last executing test programs:

2m4.308555593s ago: executing program 2 (id=1622):
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x34, 0x34, 0x2, [@func_proto, @int={0x0, 0x0, 0x0, 0x1, 0x5, 0x20}, @array={0x0, 0x0, 0x0, 0x3, 0x0, {0x2, 0x2}}]}}, 0x0, 0x4e}, 0x20)
bpf$MAP_CREATE(0x300000000000000, &(0x7f0000000100)=@base={0x18, 0x4, 0x41, 0x0, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, r0, 0x4002, 0x5}, 0x48)

1m54.182324161s ago: executing program 2 (id=1622):
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x34, 0x34, 0x2, [@func_proto, @int={0x0, 0x0, 0x0, 0x1, 0x5, 0x20}, @array={0x0, 0x0, 0x0, 0x3, 0x0, {0x2, 0x2}}]}}, 0x0, 0x4e}, 0x20)
bpf$MAP_CREATE(0x300000000000000, &(0x7f0000000100)=@base={0x18, 0x4, 0x41, 0x0, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, r0, 0x4002, 0x5}, 0x48)

1m41.771646756s ago: executing program 2 (id=1622):
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x34, 0x34, 0x2, [@func_proto, @int={0x0, 0x0, 0x0, 0x1, 0x5, 0x20}, @array={0x0, 0x0, 0x0, 0x3, 0x0, {0x2, 0x2}}]}}, 0x0, 0x4e}, 0x20)
bpf$MAP_CREATE(0x300000000000000, &(0x7f0000000100)=@base={0x18, 0x4, 0x41, 0x0, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, r0, 0x4002, 0x5}, 0x48)

1m29.663972311s ago: executing program 2 (id=1622):
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x34, 0x34, 0x2, [@func_proto, @int={0x0, 0x0, 0x0, 0x1, 0x5, 0x20}, @array={0x0, 0x0, 0x0, 0x3, 0x0, {0x2, 0x2}}]}}, 0x0, 0x4e}, 0x20)
bpf$MAP_CREATE(0x300000000000000, &(0x7f0000000100)=@base={0x18, 0x4, 0x41, 0x0, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, r0, 0x4002, 0x5}, 0x48)

1m12.895752125s ago: executing program 2 (id=1622):
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x34, 0x34, 0x2, [@func_proto, @int={0x0, 0x0, 0x0, 0x1, 0x5, 0x20}, @array={0x0, 0x0, 0x0, 0x3, 0x0, {0x2, 0x2}}]}}, 0x0, 0x4e}, 0x20)
bpf$MAP_CREATE(0x300000000000000, &(0x7f0000000100)=@base={0x18, 0x4, 0x41, 0x0, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, r0, 0x4002, 0x5}, 0x48)

55.472373954s ago: executing program 2 (id=1622):
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x34, 0x34, 0x2, [@func_proto, @int={0x0, 0x0, 0x0, 0x1, 0x5, 0x20}, @array={0x0, 0x0, 0x0, 0x3, 0x0, {0x2, 0x2}}]}}, 0x0, 0x4e}, 0x20)
bpf$MAP_CREATE(0x300000000000000, &(0x7f0000000100)=@base={0x18, 0x4, 0x41, 0x0, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, r0, 0x4002, 0x5}, 0x48)

38.939433182s ago: executing program 3 (id=2589):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x0, 0x8b}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
socket(0x0, 0x0, 0x0)
unshare(0x8000000)
unshare(0x8040080)
ioctl$KVM_SET_PIT(r0, 0x4048aec9, &(0x7f0000000080)={[{0x0, 0x0, 0x0, 0xfd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {0x0, 0x4a, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x0, 0x3e, 0x0, 0x0, 0x1}]})
socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="020a040007000000b6f1ffff0000854105001a"], 0x38}}, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={0x0, 0x70}}, 0x0)
r1 = socket$qrtr(0x2a, 0x2, 0x0)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r2, 0x84, 0x81, &(0x7f00000000c0)="1a00000082000000", 0x8)
setsockopt$inet_sctp6_SCTP_AUTH_CHUNK(r2, 0x84, 0x15, &(0x7f0000000180)={0x6}, 0x1)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
sendto$inet6(r2, &(0x7f0000000040)='l', 0x1, 0x0, &(0x7f0000000100)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
close_range(r1, 0xffffffffffffffff, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[], 0xb8}}, 0x0)
openat$sysfs(0xffffffffffffff9c, 0x0, 0xac802, 0x61)
ioctl$TCSETSW(0xffffffffffffffff, 0x5403, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, "b0877f0000ff66de000000eeff1e267fffffeb"})
ioctl$IOMMU_IOAS_MAP(0xffffffffffffffff, 0x3b85, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x2000000000000021, 0x2, 0x10000000000002)
connect$rxrpc(r4, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24)
sendmmsg(r4, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=[{0x18, 0x110, 0x1, "ec"}], 0x18, 0x7000000}, 0xf401}], 0x1, 0x0)

35.156199652s ago: executing program 3 (id=2592):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000700)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)={0x30, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x8}]}, 0x30}}, 0x0)

34.530438913s ago: executing program 3 (id=2596):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r0 = memfd_secret(0x0)
futimesat(r0, 0x0, 0x0)

33.780732315s ago: executing program 3 (id=2602):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_open_dev$sndpcmp(0x0, 0xd730, 0x200002)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="6000000002060103000000000000000000000004050001000700000013000300686173683a6e65742c696661636500000900020073797a30000000000500040000000000050005000a00000014000780050015000000000008001240"], 0x60}}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
sendmsg$IPSET_CMD_DESTROY(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="28000000030601010000000000000000000000000500010007"], 0x28}}, 0x0)

30.969863272s ago: executing program 0 (id=2604):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000380), r0)
sendmsg$IEEE802154_LLSEC_DEL_DEVKEY(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000040)={0x48, r1, 0x201, 0x0, 0x0, {}, [@IEEE802154_ATTR_HW_ADDR={0xc}, @IEEE802154_ATTR_LLSEC_KEY_ID={0x5}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}, @IEEE802154_ATTR_LLSEC_KEY_MODE={0x5, 0x2b, 0x3}, @IEEE802154_ATTR_LLSEC_KEY_SOURCE_EXTENDED={0xc}]}, 0x48}}, 0x0)

29.435235907s ago: executing program 0 (id=2606):
r0 = epoll_create(0x8002)
epoll_wait(r0, &(0x7f0000000080)=[{}], 0x1, 0xcccf)
r1 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r2, &(0x7f00000001c0)=ANY=[], 0x118)
newfstatat(0xffffffffffffff9c, &(0x7f0000000000)='\x00', &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, <r3=>0x0}, 0x1000)
r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/address_bits', 0x0, 0x0)
fchdir(r4)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
syz_open_procfs(0x0, 0x0)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
socket$inet(0x2, 0x0, 0x0)
futex(0x0, 0x84, 0x0, 0x0, 0x0, 0x0)
getdents64(r5, 0x0, 0x18)
r6 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x5, 0x0, 0x0, 0x0, 0x61, 0x10, 0x78}, [@ldst={0x7}]}, &(0x7f0000003ff6)='GPL\x00', 0x2, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x3c)
r7 = dup(0xffffffffffffffff)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000180)={0x0, <r8=>0x0}, &(0x7f00000001c0)=0xc)
mount$9p_fd(0x0, &(0x7f0000000600)='./file0\x00', &(0x7f0000000640), 0x1238404, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r7}, 0x2c, {'wfdno', 0x3d, r6}, 0x2c, {[{@access_uid={'access', 0x3d, r8}}, {@access_user}], [{@obj_type={'obj_type', 0x3d, '++/@'}}]}})
r9 = add_key$keyring(&(0x7f0000000080), &(0x7f00000003c0)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
add_key(&(0x7f0000001580)='asymmetric\x00', 0x0, &(0x7f0000000300)="303e30000000000002d190c937dc6914243b0402d6dcb7154fe6727ae888746b024ee670a5882a0ad79716bb4e5704b7f62edac751478af9c62f000000000000", 0x40, r9)
setreuid(r3, r8)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000040)={0xa0000001})
socket(0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x51, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000000c0)='btrfs_trigger_flush\x00', r5}, 0x10)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f0000000080)={0xa0028000})
socket$nl_netfilter(0x10, 0x3, 0xc)

28.668256749s ago: executing program 3 (id=2607):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000700)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)={0x30, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x8}]}, 0x30}}, 0x0)

27.959369849s ago: executing program 3 (id=2609):
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = eventfd(0x0)
ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000140)={r2, 0x0, 0x2})
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000340)=ANY=[@ANYBLOB="278ccad80010b15bf557e680f6a967e3687043908568789de8f39c7ca80b2ab5959ce9b24bd1d54ccc1b07ee08ebaf131b171f1fda0b51dc2c81bdbf8f3ccfc633928da35a369273a0c1534b103e6fb08e133f02d99a7a2e40e6b9c32be1881eb0d9046fb70e1d845657fd9fad455af067d5478c34cf9a757d4fcb9ebcc947a0cb87e890df4e35d249ae", @ANYRES16=r5, @ANYBLOB="01000000000000000000030000000c0009800800020034000000"], 0x20}}, 0x0)
r6 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r6, 0x8933, &(0x7f00000001c0)={'batadv_slave_0\x00'})
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000005d40)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffffffffffe89}, 0x48)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000640)={r7, 0xf0, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0xa)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{}, &(0x7f0000000200), &(0x7f0000000240)=r7}, 0x20)
sendmsg$TIPC_NL_MON_GET(r3, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x68, r5, 0x100, 0x70bd2c, 0x25dfdbff, {}, [@TIPC_NLA_PUBL={0x54, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x80000001}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x7f}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x1}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x1}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x2}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0xe6}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x2}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x8}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x2}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x9}]}]}, 0x68}, 0x1, 0x0, 0x0, 0x10008000}, 0x48000)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r9, 0x8933, &(0x7f0000000080)={'wlan1\x00', <r10=>0x0})
r11 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_KEY(r8, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x38, r11, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r10}, @void}}, [@NL80211_ATTR_KEY_IDX={0x5}, @NL80211_ATTR_KEY_DATA_WEP40={0x9, 0x7, "4ff5677c1a"}, @NL80211_ATTR_KEY_CIPHER={0x8, 0x9, 0xfac01}]}, 0x38}}, 0x0)
r12 = socket$nl_generic(0x10, 0x3, 0x10)
r13 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r12, 0x8933, &(0x7f00000002c0)={'wlan0\x00', <r14=>0x0})
sendmsg$NL80211_CMD_FRAME(r12, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000500)=ANY=[@ANYBLOB='H\x00\x00\x00', @ANYRES16=r13, @ANYBLOB="010000000000000000003b00000008000300", @ANYRES32=r14, @ANYBLOB="2a003300d0d4fe00ffffffffffff080211000000505050505050"], 0x48}}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000300)={'wlan0\x00'})

26.550799618s ago: executing program 0 (id=2610):
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TCSBRKP(r0, 0x5425, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100)=0xe)
r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TCSETSW2(r1, 0x5408, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, "23f555d9adb42d4408020e90d1beaa82dc1ecf"})
ioctl$TIOCGPGRP(r0, 0x5437, 0x0)

25.849463483s ago: executing program 0 (id=2611):
r0 = fsopen(&(0x7f0000000100)='cifs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000040)='source', &(0x7f0000000380)='//\xf2b\x06\b\xba\xdfXo\xdc\xea\x95\x9a\x82\x10\x97W\x8f7\x98\x9b/Q9\xf9\rmD\x94)U\xdb\x15X.I\n}\xf3\x9d\xe4_\x05\x9cqf4I^#b?9\xde\xafu\'\x83L\xe0\x97\xe1n_\xa4%\xb1\x97\x93\xafv\xce\x14\\8/\x00\x00\xa7\xfb\xf4\x84\x1fA\xeas^\xef\xa2\x85\xa3!\xfb\x93\xd7R\xab2\x1eW\xe9h\x9b\xf7ul\xf9D\xd4\x82X5\x13\xaa\x87\xf9\xba\xa9m\x14\x14R_\x9a\\>4\xce\x8e_#\xf8D\xb1\xdep\x01\xcc:\xa6\xc5n\xeb\xab\xf70\x99\xef\x8b<M\n\xc0`[\x82\xf6$\xa4\xbe\x1e\xd3\xe4\xd9L\x14\xed\xcfK\xcc\xeb,\x1a1\xa6\xf3e\xc2F\xc3\x00\xaa\xd5\xfc\x1bR\xa9\x8c\xb4&\x9f\xa2$\x06\x1a\xb0W#\xf4\xde6\x04c\xc0\xeec\xa0l\xd5d\xe5\xcd\xb2\xc10\x97w\x87\xe5\x06\x91W\rr\xf5\x97%\xe8pO\xeb]\xc2\x98C\xffK\xa0\xb3\\\x99{\xcdR\x92\x94\xf7\x1d\x01Q\x1a\xbd\x15b\x15h\xe2!\x00\xb9z)\x19\x00\xee\xd2)[p`\xb3\x03\xa7p\'X\xec\xcdoX\x05\xff\xff/o\xb2\xad\xb8\x89i@\f\xffS&\x8a\xc9\xfez\xc2\x90\xe7F\xa6\xdb\r\x03j,N\xe1lw\n\xad\xe8\xf0\xbd\xa1\x98\xce\xf9\x1eR\x9cc\xc5ke_\xa7\x11\"\x04\xd8.\xa0\x15\x83\xf1\x92\xdby\xe9\xdc@.\xc1g\xc6\fc\xa26\xd8\xdf\xef\xf7\x9c\x1a\xcc\x8am\x8b7\xcf\xc5\xa6\xf4\f\xabj%Y\xa9\xdd\x0e9e\xb5\xec\x99@\xd2\t\n\xb1o\xe5\xa8Q\xc9\xe75Q\xea\xd8\xa2=F\x9b\x8f\x8d\xfc\' {e\x949X\xda\xe8H\x1a\x85\xd7%\x93?w}\xfb\xd9t\xea\xbb\xbe\x9b\\\xd7\xd7\xd4\xe2\xd6c(`(r\xd2\xb1G\xe3\xda&\xca\xaa\xba\v\xc5\xa3H\xb1\x11G\xab\xa2\x1f\xa0\xc3\xd9\xcd\xfb\x1a,\x13S\xf1\xfe\xe5F\xf4\xfb\xc8|\x89\x0fNq\x97J\xb9J\x88S\xc5\xb8\x12\x93\xbe\xb9b\xc7\xbc\x03\x03.E\xab\x82\x1c\xbc1\x9d\x14\xfa\x1f\xdd\x1e*\x03`\x91\xe8x\x0f\x05\x1e\xf5\xbfNo\xd4\x0f]S\x85\x89@\xa9f\x05\xfe\x9fkM\xa5\xf6\xc2\x04\xbf\xc7', 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
mmap(&(0x7f0000003000/0x2000)=nil, 0x2000, 0x0, 0x31, 0xffffffffffffffff, 0x0)
r2 = openat$apparmor_thread_current(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$apparmor_current(r2, 0x0, 0x17)
getdents64(0xffffffffffffffff, &(0x7f0000002f40)=""/4098, 0x1002)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_open_dev$admmidi(&(0x7f0000000140), 0x20, 0x0)
io_submit(0x0, 0x0, 0x0)
r6 = syz_io_uring_setup(0x110, &(0x7f0000000140), &(0x7f0000000240)=<r7=>0x0, &(0x7f00000000c0)=<r8=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r7, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r7, r8, &(0x7f00000002c0)=@IORING_OP_CONNECT={0x10, 0xa, 0x0, 0xffffffffffffffff, 0x0, 0x0})
io_uring_enter(r6, 0x47f6, 0x0, 0x0, 0x0, 0x0)
r9 = syz_open_procfs(0x0, &(0x7f0000000300)='map_files\x00')
getdents64(r9, &(0x7f0000002f40)=""/4098, 0x1002)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'batadv_slave_1\x00', <r10=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000100)=@newlink={0x3c, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x0, r10}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0xc, 0x2, 0x0, 0x1, [@IFLA_MACVLAN_BC_QUEUE_LEN={0x8}]}}}]}, 0x3c}}, 0x0)

