout
[ 1491.078082][T19622] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1491.266258][T19622] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1492.144175][T19622] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1492.169399][T19622] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1492.741058][T19725] netlink: 12 bytes leftover after parsing attributes in process `syz.6.4072'.
[ 1493.085245][T19622] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1493.363780][T19622] 8021q: adding VLAN 0 to HW filter on device team0
[ 1494.145035][   T65] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1494.152335][   T65] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1494.222769][   T65] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1494.229932][   T65] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1495.468543][T19622] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1495.516776][T19622] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1496.694058][T19754] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1496.737652][T19754] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1496.797174][T19754] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1496.986024][T19754] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1497.664822][T19761] raw-gadget.1 gadget.7: failed to queue resume event
[ 1498.119421][T19622] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1499.686343][T19755] raw-gadget.1 gadget.7: failed to queue suspend event
[ 1500.585210][T19783] input: syz1 as /devices/virtual/input/input64
[ 1500.770819][T19787] F2FS-fs (loop15): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[ 1500.778931][T19787] F2FS-fs (loop15): Can't find valid F2FS filesystem in 1th superblock
[ 1500.787456][T19787] F2FS-fs (loop15): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[ 1500.795417][T19787] F2FS-fs (loop15): Can't find valid F2FS filesystem in 2th superblock
[ 1500.811180][T19787] F2FS-fs (loop15): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[ 1500.819122][T19787] F2FS-fs (loop15): Can't find valid F2FS filesystem in 1th superblock
[ 1500.827647][T19787] F2FS-fs (loop15): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[ 1500.836753][T19787] F2FS-fs (loop15): Can't find valid F2FS filesystem in 2th superblock
[ 1501.151698][T19622] veth0_vlan: entered promiscuous mode
[ 1501.157920][T19787] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_rx_wq": -EINTR
[ 1501.232887][T19622] veth1_vlan: entered promiscuous mode
[ 1501.361070][T19622] veth0_macvtap: entered promiscuous mode
[ 1501.381709][T19622] veth1_macvtap: entered promiscuous mode
[ 1501.427710][T19622] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1501.461326][T19622] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1501.485570][T19622] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1501.498476][T19622] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1501.511810][T19622] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1501.525702][T19622] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1501.772811][ T7217] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1501.816227][ T7217] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1501.861094][   T65] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1501.885014][   T65] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1503.533758][ T3498] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1503.722735][T19806] FAULT_INJECTION: forcing a failure.
[ 1503.722735][T19806] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1503.858444][T19806] CPU: 1 UID: 0 PID: 19806 Comm: syz.3.4090 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT(full) 
[ 1503.858473][T19806] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1503.858484][T19806] Call Trace:
[ 1503.858491][T19806]  <TASK>
[ 1503.858498][T19806]  dump_stack_lvl+0x189/0x250
[ 1503.858527][T19806]  ? __pfx____ratelimit+0x10/0x10
[ 1503.858551][T19806]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1503.858574][T19806]  ? __pfx__printk+0x10/0x10
[ 1503.858590][T19806]  ? __might_fault+0xb0/0x130
[ 1503.858618][T19806]  should_fail_ex+0x414/0x560
[ 1503.858643][T19806]  _copy_from_user+0x2d/0xb0
[ 1503.858659][T19806]  btf_new_fd+0x33a/0xc90
[ 1503.858683][T19806]  ? __pfx_btf_new_fd+0x10/0x10
[ 1503.858700][T19806]  ? bpf_token_put+0x143/0x160
[ 1503.858719][T19806]  ? bpf_btf_load+0x126/0x190
[ 1503.858742][T19806]  __sys_bpf+0x635/0x860
[ 1503.858763][T19806]  ? __pfx___sys_bpf+0x10/0x10
[ 1503.858792][T19806]  ? ksys_write+0x22a/0x250
[ 1503.858813][T19806]  ? __pfx_ksys_write+0x10/0x10
[ 1503.858836][T19806]  __x64_sys_bpf+0x7c/0x90
[ 1503.858854][T19806]  do_syscall_64+0xfa/0x3b0
[ 1503.858867][T19806]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1503.858890][T19806]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1503.858905][T19806]  ? clear_bhb_loop+0x60/0xb0
[ 1503.858925][T19806]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1503.858945][T19806] RIP: 0033:0x7f914298e929
[ 1503.858961][T19806] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1503.858975][T19806] RSP: 002b:00007f91438a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1503.858992][T19806] RAX: ffffffffffffffda RBX: 00007f9142bb5fa0 RCX: 00007f914298e929
[ 1503.859004][T19806] RDX: 0000000000000028 RSI: 0000200000000280 RDI: 0000000000000012
[ 1503.859014][T19806] RBP: 00007f91438a7090 R08: 0000000000000000 R09: 0000000000000000
[ 1503.859024][T19806] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1503.859033][T19806] R13: 0000000000000001 R14: 00007f9142bb5fa0 R15: 00007ffced0d1a88
[ 1503.859056][T19806]  </TASK>
[ 1504.071296][ T3498] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1504.493491][ T3498] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1504.582139][ T3498] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1505.779031][ T3498] bridge_slave_1: left allmulticast mode
[ 1505.795573][ T3498] bridge_slave_1: left promiscuous mode
[ 1505.814754][ T3498] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1505.968059][ T3498] bridge_slave_0: left allmulticast mode
[ 1505.996390][ T3498] bridge_slave_0: left promiscuous mode
[ 1506.027101][ T3498] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1506.067047][T19830] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1506.093907][T19830] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1506.966368][T19833] Falling back ldisc for ptm0.
[ 1507.082520][T19837] FAULT_INJECTION: forcing a failure.
[ 1507.082520][T19837] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1507.125709][T19837] CPU: 0 UID: 0 PID: 19837 Comm: syz.6.4098 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT(full) 
[ 1507.125737][T19837] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1507.125748][T19837] Call Trace:
[ 1507.125756][T19837]  <TASK>
[ 1507.125765][T19837]  dump_stack_lvl+0x189/0x250
[ 1507.125797][T19837]  ? __pfx____ratelimit+0x10/0x10
[ 1507.125825][T19837]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1507.125852][T19837]  ? __pfx__printk+0x10/0x10
[ 1507.125891][T19837]  should_fail_ex+0x414/0x560
[ 1507.125921][T19837]  _copy_to_user+0x31/0xb0
[ 1507.125942][T19837]  simple_read_from_buffer+0xe1/0x170
[ 1507.125968][T19837]  proc_fail_nth_read+0x1df/0x250
[ 1507.125998][T19837]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1507.126028][T19837]  ? rw_verify_area+0x258/0x650
[ 1507.126048][T19837]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1507.126077][T19837]  vfs_read+0x200/0x980
[ 1507.126104][T19837]  ? __pfx___mutex_lock+0x10/0x10
[ 1507.126124][T19837]  ? __pfx_vfs_read+0x10/0x10
[ 1507.126147][T19837]  ? __fget_files+0x2a/0x420
[ 1507.126178][T19837]  ? __fget_files+0x3a0/0x420
[ 1507.126201][T19837]  ? __fget_files+0x2a/0x420
[ 1507.126234][T19837]  ksys_read+0x145/0x250
[ 1507.126256][T19837]  ? __pfx_ksys_read+0x10/0x10
[ 1507.126274][T19837]  ? rcu_is_watching+0x15/0xb0
[ 1507.126305][T19837]  ? do_syscall_64+0xbe/0x3b0
[ 1507.126325][T19837]  do_syscall_64+0xfa/0x3b0
[ 1507.126341][T19837]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1507.126368][T19837]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1507.126386][T19837]  ? clear_bhb_loop+0x60/0xb0
[ 1507.126408][T19837]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1507.126427][T19837] RIP: 0033:0x7f6e1958d33c
[ 1507.126444][T19837] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 1507.126463][T19837] RSP: 002b:00007f6e1a3be030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1507.126484][T19837] RAX: ffffffffffffffda RBX: 00007f6e197b5fa0 RCX: 00007f6e1958d33c
[ 1507.126500][T19837] RDX: 000000000000000f RSI: 00007f6e1a3be0a0 RDI: 0000000000000012
[ 1507.126514][T19837] RBP: 00007f6e1a3be090 R08: 0000000000000000 R09: 0000000000000000
[ 1507.126529][T19837] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1507.126541][T19837] R13: 0000000000000000 R14: 00007f6e197b5fa0 R15: 00007ffe92e141b8
[ 1507.126577][T19837]  </TASK>
[ 1507.604485][T19623] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1507.620331][T19623] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1507.624960][T19836] delete_channel: no stack
[ 1507.642237][T19623] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1507.650648][T19623] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1507.662794][T19623] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1508.178643][T10868] usb 4-1: new high-speed USB device number 69 using dummy_hcd
[ 1508.208082][ T3498] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1508.228887][ T3498] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1508.246216][ T3498] bond0 (unregistering): Released all slaves
[ 1508.333677][T19838] lo speed is unknown, defaulting to 1000
[ 1508.349689][T10868] usb 4-1: Using ep0 maxpacket: 8
[ 1508.386040][T19838] lo speed is unknown, defaulting to 1000
[ 1508.407118][T10868] usb 4-1: config 1 interface 0 altsetting 3 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1508.433841][T10868] usb 4-1: config 1 interface 0 altsetting 3 bulk endpoint 0x82 has invalid maxpacket 64
[ 1508.455980][T19847] FAULT_INJECTION: forcing a failure.