24.454816492s ago: executing program 1 (id=2612):
r0 = syz_mount_image$btrfs(&(0x7f0000000000), &(0x7f00000015c0)='./file0\x00', 0xc, &(0x7f0000001600), 0x0, 0x559e, &(0x7f0000005680)="$eJzs3X9sVeX9B/BzWwoN+C39jhUYfxAgBoMkyJYtjqB4MQa24eKlgsKcCEQlBivYRDcYqUWSZcaghU4EF5GQaDJjscM/FMywy7CMZfzY5hZjs4JSaZZsAzVrHDG69N77XO49l9tembNOXy/SnvPcz3me+9yT88d9X/qcGwEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEAURUcSc9+d0f3i0ZE1X77/Hz+e+OjGn4zfvX/roVvu23T/gjMjbto5a1nf+mlN8zdsbDjS/PS+ObdGUSLdL5Htf9u136q/88bbvlsdBly+MLOtrS31lJmuJzON4QUP9vcr/FkRRVFVbIDK7PbV7E5FwQC53cbiAQf0Tuui6O7J8ya1dT01bklyYU/xS6df9VBPYKhkr6ue89dSMv27InZErp136SUKLtFM//gF96m8CADgY5mZSm9yb0ezb3Fz7eZ4PdZOxtotsXZ4h9CS37gYmXGHl5rnpHh9iOaZzESFESXnGatnz3+unYr3j7VjUeNjzLPw0GykqS41z7Wx+lDNEwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOCzZOzxo2tWtD2y575fdtQceff9OVc+8KWOw22LT4y8eunKHWum/HTWsr7105rmb9jYcKT56X1zbo2i2nS/RKZ74kTL5b9NjZ3fvXfcG427n6vpq8yOG7bD8g6OXg87s0ZH0cq8Sk8Y9q81UZQqLKSb0Y7iwl3pnW+HAgAAAJ8nX0n/rsi1M3GwqqCdSKfJRPpfkAmL77Quiu6ePG9SW9dT45YkF/Zc/HipEuMlLzherl17/ieRF4xD/I2Pd74eDm0sGmdg8RHjef7SMWPefmty/eSvT5v7xA3PjOru+r8nZ2xJ/bGu5oUrru+tf/a6ovxfO3D+D2dO/gcAAOA/If/HxxnYYPn/jqVTt7z+i2Grft3a8MTB+h1/bv3OMzsXneq54Ud9L09N3v7o1UX5f1LBUxbl/zDjkP8roovL/wAAAPBZ9t/O/8micQY2WP5vONM3+wcHX6vr+PucxXt+9dAVi8+e/tv8U7t3DV9zR8v6uoeuLMr/M8vL/8Pypx0e/F2Y8OrRUTSz/JMKAAAAFAj/737+o4WQ1zOfHMTz+rX/vKp5380ffPMbD97zpzff/s2xA7MnrdteN/PgyzfVf1j5ve3dRfk/WV7+r/p0Xi4AAABQhuePrpw773jPucfPvtB18vDu3pMznjyzrqnvdOslLatXbTr2WlH+T5WX/0cMzcsBAAAALuDeO59bsfnVl/oe2H/X2Ck9FVc1XpK4ZduOqU0TPuq8tPfy7VuL8v/y8vL/yOw2u/Ih06kz/BVC6+goqu7fWZspHIparskVAAAAgE9IyOlbP1ixbOzOsb3jj59+rObQG4dn/2Vt55yN13RXdW/uXNZ4WdH9AkJiL3X//3Cng7D+v+D+f0Xr//MKmbv+zXZjAAAAAL6Iitfzh9vjZ765oNT375e7/n9J3cQTiba33lv11XMHzo1ZsP/7129aV9/be8+El37/wz9M/6i6KP83l5f/K/O3n+T3/wEAAMBF+F/7/r+lReMMbLD7/zdV9DWsWrd3+uota7csTCw7UH3qwdV731+w5l9Tb36+qea6A0X5v6W8/B+2o/JfXkc4P5tGR9H4/p3s3QR/Hqa7OlZor8orZE58rMeNoUe20D4ir5C2Ntbja6OjaHL/TnOs8P+h0BIrnK3JFnbFCsdCIXs95Ap7YoWOcKVtq8lON154MRSyCyzawwqKUbklEbEe75Xq0V+4YI+u3JMDAAB8oYTwnM2yVYXNKB5l2xODHTBysAMqBjugcrADhsUOiB9Y6vFoeWEhPH575yMbNjVMSb7y8NzHfvbms40T9j1+WV3v5g9f2XbvxJ3TW6YW5f9d5eX/cCqGZzal1v9HYf1/9nsNc+v/l4dCbazQHgqp+B0DUuE5MmH34fActalsj7PjcwUAAAD4XAufC1QO8TwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA/s3evcdJVd0JAj/d9INumqaNE9GMk3TUgGakaWwNw+AoaoxGRZpZddxkNBBoEGmE8FgFURtQZxziZ3ztrJnoCAoiu+qHGFeDwUhcxIw6iWLiA/Cxjq7r+h6VGM2E/XTfOkXVrS67EFDa+X7/6DpVv/O89eg69946FwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACA/xjuPfjlk4YunP0PHzace8nqqqmL/kfH6Mv+cNW3vvjUPy5b9G9h/i9GnLll3kEXHjd/wbR/6Vi++ogzQmjtKleWFC977oqvPtS613HP3jFw48wbb63fUpWpNxMP/Tr/lGfuXBxbfbF/CHeXhVCRDgypSwKVmft1sb5960LYI2wLZEu01SYl0g2HB2pCWBK2BbJVra4JoS4ncMqG+++7vDNxTU0IXwkhVKfbeKY6aaMmHRhUlQRq04HpFUngt1sT2cBPypMA7LD4Zsi+6Fe15mdo6L5ckddf5U7r2KcrPbw+MdFQPN/rR+3iTuWoSj/QukNPW0F17BIFb4+13m294N1WsJ2v8LTlfpHKfEPZui1UHcontk0aP6d9dnykPDQ19SlW0y56np9+e/6E7Un3mtdh7EDDTnkdXvrYiun9lo2+9OrNvxqz4ayaA3a0m0/lbNLc9K5WHTKvuV7zPEajfJ70grdfwbekRl+6Qghbzz17xtfnTDz7iD63PLnu1QcfrNty9pwFvzhz4nmLLj55w7/Pf6lg/t/w0fP/+HKOt+V5uWOrH9Ync/P4SF1MvFmfzM0BAACg1+gNe01Xnv/6X73+/bWtMxed/u23Dj73w71afz3i/gFVB7yxrqn1/I2ff6Vg/t9Y2vH/eMi/Lne0a0MY1ZVYNCCEvbseTwIrY3e+OyCEL3elWvMDR6UCa0PYpytxULaqVIm+sURjKvByfSYwKhVYHwOtqcDyGLgiFbg4BlalAhNiYG0qcHQMhCn54/hqfWYcJQdqYmBcshFXxbMQ3qmPraW21aZsVQAAADtJZnZYmX8351yHHc0Qp5eranrKEM/ALpqhOlVDegabnVYVraGipxrKe6ohO+6Ojx5+Qc1lPdVccBpGWX6GG9f85X2LXjzsC2P3mvj5xUMvmPKz8eGst++uerx5yYtv7XvEzesK5v/NHz3/r+6mI2UFx/9DGNv1N+Yuz0Tas/FxrXkZAAAAgB1w0R//xR61Lw85oGHT+2X3zl/7xKMrfrl5j1NOf3/c8a//8PCaxnsL5v+jSjv/P+4T6ZOTOTwSd0NMHRBCc34gqXZkYSA56t0vEwAAAIDeIHs8PnssfErmNjlFOz2fLszfup3544H/Ud3m//09/7P2jq3/+mLZBd89d0TNgKX/9GrHhBNOPvqW47/1zj4VB/yyvGD+31ra+f+1+bdJJ9bHXlw9IIS+OYEHYy87A10aY+D5I/MDmfGvjxtgcawqc2JCtqrFscS4GGhOBZYUK/FotsTe+YHMk5VtfFF2HFMyJXICAAAA8ImLuwPicfl4/n/LGSNO++vvzfrbha88eN7qCy75q+Ed80eedP/THzbMvXJp2PTmEQXz/3Hbd/5/1zy44PT+9n4hDK0IoU/6hwGP1CYLA8ZAXVkmcW9tUlefdFULa0MY2TmwdFUvZNb/r0ivMfh4TVJVDOy93y1vD+pMLKsJYWhu4IlvLz2sMzEnFcg2flpNCF/qHG268bv6Jo1Xphu/tm8IX8wJZKua0DeEzsaq0lX9r+rMdQzSVa2qDmHPnEC2quHVIcwNAPRW8X/pxNwHZ82dN3V8e3vbzF2YiDvxa8KkKe1tTROmt0+sLtKniak+561jtKBwTKVe+mZTZo2ixSsnV5aSzv5QsDm3rcyO/IIzBzP345ehyq5xHlKZd7clPeQD9y9sIuR8lSo25PJdPOTa3Eq2PYkF9cf8VaFf6DtnVtvMpvPGz549c1jyt9TshyR/43GmZFsNS2+r2u76VsLLo+hyWSkfd1sNyq1k6OxpM4bOmjtvyJRp4ye3TW47p+XQP2sZMXz410YM7RxUc/K3h5EO6q7m1Ei3Li1xWDtxpF+oyKnkk/jQkJCQ6G2J/f7L5odH77n+nOt/9tqPz+/3zdPu3fvImT889KqpD1Xve/ji24ccWDD/n/HR8//4qRM/+DPrMxQ7/t8QD/Mnj287zD8uBpaUevy/odjR/OyJAY2pQEcMdDjMDwAAwGdD3B0Z92bGndKbb1m/buOSlrk/aHin5dY17Utvuum+U39y58ATvjQ47LXhuhM+VzD/7yjt9/87af3/7NL1JxRb5v+gWKK52Pr/6WX+s+v/dxRb/z+9zH92/f8ln8L6/3OygdQmecf6/wAAwGfBJ7f+f4/L+6cvEFCQocfl/dMXCCjI0OMy/qVeIGC71/9f8+Bff6Wq35g7/qTlN/WXvPZ39xzWeuS6zTP/5Etb10+877qxt6wpmP9fUdr838L9AAAAsPv4z5ddU3H02Xff0bJu6sZxbw5+98m3lgzq80HF0Q+3j3xh4Bu3nlcw/19S2vz/k1//LxQ7/7+xWKC12MKA1v8DAACglyq2/t89Q1sa/zCm/x+eHvab5Q/ePPqnj/z898v3+/mJPyvfZ8Gxz8+8bFLB/H9VafP/eNpFeV7u2JsP65M17UJ6Tbs367M/GQAAAIDeoTw0NVWWmDdvYdSjPn6bT2eWAv2odK7vvXLt2ZtfmH7c46ev+7uaEwbvOWHaBasa/2b4gXd+ftQley7ddGrB/H9tafP/vN9lXPrYiun9lo2+9MOrN/9qzIazag7YdvwfAAAA2HVK3S8BAAAAAAAAAAAAAAB8+s7tWHzhI8uOfe+bt//F/kcseXXwbXcd+Lsh/V664qoHJq1648zJXy/4/X8Y21Wu2O//43X/4u8L/igvd2y15/X/MvdPOfH2uV1LFj5SH8L+uYGpC6fuETLX5h+cG7jvjIMGdiYWpkusefbolzoT30kHjh/yuS2dicNTgXFxkcR90oF4VcUt/VOBuLzi4+lA3B6r0oGqTOCy/sk4ytLb6pW6ZFuVpbfVxroQBuQEstvq7rqkjbL0AK9JBbID/F46EAd4ciZQnu7V7f2SXsVAXSx6Q7+kVwAA7Lbit8DKMGlKe1tz/Aofb79QkX8b5S1ZtqCw2rISm9+UWZps8crJlaWk+6S/i2671nhlqO4cwrCCr6u5Wcq6Rrlzaulh0/1RkSH3tNpbeZFyadu76aqKj6gmGVHThOntEyt7HHhLz1kOqegxy7CCyU5ulvKuTVpCLSX0pYQRlbhtSuhyvF8empr6pHL9eQw2hDw9vSJK/b1+7jp/xV4FuXluO/TKt758zE+f++CfP/9E/2+cVnP7rO+/e+KvX7//wEOOuG5C05otBfP/htLm/9W549qSuRhAR7yy3sgBIYwrcUQAAADw2XfbRbfecfr09a9MWlvx5GOPTS0fc3rl1vl3zp93ycZ7Fx9/2cErdjR+2Fm//f5vBu//b89e9dJPR+7zwA03/58nD3v8z3//8I8eeqduZZ+x7xXM/xtLm//HPViZQ8HJ3o618fr/iwaE0HVp/YYksDIO97sDQvhyV6o1lkguqH9CLNGcBFbGHSYHxRLjWvOr6hsDq1KBl+szgbWpwPoYyOyluCVkduVcWR/CYV2psfklZsQSDanAmBhoTAWaYqA5FegfA6NSgdf6ZwKtqcDDMRCm5G+rH/fPbCsAAIDtkZlnVebfDel53qqKnjKU9ZShtqcM5T1lqO4pQ7FRxPt3xAyVqZNXynIyVaZrrUnVUpAhXgx/u/tVkCE8mp8zXbCg6Xj+QfZ8g7L8DFf+4NlT1w+e/tDqzcd8beBt/zhkz4Obp9e9t+CGp3475pzrnv/TQQXz/+bS5v+1+bdJ6+vj/H/b9f+SwIOxe1fHU8cbY+D5I/MDmR0D6+Nkd3G2qtZMicykfXEsMSoGGlOBGTEwKhUYNzYTWDIwP5CZaWcbX5RtfEqmRE4AAAAAPnFxB0HcTRPn/zce9YOr3x8wccuyeTPvH9vyxMmjv3H1XT+6d/9ld767YvCAce99p2D+P6q0+X9sr19uYxfH3rzYP4S7y7b1JhsYUpcE4n6Muvjz+H3rQtgjZwdHtkRbbVKiKtVweKAm+YV6Vbqq1TXJGgPx/ikb7r/v8s7ENTUhfCVn70u2jWeqkzZq0oFBVUmgNh2YXpEE4p6fbOAn5UkAdlh2r2B8QWVOdclq6L5ckdffZ+WaoOnhFewD7SZfd7+52lWq0w9k9qlmbd/TVlAdu0TB22Otd1tvfLc1eLflfpHKfEPZui1UHcontk0aP6d9dnwk95esBXbR85z7K9VS0jvhddjx8Xvbs+p0B5pTHx/N3Zfr/nVYFqu79LEV0/stG33p1Zt/NWbDWTUHlNyNIuIPhX+05X9XPpWzeXe16pB5zfW6z5NWnye98d9Ao6cthHDZ9cfsu+TdX+/33A3Pnbqu7Maxr/7lrHs2Lf+bysNHrXv/yaGjLy+Y/7eWNv+vSN12+V3cmLMGhHBgzsZ9JG7+YwYkn4M5geRTcs/CQHLI/V/ri35yAgAAwM6W3d2R3V8wJXObnBCenicX5m/dzvxxf8WobvOX2u9j121cedLQN6474G8vOPGNv7/28Kceuv6ysnXL//vYD1avuXzxe08UzP/HffT8v2+qm47/O/7PLuL4f7d2913RfdMPdOzQruiC6tglHP/v1u7+bnP8v1uO/zv+3x3H/3vg+H+3dvenreBb0gxfujonwdff+fPfTbzpg7mN+x180lPPHDrxun+6quXuu0555b+de9601761uWD+P6O0+b/1/7pftC+7/t+4Yuv/zSi2/l+H9f8AAIBdqshCc+l5XsHqfQUZ0qv3FWTocYHAHpcYtP7fdq//t3Dkv1904Q+fb7n2nTvHXb5m07Fnvvr0utXPzFpx3Lnnv9V6112tBfP/jtLm//Hl0C+39d6y/l/j2CJVXREDMywMCAAAwO6o2A4CAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPl2HnvbO+5d8/R/aBv1ixc1/f+v/+7/P1q594JvfuGn4L6f86RllazZcM+LMLfMOuvC4+Qum/UvH8tVHnBHClK5yZUnxsueu+OpDrXsd9+wdAzfOvPHW+i3VmXorM7d/nJc7tvphfQhLch6pi4k36zvvbAuccuLtcys6E4/Uh7B/bmDqwql7dCaW14cwODdw3xkHDexMLEyXWPPs0S91Jr6TDhw/5HNbOhOHZwJl6e5e1z/pblm6u5f3D2FATiDb3bP751eVbeO4TKA83caKuqSNGKiLRa+tS9qIgfZYYkrfEIZWhNAnXdU/VydV9UlXdU91UlWfdFUXVYcwMoRQka7quaqkqor0yB+tSqqKgb33u+XtQZ2JpVUhDM0NPPHtpYd1JmamAtnG/1NVCF/qfMmkG/9xZdJ4Zbrx/1oZwhdDCFXpEu9VJCWq0iVeqAhhz5zAto1YEcLcwGdD/PSZmPvgrLnzpo5vb2+buQsTVZm2asKkKe1tTROmt0+sTvWpmLKc9NYFH3/sm96eP6HzdvHKyZWlpCsy5Sq7unxIZd7dlt2997FftbmVbHs+CuqP+atCv9B3zqy2mU3njZ89e+aw5G+p2Q9J/vbJRJNtNay3bKtBuZUMnT1txtBZc+cNmTJt/OS2yW3ntBz6Zy0jhg//2oihnYNqTv7ujJEu/eRH+oWKnEo+ife/hIREb0uU5326Ne/un+MFX/S3dbQyVHd9QBdMK3KzlHWNcmcM+qiPOeKP8zWlxxENK5g4FGQ5pOcsLQWTiW1ZapIsXV/rCiaHuTWVd23SeL88NDX1KbYdGvLv5m7e13dg8z6d2XSlpgEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA+P/swIEAAAAAAJD/ayNUVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVYQcOBAAAAACA/F8boaqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqgo7cCwAAAAAIMzfOoyeDQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC4FAAA//8fSxmR")
ioctl$BTRFS_IOC_QGROUP_LIMIT(r0, 0xc0c09425, &(0x7f0000000040))

19.231909826s ago: executing program 0 (id=2614):
syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000140)='./file0\x00', 0x4040, &(0x7f00000023c0)=ANY=[], 0x3, 0x6f7, &(0x7f0000001000)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000002c0)=0x20)
statx(0xffffffffffffff9c, &(0x7f0000000100)='.\x00', 0x0, 0xffff4a9c0080ffff, &(0x7f0000000240))

19.230722704s ago: executing program 0 (id=2616):
socket$inet6_mptcp(0xa, 0x1, 0x106)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='maps\x00')
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000240)={0x1, &(0x7f0000000200)=[{0x6}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, 0x0)
syz_open_procfs(0x0, &(0x7f0000000440)='fd/4\x00')

17.955105384s ago: executing program 1 (id=2617):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="2800000070000100000000000000000007000000", @ANYRES32, @ANYBLOB="10000180"], 0x28}}, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="2400000070000100000000000000000007000000", @ANYRES32=r2, @ANYBLOB="0c0002"], 0x24}}, 0x0)

12.976402562s ago: executing program 1 (id=2622):
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$vhost_vsock(0xffffffffffffff9c, 0x0, 0x2, 0x0)
fanotify_init(0x0, 0x0)
r1 = bpf$MAP_CREATE(0x100000000000000, &(0x7f00000001c0)=@base={0x5, 0x16, 0x8, 0x7f}, 0x48)
syz_mount_image$nilfs2(&(0x7f0000000ec0), &(0x7f0000000080)='./file0\x00', 0x3210052, &(0x7f0000000140)={[{}, {@nodiscard}, {}, {@norecovery}, {@nobarrier}, {@norecovery}, {@norecovery}, {@order_relaxed}], [], 0x2c}, 0x0, 0xebd, &(0x7f0000004540)="$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")
r2 = openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0)
mkdir(&(0x7f00000020c0)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f00000000c0), 0x0, 0x0)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r2, 0xc0186e87, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x1f, 0x8, &(0x7f0000000240)=@framed={{0x18, 0x8}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r1}}]}, &(0x7f0000000000)='GPL\x00', 0x5, 0x0, 0x0, 0x0, 0x19}, 0x90)
removexattr(0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, 0x0, &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000100), 0x10}, 0x90)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r3, 0x0, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r3, 0x6, 0x1f, &(0x7f0000000040), 0x4)
setsockopt$inet6_tcp_TLS_TX(0xffffffffffffffff, 0x11a, 0x1, &(0x7f00000000c0)=@gcm_256={{}, "77746a315690a576", "07f217bd2e511e465bbbd5de32b495b2f9044677d4d588360663af84db44be59", "9bba8c07", "f37f20e2ff799aae"}, 0x38)
sendto$inet6(r3, &(0x7f0000000340)="d1", 0x1, 0x0, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000000)=[{0x6}]})

9.25324628s ago: executing program 1 (id=2625):
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000c80)={@map, 0xffffffffffffffff, 0x24, 0x0, 0x0, @link_id}, 0x20)

9.253006063s ago: executing program 4 (id=2626):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0x3, &(0x7f0000000280)=@framed, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
sendmsg$NFT_BATCH(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01030000000000000000050000000900010073797a300000000054000000030a01030000000100010000050000000900010073797a30000000002800048008000140000000011400040076657468315f766972745f77696669000800024000000000090003"], 0x9c}}, 0x0)

8.602959245s ago: executing program 1 (id=2627):
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0xffffffffffffffff, 0x0, 0x0}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000005000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
r6 = accept(r3, &(0x7f0000001200)=@l2, &(0x7f0000001280)=0x80)
r7 = syz_genetlink_get_family_id$SEG6(&(0x7f0000001300), r0)
sendmsg$SEG6_CMD_GET_TUNSRC(r6, &(0x7f0000001400)={&(0x7f00000012c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000013c0)={&(0x7f0000001340)={0x44, r7, 0x104, 0x70bd2c, 0x25dfdbfc, {}, [@SEG6_ATTR_DSTLEN={0x8, 0x2, 0x7}, @SEG6_ATTR_DST={0x14, 0x1, @local}, @SEG6_ATTR_SECRETLEN={0x5}, @SEG6_ATTR_SECRET={0x4}, @SEG6_ATTR_HMACKEYID={0x8, 0x3, 0xd93}]}, 0x44}, 0x1, 0x0, 0x0, 0x10}, 0x2000a0d0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r8 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000042c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000000200)={{'fd', 0x3d, r8}, 0x2c, {'rootmode', 0x3d, 0x4000}})
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x19, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000061111800000000009500000000000000"], &(0x7f00000000c0)='GPL\x00', 0x4, 0x1000, &(0x7f0000000200)=""/4096, 0x0, 0x0, '\x00', 0x0, 0x15, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x60000000}, 0x70)
socket(0x200000000000011, 0x2, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=@newlink={0x5c, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x74, 0x0, 0x0, 0x11203}, [@IFLA_LINKINFO={0x3c, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x2c, 0x2, 0x0, 0x1, [@IFLA_BR_STP_STATE={0x8, 0x5, 0x1}, @IFLA_BR_VLAN_DEFAULT_PVID={0x6}, @IFLA_BR_FORWARD_DELAY={0x8, 0x1, 0x15}, @IFLA_BR_NF_CALL_IP6TABLES={0x5}, @IFLA_BR_AGEING_TIME={0x8}]}}}]}, 0x5c}}, 0x10)

5.100394278s ago: executing program 4 (id=2628):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000001ec0), 0x48)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000a80), 0xfffffffffffffffd, 0xffff, r0}, 0x38)

4.357082775s ago: executing program 4 (id=2629):
openat$capi20(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$capi20(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r0 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
read$FUSE(r0, &(0x7f0000000280)={0x2020}, 0x2020)

2.99288476s ago: executing program 4 (id=2630):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x21}]}, @NFT_MSG_NEWSETELEM={0x60, 0xc, 0xa, 0x101, 0x0, 0x0, {0x7}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x34, 0x3, 0x0, 0x1, [{0x30, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_KEY={0x2c, 0x1, 0x0, 0x1, [@NFTA_DATA_VALUE={0x25, 0x1, "686075c0d1e12b45165a0da9bcec06fabefeb65f419b79ced8a44d3dd052d06ffd"}]}]}]}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0xe4}}, 0x0)

706.694349ms ago: executing program 4 (id=2631):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x8, 0x3, &(0x7f0000000000)=@framed={{0x6a, 0xa, 0x0, 0xffc4, 0x0, 0x71, 0x10, 0x73}}, &(0x7f0000000480)='GPL\x00'}, 0x80)

705.834765ms ago: executing program 4 (id=2632):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r0)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
listen(r1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
getsockopt$inet6_mptcp_buf(r0, 0x11c, 0x2, &(0x7f0000000280)=""/215, &(0x7f00000000c0)=0xd7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
socket$inet_mptcp(0x2, 0x1, 0x106)
r5 = socket$netlink(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="1506000000000000004c0100000024000180060005004e22000008000300ffffffff060001000200000008000600a7"], 0x38}}, 0x0)

0s ago: executing program 1 (id=2633):
socket$inet6_mptcp(0xa, 0x1, 0x106)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='maps\x00')
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000240)={0x1, &(0x7f0000000200)=[{0x6}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, 0x0)
syz_open_procfs(0x0, &(0x7f0000000440)='fd/4\x00')

kernel console output (not intermixed with test programs):