[ 1508.455980][T19847] name failslab, interval 1, probability 0, space 0, times 0
[ 1508.485617][T19847] CPU: 0 UID: 0 PID: 19847 Comm: syz.6.4102 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT(full) 
[ 1508.485647][T19847] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1508.485660][T19847] Call Trace:
[ 1508.485669][T19847]  <TASK>
[ 1508.485679][T19847]  dump_stack_lvl+0x189/0x250
[ 1508.485716][T19847]  ? __pfx____ratelimit+0x10/0x10
[ 1508.485749][T19847]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1508.485781][T19847]  ? __pfx__printk+0x10/0x10
[ 1508.485809][T19847]  ? __pfx___might_resched+0x10/0x10
[ 1508.485846][T19847]  should_fail_ex+0x414/0x560
[ 1508.485879][T19847]  should_failslab+0xa8/0x100
[ 1508.485909][T19847]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[ 1508.485936][T19847]  ? __alloc_skb+0x112/0x2d0
[ 1508.485966][T19847]  __alloc_skb+0x112/0x2d0
[ 1508.485994][T19847]  netlink_sendmsg+0x5c6/0xb30
[ 1508.486031][T19847]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1508.486066][T19847]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[ 1508.486092][T19847]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1508.486118][T19847]  __sock_sendmsg+0x219/0x270
[ 1508.486155][T19847]  ____sys_sendmsg+0x505/0x830
[ 1508.486188][T19847]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1508.486225][T19847]  ? import_iovec+0x74/0xa0
[ 1508.486251][T19847]  ___sys_sendmsg+0x21f/0x2a0
[ 1508.486280][T19847]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1508.486352][T19847]  ? __fget_files+0x2a/0x420
[ 1508.486380][T19847]  ? __fget_files+0x3a0/0x420
[ 1508.486420][T19847]  __x64_sys_sendmsg+0x19b/0x260
[ 1508.486451][T19847]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[ 1508.486489][T19847]  ? __pfx_ksys_write+0x10/0x10
[ 1508.486511][T19847]  ? rcu_is_watching+0x15/0xb0
[ 1508.486548][T19847]  ? do_syscall_64+0xbe/0x3b0
[ 1508.486572][T19847]  do_syscall_64+0xfa/0x3b0
[ 1508.486595][T19847]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1508.486626][T19847]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1508.486647][T19847]  ? clear_bhb_loop+0x60/0xb0
[ 1508.486673][T19847]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1508.486694][T19847] RIP: 0033:0x7f6e1958e929
[ 1508.486713][T19847] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1508.486731][T19847] RSP: 002b:00007f6e1a3be038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1508.486753][T19847] RAX: ffffffffffffffda RBX: 00007f6e197b5fa0 RCX: 00007f6e1958e929
[ 1508.486769][T19847] RDX: 0000000000000040 RSI: 00002000000004c0 RDI: 0000000000000003
[ 1508.486783][T19847] RBP: 00007f6e1a3be090 R08: 0000000000000000 R09: 0000000000000000
[ 1508.486796][T19847] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1508.486809][T19847] R13: 0000000000000000 R14: 00007f6e197b5fa0 R15: 00007ffe92e141b8
[ 1508.486842][T19847]  </TASK>
[ 1508.499934][T10868] usb 4-1: config 1 interface 0 altsetting 3 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[ 1508.752607][T19849] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1508.789332][T19849] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1508.892011][T19849] tipc: Started in network mode
[ 1508.905968][T19849] tipc: Node identity 7f000001, cluster identity 4711
[ 1508.912502][T10868] usb 4-1: config 1 interface 0 has no altsetting 0
[ 1508.929027][T19849] tipc: Enabled bearer <udp:syz2>, priority 10
[ 1508.940834][T19853] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1508.949411][T10868] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1508.959568][T19853] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1508.967570][T10868] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1508.985895][T10868] usb 4-1: Product: syz
[ 1508.990102][T10868] usb 4-1: Manufacturer: syz
[ 1508.994838][T10868] usb 4-1: SerialNumber: syz
[ 1509.005318][T19845] raw-gadget.2 gadget.3: fail, usb_ep_enable returned -22
[ 1509.012799][T19845] raw-gadget.2 gadget.3: fail, usb_ep_enable returned -22
[ 1509.528907][ T3498] hsr_slave_0: left promiscuous mode
[ 1509.538244][ T3498] hsr_slave_1: left promiscuous mode
[ 1510.495650][T15317] tipc: Node number set to 2130706433
[ 1510.503409][T16095] Bluetooth: hci0: command tx timeout
[ 1510.524927][ T3498] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1510.843475][ T3498] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1510.855867][ T3498] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1511.417509][ T3498] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1511.549594][T19871] F2FS-fs (loop1): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[ 1511.576678][T19871] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[ 1511.623073][T19871] F2FS-fs (loop1): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[ 1511.689501][T19871] F2FS-fs (loop1): Can't find valid F2FS filesystem in 2th superblock
[ 1511.738291][T19872] F2FS-fs (loop1): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[ 1511.780060][T19872] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[ 1511.826777][T19872] F2FS-fs (loop1): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[ 1511.937765][ T3498] veth1_macvtap: left promiscuous mode
[ 1511.946215][ T3498] veth0_macvtap: left promiscuous mode
[ 1511.951978][ T3498] veth1_vlan: left promiscuous mode
[ 1511.960709][ T3498] veth0_vlan: left promiscuous mode
[ 1511.972867][T19872] F2FS-fs (loop1): Can't find valid F2FS filesystem in 2th superblock
[ 1512.463426][T17354] usb 7-1: new high-speed USB device number 97 using dummy_hcd
[ 1512.479179][T10868] cdc_ether 4-1:1.0: probe with driver cdc_ether failed with error -22
[ 1512.543359][T16095] Bluetooth: hci0: command tx timeout
[ 1512.582591][T10868] usb 4-1: USB disconnect, device number 69
[ 1513.334349][T17354] usb 7-1: Using ep0 maxpacket: 16
[ 1513.444045][T19883] Falling back ldisc for ptm0.
[ 1513.465159][T17354] usb 7-1: config 5 has an invalid interface number: 8 but max is 1
[ 1513.491358][T17354] usb 7-1: config 5 has an invalid interface number: 155 but max is 1
[ 1513.517819][T17354] usb 7-1: config 5 contains an unexpected descriptor of type 0x2, skipping
[ 1513.583689][T17354] usb 7-1: config 5 has an invalid interface association descriptor of length 7, skipping
[ 1513.622991][T17354] usb 7-1: config 5 has no interface number 0
[ 1513.668073][T17354] usb 7-1: config 5 has no interface number 1
[ 1513.705016][T17354] usb 7-1: config 5 interface 8 altsetting 18 has an invalid descriptor for endpoint zero, skipping
[ 1513.778465][T17354] usb 7-1: config 5 interface 8 altsetting 18 bulk endpoint 0xA has invalid maxpacket 1015
[ 1513.827746][T19890] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1513.844938][T17354] usb 7-1: config 5 interface 8 altsetting 18 endpoint 0x4 has invalid maxpacket 1023, setting to 64
[ 1513.875205][T17354] usb 7-1: config 5 interface 8 altsetting 18 endpoint 0x5 has an invalid bInterval 0, changing to 7
[ 1513.893841][T19890] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1513.898772][T17354] usb 7-1: config 5 interface 8 altsetting 18 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1513.960237][T17354] usb 7-1: config 5 interface 8 altsetting 18 endpoint 0x2 has invalid maxpacket 52136, setting to 64
[ 1513.988109][T17354] usb 7-1: config 5 interface 8 altsetting 18 has a duplicate endpoint with address 0xA, skipping
[ 1513.999228][T17354] usb 7-1: config 5 interface 8 altsetting 18 endpoint 0x9 has invalid maxpacket 512, setting to 64
[ 1514.040374][T17354] usb 7-1: config 5 interface 155 altsetting 9 has a duplicate endpoint with address 0x4, skipping
[ 1514.057728][T17354] usb 7-1: config 5 interface 155 altsetting 9 has a duplicate endpoint with address 0x5, skipping
[ 1514.110048][T17354] usb 7-1: config 5 interface 155 altsetting 9 has a duplicate endpoint with address 0x8, skipping
[ 1514.137154][T17354] usb 7-1: config 5 interface 155 altsetting 9 has a duplicate endpoint with address 0x7, skipping
[ 1514.175947][T17354] usb 7-1: config 5 interface 155 altsetting 9 has a duplicate endpoint with address 0x2, skipping
[ 1514.199354][T17354] usb 7-1: config 5 interface 8 has no altsetting 0
[ 1514.220744][T17354] usb 7-1: config 5 interface 155 has no altsetting 0
[ 1514.257154][T17354] usb 7-1: New USB device found, idVendor=05c6, idProduct=9079, bcdDevice=d2.84
[ 1514.266687][T17354] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1514.289874][T17354] usb 7-1: Product: syz
[ 1514.295583][T17354] usb 7-1: Manufacturer: И
[ 1514.300278][T17354] usb 7-1: SerialNumber: syz
[ 1514.325915][T19880] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[ 1514.613788][T16095] Bluetooth: hci0: command tx timeout
[ 1514.667533][ T3498] team0 (unregistering): Port device team_slave_1 removed
[ 1514.698023][T17354] usb 7-1: USB disconnect, device number 97
[ 1514.790836][ T3498] team0 (unregistering): Port device team_slave_0 removed
[ 1516.271623][T19905] loop6: detected capacity change from 0 to 524287999
[ 1516.695128][T16095] Bluetooth: hci0: command tx timeout
[ 1517.380896][T19910] netlink: zone id is out of range
[ 1517.393661][T19910] netlink: zone id is out of range
[ 1517.398843][T19910] netlink: zone id is out of range
[ 1517.412651][T19910] netlink: zone id is out of range
[ 1517.432519][T19910] netlink: zone id is out of range
[ 1519.231259][T19922] netlink: 4 bytes leftover after parsing attributes in process `syz.7.4121'.
[ 1519.255306][T19922] netlink: 12 bytes leftover after parsing attributes in process `syz.7.4121'.
[ 1519.287549][T19922] netlink: 8 bytes leftover after parsing attributes in process `syz.7.4121'.
[ 1522.329490][T19908] : entered promiscuous mode
[ 1522.546274][T19838] chnl_net:caif_netlink_parms(): no params data found
[ 1523.845036][T19960] netlink: 'syz.6.4130': attribute type 13 has an invalid length.
[ 1523.962640][T19960] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[ 1524.039256][  T976] lo speed is unknown, defaulting to 1000
[ 1524.454624][T19838] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1524.487993][T19838] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1524.495508][T19838] bridge_slave_0: entered allmulticast mode
[ 1524.563799][T19838] bridge_slave_0: entered promiscuous mode
[ 1524.635726][T19838] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1524.689161][T19838] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1524.713742][T19838] bridge_slave_1: entered allmulticast mode
[ 1524.742304][T19838] bridge_slave_1: entered promiscuous mode
[ 1524.757552][T19976] input: syz1 as /devices/virtual/input/input65
[ 1526.384722][T19838] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1526.404204][T19979] netlink: 24 bytes leftover after parsing attributes in process `syz.3.4134'.
[ 1526.459712][T19838] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1526.563788][T19985] netlink: 88 bytes leftover after parsing attributes in process `syz.3.4137'.
[ 1526.602010][T19838] team0: Port device team_slave_0 added
[ 1526.628920][T19838] team0: Port device team_slave_1 added
[ 1526.649810][T19987] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4138'.
[ 1526.689835][T19987] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4138'.
[ 1526.709517][T19987] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4138'.
[ 1526.795042][T19838] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1526.817191][T19838] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1526.857652][T19838] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1526.906688][T19838] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1526.931146][T19838] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1526.964219][T19838] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1527.243119][T19838] hsr_slave_0: entered promiscuous mode
[ 1527.278835][T19838] hsr_slave_1: entered promiscuous mode
[ 1530.433541][T20010] netlink: zone id is out of range
[ 1530.455845][T20010] netlink: zone id is out of range
[ 1530.460995][T20010] netlink: zone id is out of range
[ 1530.503620][T20010] netlink: zone id is out of range
[ 1530.552513][T20010] netlink: zone id is out of range
[ 1530.580342][T20007] uprobe: syz.7.4145:20007 failed to unregister, leaking uprobe
[ 1530.643117][T19838] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1530.681696][T19838] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1530.714870][T19838] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1530.775564][T19838] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1531.015163][T20024] raw-gadget.1 gadget.7: failed to queue resume event
[ 1531.404299][T20027] input: syz1 as /devices/virtual/input/input66
[ 1531.602123][T19838] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1531.629737][T20022] raw-gadget.1 gadget.7: failed to queue suspend event
[ 1531.667847][T19838] 8021q: adding VLAN 0 to HW filter on device team0
[ 1531.681857][ T3498] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1531.689027][ T3498] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1531.731714][ T3498] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1531.739051][ T3498] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1531.995857][    T9] usb 7-1: new high-speed USB device number 98 using dummy_hcd
[ 1532.045580][T19838] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1532.169343][    T9] usb 7-1: New USB device found, idVendor=04f3, idProduct=0755, bcdDevice= 0.00
[ 1532.190094][    T9] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1532.201320][    T9] usb 7-1: config 0 descriptor??