 419.419494][T12060] Bluetooth: hci3: command tx timeout
[  419.429323][T12787] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  419.439197][T12787] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  419.449629][T12787] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  419.459465][T12787] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  419.469893][T12787] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  419.481294][T12787] batman_adv: batadv0: Interface activated: batadv_slave_0
[  419.500200][T12787] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  419.511294][T12787] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  419.706786][T12787] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  419.717299][T12787] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  419.727158][T12787] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  419.737694][T12787] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  419.747560][T12787] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  419.757996][T12787] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  419.771655][T12787] batman_adv: batadv0: Interface activated: batadv_slave_1
[  419.782364][T12787] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  419.797190][ T6808] usb 1-1: new high-speed USB device number 15 using dummy_hcd
[  419.958945][T12787] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  419.967850][T12787] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  419.980367][T12787] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  420.026972][ T6808] usb 1-1: Using ep0 maxpacket: 32
[  420.034508][ T6808] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  420.209768][ T6808] usb 1-1: config 0 has no interfaces?
[  420.215333][ T6808] usb 1-1: New USB device found, idVendor=0458, idProduct=7006, bcdDevice=69.91
[  420.231257][ T6808] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  420.241445][ T6808] usb 1-1: config 0 descriptor??
[  420.247805][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  420.257652][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  420.288863][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  420.298268][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  420.528878][T12929] geneve2: entered promiscuous mode
[  420.534144][T12929] geneve2: entered allmulticast mode
[  420.657898][ T6808] usb 2-1: USB disconnect, device number 18
[  423.597221][T12946] overlayfs: missing 'lowerdir'
[  425.459790][ T5153] usb 1-1: USB disconnect, device number 15
[  429.446194][T12966] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2587'.
[  431.373012][T12976] loop1: detected capacity change from 0 to 1024
[  433.826323][T12983] devtmpfs: Too few inodes for current use
[  437.944366][T13009] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2602'.
[  440.932491][ T1251] ieee802154 phy0 wpan0: encryption failed: -22
[  440.938822][ T1251] ieee802154 phy1 wpan1: encryption failed: -22
[  447.442397][T13035] loop1: detected capacity change from 0 to 32768
[  447.450067][T13035] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.2612 (13035)
[  455.142195][   T55] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  455.149565][   T55] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  455.156901][   T55] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  455.164734][   T55] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  455.845344][T13054] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2617'.
[  458.180161][   T55] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  459.595053][   T55] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  460.992540][   T55] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  460.999857][   T55] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  461.007141][   T55] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  461.626324][   T55] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  461.633943][   T55] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  461.641171][   T55] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  463.030233][   T55] Bluetooth: hci3: command tx timeout
[  463.774859][T12060] Bluetooth: hci4: command tx timeout
[  465.224361][   T55] Bluetooth: hci3: command tx timeout
[  466.647394][T12060] Bluetooth: hci4: command tx timeout
[  467.383639][T12060] Bluetooth: hci3: command tx timeout
[  468.903069][T12060] Bluetooth: hci4: command tx timeout
[  469.414320][T12060] Bluetooth: hci3: command tx timeout
[  469.448182][ T2447] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  470.062385][    C0] DEBUG: holding rtnl_mutex for 558 jiffies.
[  470.068428][    C0] task:syz-executor    state:D stack:21520 pid:12005 tgid:12005 ppid:1      flags:0x00004006
[  470.078628][    C0] Call Trace:
[  470.081914][    C0]  <TASK>
[  470.084840][    C0]  __schedule+0x1800/0x4a60
[  470.089352][    C0]  ? schedule+0x90/0x320
[  470.093589][    C0]  ? schedule+0x90/0x320
[  470.097822][    C0]  ? lock_release+0xbf/0xa30
[  470.102410][    C0]  ? __pfx___schedule+0x10/0x10
[  470.107252][    C0]  ? rcu_is_watching+0x15/0xb0
[  470.112022][    C0]  ? __pfx_lock_release+0x10/0x10
[  470.117044][    C0]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  470.122936][    C0]  ? schedule+0x90/0x320
[  470.127168][    C0]  schedule+0x14b/0x320
[  470.131330][    C0]  synchronize_rcu_expedited+0x684/0x830
[  470.136956][    C0]  ? __pfx_synchronize_rcu_expedited+0x10/0x10
[  470.143100][    C0]  ? rcu_is_watching+0x15/0xb0
[  470.147871][    C0]  ? lock_release+0xbf/0xa30
[  470.152455][    C0]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  470.157839][    C0]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[  470.791269][    C0]  ? __pfx___might_resched+0x10/0x10
[  470.796630][    C0]  ? __pfx_autoremove_wake_function+0x10/0x10
[  470.802756][    C0]  ? rcu_is_watching+0x15/0xb0
[  470.807553][    C0]  unregister_netdevice_many_notify+0x906/0x1d20
[  470.813890][    C0]  ? do_raw_spin_unlock+0x13c/0x8b0
[  470.819103][    C0]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[  470.825860][    C0]  ? rcu_is_watching+0x15/0xb0
[  470.830702][    C0]  ? lock_release+0xbf/0xa30
[  470.835291][    C0]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  470.841610][    C0]  ? stack_depot_save_flags+0x29/0x830
[  470.847064][    C0]  ? __pfx_lock_release+0x10/0x10
[  470.852174][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  470.858511][    C0]  ? ref_tracker_alloc+0x2c4/0x490
[  470.863636][    C0]  unregister_netdevice_queue+0x303/0x370
[  470.869362][    C0]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[  470.875634][    C0]  __tun_detach+0x6b6/0x1600
[  470.880260][    C0]  ? get_rtnl_holder+0x144/0x190
[  470.885232][    C0]  tun_chr_close+0x108/0x1b0
[  470.889845][    C0]  ? __pfx_tun_chr_close+0x10/0x10
[  471.530211][   T55] Bluetooth: hci4: command tx timeout
[  471.571547][    C0]  __fput+0x24a/0x8a0
[  471.575578][    C0]  task_work_run+0x24f/0x310
[  471.580240][    C0]  ? __pfx_task_work_run+0x10/0x10
[  471.585381][    C0]  ? do_exit+0xa2a/0x27f0
[  471.589705][    C0]  ? kmem_cache_free+0x145/0x350
[  471.594653][    C0]  do_exit+0xa2f/0x27f0
[  471.598816][    C0]  ? rcu_is_watching+0x15/0xb0
[  471.603598][    C0]  ? __pfx_do_exit+0x10/0x10
[  471.608178][    C0]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  471.613547][    C0]  ? __pfx_lock_release+0x10/0x10
[  471.618575][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  471.624896][    C0]  ? _raw_spin_lock_irq+0xdf/0x120
[  471.630014][    C0]  do_group_exit+0x207/0x2c0
[  471.634640][    C0]  get_signal+0x16a1/0x1740
[  471.639167][    C0]  ? __pfx_get_signal+0x10/0x10
[  471.644045][    C0]  arch_do_signal_or_restart+0x96/0x830
[  471.649617][    C0]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  471.655797][    C0]  ? rcu_is_watching+0x15/0xb0
[  471.660587][    C0]  syscall_exit_to_user_mode+0xc9/0x370
[  472.337419][    C0]  do_syscall_64+0x100/0x230
[  472.342085][    C0]  ? clear_bhb_loop+0x35/0x90
[  472.346847][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  472.352791][    C0] RIP: 0033:0x7fb7197757db
[  472.357237][    C0] RSP: 002b:00007ffd18ad45d0 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  472.365650][    C0] RAX: ffffffffffffffe7 RBX: 00000000000006bc RCX: 00007fb7197757db
[  472.373623][    C0] RDX: 00007ffd18ad4648 RSI: 0000000040086602 RDI: 0000000000000005
[  472.381584][    C0] RBP: 00007ffd18ad46e0 R08: 0000000000000000 R09: 0000000000000000
[  472.389546][    C0] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd18ad57a0
[  472.397530][    C0] R13: 00007fb7197e3515 R14: 00005555937984a8 R15: 0000000000000005
[  472.405531][    C0]  </TASK>
[  472.408561][    C0] DEBUG: waiting rtnl_mutex for 712 jiffies.
[  472.414606][    C0] task:syz-executor    state:D stack:25104 pid:13073 tgid:13073 ppid:13066  flags:0x00000000
[  472.424799][    C0] Call Trace:
[  472.428088][    C0]  <TASK>
[  472.431031][    C0]  __schedule+0x1800/0x4a60
[  472.435568][    C0]  ? schedule+0x90/0x320
[  473.111953][    C0]  ? lock_release+0xbf/0xa30
[  473.116604][    C0]  ? __pfx___schedule+0x10/0x10
[  473.121584][    C0]  ? __pfx_lock_release+0x10/0x10
[  473.126627][    C0]  ? __mutex_trylock_common+0x92/0x2e0
[  473.132101][    C0]  ? schedule+0x90/0x320
[  473.136335][    C0]  schedule+0x14b/0x320
[  473.140488][    C0]  schedule_preempt_disabled+0x13/0x30
[  473.145938][    C0]  __mutex_lock+0x6a4/0xd70
[  473.150457][    C0]  ? __mutex_lock+0x527/0xd70
[  473.155129][    C0]  ? __tun_chr_ioctl+0x48f/0x2400
[  473.160164][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  473.165187][    C0]  ? get_rtnl_holder+0x144/0x190
[  473.170137][    C0]  __tun_chr_ioctl+0x48f/0x2400
[  473.175011][    C0]  ? __pfx___tun_chr_ioctl+0x10/0x10
[  473.180343][    C0]  ? do_raw_spin_unlock+0x13c/0x8b0
[  473.185565][    C0]  ? bpf_lsm_file_ioctl+0x9/0x10
[  473.190524][    C0]  ? security_file_ioctl+0x87/0xb0
[  473.195649][    C0]  ? __pfx_tun_chr_ioctl+0x10/0x10
[  473.200780][    C0]  __se_sys_ioctl+0xfc/0x170
[  473.205410][    C0]  do_syscall_64+0xf3/0x230
[  473.209939][    C0]  ? clear_bhb_loop+0x35/0x90
[  473.897299][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  473.903270][    C0] RIP: 0033:0x7f00d15757db
[  473.907727][    C0] RSP: 002b:00007ffc0c497ca0 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  473.916176][    C0] RAX: ffffffffffffffda RBX: 00007f00d1703f20 RCX: 00007f00d15757db
[  473.924231][    C0] RDX: 00007ffc0c497d20 RSI: 00000000400454ca RDI: 00000000000000c8
[  473.932193][    C0] RBP: 00007f00d1704a18 R08: 0000000000000000 R09: 0000000000000000
[  473.940259][    C0] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000000c
[  473.948219][    C0] R13: 0000000000000003 R14: 0000000000000009 R15: 0000000000000009
[  473.956201][    C0]  </TASK>
[  473.959240][    C0] DEBUG: waiting rtnl_mutex for 867 jiffies.
[  473.965288][    C0] task:kworker/0:5     state:D stack:20880 pid:5155  tgid:5155  ppid:2      flags:0x00004000
[  473.975479][    C0] Workqueue: events linkwatch_event
[  473.980705][    C0] Call Trace:
[  473.983995][    C0]  <TASK>
[  473.986940][    C0]  __schedule+0x1800/0x4a60
[  473.991475][    C0]  ? schedule+0x90/0x320
[  473.995733][    C0]  ? lock_release+0xbf/0xa30
[  474.703592][    C0]  ? __pfx___schedule+0x10/0x10
[  474.708585][    C0]  ? _raw_spin_lock_irq+0xdf/0x120
[  474.713734][    C0]  ? __pfx_lock_release+0x10/0x10
[  474.718806][    C0]  ? kick_pool+0x1bd/0x620
[  474.723254][    C0]  ? schedule+0x90/0x320
[  474.727535][    C0]  ? rcu_is_watching+0x15/0xb0
[  474.732341][    C0]  ? schedule+0x90/0x320
[  474.736622][    C0]  schedule+0x14b/0x320
[  474.740808][    C0]  schedule_preempt_disabled+0x13/0x30
[  474.746311][    C0]  __mutex_lock+0x6a4/0xd70
[  474.750885][    C0]  ? __mutex_lock+0x527/0xd70
[  474.755696][    C0]  ? linkwatch_event+0xe/0x60
[  474.760414][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  474.765585][    C0]  ? get_rtnl_holder+0x144/0x190
[  474.770581][    C0]  ? process_scheduled_works+0x945/0x1830
[  474.776348][    C0]  linkwatch_event+0xe/0x60
[  474.780882][    C0]  process_scheduled_works+0xa2c/0x1830
[  474.786563][    C0]  ? __pfx_process_scheduled_works+0x10/0x10
[  474.792576][    C0]  ? __pfx__raw_spin_lock_irq+0x10/0x10
[  474.798171][    C0]  ? assign_work+0x364/0x3d0
[  474.802822][    C0]  worker_thread+0x86d/0xd40
[  475.535167][    C0]  ? rcu_is_watching+0x15/0xb0
[  475.540011][    C0]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  475.545939][    C0]  ? __kthread_parkme+0x169/0x1d0
[  475.551005][    C0]  ? __pfx_worker_thread+0x10/0x10
[  475.556180][    C0]  kthread+0x2f0/0x390
[  475.560284][    C0]  ? __pfx_worker_thread+0x10/0x10
[  475.565441][    C0]  ? __pfx_kthread+0x10/0x10
[  475.570072][    C0]  ret_from_fork+0x4b/0x80
[  475.574539][    C0]  ? __pfx_kthread+0x10/0x10
[  475.579155][    C0]  ret_from_fork_asm+0x1a/0x30
[  475.583964][    C0]  </TASK>
[  475.587010][    C0] DEBUG: waiting rtnl_mutex for 1030 jiffies.
[  475.593094][    C0] task:syz-executor    state:D stack:25840 pid:13055 tgid:13055 ppid:13047  flags:0x00004000
[  475.603393][    C0] Call Trace:
[  475.606699][    C0]  <TASK>
[  475.609648][    C0]  __schedule+0x1800/0x4a60
[  475.614192][    C0]  ? schedule+0x90/0x320
[  475.618458][    C0]  ? lock_release+0xbf/0xa30
[  475.623354][    C0]  ? __pfx___schedule+0x10/0x10
[  475.628225][    C0]  ? __pfx_lock_release+0x10/0x10
[  475.633287][    C0]  ? __mutex_trylock_common+0x92/0x2e0
[  476.384390][    C0]  ? schedule+0x90/0x320
[  476.388722][    C0]  schedule+0x14b/0x320
[  476.392909][    C0]  schedule_preempt_disabled+0x13/0x30
[  476.398402][    C0]  __mutex_lock+0x6a4/0xd70
[  476.402942][    C0]  ? __mutex_lock+0x527/0xd70
[  476.407653][    C0]  ? rtnetlink_rcv_msg+0x6eb/0xd00
[  476.412806][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  476.417874][    C0]  ? security_capable+0x90/0xb0
[  476.422774][    C0]  ? get_rtnl_holder+0x144/0x190
[  476.427718][    C0]  rtnetlink_rcv_msg+0x6eb/0xd00
[  476.432656][    C0]  ? rtnetlink_rcv_msg+0x1a7/0xd00
[  476.437766][    C0]  ? lock_release+0xbf/0xa30
[  476.442364][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  476.447878][    C0]  ? __pfx_lock_acquire+0x10/0x10
[  476.452903][    C0]  ? rcu_is_watching+0x15/0xb0
[  476.457687][    C0]  ? lock_acquire+0xe3/0x550
[  476.462311][    C0]  netlink_rcv_skb+0x1e3/0x430
[  476.467114][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  476.472613][    C0]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  476.477939][    C0]  ? net_generic+0x1f/0x240
[  476.482461][    C0]  ? netlink_deliver_tap+0x2e/0x1b0
[  477.220056][    C0]  netlink_unicast+0x7f0/0x990
[  477.224907][    C0]  ? __pfx_netlink_unicast+0x10/0x10
[  477.230227][    C0]  ? __virt_addr_valid+0x183/0x530
[  477.235373][    C0]  ? __check_object_size+0x49c/0x900
[  477.240681][    C0]  ? bpf_lsm_netlink_send+0x9/0x10
[  477.245796][    C0]  netlink_sendmsg+0x8e4/0xcb0
[  477.250655][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  477.255954][    C0]  ? aa_sock_msg_perm+0x91/0x160
[  477.260928][    C0]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  477.266203][    C0]  ? security_socket_sendmsg+0x87/0xb0
[  477.271659][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  477.276945][    C0]  __sock_sendmsg+0x221/0x270
[  477.281633][    C0]  __sys_sendto+0x3a4/0x4f0
[  477.286163][    C0]  ? __pfx___sys_sendto+0x10/0x10
[  477.291246][    C0]  ? rcu_is_watching+0x15/0xb0
[  477.296038][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  477.302397][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  477.308754][    C0]  ? rcu_is_watching+0x15/0xb0
[  477.313534][    C0]  __x64_sys_sendto+0xde/0x100
[  477.318323][    C0]  do_syscall_64+0xf3/0x230
[  478.035034][    C0]  ? clear_bhb_loop+0x35/0x90
[  478.039780][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  478.045704][    C0] RIP: 0033:0x7f1678d7796c
[  478.050141][    C0] RSP: 002b:00007ffd6ca3e5d0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  478.058583][    C0] RAX: ffffffffffffffda RBX: 00007f1679a34620 RCX: 00007f1678d7796c
[  478.066584][    C0] RDX: 0000000000000028 RSI: 00007f1679a34670 RDI: 0000000000000003
[  478.074676][    C0] RBP: 0000000000000000 R08: 00007ffd6ca3e624 R09: 000000000000000c
[  478.082767][    C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  478.090842][    C0] R13: 0000000000000000 R14: 00007f1679a34670 R15: 0000000000000000
[  478.098838][    C0]  </TASK>
[  478.101870][    C0] INFO: lockdep is turned off.
[  479.595464][    C0] DEBUG: waiting rtnl_mutex for 1436 jiffies.
[  479.601601][    C0] task:kworker/0:5     state:D stack:20880 pid:5155  tgid:5155  ppid:2      flags:0x00004000
[  479.611825][    C0] Workqueue: events linkwatch_event
[  479.617076][    C0] Call Trace:
[  479.620373][    C0]  <TASK>
[  479.623350][    C0]  __schedule+0x1800/0x4a60
[  479.628005][    C0]  ? schedule+0x90/0x320
[  479.632298][    C0]  ? schedule+0x90/0x320
[  479.636589][    C0]  ? lock_release+0xbf/0xa30
[  479.641221][    C0]  ? __pfx___schedule+0x10/0x10
[  479.646110][    C0]  ? _raw_spin_lock_irq+0xdf/0x120
[  479.651263][    C0]  ? __pfx_lock_release+0x10/0x10
[  479.656333][    C0]  ? kick_pool+0x45c/0x620
[  479.660790][    C0]  ? schedule+0x90/0x320
[  479.665102][    C0]  ? rcu_is_watching+0x15/0xb0
[  479.669963][    C0]  ? schedule+0x90/0x320
[  479.674237][    C0]  schedule+0x14b/0x320
[  479.678510][    C0]  schedule_preempt_disabled+0x13/0x30
[  479.683998][    C0]  __mutex_lock+0x6a4/0xd70
[  479.688540][    C0]  ? __mutex_lock+0x527/0xd70
[  479.693249][    C0]  ? linkwatch_event+0xe/0x60
[  480.422159][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  480.427266][    C0]  ? get_rtnl_holder+0x144/0x190
[  480.432301][    C0]  ? process_scheduled_works+0x945/0x1830
[  480.438072][    C0]  linkwatch_event+0xe/0x60
[  480.442604][    C0]  process_scheduled_works+0xa2c/0x1830
[  480.448296][    C0]  ? __pfx_process_scheduled_works+0x10/0x10
[  480.454320][    C0]  ? __pfx__raw_spin_lock_irq+0x10/0x10
[  480.459906][    C0]  ? assign_work+0x364/0x3d0
[  480.464539][    C0]  worker_thread+0x86d/0xd40
[  480.469196][    C0]  ? rcu_is_watching+0x15/0xb0
[  480.473998][    C0]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  480.479942][    C0]  ? __kthread_parkme+0x169/0x1d0
[  480.485035][    C0]  ? __pfx_worker_thread+0x10/0x10
[  480.490180][    C0]  kthread+0x2f0/0x390
[  480.494277][    C0]  ? __pfx_worker_thread+0x10/0x10
[  480.499423][    C0]  ? __pfx_kthread+0x10/0x10
[  480.504041][    C0]  ret_from_fork+0x4b/0x80
[  480.509799][    C0]  ? __pfx_kthread+0x10/0x10
[  480.514418][    C0]  ret_from_fork_asm+0x1a/0x30
[  480.519228][    C0]  </TASK>
[  481.286198][    C0] DEBUG: waiting rtnl_mutex for 1603 jiffies.
[  481.292312][    C0] task:syz-executor    state:D stack:25840 pid:13055 tgid:13055 ppid:13047  flags:0x00004000
[  481.302563][    C0] Call Trace:
[  481.305873][    C0]  <TASK>
[  481.308833][    C0]  __schedule+0x1800/0x4a60
[  481.313393][    C0]  ? schedule+0x90/0x320
[  481.317684][    C0]  ? lock_release+0xbf/0xa30
[  481.322336][    C0]  ? __pfx___schedule+0x10/0x10
[  481.327234][    C0]  ? __pfx_lock_release+0x10/0x10
[  481.332300][    C0]  ? __mutex_trylock_common+0x92/0x2e0
[  481.337792][    C0]  ? schedule+0x90/0x320
[  481.342057][    C0]  schedule+0x14b/0x320
[  481.346240][    C0]  schedule_preempt_disabled+0x13/0x30
[  481.351724][    C0]  __mutex_lock+0x6a4/0xd70
[  481.356257][    C0]  ? __mutex_lock+0x527/0xd70
[  481.360958][    C0]  ? rtnetlink_rcv_msg+0x6eb/0xd00
[  481.366102][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  481.371152][    C0]  ? security_capable+0x90/0xb0
[  481.376030][    C0]  ? get_rtnl_holder+0x144/0x190
[  481.380998][    C0]  rtnetlink_rcv_msg+0x6eb/0xd00
[  481.385980][    C0]  ? rtnetlink_rcv_msg+0x1a7/0xd00
[  482.187806][    C0]  ? lock_release+0xbf/0xa30
[  482.192462][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  482.197952][    C0]  ? __pfx_lock_acquire+0x10/0x10
[  482.203001][    C0]  ? rcu_is_watching+0x15/0xb0
[  482.207784][    C0]  ? lock_acquire+0xe3/0x550
[  482.212404][    C0]  netlink_rcv_skb+0x1e3/0x430
[  482.217200][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  482.222681][    C0]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  482.228000][    C0]  ? net_generic+0x1f/0x240
[  482.232527][    C0]  ? netlink_deliver_tap+0x2e/0x1b0
[  482.237755][    C0]  netlink_unicast+0x7f0/0x990
[  482.242550][    C0]  ? __pfx_netlink_unicast+0x10/0x10
[  482.247858][    C0]  ? __virt_addr_valid+0x183/0x530
[  482.253000][    C0]  ? __check_object_size+0x49c/0x900
[  482.258299][    C0]  ? bpf_lsm_netlink_send+0x9/0x10
[  482.263438][    C0]  netlink_sendmsg+0x8e4/0xcb0
[  482.268235][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  482.273546][    C0]  ? aa_sock_msg_perm+0x91/0x160
[  482.278509][    C0]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  482.283806][    C0]  ? security_socket_sendmsg+0x87/0xb0
[  483.041790][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  483.047146][    C0]  __sock_sendmsg+0x221/0x270
[  483.051858][    C0]  __sys_sendto+0x3a4/0x4f0
[  483.056389][    C0]  ? __pfx___sys_sendto+0x10/0x10
[  483.061465][    C0]  ? rcu_is_watching+0x15/0xb0
[  483.066254][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  483.072610][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  483.078973][    C0]  ? rcu_is_watching+0x15/0xb0
[  483.083766][    C0]  __x64_sys_sendto+0xde/0x100
[  483.088550][    C0]  do_syscall_64+0xf3/0x230
[  483.093085][    C0]  ? clear_bhb_loop+0x35/0x90
[  483.097783][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  483.103696][    C0] RIP: 0033:0x7f1678d7796c
[  483.108126][    C0] RSP: 002b:00007ffd6ca3e5d0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  483.116562][    C0] RAX: ffffffffffffffda RBX: 00007f1679a34620 RCX: 00007f1678d7796c
[  483.124729][    C0] RDX: 0000000000000028 RSI: 00007f1679a34670 RDI: 0000000000000003
[  483.132714][    C0] RBP: 0000000000000000 R08: 00007ffd6ca3e624 R09: 000000000000000c
[  483.140702][    C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  483.804029][T12397] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  483.804351][T12397] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  483.888362][    C0] R13: 0000000000000000 R14: 00007f1679a34670 R15: 0000000000000000
[  483.896368][    C0]  </TASK>
[  483.899404][    C0] DEBUG: waiting rtnl_mutex for 505 jiffies.
[  483.905400][    C0] task:kworker/u8:9    state:D stack:20784 pid:2472  tgid:2472  ppid:2      flags:0x00004000
[  483.915686][    C0] Workqueue: ipv6_addrconf addrconf_dad_work
[  483.921698][    C0] Call Trace:
[  483.924987][    C0]  <TASK>
[  483.927935][    C0]  __schedule+0x1800/0x4a60
[  483.932471][    C0]  ? ret_from_fork_asm+0x1a/0x30
[  483.937526][    C0]  ? ret_from_fork_asm+0x1a/0x30
[  483.942498][    C0]  ? schedule+0x90/0x320
[  483.946766][    C0]  ? schedule+0x90/0x320
[  483.951027][    C0]  ? lock_release+0xbf/0xa30
[  483.955661][    C0]  ? __pfx___schedule+0x10/0x10
[  483.960534][    C0]  ? __pfx_lock_release+0x10/0x10
[  483.965581][    C0]  ? __mutex_trylock_common+0x92/0x2e0
[  483.971056][    C0]  ? kthread_data+0x52/0xd0
[  484.700589][    C0]  ? schedule+0x90/0x320
[  484.705064][    C0]  ? wq_worker_sleeping+0x66/0x240
[  484.710209][    C0]  ? schedule+0x90/0x320
[  484.714574][    C0]  schedule+0x14b/0x320
[  484.718754][    C0]  schedule_preempt_disabled+0x13/0x30
[  484.724234][    C0]  __mutex_lock+0x6a4/0xd70
[  484.728760][    C0]  ? __mutex_lock+0x527/0xd70
[  484.733545][    C0]  ? addrconf_dad_work+0xd0/0x16f0
[  484.738682][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  484.744248][    C0]  ? do_raw_spin_unlock+0x13c/0x8b0
[  484.749491][    C0]  ? get_rtnl_holder+0x144/0x190
[  484.754490][    C0]  addrconf_dad_work+0xd0/0x16f0
[  484.759472][    C0]  ? debug_object_deactivate+0x2d5/0x390
[  484.765215][    C0]  ? __pfx_lock_release+0x10/0x10
[  484.770362][    C0]  ? __pfx_addrconf_dad_work+0x10/0x10
[  484.775846][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  484.782207][    C0]  ? rcu_is_watching+0x15/0xb0
[  484.786988][    C0]  ? process_scheduled_works+0x945/0x1830
[  484.792747][    C0]  process_scheduled_works+0xa2c/0x1830
[  484.798345][    C0]  ? __pfx_process_scheduled_works+0x10/0x10
[  485.396151][   T55] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  485.405462][T12397] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  485.406047][   T55] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  485.406367][   T55] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  485.406625][   T55] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  485.407416][   T55] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  485.408365][   T55] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  485.409146][   T55] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  485.409522][   T55] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  485.410086][   T55] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  485.410325][   T55] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  485.410907][   T55] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  485.570462][    C0]  ? __pfx__raw_spin_lock_irq+0x10/0x10
[  485.576046][    C0]  ? assign_work+0x364/0x3d0
[  485.580685][    C0]  worker_thread+0x86d/0xd40
[  485.585333][    C0]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  486.266575][    C0]  ? __kthread_parkme+0x169/0x1d0
[  486.271676][    C0]  ? __pfx_worker_thread+0x10/0x10
[  486.276833][    C0]  kthread+0x2f0/0x390
[  486.277330][   T55] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  486.280941][    C0]  ? __pfx_worker_thread+0x10/0x10
[  486.288316][   T55] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  486.292954][    C0]  ? __pfx_kthread+0x10/0x10
[  486.300332][   T55] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  486.304456][    C0]  ret_from_fork+0x4b/0x80
[  486.312372][   T55] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  486.315772][    C0]  ? __pfx_kthread+0x10/0x10
[  486.323467][   T55] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[  486.327278][    C0]  ret_from_fork_asm+0x1a/0x30
[  486.339071][    C0]  </TASK>
[  486.342108][    C0] INFO: lockdep is turned off.
[  487.092375][   T55] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  487.937687][   T55] Bluetooth: hci1: command tx timeout
[  487.943160][   T55] Bluetooth: hci5: command tx timeout
[  489.361028][   T55] Bluetooth: hci6: command tx timeout
[  489.440253][ T2447] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  489.500996][ T7410] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  490.122053][   T55] Bluetooth: hci5: command tx timeout
[  490.127493][   T55] Bluetooth: hci1: command tx timeout
[  491.681990][T12397] Bluetooth: hci6: command tx timeout
[  491.708119][T13073] chnl_net:caif_netlink_parms(): no params data found
[  492.449227][T12397] Bluetooth: hci1: command tx timeout
[  492.454714][T12397] Bluetooth: hci5: command tx timeout
[  492.464142][ T2447] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  492.497225][T13055] chnl_net:caif_netlink_parms(): no params data found
[  493.907295][T12397] Bluetooth: hci6: command tx timeout
[  493.970606][T13099] chnl_net:caif_netlink_parms(): no params data found
[  494.670774][T12397] Bluetooth: hci1: command tx timeout
[  494.676252][T12397] Bluetooth: hci5: command tx timeout
[  494.724633][T13100] chnl_net:caif_netlink_parms(): no params data found
[  495.461394][T13055] bridge0: port 1(bridge_slave_0) entered blocking state
[  495.468521][T13055] bridge0: port 1(bridge_slave_0) entered disabled state
[  496.110391][T12397] Bluetooth: hci6: command tx timeout
[  496.146608][T13055] bridge_slave_0: entered allmulticast mode
[  496.153497][T13055] bridge_slave_0: entered promiscuous mode
[  496.160662][T13073] bridge0: port 1(bridge_slave_0) entered blocking state
[  496.167788][T13073] bridge0: port 1(bridge_slave_0) entered disabled state
[  496.174939][T13073] bridge_slave_0: entered allmulticast mode
[  496.181926][T13073] bridge_slave_0: entered promiscuous mode
[  496.189806][T13055] bridge0: port 2(bridge_slave_1) entered blocking state
[  496.196929][T13055] bridge0: port 2(bridge_slave_1) entered disabled state
[  496.204080][T13055] bridge_slave_1: entered allmulticast mode
[  496.211204][T13055] bridge_slave_1: entered promiscuous mode
[  496.916455][T13073] bridge0: port 2(bridge_slave_1) entered blocking state
[  496.923641][T13073] bridge0: port 2(bridge_slave_1) entered disabled state
[  496.930805][T13073] bridge_slave_1: entered allmulticast mode
[  496.937700][T13073] bridge_slave_1: entered promiscuous mode
[  497.594225][ T2447] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  497.648693][T13055] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  497.669252][T13100] bridge0: port 1(bridge_slave_0) entered blocking state