[ 1532.424531][T19838] veth0_vlan: entered promiscuous mode
[ 1532.445007][T19838] veth1_vlan: entered promiscuous mode
[ 1532.487001][T19838] veth0_macvtap: entered promiscuous mode
[ 1532.499015][T19838] veth1_macvtap: entered promiscuous mode
[ 1532.531718][T19838] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1532.578825][T19838] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1532.600785][T19838] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1532.620895][T19838] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1532.629981][T19838] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1532.646545][    T9] elan 0003:04F3:0755.002C: hidraw0: USB HID v1.01 Device [HID 04f3:0755] on usb-dummy_hcd.6-1/input0
[ 1532.647896][T19838] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1532.853223][ T1095] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1532.862013][ T1095] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1533.023822][T20061] netlink: zone id is out of range
[ 1533.029026][T20061] netlink: zone id is out of range
[ 1533.037206][T14957] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1533.050907][T14957] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1533.053785][T20061] netlink: zone id is out of range
[ 1533.063753][T20061] netlink: zone id is out of range
[ 1533.068934][T20061] netlink: zone id is out of range
[ 1533.087725][T20056] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1533.098277][T20056] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1533.129106][T20057] uprobe: syz.7.4158:20057 failed to unregister, leaking uprobe
[ 1533.139637][T20056] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1533.152255][T20056] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1533.243440][T17354] usb 4-1: new low-speed USB device number 70 using dummy_hcd
[ 1533.543437][T17354] usb 4-1: device descriptor read/64, error -71
[ 1533.783532][T17354] usb 4-1: new low-speed USB device number 71 using dummy_hcd
[ 1533.854914][  T976] usb 7-1: USB disconnect, device number 98
[ 1533.943646][T17354] usb 4-1: device descriptor read/64, error -71
[ 1534.053928][T17354] usb usb4-port1: attempt power cycle
[ 1534.261788][ T3498] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1534.394063][T17354] usb 4-1: new low-speed USB device number 72 using dummy_hcd
[ 1534.434318][T17354] usb 4-1: device descriptor read/8, error -71
[ 1534.683438][T17354] usb 4-1: new low-speed USB device number 73 using dummy_hcd
[ 1534.714411][T17354] usb 4-1: device descriptor read/8, error -71
[ 1534.823850][T17354] usb usb4-port1: unable to enumerate USB device
[ 1537.757581][ T3498] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1537.771588][T20084] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1537.780665][T20084] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1538.724145][T20089] netlink: 'syz.3.4165': attribute type 13 has an invalid length.
[ 1538.777410][ T3498] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1538.845768][T20091] input: syz1 as /devices/virtual/input/input67
[ 1539.059796][T19623] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1539.071200][T19623] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1539.956614][T19623] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1539.976325][T19623] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1539.984936][T19623] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1540.045602][T20089] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[ 1540.169672][T17354] lo speed is unknown, defaulting to 1000
[ 1540.712060][ T3498] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1541.505507][   T43] usb 7-1: new high-speed USB device number 99 using dummy_hcd
[ 1541.699360][   T43] usb 7-1: New USB device found, idVendor=04f3, idProduct=0755, bcdDevice= 0.00
[ 1541.739594][   T43] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1542.009788][   T43] usb 7-1: config 0 descriptor??
[ 1542.028298][T20098] lo speed is unknown, defaulting to 1000
[ 1542.055362][T19623] Bluetooth: hci0: command tx timeout
[ 1542.088133][T20098] lo speed is unknown, defaulting to 1000
[ 1542.320162][ T3498] bridge_slave_1: left allmulticast mode
[ 1542.332741][ T3498] bridge_slave_1: left promiscuous mode
[ 1542.350278][ T3498] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1542.388175][ T3498] bridge_slave_0: left allmulticast mode
[ 1542.413448][ T3498] bridge_slave_0: left promiscuous mode
[ 1542.427871][ T3498] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1542.620455][   T43] elan 0003:04F3:0755.002D: hidraw0: USB HID v1.01 Device [HID 04f3:0755] on usb-dummy_hcd.6-1/input0
[ 1544.133491][T19623] Bluetooth: hci0: command tx timeout
[ 1544.220397][T20131] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1544.243870][T20131] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1544.272269][T20128] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1544.297597][T20128] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1545.641053][T20139] XFS (nullb0): Invalid superblock magic number
[ 1546.214015][T19623] Bluetooth: hci0: command tx timeout
[ 1546.350809][T20153] input: syz1 as /devices/virtual/input/input68
[ 1546.438290][ T3498] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1546.478662][ T3498] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1546.512818][ T3498] bond0 (unregistering): Released all slaves
[ 1546.575125][T20158] raw-gadget.1 gadget.7: failed to queue resume event
[ 1547.160601][T20156] raw-gadget.1 gadget.7: failed to queue suspend event
[ 1547.320610][ T5918] usb 7-1: USB disconnect, device number 99
[ 1548.190825][T20164] Falling back ldisc for ptm0.
[ 1548.303740][T19623] Bluetooth: hci0: command tx timeout
[ 1548.337198][T20171] sg_write: process 644 (syz.0.4185) changed security contexts after opening file descriptor, this is not allowed.
[ 1548.560697][T20177] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1549.093865][T20180] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1549.128366][T20180] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1549.403053][ T3498] hsr_slave_0: left promiscuous mode
[ 1549.463664][ T3498] hsr_slave_1: left promiscuous mode
[ 1549.469834][ T3498] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1549.498210][ T3498] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1549.548005][ T3498] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1549.574400][ T3498] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1549.623158][ T3498] veth1_macvtap: left promiscuous mode
[ 1549.628962][ T3498] veth0_macvtap: left promiscuous mode
[ 1549.634871][ T3498] veth1_vlan: left promiscuous mode
[ 1549.640947][ T3498] veth0_vlan: left promiscuous mode
[ 1549.724238][ T5897] usb 7-1: new high-speed USB device number 100 using dummy_hcd
[ 1549.943459][ T5918] usb 4-1: new high-speed USB device number 74 using dummy_hcd
[ 1549.970195][ T5897] usb 7-1: too many endpoints for config 4 interface 0 altsetting 0: 101, using maximum allowed: 30
[ 1550.071142][ T5897] usb 7-1: config 4 interface 0 altsetting 0 has an endpoint descriptor with address 0x31, changing to 0x1
[ 1550.195121][ T5897] usb 7-1: config 4 interface 0 altsetting 0 endpoint 0x1 has an invalid bInterval 0, changing to 7
[ 1550.315589][ T5897] usb 7-1: config 4 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 101
[ 1550.457045][ T5897] usb 7-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b
[ 1550.560558][ T5897] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1550.882608][ T5918] usb 4-1: config 220 has an invalid interface number: 76 but max is 2
[ 1550.905566][ T5918] usb 4-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[ 1550.928319][ T5897] ath6kl: Failed to submit usb control message: -71
[ 1550.935688][ T5897] ath6kl: unable to send the bmi data to the device: -71
[ 1550.937270][ T5918] usb 4-1: config 220 has no interface number 2
[ 1550.942736][ T5897] ath6kl: Unable to send get target info: -71
[ 1550.950094][ T5897] ath6kl: Failed to init ath6kl core: -71
[ 1550.997198][ T5897] ath6kl_usb 7-1:4.0: probe with driver ath6kl_usb failed with error -71
[ 1551.010835][ T5918] usb 4-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[ 1551.013191][ T5897] usb 7-1: USB disconnect, device number 100
[ 1551.046242][ T1306] ieee802154 phy0 wpan0: encryption failed: -22
[ 1551.068684][ T5918] usb 4-1: config 220 interface 0 has no altsetting 0
[ 1551.082076][ T5918] usb 4-1: config 220 interface 76 has no altsetting 0
[ 1551.099346][ T5918] usb 4-1: config 220 interface 1 has no altsetting 0
[ 1551.121367][ T5918] usb 4-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[ 1551.139120][ T5918] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1551.147659][ T5918] usb 4-1: Product: syz
[ 1551.151934][ T5918] usb 4-1: Manufacturer: syz
[ 1551.156963][ T5918] usb 4-1: SerialNumber: syz
[ 1551.608351][ T3498] team0 (unregistering): Port device team_slave_1 removed
[ 1551.843607][    T9] usb 7-1: new high-speed USB device number 101 using dummy_hcd
[ 1552.578684][T20212] Falling back ldisc for ptm0.
[ 1552.587357][ T3498] team0 (unregistering): Port device team_slave_0 removed
[ 1552.596684][ T5918] usb 4-1: selecting invalid altsetting 0
[ 1552.622896][ T5918] usb 4-1: Found UVC 7.01 device syz (8086:0b07)
[ 1552.636556][ T5918] usb 4-1: No valid video chain found.
[ 1552.670973][ T5918] usb 4-1: selecting invalid altsetting 0
[ 1552.677288][ T5918] usbtest 4-1:220.1: probe with driver usbtest failed with error -22
[ 1552.690397][ T5918] usb 4-1: USB disconnect, device number 74
[ 1552.715983][    T9] usb 7-1: New USB device found, idVendor=04f3, idProduct=0755, bcdDevice= 0.00
[ 1552.725415][    T9] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1552.736450][    T9] usb 7-1: config 0 descriptor??
[ 1553.201911][    T9] elan 0003:04F3:0755.002E: hidraw0: USB HID v1.01 Device [HID 04f3:0755] on usb-dummy_hcd.6-1/input0
[ 1553.221210][ T5897] usb 4-1: new high-speed USB device number 75 using dummy_hcd
[ 1553.507546][ T5897] usb 4-1: Using ep0 maxpacket: 16
[ 1554.033314][ T5897] usb 4-1: config 1 interface 0 altsetting 5 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[ 1554.047003][ T5897] usb 4-1: config 1 interface 0 has no altsetting 0
[ 1554.337376][T20231] netlink: 'syz.7.4200': attribute type 1 has an invalid length.
[ 1554.366009][T20226] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1554.393654][T20231] netlink: 4 bytes leftover after parsing attributes in process `syz.7.4200'.
[ 1554.399974][T20226] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1554.446057][T20226] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1554.469923][T20226] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1554.821772][T20098] chnl_net:caif_netlink_parms(): no params data found
[ 1554.881295][T20238] netlink: 'syz.7.4202': attribute type 13 has an invalid length.
[ 1555.100434][T20238] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[ 1555.218496][   T43] usb 7-1: USB disconnect, device number 101
[ 1555.249417][T20098] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1555.265028][T20098] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1555.272294][T20098] bridge_slave_0: entered allmulticast mode
[ 1555.282309][T20098] bridge_slave_0: entered promiscuous mode
[ 1555.291273][T20098] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1555.298714][T20098] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1555.306045][T20098] bridge_slave_1: entered allmulticast mode
[ 1555.313945][T20098] bridge_slave_1: entered promiscuous mode
[ 1555.358275][T20098] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1555.383188][T20098] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1555.440330][T20098] team0: Port device team_slave_0 added
[ 1555.450264][T20098] team0: Port device team_slave_1 added
[ 1555.488036][T20098] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1555.495219][T20098] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1555.521757][T20098] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1555.534560][T20098] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1555.541597][T20098] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1555.568392][T20098] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1555.650814][T20098] hsr_slave_0: entered promiscuous mode
[ 1555.657532][T20098] hsr_slave_1: entered promiscuous mode
[ 1556.115737][T20248] No such timeout policy "syz0"
[ 1556.823936][ T5897] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[ 1556.833140][ T5897] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1556.841433][ T5897] usb 4-1: Product: 冘낭숯琂詧降켟遅煦陮蜱ᐖ⥖沭쳛㬝ﺴ⹭笢뙇࿴
[ 1556.859084][ T5897] usb 4-1: can't set config #1, error -71
[ 1556.868635][ T5897] usb 4-1: USB disconnect, device number 75
[ 1556.893460][ T5918] usb 7-1: new high-speed USB device number 102 using dummy_hcd
[ 1557.225911][T20256] sp0: Synchronizing with TNC
[ 1558.777361][T20098] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1558.832504][T20098] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1558.977410][T20098] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1559.076903][T20098] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1559.383819][ T5974] usb 4-1: new full-speed USB device number 76 using dummy_hcd
[ 1559.543471][ T5974] usb 4-1: device descriptor read/64, error -71
[ 1559.609886][T20098] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1559.739861][T20098] 8021q: adding VLAN 0 to HW filter on device team0
[ 1559.775071][T20297] FAULT_INJECTION: forcing a failure.
[ 1559.775071][T20297] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[ 1559.802422][T20297] CPU: 1 UID: 0 PID: 20297 Comm: syz.6.4216 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT(full) 
[ 1559.802453][T20297] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1559.802468][T20297] Call Trace:
[ 1559.802477][T20297]  <TASK>
[ 1559.802487][T20297]  dump_stack_lvl+0x189/0x250
[ 1559.802525][T20297]  ? __pfx____ratelimit+0x10/0x10
[ 1559.802558][T20297]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1559.802590][T20297]  ? __pfx__printk+0x10/0x10
[ 1559.802613][T20297]  ? fs_reclaim_acquire+0x7d/0x100
[ 1559.802653][T20297]  should_fail_ex+0x414/0x560
[ 1559.802687][T20297]  prepare_alloc_pages+0x213/0x610
[ 1559.802726][T20297]  __alloc_frozen_pages_noprof+0x123/0x370
[ 1559.802762][T20297]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 1559.802799][T20297]  ? stack_trace_save+0x9c/0xe0
[ 1559.802823][T20297]  ? policy_nodemask+0x27c/0x720
[ 1559.802848][T20297]  ? stack_depot_save_flags+0x40/0x900
[ 1559.802882][T20297]  alloc_pages_mpol+0x232/0x4a0
[ 1559.802915][T20297]  alloc_pages_noprof+0xa9/0x190
[ 1559.802944][T20297]  __pud_alloc+0x3a/0x260
[ 1559.802981][T20297]  __handle_mm_fault+0x3573/0x5620
[ 1559.803014][T20297]  ? mt_find+0x46f/0x5f0
[ 1559.803048][T20297]  ? mt_find+0x15c/0x5f0
[ 1559.803084][T20297]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1559.803128][T20297]  ? find_vma+0xe7/0x160
[ 1559.803151][T20297]  ? __pfx_find_vma+0x10/0x10
[ 1559.803180][T20297]  handle_mm_fault+0x2d5/0x7f0
[ 1559.803217][T20297]  do_user_addr_fault+0x764/0x1390
[ 1559.803265][T20297]  exc_page_fault+0x76/0xf0
[ 1559.803295][T20297]  ? __might_fault+0xb0/0x130
[ 1559.803321][T20297]  asm_exc_page_fault+0x26/0x30
[ 1559.803342][T20297] RIP: 0010:__put_user_4+0xd/0x20
[ 1559.803373][T20297] Code: 66 89 01 31 c9 0f 01 ca e9 c0 31 03 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <89> 01 31 c9 0f 01 ca e9 97 31 03 00 90 90 90 90 90 90 90 90 90 90
[ 1559.803392][T20297] RSP: 0018:ffffc900046a7e20 EFLAGS: 00050202
[ 1559.803412][T20297] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000200000000080
[ 1559.803426][T20297] RDX: 0000000000000000 RSI: ffffffff8db594b7 RDI: ffff88805ac03000
[ 1559.803441][T20297] RBP: 0000000000005411 R08: 0000000000000000 R09: ffffffff820a3140
[ 1559.803460][T20297] R10: 000000000000541b R11: 0000000000000000 R12: dffffc0000000000
[ 1559.803474][T20297] R13: 0000200000000080 R14: ffff88805ac03000 R15: ffffc900031b2000
[ 1559.803516][T20297]  ? __might_fault+0xb0/0x130
[ 1559.803551][T20297]  n_tty_ioctl+0x91/0x2f0
[ 1559.803582][T20297]  ? __pfx_n_tty_ioctl+0x10/0x10
[ 1559.803609][T20297]  tty_ioctl+0x9c6/0xde0
[ 1559.803631][T20297]  ? __pfx_tty_ioctl+0x10/0x10
[ 1559.803652][T20297]  __se_sys_ioctl+0xfc/0x170
[ 1559.803679][T20297]  do_syscall_64+0xfa/0x3b0
[ 1559.803698][T20297]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1559.803730][T20297]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1559.803752][T20297]  ? clear_bhb_loop+0x60/0xb0
[ 1559.803779][T20297]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1559.803800][T20297] RIP: 0033:0x7f6e1958e929
[ 1559.803819][T20297] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1559.803837][T20297] RSP: 002b:00007f6e1a3be038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1559.803859][T20297] RAX: ffffffffffffffda RBX: 00007f6e197b5fa0 RCX: 00007f6e1958e929
[ 1559.803876][T20297] RDX: 0000200000000080 RSI: 0000000000005411 RDI: 0000000000000003
[ 1559.803890][T20297] RBP: 00007f6e1a3be090 R08: 0000000000000000 R09: 0000000000000000
[ 1559.803904][T20297] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1559.803917][T20297] R13: 0000000000000000 R14: 00007f6e197b5fa0 R15: 00007ffe92e141b8
[ 1559.803952][T20297]  </TASK>
[ 1560.275436][   T49] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1560.282715][   T49] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1560.293461][ T5974] usb 4-1: new full-speed USB device number 77 using dummy_hcd
[ 1560.309138][   T49] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1560.316382][   T49] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1560.437513][ T5974] usb 4-1: device descriptor read/64, error -71
[ 1561.214053][ T5974] usb usb4-port1: attempt power cycle
[ 1561.387233][T20305] raw-gadget.1 gadget.7: failed to queue resume event
[ 1561.873579][ T5974] usb 4-1: new full-speed USB device number 78 using dummy_hcd
[ 1561.948473][T20301] raw-gadget.1 gadget.7: failed to queue suspend event
[ 1561.960017][ T5974] usb 4-1: device descriptor read/8, error -71
[ 1562.167465][T20317] sp0: Synchronizing with TNC
[ 1564.059553][T20323] netlink: 4 bytes leftover after parsing attributes in process `syz.6.4222'.
[ 1565.079031][T20336] sp0: Synchronizing with TNC
[ 1565.127071][T20337] sp0: Found TNC
[ 1565.140492][T20098] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1565.576394][T20347] netlink: 'syz.7.4228': attribute type 13 has an invalid length.
[ 1565.731986][T20347] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[ 1566.164116][T20098] veth0_vlan: entered promiscuous mode
[ 1566.192971][T20098] veth1_vlan: entered promiscuous mode
[ 1566.246546][T20098] veth0_macvtap: entered promiscuous mode
[ 1566.264247][T20098] veth1_macvtap: entered promiscuous mode
[ 1566.310297][T20098] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1566.318606][  T976] usb 4-1: new high-speed USB device number 80 using dummy_hcd
[ 1566.347109][T20098] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1566.376429][T20098] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1566.401049][T20098] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1566.440849][T20098] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1566.465239][T20098] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1566.495601][  T976] usb 4-1: Using ep0 maxpacket: 32
[ 1566.508674][  T976] usb 4-1: config 133 has an invalid interface number: 233 but max is 3
[ 1566.551844][  T976] usb 4-1: config 133 has an invalid interface number: 171 but max is 3
[ 1566.590598][  T976] usb 4-1: config 133 has an invalid interface number: 51 but max is 3
[ 1566.638407][  T976] usb 4-1: config 133 contains an unexpected descriptor of type 0x1, skipping
[ 1566.704532][  T976] usb 4-1: config 133 has an invalid interface number: 116 but max is 3
[ 1566.713127][T20360] netlink: 'syz.7.4231': attribute type 13 has an invalid length.
[ 1566.751846][  T976] usb 4-1: config 133 has no interface number 0
[ 1566.763823][  T976] usb 4-1: config 133 has no interface number 1
[ 1566.791538][  T976] usb 4-1: config 133 has no interface number 2
[ 1566.800966][T20360] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[ 1566.826342][  T976] usb 4-1: config 133 has no interface number 3
[ 1566.832811][  T976] usb 4-1: config 133 interface 233 altsetting 1 endpoint 0x7 has invalid maxpacket 1023, setting to 64
[ 1566.868508][  T976] usb 4-1: config 133 interface 233 altsetting 1 bulk endpoint 0x4 has invalid maxpacket 16
[ 1566.889174][   T49] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1566.907065][   T49] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1566.919069][  T976] usb 4-1: config 133 interface 233 altsetting 1 endpoint 0xC has invalid wMaxPacketSize 0
[ 1566.946492][  T976] usb 4-1: config 133 interface 233 altsetting 1 endpoint 0x6 has invalid maxpacket 1024, setting to 64
[ 1566.961429][  T976] usb 4-1: config 133 interface 233 altsetting 1 endpoint 0xF has invalid maxpacket 1023, setting to 64
[ 1566.974046][  T976] usb 4-1: config 133 interface 233 altsetting 1 has a duplicate endpoint with address 0x6, skipping
[ 1566.984432][ T1095] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1566.997465][ T1095] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1567.188463][  T976] usb 4-1: config 133 interface 233 altsetting 1 endpoint 0xB has invalid maxpacket 512, setting to 64
[ 1567.227671][  T976] usb 4-1: config 133 interface 233 altsetting 1 has an invalid descriptor for endpoint zero, skipping
[ 1567.240671][  T976] usb 4-1: config 133 interface 233 altsetting 1 has a duplicate endpoint with address 0xB, skipping
[ 1567.542153][  T976] usb 4-1: config 133 interface 233 altsetting 1 has a duplicate endpoint with address 0x7, skipping
[ 1567.796773][  T976] usb 4-1: config 133 interface 233 altsetting 1 endpoint 0x1 has invalid maxpacket 1024, setting to 64
[ 1567.808432][  T976] usb 4-1: config 133 interface 233 altsetting 1 has a duplicate endpoint with address 0xC, skipping
[ 1567.820109][  T976] usb 4-1: config 133 interface 233 altsetting 1 has a duplicate endpoint with address 0xB, skipping
[ 1567.831192][  T976] usb 4-1: config 133 interface 171 altsetting 3 has a duplicate endpoint with address 0xD, skipping
[ 1567.842326][  T976] usb 4-1: config 133 interface 171 altsetting 3 has a duplicate endpoint with address 0xF, skipping
[ 1567.853518][  T976] usb 4-1: config 133 interface 171 altsetting 3 has an invalid descriptor for endpoint zero, skipping
[ 1567.872556][  T976] usb 4-1: config 133 interface 171 altsetting 3 has a duplicate endpoint with address 0x6, skipping
[ 1567.883628][  T976] usb 4-1: config 133 interface 171 altsetting 3 has a duplicate endpoint with address 0x1, skipping
[ 1567.895815][  T976] usb 4-1: config 133 interface 171 altsetting 3 has an endpoint descriptor with address 0xFF, changing to 0x8F
[ 1567.908002][  T976] usb 4-1: config 133 interface 171 altsetting 3 has a duplicate endpoint with address 0x8F, skipping
[ 1567.919092][  T976] usb 4-1: config 133 interface 171 altsetting 3 has a duplicate endpoint with address 0xA, skipping
[ 1567.930374][  T976] usb 4-1: config 133 interface 171 altsetting 3 has 7 endpoint descriptors, different from the interface descriptor's value: 6
[ 1567.948823][  T976] usb 4-1: config 133 interface 51 altsetting 7 has a duplicate endpoint with address 0x4, skipping
[ 1567.971434][  T976] usb 4-1: config 133 interface 51 altsetting 7 endpoint 0xE has invalid maxpacket 1024, setting to 64
[ 1568.003661][  T976] usb 4-1: config 133 interface 51 altsetting 7 has a duplicate endpoint with address 0xD, skipping
[ 1568.029351][  T976] usb 4-1: config 133 interface 51 altsetting 7 has a duplicate endpoint with address 0xC, skipping
[ 1568.041144][  T976] usb 4-1: config 133 interface 51 altsetting 7 has an endpoint descriptor with address 0xEF, changing to 0x8F
[ 1568.054039][  T976] usb 4-1: config 133 interface 51 altsetting 7 has a duplicate endpoint with address 0x8F, skipping
[ 1568.065547][  T976] usb 4-1: config 133 interface 51 altsetting 7 has a duplicate endpoint with address 0x4, skipping
[ 1568.776901][  T976] usb 4-1: config 133 interface 51 altsetting 7 has a duplicate endpoint with address 0x5, skipping
[ 1568.787846][  T976] usb 4-1: config 133 interface 51 altsetting 7 has an endpoint descriptor with address 0x6A, changing to 0xA
[ 1568.801425][  T976] usb 4-1: config 133 interface 51 altsetting 7 has a duplicate endpoint with address 0xA, skipping
[ 1568.861005][T20372] netlink: 20 bytes leftover after parsing attributes in process `syz.6.4235'.