[  497.676358][T13100] bridge0: port 1(bridge_slave_0) entered disabled state
[  497.683616][T13100] bridge_slave_0: entered allmulticast mode
[  498.370410][T13100] bridge_slave_0: entered promiscuous mode
[  498.399886][T13055] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  499.084892][T13100] bridge0: port 2(bridge_slave_1) entered blocking state
[  499.092031][T13100] bridge0: port 2(bridge_slave_1) entered disabled state
[  499.099179][T13100] bridge_slave_1: entered allmulticast mode
[  499.679777][T13100] bridge_slave_1: entered promiscuous mode
[  499.752971][T13073] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  500.972940][T13100] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  500.982217][T13099] bridge0: port 1(bridge_slave_0) entered blocking state
[  500.989340][T13099] bridge0: port 1(bridge_slave_0) entered disabled state
[  500.996544][T13099] bridge_slave_0: entered allmulticast mode
[  501.003761][T13099] bridge_slave_0: entered promiscuous mode
[  501.011954][T13099] bridge0: port 2(bridge_slave_1) entered blocking state
[  501.019451][T13099] bridge0: port 2(bridge_slave_1) entered disabled state
[  501.026665][T13099] bridge_slave_1: entered allmulticast mode
[  501.033845][T13099] bridge_slave_1: entered promiscuous mode
[  501.059858][T13073] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  502.289862][ T1251] ieee802154 phy0 wpan0: encryption failed: -22
[  502.296205][ T1251] ieee802154 phy1 wpan1: encryption failed: -22
[  502.721000][T13055] team0: Port device team_slave_0 added
[  502.732720][T13097] chnl_net:caif_netlink_parms(): no params data found
[  504.808159][T13100] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  504.862234][T13055] team0: Port device team_slave_1 added
[  504.869347][T13073] team0: Port device team_slave_0 added
[  505.392979][T13099] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  505.413012][T13073] team0: Port device team_slave_1 added
[  505.420149][T13100] team0: Port device team_slave_0 added
[  506.549100][T13055] batman_adv: batadv0: Adding interface: batadv_slave_0
[  506.556079][T13055] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  506.581935][T13055] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  506.593882][T13055] batman_adv: batadv0: Adding interface: batadv_slave_1
[  506.600847][T13055] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  507.203443][T13055] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  507.218101][T13099] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  507.238482][T13100] team0: Port device team_slave_1 added
[  507.264790][T13073] batman_adv: batadv0: Adding interface: batadv_slave_0
[  507.271870][T13073] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  507.298586][T13073] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  507.950853][T13073] batman_adv: batadv0: Adding interface: batadv_slave_1
[  507.957828][T13073] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  507.983702][T13073] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  508.662550][T13097] bridge0: port 1(bridge_slave_0) entered blocking state
[  508.669696][T13097] bridge0: port 1(bridge_slave_0) entered disabled state
[  508.676906][T13097] bridge_slave_0: entered allmulticast mode
[  508.684259][T13097] bridge_slave_0: entered promiscuous mode
[  509.315124][T13097] bridge0: port 2(bridge_slave_1) entered blocking state
[  509.322303][T13097] bridge0: port 2(bridge_slave_1) entered disabled state
[  509.329834][T13097] bridge_slave_1: entered allmulticast mode
[  509.336689][T13097] bridge_slave_1: entered promiscuous mode
[  509.357484][T13073] hsr_slave_0: entered promiscuous mode
[  509.363842][T13073] hsr_slave_1: entered promiscuous mode
[  509.369944][T13073] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  509.377496][T13073] Cannot create hsr debugfs directory
[  510.016084][T13100] batman_adv: batadv0: Adding interface: batadv_slave_0
[  510.023073][T13100] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  510.048983][T13100] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  510.745751][T13099] team0: Port device team_slave_0 added
[  510.755627][T13055] hsr_slave_0: entered promiscuous mode
[  510.762120][T13055] hsr_slave_1: entered promiscuous mode
[  510.768427][T13055] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  510.776062][T13055] Cannot create hsr debugfs directory
[  510.782355][T13100] batman_adv: batadv0: Adding interface: batadv_slave_1
[  510.789301][T13100] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  510.815178][T13100] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  511.515681][T13099] team0: Port device team_slave_1 added
[  511.523915][T13097] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  512.262926][ T2447] bridge_slave_1: left allmulticast mode
[  512.268624][ T2447] bridge_slave_1: left promiscuous mode
[  512.274424][ T2447] bridge0: port 2(bridge_slave_1) entered disabled state
[  512.284111][ T2447] bridge_slave_0: left allmulticast mode
[  512.289760][ T2447] bridge_slave_0: left promiscuous mode
[  512.295427][ T2447] bridge0: port 1(bridge_slave_0) entered disabled state
[  513.835598][T12397] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  513.842942][T12397] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  513.850216][T12397] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  513.858184][T12397] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  513.865852][T12397] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  513.873197][T12397] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  515.964732][ T2447] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  515.975225][ T2447] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  515.985082][ T2447] bond0 (unregistering): Released all slaves
[  515.995745][ T2447] bond1 (unregistering): Released all slaves
[  516.006970][ T2447] bond2 (unregistering): Released all slaves
[  516.018676][T13097] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  516.644730][   T55] Bluetooth: hci0: command tx timeout
[  516.673141][    C0] DEBUG: waiting rtnl_mutex for 521 jiffies.
[  516.679265][    C0] task:syz-executor    state:D stack:22576 pid:13099 tgid:13099 ppid:13093  flags:0x00004000
[  516.689656][    C0] Call Trace:
[  516.692967][    C0]  <TASK>
[  516.695912][    C0]  __schedule+0x1800/0x4a60
[  516.700424][    C0]  ? schedule+0x90/0x320
[  516.704686][    C0]  ? schedule+0x90/0x320
[  516.708936][    C0]  ? lock_release+0xbf/0xa30
[  516.713542][    C0]  ? __pfx___schedule+0x10/0x10
[  516.718410][    C0]  ? __pfx_lock_release+0x10/0x10
[  516.723439][    C0]  ? __mutex_trylock_common+0x92/0x2e0
[  516.728903][    C0]  ? schedule+0x90/0x320
[  516.733143][    C0]  schedule+0x14b/0x320
[  516.737299][    C0]  schedule_preempt_disabled+0x13/0x30
[  516.742769][    C0]  __mutex_lock+0x6a4/0xd70
[  516.747340][    C0]  ? __mutex_lock+0x527/0xd70
[  516.752075][    C0]  ? rtnetlink_rcv_msg+0x6eb/0xd00
[  516.757237][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  516.762401][    C0]  ? security_capable+0x90/0xb0
[  516.767314][    C0]  ? get_rtnl_holder+0x144/0x190
[  516.772301][    C0]  rtnetlink_rcv_msg+0x6eb/0xd00
[  517.441126][    C0]  ? rtnetlink_rcv_msg+0x1a7/0xd00
[  517.446315][    C0]  ? lock_release+0xbf/0xa30
[  517.450949][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  517.456459][    C0]  ? __pfx_lock_acquire+0x10/0x10
[  517.461515][    C0]  ? rcu_is_watching+0x15/0xb0
[  517.466297][    C0]  ? lock_acquire+0xe3/0x550
[  517.470892][    C0]  netlink_rcv_skb+0x1e3/0x430
[  517.475673][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  517.481141][    C0]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  517.486431][    C0]  ? net_generic+0x1f/0x240
[  517.490928][    C0]  ? netlink_deliver_tap+0x2e/0x1b0
[  517.496126][    C0]  netlink_unicast+0x7f0/0x990
[  517.500909][    C0]  ? __pfx_netlink_unicast+0x10/0x10
[  517.506321][    C0]  ? __virt_addr_valid+0x183/0x530
[  517.511464][    C0]  ? __check_object_size+0x49c/0x900
[  517.516786][    C0]  ? bpf_lsm_netlink_send+0x9/0x10
[  517.521927][    C0]  netlink_sendmsg+0x8e4/0xcb0
[  517.526728][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  517.532065][    C0]  ? aa_sock_msg_perm+0x91/0x160
[  517.537113][    C0]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  518.222712][    C0]  ? security_socket_sendmsg+0x87/0xb0
[  518.228334][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  518.233666][    C0]  __sock_sendmsg+0x221/0x270
[  518.238388][    C0]  __sys_sendto+0x3a4/0x4f0
[  518.242916][    C0]  ? __pfx___sys_sendto+0x10/0x10
[  518.247996][    C0]  ? irqtime_account_irq+0xd4/0x1e0
[  518.253231][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  518.259667][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  518.266006][    C0]  __x64_sys_sendto+0xde/0x100
[  518.270774][    C0]  do_syscall_64+0xf3/0x230
[  518.275279][    C0]  ? clear_bhb_loop+0x35/0x90
[  518.279966][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  518.285885][    C0] RIP: 0033:0x7f729697796c
[  518.290315][    C0] RSP: 002b:00007ffc51305980 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  518.298745][    C0] RAX: ffffffffffffffda RBX: 00007f7297634620 RCX: 00007f729697796c
[  518.306731][    C0] RDX: 000000000000006c RSI: 00007f7297634670 RDI: 0000000000000003
[  518.314719][    C0] RBP: 0000000000000000 R08: 00007ffc513059d4 R09: 000000000000000c
[  518.974728][   T55] Bluetooth: hci0: command tx timeout
[  519.007290][    C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  519.015297][    C0] R13: 0000000000000000 R14: 00007f7297634670 R15: 0000000000000000
[  519.023414][    C0]  </TASK>
[  519.026451][    C0] DEBUG: waiting rtnl_mutex for 752 jiffies.
[  519.032435][    C0] task:syz-executor    state:D stack:22576 pid:13055 tgid:13055 ppid:1      flags:0x00000004
[  519.042601][    C0] Call Trace:
[  519.045879][    C0]  <TASK>
[  519.048807][    C0]  __schedule+0x1800/0x4a60
[  519.053315][    C0]  ? schedule+0x90/0x320
[  519.057556][    C0]  ? schedule+0x90/0x320
[  519.061817][    C0]  ? lock_release+0xbf/0xa30
[  519.066412][    C0]  ? __pfx___schedule+0x10/0x10
[  519.071272][    C0]  ? __pfx_lock_release+0x10/0x10
[  519.076329][    C0]  ? __mutex_trylock_common+0x92/0x2e0
[  519.081819][    C0]  ? schedule+0x90/0x320
[  519.086080][    C0]  schedule+0x14b/0x320
[  519.090262][    C0]  schedule_preempt_disabled+0x13/0x30
[  519.095743][    C0]  __mutex_lock+0x6a4/0xd70
[  519.100271][    C0]  ? __mutex_lock+0x527/0xd70
[  519.814470][    C0]  ? rtnetlink_rcv_msg+0x6eb/0xd00
[  519.819684][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  519.824837][    C0]  ? security_capable+0x90/0xb0
[  519.829717][    C0]  ? get_rtnl_holder+0x144/0x190
[  519.834686][    C0]  rtnetlink_rcv_msg+0x6eb/0xd00
[  519.839675][    C0]  ? rtnetlink_rcv_msg+0x1a7/0xd00
[  519.844922][    C0]  ? lock_release+0xbf/0xa30
[  519.849553][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  519.855055][    C0]  ? __pfx_lock_acquire+0x10/0x10
[  519.860120][    C0]  ? rcu_is_watching+0x15/0xb0
[  519.864915][    C0]  ? lock_acquire+0xe3/0x550
[  519.869549][    C0]  netlink_rcv_skb+0x1e3/0x430
[  519.874353][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  519.879849][    C0]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  519.885199][    C0]  ? net_generic+0x1f/0x240
[  519.889740][    C0]  ? netlink_deliver_tap+0x2e/0x1b0
[  519.894981][    C0]  netlink_unicast+0x7f0/0x990
[  519.899790][    C0]  ? __pfx_netlink_unicast+0x10/0x10
[  519.905105][    C0]  ? __virt_addr_valid+0x183/0x530
[  519.910330][    C0]  ? __check_object_size+0x49c/0x900
[  520.637973][    C0]  ? bpf_lsm_netlink_send+0x9/0x10
[  520.643154][    C0]  netlink_sendmsg+0x8e4/0xcb0
[  520.647980][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  520.653309][    C0]  ? aa_sock_msg_perm+0x91/0x160
[  520.658283][    C0]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  520.663596][    C0]  ? security_socket_sendmsg+0x87/0xb0
[  520.669102][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  520.674437][    C0]  __sock_sendmsg+0x221/0x270
[  520.679153][    C0]  __sys_sendto+0x3a4/0x4f0
[  520.683688][    C0]  ? __pfx___sys_sendto+0x10/0x10
[  520.688765][    C0]  ? rcu_is_watching+0x15/0xb0
[  520.693644][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  520.700020][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  520.706391][    C0]  ? rcu_is_watching+0x15/0xb0
[  520.711191][    C0]  __x64_sys_sendto+0xde/0x100
[  520.716066][    C0]  do_syscall_64+0xf3/0x230
[  520.720621][    C0]  ? clear_bhb_loop+0x35/0x90
[  520.725358][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  520.731275][    C0] RIP: 0033:0x7f1678d7796c
[  520.735711][    C0] RSP: 002b:00007ffd6ca3de10 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  521.432211][   T55] Bluetooth: hci0: command tx timeout
[  521.476096][    C0] RAX: ffffffffffffffda RBX: 00007f1679a34620 RCX: 00007f1678d7796c
[  521.484108][    C0] RDX: 000000000000006c RSI: 00007f1679a34670 RDI: 0000000000000003
[  521.492200][    C0] RBP: 0000000000000000 R08: 00007ffd6ca3de64 R09: 000000000000000c
[  521.500195][    C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  521.508191][    C0] R13: 0000000000000000 R14: 00007f1679a34670 R15: 0000000000000000
[  521.516205][    C0]  </TASK>
[  521.519244][    C0] DEBUG: waiting rtnl_mutex for 998 jiffies.
[  521.525239][    C0] task:syz-executor    state:D stack:22576 pid:13100 tgid:13100 ppid:13096  flags:0x00004002
[  521.535467][    C0] Call Trace:
[  521.538766][    C0]  <TASK>
[  521.541719][    C0]  __schedule+0x1800/0x4a60
[  521.546258][    C0]  ? schedule+0x90/0x320
[  521.550522][    C0]  ? schedule+0x90/0x320
[  521.554781][    C0]  ? lock_release+0xbf/0xa30
[  521.559399][    C0]  ? __pfx___schedule+0x10/0x10
[  521.564266][    C0]  ? __pfx_lock_release+0x10/0x10
[  521.569320][    C0]  ? __mutex_trylock_common+0x92/0x2e0
[  522.278123][    C0]  ? mutex_spin_on_owner+0x26c/0x330
[  522.283480][    C0]  ? schedule+0x90/0x320
[  522.287760][    C0]  schedule+0x14b/0x320
[  522.291967][    C0]  schedule_preempt_disabled+0x13/0x30
[  522.297451][    C0]  __mutex_lock+0x6a4/0xd70
[  522.301986][    C0]  ? __mutex_lock+0x527/0xd70
[  522.306706][    C0]  ? rtnetlink_rcv_msg+0x6eb/0xd00