[ 1568.873421][  T976] usb 4-1: config 133 interface 51 altsetting 7 has 8 endpoint descriptors, different from the interface descriptor's value: 7
[ 1568.896524][  T976] usb 4-1: config 133 interface 116 altsetting 5 has a duplicate endpoint with address 0xA, skipping
[ 1568.907960][  T976] usb 4-1: config 133 interface 116 altsetting 5 has an invalid descriptor for endpoint zero, skipping
[ 1568.938578][  T976] usb 4-1: config 133 interface 233 has no altsetting 0
[ 1568.956762][  T976] usb 4-1: config 133 interface 171 has no altsetting 0
[ 1568.969454][  T976] usb 4-1: config 133 interface 51 has no altsetting 0
[ 1568.977500][  T976] usb 4-1: config 133 interface 116 has no altsetting 0
[ 1568.991948][  T976] usb 4-1: New USB device found, idVendor=0b48, idProduct=3017, bcdDevice=8e.e2
[ 1569.002302][  T976] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1569.015162][  T976] usb 4-1: Product: Є
[ 1569.019472][  T976] usb 4-1: Manufacturer: ࠐ
[ 1569.026891][  T976] usb 4-1: SerialNumber: Љ
[ 1569.041401][T20356] raw-gadget.2 gadget.3: fail, usb_ep_enable returned -22
[ 1569.096302][  T976] usb 4-1: can't set config #133, error -71
[ 1569.117598][  T976] usb 4-1: USB disconnect, device number 80
[ 1570.150331][ T3466] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1570.277955][T20385] binfmt_misc: register: failed to install interpreter file ./cgroup.cpu/cpuset.cpus
[ 1570.954461][ T3466] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1571.057355][ T3466] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1571.145498][ T3466] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1571.248685][ T3466] bridge_slave_1: left allmulticast mode
[ 1571.254737][ T3466] bridge_slave_1: left promiscuous mode
[ 1571.260467][ T3466] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1571.270136][ T3466] bridge_slave_0: left allmulticast mode
[ 1571.275926][ T3466] bridge_slave_0: left promiscuous mode
[ 1571.281628][ T3466] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1571.630159][ T3466] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1571.640969][ T3466] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1571.651097][ T3466] bond0 (unregistering): Released all slaves
[ 1573.160838][T20410] netlink: 'syz.7.4246': attribute type 13 has an invalid length.
[ 1573.275047][T20410] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[ 1573.386396][T20415] raw-gadget.1 gadget.7: failed to queue resume event
[ 1573.917550][T16095] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1573.930327][T16095] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1573.940775][T16095] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1573.956544][T16095] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1573.979954][T16095] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1573.986049][T20411] raw-gadget.1 gadget.7: failed to queue suspend event
[ 1574.225925][ T3466] hsr_slave_0: left promiscuous mode
[ 1574.252534][ T3466] hsr_slave_1: left promiscuous mode
[ 1574.262733][ T3466] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1574.278560][ T3466] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1574.315768][ T3466] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1574.336012][ T3466] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1575.108620][ T3466] veth1_macvtap: left promiscuous mode
[ 1575.114370][ T3466] veth0_macvtap: left promiscuous mode
[ 1575.120193][ T3466] veth1_vlan: left promiscuous mode
[ 1575.125749][ T3466] veth0_vlan: left promiscuous mode
[ 1575.165320][T20435] FAULT_INJECTION: forcing a failure.
[ 1575.165320][T20435] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1575.250719][T20435] CPU: 0 UID: 0 PID: 20435 Comm: syz.3.4257 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT(full) 
[ 1575.250751][T20435] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1575.250765][T20435] Call Trace:
[ 1575.250774][T20435]  <TASK>
[ 1575.250783][T20435]  dump_stack_lvl+0x189/0x250
[ 1575.250822][T20435]  ? __pfx____ratelimit+0x10/0x10
[ 1575.250855][T20435]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1575.250887][T20435]  ? __pfx__printk+0x10/0x10
[ 1575.250910][T20435]  ? __might_fault+0xb0/0x130
[ 1575.250948][T20435]  should_fail_ex+0x414/0x560
[ 1575.250981][T20435]  _copy_from_user+0x2d/0xb0
[ 1575.251004][T20435]  do_ipv6_setsockopt+0x32d/0x2fb0
[ 1575.251046][T20435]  ? __pfx_do_ipv6_setsockopt+0x10/0x10
[ 1575.251074][T20435]  ? __might_fault+0xb0/0x130
[ 1575.251101][T20435]  ? _parse_integer_limit+0x1ae/0x1f0
[ 1575.251139][T20435]  ? __lock_acquire+0xab9/0xd20
[ 1575.251197][T20435]  ? get_pid_task+0x20/0x1f0
[ 1575.251238][T20435]  ? rcu_read_lock_any_held+0xb3/0x120
[ 1575.251272][T20435]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[ 1575.251311][T20435]  ? vfs_write+0x8d8/0xa90
[ 1575.251346][T20435]  ipv6_setsockopt+0x59/0x170
[ 1575.251382][T20435]  rawv6_setsockopt+0x23b/0x5b0
[ 1575.251413][T20435]  ? __lock_acquire+0xab9/0xd20
[ 1575.251445][T20435]  ? __pfx_rawv6_setsockopt+0x10/0x10
[ 1575.251481][T20435]  ? sock_common_setsockopt+0x36/0xc0
[ 1575.251503][T20435]  ? __pfx_sock_common_setsockopt+0x10/0x10
[ 1575.251528][T20435]  do_sock_setsockopt+0x257/0x3e0
[ 1575.251566][T20435]  ? __pfx_do_sock_setsockopt+0x10/0x10
[ 1575.251599][T20435]  ? __fget_files+0x2a/0x420
[ 1575.251639][T20435]  __x64_sys_setsockopt+0x18b/0x220
[ 1575.251673][T20435]  do_syscall_64+0xfa/0x3b0
[ 1575.251693][T20435]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1575.251725][T20435]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1575.251748][T20435]  ? clear_bhb_loop+0x60/0xb0
[ 1575.251776][T20435]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1575.251797][T20435] RIP: 0033:0x7f914298e929
[ 1575.251817][T20435] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1575.251837][T20435] RSP: 002b:00007f91438a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[ 1575.251861][T20435] RAX: ffffffffffffffda RBX: 00007f9142bb5fa0 RCX: 00007f914298e929
[ 1575.251877][T20435] RDX: 0000000000000016 RSI: 0000000000000029 RDI: 0000000000000003
[ 1575.251891][T20435] RBP: 00007f91438a7090 R08: 0000000000000004 R09: 0000000000000000
[ 1575.251905][T20435] R10: 0000200000fcb000 R11: 0000000000000246 R12: 0000000000000001
[ 1575.251919][T20435] R13: 0000000000000000 R14: 00007f9142bb5fa0 R15: 00007ffced0d1a88
[ 1575.251955][T20435]  </TASK>
[ 1575.512670][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1575.757628][T20446] netlink: 'syz.3.4259': attribute type 13 has an invalid length.
[ 1576.125056][T19623] Bluetooth: hci0: command tx timeout
[ 1576.436482][T20455] raw-gadget.1 gadget.7: failed to queue resume event
[ 1577.614961][T20449] raw-gadget.1 gadget.7: failed to queue suspend event
[ 1577.796906][T20466] usb usb1: usbfs: process 20466 (syz.0.4265) did not claim interface 63 before use
[ 1577.830289][T20471] netlink: 12 bytes leftover after parsing attributes in process `syz.6.4267'.
[ 1577.841617][T20471] netlink: 12 bytes leftover after parsing attributes in process `syz.6.4267'.
[ 1577.853094][T20472] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1577.882353][T20472] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1578.373470][T19623] Bluetooth: hci0: command tx timeout
[ 1579.932833][ T3466] team0 (unregistering): Port device team_slave_1 removed
[ 1579.951222][T20489] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1579.960164][T20489] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1579.971439][T20491] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1579.981893][T20491] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1580.483613][T19623] Bluetooth: hci0: command tx timeout
[ 1580.886690][ T3466] team0 (unregistering): Port device team_slave_0 removed
[ 1581.378696][T20446] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[ 1581.479264][T20416] lo speed is unknown, defaulting to 1000
[ 1581.521473][T20416] lo speed is unknown, defaulting to 1000
[ 1581.735817][ T5918] usb 7-1: new high-speed USB device number 103 using dummy_hcd
[ 1581.796252][T20506] raw-gadget.1 gadget.7: failed to queue resume event
[ 1582.249223][ T5918] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1582.277376][T20503] raw-gadget.1 gadget.7: failed to queue suspend event
[ 1582.282164][ T5918] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1582.368241][ T5918] usb 7-1: New USB device found, idVendor=0d8c, idProduct=0022, bcdDevice= 0.00
[ 1582.411879][ T5918] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1582.479773][ T5918] usb 7-1: config 0 descriptor??