[  522.306738][T12060] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  522.311877][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  522.319302][T12060] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  522.323805][    C0]  ? security_capable+0x90/0xb0
[  522.323845][    C0]  ? get_rtnl_holder+0x144/0x190
[  522.323891][    C0]  rtnetlink_rcv_msg+0x6eb/0xd00
[  522.323926][    C0]  ? rtnetlink_rcv_msg+0x1a7/0xd00
[  522.323961][    C0]  ? lock_release+0xbf/0xa30
[  522.323995][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  522.324028][    C0]  ? __pfx_lock_acquire+0x10/0x10
[  522.324060][    C0]  ? rcu_is_watching+0x15/0xb0
[  522.324084][    C0]  ? lock_acquire+0xe3/0x550
[  522.324122][    C0]  netlink_rcv_skb+0x1e3/0x430
[  522.324158][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  522.324193][    C0]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  522.324239][    C0]  ? net_generic+0x1f/0x240
[  522.324269][    C0]  ? netlink_deliver_tap+0x2e/0x1b0
[  522.324305][    C0]  netlink_unicast+0x7f0/0x990
[  522.324343][    C0]  ? __pfx_netlink_unicast+0x10/0x10
[  522.324373][    C0]  ? __virt_addr_valid+0x183/0x530
[  522.324399][    C0]  ? __check_object_size+0x49c/0x900
[  522.324427][    C0]  ? bpf_lsm_netlink_send+0x9/0x10
[  522.324464][    C0]  netlink_sendmsg+0x8e4/0xcb0
[  522.324519][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  522.324556][    C0]  ? aa_sock_msg_perm+0x91/0x160
[  522.324585][    C0]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  522.324607][    C0]  ? security_socket_sendmsg+0x87/0xb0
[  522.324643][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  522.324676][    C0]  __sock_sendmsg+0x221/0x270
[  522.324710][    C0]  __sys_sendto+0x3a4/0x4f0
[  522.324738][    C0]  ? __pfx___sys_sendto+0x10/0x10
[  522.324776][    C0]  ? rcu_is_watching+0x15/0xb0
[  522.324798][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  522.324831][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  522.324864][    C0]  ? rcu_is_watching+0x15/0xb0
[  522.324894][    C0]  __x64_sys_sendto+0xde/0x100
[  522.324920][    C0]  do_syscall_64+0xf3/0x230
[  522.324953][    C0]  ? clear_bhb_loop+0x35/0x90
[  522.324981][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  522.325007][    C0] RIP: 0033:0x7f36df97796c
[  522.325028][    C0] RSP: 002b:00007ffc9c4d07e0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  522.325057][    C0] RAX: ffffffffffffffda RBX: 00007f36e0634620 RCX: 00007f36df97796c
[  522.325075][    C0] RDX: 0000000000000020 RSI: 00007f36e0634670 RDI: 0000000000000003
[  522.325092][    C0] RBP: 0000000000000000 R08: 00007ffc9c4d0834 R09: 000000000000000c
[  522.325110][    C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  522.325125][    C0] R13: 0000000000000000 R14: 00007f36e0634670 R15: 0000000000000000
[  522.325152][    C0]  </TASK>
[  522.325163][    C0] DEBUG: waiting rtnl_mutex for 1003 jiffies.
[  522.325178][    C0] task:kworker/u8:2    state:D stack:21096 pid:35    tgid:35    ppid:2      flags:0x00004000
[  522.325232][    C0] Workqueue: ipv6_addrconf addrconf_dad_work
[  522.325261][    C0] Call Trace:
[  522.325269][    C0]  <TASK>
[  522.325298][    C0]  __schedule+0x1800/0x4a60
[  522.325332][    C0]  ? schedule+0x90/0x320
[  522.325357][    C0]  ? schedule+0x90/0x320
[  522.325380][    C0]  ? lock_release+0xbf/0xa30
[  522.325413][    C0]  ? __pfx___schedule+0x10/0x10
[  522.325440][    C0]  ? __pfx_lock_release+0x10/0x10
[  522.325473][    C0]  ? __mutex_trylock_common+0x92/0x2e0
[  522.325498][    C0]  ? kthread_data+0x52/0xd0
[  522.325528][    C0]  ? schedule+0x90/0x320
[  522.325552][    C0]  ? wq_worker_sleeping+0x66/0x240
[  522.325585][    C0]  ? schedule+0x90/0x320
[  522.325609][    C0]  schedule+0x14b/0x320
[  522.325635][    C0]  schedule_preempt_disabled+0x13/0x30
[  522.325661][    C0]  __mutex_lock+0x6a4/0xd70
[  522.325693][    C0]  ? __mutex_lock+0x527/0xd70
[  522.325722][    C0]  ? addrconf_dad_work+0xd0/0x16f0
[  522.325750][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  522.325785][    C0]  ? get_rtnl_holder+0x144/0x190
[  522.325822][    C0]  addrconf_dad_work+0xd0/0x16f0
[  522.325852][    C0]  ? debug_object_deactivate+0x2d5/0x390
[  522.325883][    C0]  ? __pfx_lock_release+0x10/0x10
[  522.325934][    C0]  ? __pfx_addrconf_dad_work+0x10/0x10
[  522.325964][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  522.326001][    C0]  ? rcu_is_watching+0x15/0xb0
[  522.326026][    C0]  ? process_scheduled_works+0x945/0x1830
[  522.326058][    C0]  process_scheduled_works+0xa2c/0x1830
[  522.326108][    C0]  ? __pfx_process_scheduled_works+0x10/0x10
[  522.326143][    C0]  ? __pfx__raw_spin_lock_irq+0x10/0x10
[  522.326171][    C0]  ? assign_work+0x364/0x3d0
[  522.326204][    C0]  worker_thread+0x86d/0xd40
[  522.326247][    C0]  ? __kthread_parkme+0x169/0x1d0
[  522.326282][    C0]  ? __pfx_worker_thread+0x10/0x10
[  522.326314][    C0]  kthread+0x2f0/0x390
[  522.326337][    C0]  ? __pfx_worker_thread+0x10/0x10
[  522.326368][    C0]  ? __pfx_kthread+0x10/0x10
[  522.326390][    C0]  ret_from_fork+0x4b/0x80
[  522.326423][    C0]  ? __pfx_kthread+0x10/0x10
[  522.326446][    C0]  ret_from_fork_asm+0x1a/0x30
[  522.326489][    C0]  </TASK>
[  522.326502][    C0] INFO: lockdep is turned off.
[  523.858574][    C0] DEBUG: waiting rtnl_mutex for 1159 jiffies.
[  523.881619][T12397] Bluetooth: hci0: command tx timeout
[  523.882043][    C0] task:syz-executor    state:D
[  523.888244][T12060] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  523.892762][    C0]  stack:22576 pid:13073 tgid:13073 ppid:1      flags:0x00000004
[  523.898364][T12060] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  523.901903][    C0] Call Trace:
[  523.907637][T12060] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  523.911749][    C0]  <TASK>
[  523.918401][T12060] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  523.924376][    C0]  __schedule+0x1800/0x4a60
[  526.335011][T12060] Bluetooth: hci2: command tx timeout
[  527.216687][    C0]  ? schedule+0x90/0x320
[  527.220959][    C0]  ? schedule+0x90/0x320
[  527.225201][    C0]  ? lock_release+0xbf/0xa30
[  527.229794][    C0]  ? __pfx___schedule+0x10/0x10
[  527.234644][    C0]  ? __pfx_lock_release+0x10/0x10
[  527.239673][    C0]  ? __mutex_trylock_common+0x92/0x2e0
[  527.245217][    C0]  ? schedule+0x90/0x320
[  527.249489][    C0]  schedule+0x14b/0x320
[  527.253674][    C0]  schedule_preempt_disabled+0x13/0x30
[  527.259242][    C0]  __mutex_lock+0x6a4/0xd70
[  527.263767][    C0]  ? __mutex_lock+0x527/0xd70
[  527.268472][    C0]  ? rtnetlink_rcv_msg+0x6eb/0xd00
[  527.273630][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  527.278680][    C0]  ? security_capable+0x90/0xb0
[  527.283555][    C0]  ? get_rtnl_holder+0x144/0x190
[  527.288529][    C0]  rtnetlink_rcv_msg+0x6eb/0xd00
[  527.984868][    C0]  ? rtnetlink_rcv_msg+0x1a7/0xd00
[  527.990036][    C0]  ? lock_release+0xbf/0xa30
[  527.994661][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  528.000148][    C0]  ? __pfx_lock_acquire+0x10/0x10
[  528.005201][    C0]  ? rcu_is_watching+0x15/0xb0
[  528.009996][    C0]  ? lock_acquire+0xe3/0x550
[  528.014659][    C0]  netlink_rcv_skb+0x1e3/0x430
[  528.019439][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  528.024903][    C0]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  528.030195][    C0]  ? net_generic+0x1f/0x240
[  528.034718][    C0]  ? netlink_deliver_tap+0x2e/0x1b0
[  528.039933][    C0]  netlink_unicast+0x7f0/0x990
[  528.044736][    C0]  ? __pfx_netlink_unicast+0x10/0x10
[  528.050049][    C0]  ? __virt_addr_valid+0x183/0x530
[  528.055182][    C0]  ? __check_object_size+0x49c/0x900
[  528.060488][    C0]  ? bpf_lsm_netlink_send+0x9/0x10
[  528.065628][    C0]  netlink_sendmsg+0x8e4/0xcb0
[  528.070426][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  528.075740][    C0]  ? aa_sock_msg_perm+0x91/0x160
[  528.080700][    C0]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  528.720220][T12060] Bluetooth: hci2: command tx timeout
[  528.761853][    C0]  ? security_socket_sendmsg+0x87/0xb0
[  528.767363][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  528.772685][    C0]  __sock_sendmsg+0x221/0x270
[  528.777406][    C0]  __sys_sendto+0x3a4/0x4f0
[  528.781934][    C0]  ? __pfx___sys_sendto+0x10/0x10
[  528.786974][    C0]  ? rcu_is_watching+0x15/0xb0
[  528.791756][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  528.798094][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  528.804447][    C0]  ? rcu_is_watching+0x15/0xb0
[  528.809231][    C0]  __x64_sys_sendto+0xde/0x100
[  528.814006][    C0]  do_syscall_64+0xf3/0x230
[  528.818530][    C0]  ? clear_bhb_loop+0x35/0x90
[  528.823241][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  528.829182][    C0] RIP: 0033:0x7f00d157796c
[  528.833627][    C0] RSP: 002b:00007ffc0c497480 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  528.842071][    C0] RAX: ffffffffffffffda RBX: 00007f00d2234620 RCX: 00007f00d157796c
[  528.850055][    C0] RDX: 0000000000000050 RSI: 00007f00d2234670 RDI: 0000000000000003
[  529.507223][    C0] RBP: 0000000000000000 R08: 00007ffc0c4974d4 R09: 000000000000000c
[  529.515267][    C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  529.523281][    C0] R13: 0000000000000000 R14: 00007f00d2234670 R15: 0000000000000000
[  529.531310][    C0]  </TASK>
[  529.534340][    C0] DEBUG: waiting rtnl_mutex for 1726 jiffies.
[  529.540398][    C0] task:kworker/0:5     state:D stack:20880 pid:5155  tgid:5155  ppid:2      flags:0x00004000
[  529.550555][    C0] Workqueue: events switchdev_deferred_process_work
[  529.557163][    C0] Call Trace:
[  529.560432][    C0]  <TASK>
[  529.563379][    C0]  __schedule+0x1800/0x4a60
[  529.567888][    C0]  ? schedule+0x90/0x320
[  529.572125][    C0]  ? schedule+0x90/0x320
[  529.576359][    C0]  ? lock_release+0xbf/0xa30
[  529.580971][    C0]  ? __pfx___schedule+0x10/0x10
[  529.585815][    C0]  ? _raw_spin_lock_irq+0xdf/0x120
[  529.590926][    C0]  ? __pfx_lock_release+0x10/0x10
[  529.595976][    C0]  ? kick_pool+0x45c/0x620
[  529.600421][    C0]  ? schedule+0x90/0x320
[  529.604680][    C0]  ? rcu_is_watching+0x15/0xb0
[  530.292902][    C0]  ? schedule+0x90/0x320
[  530.297211][    C0]  schedule+0x14b/0x320
[  530.301403][    C0]  schedule_preempt_disabled+0x13/0x30
[  530.306895][    C0]  __mutex_lock+0x6a4/0xd70
[  530.311436][    C0]  ? __mutex_lock+0x527/0xd70
[  530.316134][    C0]  ? switchdev_deferred_process_work+0xe/0x20
[  530.322233][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  530.327294][    C0]  ? get_rtnl_holder+0x144/0x190
[  530.332239][    C0]  ? process_scheduled_works+0x945/0x1830
[  530.337971][    C0]  switchdev_deferred_process_work+0xe/0x20
[  530.343863][    C0]  process_scheduled_works+0xa2c/0x1830
[  530.349419][    C0]  ? __pfx_process_scheduled_works+0x10/0x10
[  530.355397][    C0]  ? __pfx__raw_spin_lock_irq+0x10/0x10
[  530.360935][    C0]  ? assign_work+0x364/0x3d0
[  530.365525][    C0]  worker_thread+0x86d/0xd40
[  530.370115][    C0]  ? rcu_is_watching+0x15/0xb0
[  530.374888][    C0]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  530.380775][    C0]  ? __kthread_parkme+0x169/0x1d0
[  530.385814][    C0]  ? __pfx_worker_thread+0x10/0x10
[  530.390957][    C0]  kthread+0x2f0/0x390
[  531.068677][T12060] Bluetooth: hci2: command tx timeout
[  531.095045][    C0]  ? __pfx_worker_thread+0x10/0x10
[  531.100195][    C0]  ? __pfx_kthread+0x10/0x10
[  531.104818][    C0]  ret_from_fork+0x4b/0x80
[  531.109271][    C0]  ? __pfx_kthread+0x10/0x10
[  531.113882][    C0]  ret_from_fork_asm+0x1a/0x30
[  531.118670][    C0]  </TASK>
[  531.121693][    C0] DEBUG: waiting rtnl_mutex for 1805 jiffies.
[  531.127743][    C0] task:kworker/0:0     state:D stack:23112 pid:8     tgid:8     ppid:2      flags:0x00004000
[  531.137895][    C0] Workqueue: events linkwatch_event
[  531.143088][    C0] Call Trace:
[  531.146369][    C0]  <TASK>
[  531.149308][    C0]  __schedule+0x1800/0x4a60
[  531.153807][    C0]  ? schedule+0x90/0x320
[  531.158059][    C0]  ? schedule+0x90/0x320
[  531.162293][    C0]  ? lock_release+0xbf/0xa30
[  531.166896][    C0]  ? __pfx___schedule+0x10/0x10
[  531.171766][    C0]  ? _raw_spin_lock_irq+0xdf/0x120
[  531.176892][    C0]  ? __pfx_lock_release+0x10/0x10
[  531.181931][    C0]  ? kick_pool+0x45c/0x620
[  531.186370][    C0]  ? schedule+0x90/0x320
[  531.863308][    C0]  ? rcu_is_watching+0x15/0xb0
[  531.868146][    C0]  ? schedule+0x90/0x320
[  531.872413][    C0]  schedule+0x14b/0x320
[  531.876598][    C0]  schedule_preempt_disabled+0x13/0x30
[  531.882100][    C0]  __mutex_lock+0x6a4/0xd70
[  531.886607][    C0]  ? __mutex_lock+0x527/0xd70
[  531.891278][    C0]  ? linkwatch_event+0xe/0x60
[  531.895947][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  531.900971][    C0]  ? get_rtnl_holder+0x144/0x190
[  531.905910][    C0]  ? process_scheduled_works+0x945/0x1830
[  531.911629][    C0]  linkwatch_event+0xe/0x60
[  531.916124][    C0]  process_scheduled_works+0xa2c/0x1830
[  531.921702][    C0]  ? __pfx_process_scheduled_works+0x10/0x10
[  531.927716][    C0]  ? __pfx__raw_spin_lock_irq+0x10/0x10
[  531.933311][    C0]  ? assign_work+0x364/0x3d0
[  531.937984][    C0]  worker_thread+0x86d/0xd40
[  531.942631][    C0]  ? __kthread_parkme+0x169/0x1d0
[  531.947710][    C0]  ? __pfx_worker_thread+0x10/0x10
[  531.952871][    C0]  kthread+0x2f0/0x390
[  531.957066][    C0]  ? __pfx_worker_thread+0x10/0x10
[  531.962217][    C0]  ? __pfx_kthread+0x10/0x10
[  532.630250][    C0]  ret_from_fork+0x4b/0x80
[  532.634737][    C0]  ? __pfx_kthread+0x10/0x10
[  532.639355][    C0]  ret_from_fork_asm+0x1a/0x30
[  532.644167][    C0]  </TASK>
[  532.647213][    C0] DEBUG: waiting rtnl_mutex for 1885 jiffies.
[  532.653291][    C0] task:syz-executor    state:D stack:21424 pid:12787 tgid:12787 ppid:1      flags:0x00004002
[  532.663481][    C0] Call Trace:
[  532.666753][    C0]  <TASK>
[  532.669679][    C0]  __schedule+0x1800/0x4a60
[  532.674272][    C0]  ? schedule+0x90/0x320
[  532.678520][    C0]  ? schedule+0x90/0x320
[  532.682764][    C0]  ? lock_release+0xbf/0xa30
[  532.687389][    C0]  ? __pfx___schedule+0x10/0x10
[  532.692261][    C0]  ? __pfx_lock_release+0x10/0x10
[  532.697328][    C0]  ? __mutex_trylock_common+0x92/0x2e0
[  532.702810][    C0]  ? schedule+0x90/0x320
[  532.707075][    C0]  schedule+0x14b/0x320
[  532.711253][    C0]  schedule_preempt_disabled+0x13/0x30
[  532.716736][    C0]  __mutex_lock+0x6a4/0xd70
[  532.721265][    C0]  ? wake_up_q+0xdc/0x120