[ 1582.536210][T19623] Bluetooth: hci0: command tx timeout
[ 1582.538385][T20416] chnl_net:caif_netlink_parms(): no params data found
[ 1583.634560][ T5918] cm6533_jd 0003:0D8C:0022.002F: unknown main item tag 0x0
[ 1583.641868][ T5918] cm6533_jd 0003:0D8C:0022.002F: unknown main item tag 0x0
[ 1583.663401][ T5918] cm6533_jd 0003:0D8C:0022.002F: unknown main item tag 0x0
[ 1583.672762][ T5918] cm6533_jd 0003:0D8C:0022.002F: No inputs registered, leaving
[ 1583.708343][ T5918] cm6533_jd 0003:0D8C:0022.002F: hiddev0,hidraw0: USB HID v0.00 Device [HID 0d8c:0022] on usb-dummy_hcd.6-1/input0
[ 1584.465459][T20416] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1584.514141][T20416] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1584.521450][T20416] bridge_slave_0: entered allmulticast mode
[ 1584.600629][T20416] bridge_slave_0: entered promiscuous mode
[ 1584.611914][T20416] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1584.628820][T20416] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1584.638932][T20416] bridge_slave_1: entered allmulticast mode
[ 1584.833611][T17354] usb 7-1: USB disconnect, device number 103
[ 1584.852557][T20416] bridge_slave_1: entered promiscuous mode
[ 1585.270742][T20416] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1585.286759][T20416] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1585.402080][T20416] team0: Port device team_slave_0 added
[ 1585.418550][T20416] team0: Port device team_slave_1 added
[ 1585.514891][T20416] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1585.514899][T20542] netlink: 'syz.3.4285': attribute type 3 has an invalid length.
[ 1585.514925][T20416] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1585.522052][T20542] netlink: 176 bytes leftover after parsing attributes in process `syz.3.4285'.
[ 1585.539147][T20416] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1585.589879][T20416] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1585.590326][T20546] netlink: 'syz.6.4286': attribute type 13 has an invalid length.
[ 1585.602720][T20416] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1585.638313][T20416] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1585.671561][T20546] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[ 1585.827760][T20416] hsr_slave_0: entered promiscuous mode
[ 1585.846461][T20416] hsr_slave_1: entered promiscuous mode
[ 1585.979045][T20554] raw-gadget.1 gadget.7: failed to queue resume event
[ 1586.497507][T20552] raw-gadget.1 gadget.7: failed to queue suspend event
[ 1588.621867][T20568] vivid-000: disconnect
[ 1589.411780][T20583] F2FS-fs (loop1): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[ 1589.419822][T20583] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[ 1589.428564][T20583] F2FS-fs (loop1): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[ 1589.445629][T20583] F2FS-fs (loop1): Can't find valid F2FS filesystem in 2th superblock
[ 1589.482771][T20584] F2FS-fs (loop7): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[ 1589.490806][T20584] F2FS-fs (loop7): Can't find valid F2FS filesystem in 1th superblock
[ 1589.515261][T20584] F2FS-fs (loop7): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[ 1589.533888][T20584] F2FS-fs (loop7): Can't find valid F2FS filesystem in 2th superblock
[ 1589.548329][T20581] F2FS-fs (loop1): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[ 1589.557053][T20416] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1589.582165][T20581] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[ 1589.624766][T20416] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1589.648807][T20581] F2FS-fs (loop1): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[ 1589.657002][T20581] F2FS-fs (loop1): Can't find valid F2FS filesystem in 2th superblock
[ 1589.667766][T20586] F2FS-fs (loop7): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[ 1589.675983][T20586] F2FS-fs (loop7): Can't find valid F2FS filesystem in 1th superblock
[ 1589.702520][T20586] F2FS-fs (loop7): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[ 1589.710759][T20586] F2FS-fs (loop7): Can't find valid F2FS filesystem in 2th superblock
[ 1589.875820][T20416] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1589.955535][T20416] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1590.424321][T20587] delete_channel: no stack
[ 1590.678965][T20416] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1590.776399][T20416] 8021q: adding VLAN 0 to HW filter on device team0
[ 1590.855093][ T3466] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1590.862274][ T3466] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1590.938394][ T3466] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1590.945573][ T3466] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1591.547908][T20613] XFS (nullb0): Invalid superblock magic number
[ 1591.592057][T20416] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1591.602541][T20416] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1592.328479][T20416] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1592.469226][T20629] raw-gadget.1 gadget.7: failed to queue resume event
[ 1592.917468][T20626] raw-gadget.1 gadget.7: failed to queue suspend event
[ 1597.812604][T20416] veth0_vlan: entered promiscuous mode
[ 1597.883728][T20416] veth1_vlan: entered promiscuous mode
[ 1597.982231][T20416] veth0_macvtap: entered promiscuous mode
[ 1598.011983][T20416] veth1_macvtap: entered promiscuous mode
[ 1598.079389][T20416] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1598.184656][T20674] raw-gadget.1 gadget.7: failed to queue resume event
[ 1598.489029][T20416] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1598.550524][T20416] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1598.563135][T20416] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1598.575330][T20416] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1598.649969][T20672] raw-gadget.1 gadget.7: failed to queue suspend event
[ 1598.673928][T20416] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1598.832017][   T30] audit: type=1400 audit(1749481763.603:1501): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject="]-{" object="_" requested=w pid=20675 comm="syz.6.4314" daddr=fe80::aa dest=20002 netif=wpan0
[ 1599.349467][T20683] netlink: 188 bytes leftover after parsing attributes in process `syz.7.4315'.
[ 1599.566463][ T3498] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1599.583591][ T3498] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1599.614137][ T3466] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1599.622022][ T3466] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1601.745486][T20705] netlink: 'syz.3.4322': attribute type 13 has an invalid length.
[ 1601.802003][T20705] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[ 1604.006827][  T976] usb 4-1: new high-speed USB device number 81 using dummy_hcd
[ 1604.203695][ T7213] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1604.215356][  T976] usb 4-1: New USB device found, idVendor=04f3, idProduct=0755, bcdDevice= 0.00
[ 1604.224641][  T976] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1604.635633][  T976] usb 4-1: config 0 descriptor??
[ 1604.872850][ T7213] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1605.105970][ T7213] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1605.208692][  T976] elan 0003:04F3:0755.0030: hidraw0: USB HID v1.01 Device [HID 04f3:0755] on usb-dummy_hcd.3-1/input0
[ 1605.221808][ T7213] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1605.225342][T16095] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1605.252443][T16095] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1605.265843][T16095] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1605.286386][T16095] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1605.305767][T16095] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1605.399088][T20726] lo speed is unknown, defaulting to 1000
[ 1605.423625][ T7213] bridge_slave_1: left allmulticast mode
[ 1605.429330][ T7213] bridge_slave_1: left promiscuous mode
[ 1605.435966][ T7213] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1605.449020][ T7213] bridge_slave_0: left allmulticast mode
[ 1605.456096][ T7213] bridge_slave_0: left promiscuous mode
[ 1605.463978][ T7213] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1605.497492][T13889] raw-gadget.1 gadget.7: failed to queue disconnect event
[ 1605.634684][T20728] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1605.653912][T20728] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1605.674330][T20728] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1605.686996][T20728] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1606.008589][T20735] 9pnet_fd: Insufficient options for proto=fd
[ 1606.280072][ T7213] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1606.283631][ T7213] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1606.296106][ T7213] bond0 (unregistering): Released all slaves
[ 1606.329942][T20726] lo speed is unknown, defaulting to 1000
[ 1606.456603][T15317] usb 4-1: USB disconnect, device number 81
[ 1606.682935][T19623] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1606.685250][T19623] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1606.689711][T19623] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1606.691983][T19623] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1606.692704][T19623] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1607.166943][T20740] lo speed is unknown, defaulting to 1000
[ 1607.210234][T20740] lo speed is unknown, defaulting to 1000
[ 1607.245619][ T7213] hsr_slave_0: left promiscuous mode
[ 1607.253410][ T7213] hsr_slave_1: left promiscuous mode
[ 1607.265255][T20748] netlink: 'syz.6.4333': attribute type 1 has an invalid length.
[ 1607.284213][ T7213] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1607.302084][T20748] netlink: 'syz.6.4333': attribute type 1 has an invalid length.
[ 1607.310037][ T7213] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1607.325477][ T7213] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1607.336254][T19623] Bluetooth: hci0: command tx timeout
[ 1607.336393][ T7213] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1607.406537][ T7213] veth1_macvtap: left promiscuous mode
[ 1607.416493][ T7213] veth0_macvtap: left promiscuous mode
[ 1607.424581][ T7213] veth1_vlan: left promiscuous mode
[ 1607.435472][T20754] FAULT_INJECTION: forcing a failure.
[ 1607.435472][T20754] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1607.448921][ T7213] veth0_vlan: left promiscuous mode
[ 1607.463354][T20754] CPU: 1 UID: 0 PID: 20754 Comm: syz.3.4335 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT(full) 
[ 1607.463383][T20754] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1607.463397][T20754] Call Trace:
[ 1607.463405][T20754]  <TASK>
[ 1607.463415][T20754]  dump_stack_lvl+0x189/0x250
[ 1607.463451][T20754]  ? __pfx____ratelimit+0x10/0x10
[ 1607.463484][T20754]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1607.463515][T20754]  ? __pfx__printk+0x10/0x10
[ 1607.463569][T20754]  should_fail_ex+0x414/0x560
[ 1607.463602][T20754]  _copy_to_user+0x31/0xb0
[ 1607.463627][T20754]  simple_read_from_buffer+0xe1/0x170
[ 1607.463660][T20754]  proc_fail_nth_read+0x1df/0x250
[ 1607.463696][T20754]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1607.463731][T20754]  ? rw_verify_area+0x258/0x650
[ 1607.463754][T20754]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1607.463787][T20754]  vfs_read+0x200/0x980
[ 1607.463817][T20754]  ? __pfx___mutex_lock+0x10/0x10
[ 1607.463839][T20754]  ? __pfx_vfs_read+0x10/0x10
[ 1607.463864][T20754]  ? __fget_files+0x2a/0x420
[ 1607.463898][T20754]  ? __fget_files+0x3a0/0x420
[ 1607.463926][T20754]  ? __fget_files+0x2a/0x420
[ 1607.463972][T20754]  ksys_read+0x145/0x250
[ 1607.464000][T20754]  ? __pfx_ksys_read+0x10/0x10
[ 1607.464022][T20754]  ? rcu_is_watching+0x15/0xb0
[ 1607.464060][T20754]  ? do_syscall_64+0xbe/0x3b0
[ 1607.464085][T20754]  do_syscall_64+0xfa/0x3b0
[ 1607.464103][T20754]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1607.464134][T20754]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1607.464156][T20754]  ? clear_bhb_loop+0x60/0xb0
[ 1607.464182][T20754]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1607.464203][T20754] RIP: 0033:0x7f914298d33c
[ 1607.464223][T20754] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 1607.464243][T20754] RSP: 002b:00007f91438a7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1607.464270][T20754] RAX: ffffffffffffffda RBX: 00007f9142bb5fa0 RCX: 00007f914298d33c
[ 1607.464286][T20754] RDX: 000000000000000f RSI: 00007f91438a70a0 RDI: 0000000000000010
[ 1607.464300][T20754] RBP: 00007f91438a7090 R08: 0000000000000000 R09: 0000000000000000
[ 1607.464313][T20754] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1607.464326][T20754] R13: 0000000000000000 R14: 00007f9142bb5fa0 R15: 00007ffced0d1a88
[ 1607.464361][T20754]  </TASK>
[ 1608.855781][T19623] Bluetooth: hci1: command tx timeout
[ 1609.390207][ T7213] team0 (unregistering): Port device team_slave_1 removed
[ 1609.413366][T19623] Bluetooth: hci0: command tx timeout
[ 1609.542997][ T7213] team0 (unregistering): Port device team_slave_0 removed
[ 1610.081464][T20769] FAULT_INJECTION: forcing a failure.
[ 1610.081464][T20769] name failslab, interval 1, probability 0, space 0, times 0
[ 1610.095380][T20769] CPU: 1 UID: 0 PID: 20769 Comm: syz.6.4338 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT(full) 
[ 1610.095410][T20769] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1610.095431][T20769] Call Trace:
[ 1610.095440][T20769]  <TASK>
[ 1610.095450][T20769]  dump_stack_lvl+0x189/0x250
[ 1610.095487][T20769]  ? __pfx____ratelimit+0x10/0x10
[ 1610.095520][T20769]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1610.095552][T20769]  ? __pfx__printk+0x10/0x10
[ 1610.095580][T20769]  ? __pfx___might_resched+0x10/0x10
[ 1610.095616][T20769]  should_fail_ex+0x414/0x560
[ 1610.095649][T20769]  should_failslab+0xa8/0x100
[ 1610.095678][T20769]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[ 1610.095706][T20769]  ? __alloc_skb+0x112/0x2d0
[ 1610.095736][T20769]  __alloc_skb+0x112/0x2d0
[ 1610.095764][T20769]  netlink_sendmsg+0x5c6/0xb30
[ 1610.095801][T20769]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1610.095836][T20769]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[ 1610.095861][T20769]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1610.095887][T20769]  __sock_sendmsg+0x219/0x270
[ 1610.095924][T20769]  ____sys_sendmsg+0x505/0x830
[ 1610.095957][T20769]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1610.095994][T20769]  ? import_iovec+0x74/0xa0
[ 1610.096019][T20769]  ___sys_sendmsg+0x21f/0x2a0
[ 1610.096049][T20769]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1610.096116][T20769]  ? __fget_files+0x2a/0x420
[ 1610.096142][T20769]  ? __fget_files+0x3a0/0x420
[ 1610.096182][T20769]  __x64_sys_sendmsg+0x19b/0x260
[ 1610.096212][T20769]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[ 1610.096260][T20769]  ? do_syscall_64+0xbe/0x3b0
[ 1610.096285][T20769]  do_syscall_64+0xfa/0x3b0
[ 1610.096305][T20769]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1610.096326][T20769]  ? asm_sysvec_call_function_single+0x1a/0x20
[ 1610.096348][T20769]  ? clear_bhb_loop+0x60/0xb0
[ 1610.096374][T20769]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1610.096395][T20769] RIP: 0033:0x7f6e1958e929
[ 1610.096435][T20769] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1610.096456][T20769] RSP: 002b:00007f6e1a37c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1610.096497][T20769] RAX: ffffffffffffffda RBX: 00007f6e197b6160 RCX: 00007f6e1958e929
[ 1610.096514][T20769] RDX: 0000000020000000 RSI: 0000200000000500 RDI: 0000000000000005
[ 1610.096529][T20769] RBP: 00007f6e1a37c090 R08: 0000000000000000 R09: 0000000000000000
[ 1610.096543][T20769] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1610.096557][T20769] R13: 0000000000000000 R14: 00007f6e197b6160 R15: 00007ffe92e141b8
[ 1610.096591][T20769]  </TASK>
[ 1610.943779][T19623] Bluetooth: hci1: command tx timeout
[ 1611.455111][T20726] chnl_net:caif_netlink_parms(): no params data found
[ 1611.504555][T19623] Bluetooth: hci0: command tx timeout
[ 1612.466248][T20726] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1612.466374][T20726] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1612.466552][T20726] bridge_slave_0: entered allmulticast mode
[ 1612.468692][ T1306] ieee802154 phy0 wpan0: encryption failed: -22
[ 1612.469353][T20726] bridge_slave_0: entered promiscuous mode
[ 1612.473822][T20726] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1612.473934][T20726] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1612.474094][T20726] bridge_slave_1: entered allmulticast mode
[ 1612.475970][T20726] bridge_slave_1: entered promiscuous mode
[ 1612.691552][T20726] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1612.702266][T20740] chnl_net:caif_netlink_parms(): no params data found
[ 1612.725929][T20726] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1612.763665][T20790] 
[ 1612.766059][T20790] ======================================================
[ 1612.773099][T20790] WARNING: possible circular locking dependency detected
[ 1612.780187][T20790] 6.16.0-rc1-syzkaller #0 Not tainted
[ 1612.785571][T20790] ------------------------------------------------------
[ 1612.792590][T20790] syz.3.4345/20790 is trying to acquire lock:
[ 1612.798660][T20790] ffffffff8f656718 (nr_neigh_list_lock){+...}-{3:3}, at: nr_rt_ioctl+0x390/0xd50
[ 1612.807841][T20790] 
[ 1612.807841][T20790] but task is already holding lock:
[ 1612.815215][T20790] ffff888067932d70 (&nr_node->node_lock){+...}-{3:3}, at: nr_rt_ioctl+0x193/0xd50
[ 1612.824460][T20790] 
[ 1612.824460][T20790] which lock already depends on the new lock.
[ 1612.824460][T20790] 
[ 1612.834874][T20790] 
[ 1612.834874][T20790] the existing dependency chain (in reverse order) is:
[ 1612.843898][T20790] 
[ 1612.843898][T20790] -> #2 (&nr_node->node_lock){+...}-{3:3}:
[ 1612.851915][T20790]        lock_acquire+0x120/0x360
[ 1612.856962][T20790]        _raw_spin_lock_bh+0x36/0x50
[ 1612.862265][T20790]        nr_rt_device_down+0x12a/0x720
[ 1612.867747][T20790]        nr_device_event+0x137/0x150
[ 1612.873061][T20790]        notifier_call_chain+0x1b3/0x3e0
[ 1612.878717][T20790]        __dev_notify_flags+0x18d/0x2e0
[ 1612.884283][T20790]        netif_change_flags+0xe8/0x1a0
[ 1612.889750][T20790]        dev_change_flags+0x130/0x260
[ 1612.895137][T20790]        dev_ioctl+0x7b4/0x1150
[ 1612.900004][T20790]        sock_do_ioctl+0x22c/0x300
[ 1612.905134][T20790]        sock_ioctl+0x576/0x790
[ 1612.910003][T20790]        __se_sys_ioctl+0xfc/0x170
[ 1612.915121][T20790]        do_syscall_64+0xfa/0x3b0
[ 1612.920159][T20790]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1612.926621][T20790] 
[ 1612.926621][T20790] -> #1 (nr_node_list_lock){+...}-{3:3}:
[ 1612.934457][T20790]        lock_acquire+0x120/0x360
[ 1612.939502][T20790]        _raw_spin_lock_bh+0x36/0x50
[ 1612.944804][T20790]        nr_rt_device_down+0xa9/0x720
[ 1612.950201][T20790]        nr_device_event+0x137/0x150
[ 1612.955509][T20790]        notifier_call_chain+0x1b3/0x3e0
[ 1612.961172][T20790]        __dev_notify_flags+0x18d/0x2e0
[ 1612.966733][T20790]        netif_change_flags+0xe8/0x1a0
[ 1612.972204][T20790]        dev_change_flags+0x130/0x260
[ 1612.977589][T20790]        dev_ioctl+0x7b4/0x1150
[ 1612.982450][T20790]        sock_do_ioctl+0x22c/0x300
[ 1612.987582][T20790]        sock_ioctl+0x576/0x790
[ 1612.992466][T20790]        __se_sys_ioctl+0xfc/0x170
[ 1612.997598][T20790]        do_syscall_64+0xfa/0x3b0
[ 1613.002637][T20790]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1613.009072][T20790] 
[ 1613.009072][T20790] -> #0 (nr_neigh_list_lock){+...}-{3:3}:
[ 1613.017012][T20790]        validate_chain+0xb9b/0x2140
[ 1613.022330][T20790]        __lock_acquire+0xab9/0xd20
[ 1613.027549][T20790]        lock_acquire+0x120/0x360
[ 1613.032592][T20790]        _raw_spin_lock_bh+0x36/0x50
[ 1613.037916][T20790]        nr_rt_ioctl+0x390/0xd50
[ 1613.042876][T20790]        sock_do_ioctl+0xd9/0x300
[ 1613.047925][T20790]        sock_ioctl+0x576/0x790
[ 1613.052795][T20790]        __se_sys_ioctl+0xfc/0x170
[ 1613.057921][T20790]        do_syscall_64+0xfa/0x3b0
[ 1613.062955][T20790]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1613.069382][T20790] 
[ 1613.069382][T20790] other info that might help us debug this:
[ 1613.069382][T20790] 
[ 1613.079622][T20790] Chain exists of:
[ 1613.079622][T20790]   nr_neigh_list_lock --> nr_node_list_lock --> &nr_node->node_lock
[ 1613.079622][T20790] 
[ 1613.093463][T20790]  Possible unsafe locking scenario:
[ 1613.093463][T20790] 
[ 1613.100920][T20790]        CPU0                    CPU1
[ 1613.106296][T20790]        ----                    ----
[ 1613.111672][T20790]   lock(&nr_node->node_lock);
[ 1613.116453][T20790]                                lock(nr_node_list_lock);
[ 1613.123580][T20790]                                lock(&nr_node->node_lock);
[ 1613.130878][T20790]   lock(nr_neigh_list_lock);
[ 1613.135572][T20790] 
[ 1613.135572][T20790]  *** DEADLOCK ***
[ 1613.135572][T20790] 
[ 1613.143730][T20790] 2 locks held by syz.3.4345/20790:
[ 1613.148938][T20790]  #0: ffffffff8f656778 (nr_node_list_lock){+...}-{3:3}, at: nr_rt_ioctl+0x104/0xd50
[ 1613.158448][T20790]  #1: ffff888067932d70 (&nr_node->node_lock){+...}-{3:3}, at: nr_rt_ioctl+0x193/0xd50
[ 1613.168131][T20790] 
[ 1613.168131][T20790] stack backtrace:
[ 1613.174030][T20790] CPU: 0 UID: 0 PID: 20790 Comm: syz.3.4345 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT(full) 
[ 1613.174054][T20790] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1613.174066][T20790] Call Trace:
[ 1613.174075][T20790]  <TASK>
[ 1613.174085][T20790]  dump_stack_lvl+0x189/0x250
[ 1613.174116][T20790]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1613.174145][T20790]  ? __pfx__printk+0x10/0x10
[ 1613.174161][T20790]  ? stack_trace_save+0x9c/0xe0
[ 1613.174184][T20790]  print_circular_bug+0x2ee/0x310
[ 1613.174215][T20790]  check_noncircular+0x134/0x160
[ 1613.174247][T20790]  validate_chain+0xb9b/0x2140
[ 1613.174285][T20790]  __lock_acquire+0xab9/0xd20
[ 1613.174311][T20790]  ? nr_rt_ioctl+0x390/0xd50
[ 1613.174325][T20790]  lock_acquire+0x120/0x360
[ 1613.174348][T20790]  ? nr_rt_ioctl+0x390/0xd50
[ 1613.174365][T20790]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 1613.174386][T20790]  ? nr_rt_ioctl+0x390/0xd50
[ 1613.174409][T20790]  _raw_spin_lock_bh+0x36/0x50
[ 1613.174434][T20790]  ? nr_rt_ioctl+0x390/0xd50
[ 1613.174449][T20790]  nr_rt_ioctl+0x390/0xd50
[ 1613.174465][T20790]  ? __pfx_do_vfs_ioctl+0x10/0x10
[ 1613.174488][T20790]  ? __pfx_nr_rt_ioctl+0x10/0x10
[ 1613.174508][T20790]  ? cap_capable+0x11f/0x460
[ 1613.174530][T20790]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 1613.174557][T20790]  ? capable+0x89/0xe0
[ 1613.174582][T20790]  ? nr_ioctl+0x1b1/0x3b0
[ 1613.174608][T20790]  sock_do_ioctl+0xd9/0x300
[ 1613.174636][T20790]  ? __pfx_sock_do_ioctl+0x10/0x10
[ 1613.174661][T20790]  ? __lock_acquire+0xab9/0xd20
[ 1613.174684][T20790]  ? __asan_memset+0x22/0x50
[ 1613.174701][T20790]  ? smack_file_ioctl+0x24a/0x340
[ 1613.174724][T20790]  sock_ioctl+0x576/0x790
[ 1613.174750][T20790]  ? __pfx_sock_ioctl+0x10/0x10
[ 1613.174776][T20790]  ? __fget_files+0x2a/0x420
[ 1613.174799][T20790]  ? __fget_files+0x3a0/0x420
[ 1613.174822][T20790]  ? __fget_files+0x2a/0x420
[ 1613.174847][T20790]  ? bpf_lsm_file_ioctl+0x9/0x20
[ 1613.174872][T20790]  ? __pfx_sock_ioctl+0x10/0x10
[ 1613.174896][T20790]  __se_sys_ioctl+0xfc/0x170
[ 1613.174915][T20790]  do_syscall_64+0xfa/0x3b0
[ 1613.174932][T20790]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1613.174960][T20790]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1613.174978][T20790]  ? clear_bhb_loop+0x60/0xb0
[ 1613.174999][T20790]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1613.175017][T20790] RIP: 0033:0x7f914298e929
[ 1613.175034][T20790] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1613.175050][T20790] RSP: 002b:00007f91438a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1613.175068][T20790] RAX: ffffffffffffffda RBX: 00007f9142bb5fa0 RCX: 00007f914298e929
[ 1613.175082][T20790] RDX: 0000000000000000 RSI: 00000000000089e2 RDI: 0000000000000006
[ 1613.175093][T20790] RBP: 00007f9142a10b39 R08: 0000000000000000 R09: 0000000000000000
[ 1613.175104][T20790] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1613.175115][T20790] R13: 0000000000000000 R14: 00007f9142bb5fa0 R15: 00007ffced0d1a88
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[ 1613.175136][T20790]  </TASK>
[ 1613.469570][T19623] Bluetooth: hci1: command tx timeout
[ 1613.573318][T19623] Bluetooth: hci0: command tx timeout
[ 1613.635969][T15660] vivid-000: reconnect
[ 1614.029264][ T7213] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1614.199418][T20791] syz_tun (unregistering): left promiscuous mode
[ 1614.211426][T20789] bridge0: port 3(syz_tun) entered disabled state
[ 1614.231067][T20789] syz_tun (unregistering): left allmulticast mode
[ 1614.238914][T20789] syz_tun (unregistering): left promiscuous mode
[ 1614.245387][T20789] bridge0: port 3(syz_tun) entered disabled state
[ 1614.276741][ T7213] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1614.449226][ T7213] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1614.531621][ T7213] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1614.616116][ T7213] bridge_slave_1: left allmulticast mode
[ 1614.621787][ T7213] bridge_slave_1: left promiscuous mode
[ 1614.628604][ T7213] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1614.637223][ T7213] bridge_slave_0: left allmulticast mode
[ 1614.642873][ T7213] bridge_slave_0: left promiscuous mode
[ 1614.648555][ T7213] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1614.914964][ T7213] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1614.926639][ T7213] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1614.936270][ T7213] bond0 (unregistering): Released all slaves
[ 1615.047615][ T7213] bond1 (unregistering): Released all slaves
[ 1615.120843][ T7213] : left promiscuous mode
[ 1615.164718][ T7213] tipc: Disabling bearer <udp:syz2>
[ 1615.170173][ T7213] tipc: Left network mode
[ 1615.337329][ T7213] hsr_slave_0: left promiscuous mode
[ 1615.343091][ T7213] hsr_slave_1: left promiscuous mode
[ 1615.348823][ T7213] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1615.358097][ T7213] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1615.366269][ T7213] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1615.374320][ T7213] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1615.384601][ T7213] veth1_macvtap: left promiscuous mode
[ 1615.390118][ T7213] veth0_macvtap: left promiscuous mode
[ 1615.395725][ T7213] veth1_vlan: left promiscuous mode
[ 1615.400985][ T7213] veth0_vlan: left promiscuous mode
[ 1615.519659][ T7213] team0 (unregistering): Port device team_slave_1 removed
[ 1615.537606][ T7213] team0 (unregistering): Port device team_slave_0 removed
[ 1616.020308][ T7213] IPVS: stop unused estimator thread 0...
[ 1616.062607][ T7213] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1616.119489][ T7213] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1616.177963][ T7213] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1616.249130][ T7213] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1616.316191][ T7213] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1616.387828][ T7213] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1616.428016][ T7213] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1616.487302][ T7213] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1616.546889][ T7213] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1616.577948][ T7213] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1616.647651][ T7213] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1616.698652][ T7213] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1616.764137][ T7213] bridge_slave_1: left allmulticast mode
[ 1616.769809][ T7213] bridge_slave_1: left promiscuous mode
[ 1616.775682][ T7213] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1616.784231][ T7213] bridge_slave_0: left allmulticast mode
[ 1616.789900][ T7213] bridge_slave_0: left promiscuous mode
[ 1616.796468][ T7213] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1616.806113][ T7213] bridge_slave_1: left allmulticast mode
[ 1616.811767][ T7213] bridge_slave_1: left promiscuous mode
[ 1616.817471][ T7213] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1616.826108][ T7213] bridge_slave_0: left allmulticast mode
[ 1616.831764][ T7213] bridge_slave_0: left promiscuous mode
[ 1616.837615][ T7213] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1616.846498][ T7213] bridge_slave_1: left allmulticast mode
[ 1616.852177][ T7213] bridge_slave_1: left promiscuous mode
[ 1616.858102][ T7213] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1616.868199][ T7213] bridge_slave_0: left allmulticast mode
[ 1616.873891][ T7213] bridge_slave_0: left promiscuous mode
[ 1616.879540][ T7213] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1616.888698][ T7213] bridge_slave_1: left allmulticast mode
[ 1616.894646][ T7213] bridge_slave_1: left promiscuous mode
[ 1616.900302][ T7213] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1616.908427][ T7213] bridge_slave_0: left allmulticast mode
[ 1616.914217][ T7213] bridge_slave_0: left promiscuous mode
[ 1616.919872][ T7213] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1617.032121][ T7213] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1617.042813][ T7213] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1617.053300][ T7213] bond0 (unregistering): Released all slaves
[ 1617.100895][ T7213] bond0 (unregistering): Released all slaves
[ 1617.180098][ T7213] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1617.190285][ T7213] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1617.202906][ T7213] bond0 (unregistering): Released all slaves
[ 1617.463837][ T7213] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1617.475079][ T7213] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1617.484598][ T7213] bond0 (unregistering): Released all slaves
[ 1617.769320][ T7213] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1617.779094][ T7213] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1617.788581][ T7213] bond0 (unregistering): Released all slaves
[ 1617.891685][ T7213] bond1 (unregistering): Released all slaves
[ 1617.962969][ T7213] : left promiscuous mode
[ 1617.996220][ T7213] : left promiscuous mode
[ 1618.074697][ T7213] : left promiscuous mode
[ 1618.609075][ T7213] hsr_slave_0: left promiscuous mode
[ 1618.615214][ T7213] hsr_slave_1: left promiscuous mode
[ 1618.620874][ T7213] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1618.628422][ T7213] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1618.636913][ T7213] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1618.644547][ T7213] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1618.654880][ T7213] hsr_slave_0: left promiscuous mode
[ 1618.660557][ T7213] hsr_slave_1: left promiscuous mode
[ 1618.666411][ T7213] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1618.673936][ T7213] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1618.681529][ T7213] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1618.689014][ T7213] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1618.697089][ T7213] batadv_slave_0: left promiscuous mode
[ 1618.705975][ T7213] hsr_slave_0: left promiscuous mode
[ 1618.711626][ T7213] hsr_slave_1: left promiscuous mode
[ 1618.717541][ T7213] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1618.725080][ T7213] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1618.732708][ T7213] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1618.740153][ T7213] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1618.755414][ T7213] veth1_macvtap: left promiscuous mode
[ 1618.760975][ T7213] veth0_macvtap: left promiscuous mode
[ 1618.766614][ T7213] veth1_vlan: left promiscuous mode
[ 1618.771868][ T7213] veth0_vlan: left promiscuous mode
[ 1618.777955][ T7213] veth1_macvtap: left promiscuous mode
[ 1618.783557][ T7213] veth0_macvtap: left promiscuous mode
[ 1618.789112][ T7213] veth1_vlan: left promiscuous mode
[ 1618.795213][ T7213] veth0_vlan: left promiscuous mode
[ 1618.801347][ T7213] veth1_macvtap: left promiscuous mode
[ 1618.806953][ T7213] veth0_macvtap: left promiscuous mode
[ 1618.812528][ T7213] veth1_vlan: left promiscuous mode
[ 1618.817950][ T7213] veth0_vlan: left promiscuous mode
[ 1619.142942][ T7213] team0 (unregistering): Port device team_slave_1 removed
[ 1619.169862][ T7213] team0 (unregistering): Port device team_slave_0 removed
[ 1619.361446][ T7213] team0 (unregistering): Port device team_slave_1 removed
[ 1619.390715][ T7213] team0 (unregistering): Port device team_slave_0 removed
[ 1619.714913][ T7213] team0 (unregistering): Port device team_slave_1 removed
[ 1619.739819][ T7213] team0 (unregistering): Port device team_slave_0 removed
[ 1619.947723][T15317] lo speed is unknown, defaulting to 1000
[ 1619.947766][ T5897] lo speed is unknown, defaulting to 1000
[ 1619.953758][T15317] infiniband syz0: ib_query_port failed (-19)
[ 1619.965768][ T5897] infiniband syz2: ib_query_port failed (-19)
[ 1620.911820][ T7213] IPVS: stop unused estimator thread 0...
[ 1620.918660][ T7213] IPVS: stop unused estimator thread 0...