[  532.725617][    C0]  ? __mutex_lock+0x527/0xd70
[  533.367737][   T55] Bluetooth: hci2: command tx timeout
[  533.398599][    C0]  ? netdev_run_todo+0x89e/0x1000
[  533.403670][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  533.408724][    C0]  ? __init_swait_queue_head+0xae/0x150
[  533.414306][    C0]  ? get_rtnl_holder+0x144/0x190
[  533.419277][    C0]  netdev_run_todo+0x89e/0x1000
[  533.424132][    C0]  ? __pfx_netdev_run_todo+0x10/0x10
[  533.429411][    C0]  ? netdev_state_change+0xa8/0x1a0
[  533.434649][    C0]  ? __pfx_netdev_state_change+0x10/0x10
[  533.440284][    C0]  ? tun_chr_close+0x108/0x1b0
[  533.445047][    C0]  ? kfree+0x149/0x360
[  533.449110][    C0]  tun_chr_close+0x13a/0x1b0
[  533.453709][    C0]  ? __pfx_tun_chr_close+0x10/0x10
[  533.458821][    C0]  __fput+0x24a/0x8a0
[  533.462830][    C0]  task_work_run+0x24f/0x310
[  533.467452][    C0]  ? __pfx_task_work_run+0x10/0x10
[  533.472589][    C0]  ? do_exit+0xa2a/0x27f0
[  533.476954][    C0]  ? kmem_cache_free+0x145/0x350
[  533.481916][    C0]  do_exit+0xa2f/0x27f0
[  533.486088][    C0]  ? lock_release+0xbf/0xa30
[  533.490709][    C0]  ? __pfx_do_exit+0x10/0x10
[  534.181267][    C0]  ? __pfx_lock_release+0x10/0x10
[  534.186442][    C0]  ? zap_other_threads+0x37e/0x3e0
[  534.191664][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  534.198041][    C0]  ? rcu_is_watching+0x15/0xb0
[  534.202840][    C0]  do_group_exit+0x207/0x2c0
[  534.207432][    C0]  __x64_sys_exit_group+0x3f/0x40
[  534.212462][    C0]  x64_sys_call+0x26c3/0x26d0
[  534.217134][    C0]  do_syscall_64+0xf3/0x230
[  534.221636][    C0]  ? clear_bhb_loop+0x35/0x90
[  534.226320][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  534.232225][    C0] RIP: 0033:0x7fe7dcf75bd9
[  534.236634][    C0] RSP: 002b:00007ffc3702cec8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[  534.245057][    C0] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fe7dcf75bd9
[  534.253055][    C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000043
[  534.261046][    C0] RBP: 00007fe7dcfd50a0 R08: 00007ffc3702ac67 R09: 0000000000000003
[  534.269035][    C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  534.277023][    C0] R13: 0000000000000003 R14: 00000000ffffffff R15: 00007ffc3702d0b0
[  534.981358][    C0]  </TASK>
[  534.984443][    C0] DEBUG: waiting rtnl_mutex for 2044 jiffies.
[  534.990544][    C0] task:syz-executor    state:D stack:25840 pid:13137 tgid:13137 ppid:13136  flags:0x00000000
[  535.000739][    C0] Call Trace:
[  535.004022][    C0]  <TASK>
[  535.006966][    C0]  __schedule+0x1800/0x4a60
[  535.011568][    C0]  ? schedule+0x90/0x320
[  535.015894][    C0]  ? schedule+0x90/0x320
[  535.020135][    C0]  ? lock_release+0xbf/0xa30
[  535.024731][    C0]  ? __pfx___schedule+0x10/0x10
[  535.029581][    C0]  ? __pfx_lock_release+0x10/0x10
[  535.034625][    C0]  ? __mutex_trylock_common+0x92/0x2e0
[  535.040088][    C0]  ? schedule+0x90/0x320
[  535.044343][    C0]  schedule+0x14b/0x320
[  535.048532][    C0]  schedule_preempt_disabled+0x13/0x30
[  535.054012][    C0]  __mutex_lock+0x6a4/0xd70
[  535.058544][    C0]  ? __mutex_lock+0x527/0xd70
[  535.063250][    C0]  ? rtnetlink_rcv_msg+0x6eb/0xd00
[  535.068396][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  535.073460][    C0]  ? security_capable+0x90/0xb0
[  535.078341][    C0]  ? get_rtnl_holder+0x144/0x190
[  535.779185][    C0]  rtnetlink_rcv_msg+0x6eb/0xd00
[  535.784200][    C0]  ? rtnetlink_rcv_msg+0x1a7/0xd00
[  535.789359][    C0]  ? lock_release+0xbf/0xa30
[  535.793992][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  535.799601][    C0]  ? __pfx_lock_acquire+0x10/0x10
[  535.804668][    C0]  ? rcu_is_watching+0x15/0xb0
[  535.809454][    C0]  ? lock_acquire+0xe3/0x550
[  535.814053][    C0]  netlink_rcv_skb+0x1e3/0x430
[  535.818823][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  535.824283][    C0]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  535.829585][    C0]  ? net_generic+0x1f/0x240
[  535.834090][    C0]  ? netlink_deliver_tap+0x2e/0x1b0
[  535.839292][    C0]  netlink_unicast+0x7f0/0x990
[  535.844074][    C0]  ? __pfx_netlink_unicast+0x10/0x10
[  535.849390][    C0]  ? __virt_addr_valid+0x183/0x530
[  535.854523][    C0]  ? __check_object_size+0x49c/0x900
[  535.859857][    C0]  ? bpf_lsm_netlink_send+0x9/0x10
[  535.865014][    C0]  netlink_sendmsg+0x8e4/0xcb0
[  535.869833][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  535.875191][    C0]  ? count_memcg_event_mm+0x94/0x420
[  536.594330][    C0]  ? aa_sock_msg_perm+0x91/0x160
[  536.599328][    C0]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  536.604645][    C0]  ? security_socket_sendmsg+0x87/0xb0
[  536.610139][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  536.615475][    C0]  __sock_sendmsg+0x221/0x270
[  536.620228][    C0]  __sys_sendto+0x3a4/0x4f0
[  536.624735][    C0]  ? __pfx___sys_sendto+0x10/0x10
[  536.629772][    C0]  ? __pfx_lock_acquire+0x10/0x10
[  536.634821][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  536.641150][    C0]  ? __pfx___up_read+0x10/0x10
[  536.645907][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  536.652231][    C0]  ? rcu_is_watching+0x15/0xb0
[  536.657002][    C0]  __x64_sys_sendto+0xde/0x100
[  536.661802][    C0]  do_syscall_64+0xf3/0x230
[  536.666340][    C0]  ? clear_bhb_loop+0x35/0x90
[  536.671060][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  536.676974][    C0] RIP: 0033:0x7f125a97796c
[  536.681410][    C0] RSP: 002b:00007ffc16de0bb0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  536.689847][    C0] RAX: ffffffffffffffda RBX: 00007f125b634620 RCX: 00007f125a97796c
[  537.428905][    C0] RDX: 0000000000000028 RSI: 00007f125b634670 RDI: 0000000000000003
[  537.436937][    C0] RBP: 0000000000000000 R08: 00007ffc16de0c04 R09: 000000000000000c
[  537.444942][    C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  537.452939][    C0] R13: 0000000000000000 R14: 00007f125b634670 R15: 0000000000000000
[  537.460959][    C0]  </TASK>
[  537.463978][    C0] DEBUG: waiting rtnl_mutex for 1513 jiffies.
[  537.470030][    C0] task:syz-executor    state:D stack:22576 pid:13097 tgid:13097 ppid:13095  flags:0x00000000
[  537.480184][    C0] Call Trace:
[  537.483454][    C0]  <TASK>
[  537.486388][    C0]  __schedule+0x1800/0x4a60
[  537.490917][    C0]  ? schedule+0x90/0x320
[  537.495182][    C0]  ? schedule+0x90/0x320
[  537.499446][    C0]  ? lock_release+0xbf/0xa30
[  537.504068][    C0]  ? __pfx___schedule+0x10/0x10
[  537.508944][    C0]  ? __pfx_lock_release+0x10/0x10
[  537.514001][    C0]  ? __mutex_trylock_common+0x92/0x2e0
[  537.519488][    C0]  ? schedule+0x90/0x320
[  537.523751][    C0]  schedule+0x14b/0x320
[  537.527931][    C0]  schedule_preempt_disabled+0x13/0x30
[  538.251275][    C0]  __mutex_lock+0x6a4/0xd70
[  538.255873][    C0]  ? __mutex_lock+0x527/0xd70
[  538.260604][    C0]  ? rtnetlink_rcv_msg+0x6eb/0xd00
[  538.265747][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  538.270797][    C0]  ? security_capable+0x90/0xb0
[  538.275649][    C0]  ? get_rtnl_holder+0x144/0x190
[  538.280606][    C0]  rtnetlink_rcv_msg+0x6eb/0xd00
[  538.285542][    C0]  ? rtnetlink_rcv_msg+0x1a7/0xd00
[  538.290662][    C0]  ? lock_release+0xbf/0xa30
[  538.295272][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  538.300730][    C0]  ? __pfx_lock_acquire+0x10/0x10
[  538.305767][    C0]  ? rcu_is_watching+0x15/0xb0
[  538.310552][    C0]  ? lock_acquire+0xe3/0x550
[  538.315177][    C0]  netlink_rcv_skb+0x1e3/0x430
[  538.319974][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  538.325461][    C0]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  538.330784][    C0]  ? net_generic+0x1f/0x240
[  538.335309][    C0]  ? netlink_deliver_tap+0x2e/0x1b0
[  538.340538][    C0]  netlink_unicast+0x7f0/0x990
[  538.345340][    C0]  ? __pfx_netlink_unicast+0x10/0x10
[  538.350654][    C0]  ? __virt_addr_valid+0x183/0x530
[  539.049437][    C0]  ? __check_object_size+0x49c/0x900
[  539.054787][    C0]  ? bpf_lsm_netlink_send+0x9/0x10
[  539.059961][    C0]  netlink_sendmsg+0x8e4/0xcb0
[  539.064770][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  539.070108][    C0]  ? aa_sock_msg_perm+0x91/0x160
[  539.075099][    C0]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  539.080376][    C0]  ? security_socket_sendmsg+0x87/0xb0
[  539.085832][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  539.091131][    C0]  __sock_sendmsg+0x221/0x270
[  539.095836][    C0]  __sys_sendto+0x3a4/0x4f0
[  539.100404][    C0]  ? __pfx___sys_sendto+0x10/0x10
[  539.105498][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  539.111871][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  539.118222][    C0]  ? rcu_is_watching+0x15/0xb0
[  539.123002][    C0]  __x64_sys_sendto+0xde/0x100
[  539.127876][    C0]  do_syscall_64+0xf3/0x230
[  539.132429][    C0]  ? clear_bhb_loop+0x35/0x90
[  539.137127][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  539.143040][    C0] RIP: 0033:0x7fa23997796c
[  539.147478][    C0] RSP: 002b:00007ffece22be40 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  539.843021][    C0] RAX: ffffffffffffffda RBX: 00007fa23a634620 RCX: 00007fa23997796c
[  539.851060][    C0] RDX: 0000000000000068 RSI: 00007fa23a634670 RDI: 0000000000000003
[  539.859060][    C0] RBP: 0000000000000000 R08: 00007ffece22be94 R09: 000000000000000c
[  539.867058][    C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  539.875090][    C0] R13: 0000000000000000 R14: 00007fa23a634670 R15: 0000000000000000
[  539.883186][    C0]  </TASK>
[  539.886235][    C0] DEBUG: waiting rtnl_mutex for 1601 jiffies.
[  539.892318][    C0] task:syz-executor    state:D stack:25840 pid:13140 tgid:13140 ppid:13139  flags:0x00000000
[  539.902512][    C0] Call Trace:
[  539.905803][    C0]  <TASK>
[  539.908752][    C0]  __schedule+0x1800/0x4a60
[  539.913296][    C0]  ? schedule+0x90/0x320
[  539.917579][    C0]  ? schedule+0x90/0x320
[  539.921847][    C0]  ? lock_release+0xbf/0xa30
[  539.926468][    C0]  ? __pfx___schedule+0x10/0x10
[  539.931352][    C0]  ? __pfx_lock_release+0x10/0x10
[  539.936405][    C0]  ? __mutex_trylock_common+0x92/0x2e0
[  539.941890][    C0]  ? schedule+0x90/0x320
[  540.656119][    C0]  schedule+0x14b/0x320
[  540.660350][    C0]  schedule_preempt_disabled+0x13/0x30
[  540.665859][    C0]  __mutex_lock+0x6a4/0xd70
[  540.670402][    C0]  ? __mutex_lock+0x527/0xd70
[  540.675109][    C0]  ? rtnetlink_rcv_msg+0x6eb/0xd00
[  540.680248][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  540.685302][    C0]  ? security_capable+0x90/0xb0
[  540.690182][    C0]  ? get_rtnl_holder+0x144/0x190
[  540.695150][    C0]  rtnetlink_rcv_msg+0x6eb/0xd00
[  540.700110][    C0]  ? rtnetlink_rcv_msg+0x1a7/0xd00
[  540.705264][    C0]  ? lock_release+0xbf/0xa30
[  540.709881][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  540.715376][    C0]  ? __pfx_lock_acquire+0x10/0x10
[  540.720422][    C0]  ? rcu_is_watching+0x15/0xb0
[  540.725217][    C0]  ? lock_acquire+0xe3/0x550
[  540.729861][    C0]  netlink_rcv_skb+0x1e3/0x430
[  540.734657][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  540.740142][    C0]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  540.745489][    C0]  ? net_generic+0x1f/0x240
[  540.750038][    C0]  ? netlink_deliver_tap+0x2e/0x1b0
[  540.755283][    C0]  netlink_unicast+0x7f0/0x990
[  541.460544][    C0]  ? __pfx_netlink_unicast+0x10/0x10
[  541.465909][    C0]  ? __virt_addr_valid+0x183/0x530
[  541.471066][    C0]  ? __check_object_size+0x49c/0x900
[  541.476379][    C0]  ? bpf_lsm_netlink_send+0x9/0x10
[  541.481523][    C0]  netlink_sendmsg+0x8e4/0xcb0
[  541.486330][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  541.491647][    C0]  ? count_memcg_event_mm+0x94/0x420
[  541.496969][    C0]  ? aa_sock_msg_perm+0x91/0x160
[  541.501933][    C0]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  541.507240][    C0]  ? security_socket_sendmsg+0x87/0xb0
[  541.512734][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  541.518053][    C0]  __sock_sendmsg+0x221/0x270
[  541.522792][    C0]  __sys_sendto+0x3a4/0x4f0
[  541.527331][    C0]  ? __pfx___sys_sendto+0x10/0x10
[  541.532385][    C0]  ? __pfx_lock_acquire+0x10/0x10
[  541.537446][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  541.543802][    C0]  ? __pfx___up_read+0x10/0x10
[  541.548590][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  541.554947][    C0]  ? rcu_is_watching+0x15/0xb0
[  541.559729][    C0]  __x64_sys_sendto+0xde/0x100
[  542.244314][    C0]  do_syscall_64+0xf3/0x230
[  542.248989][    C0]  ? clear_bhb_loop+0x35/0x90
[  542.252319][   T55] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  542.253697][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  542.261021][   T55] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  542.266494][    C0] RIP: 0033:0x7f0d94d7796c
[  542.277896][    C0] RSP: 002b:00007ffca9c9a220 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  542.286350][    C0] RAX: ffffffffffffffda RBX: 00007f0d95a34620 RCX: 00007f0d94d7796c
[  542.294341][    C0] RDX: 0000000000000028 RSI: 00007f0d95a34670 RDI: 0000000000000003
[  542.302328][    C0] RBP: 0000000000000000 R08: 00007ffca9c9a274 R09: 000000000000000c
[  542.310318][    C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  542.318308][    C0] R13: 0000000000000000 R14: 00007f0d95a34670 R15: 0000000000000000
[  542.326328][    C0]  </TASK>
[  542.329375][    C0] DEBUG: holding rtnl_mutex for 3075 jiffies.
[  542.335456][    C0] task:syz-executor    state:D stack:22576 pid:13099 tgid:13099 ppid:1      flags:0x00004004
[  543.010746][   T55] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  543.011658][   T55] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  543.012259][   T55] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[  543.012566][   T55] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  543.084588][    C0] Call Trace:
[  543.087892][    C0]  <TASK>
[  543.090849][    C0]  __schedule+0x1800/0x4a60
[  543.095396][    C0]  ? schedule+0x90/0x320
[  543.099668][    C0]  ? schedule+0x90/0x320
[  543.103935][    C0]  ? lock_release+0xbf/0xa30
[  543.108555][    C0]  ? __pfx___schedule+0x10/0x10
[  543.113428][    C0]  ? rcu_is_watching+0x15/0xb0
[  543.118215][    C0]  ? __pfx_lock_release+0x10/0x10
[  543.123267][    C0]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  543.129208][    C0]  ? schedule+0x90/0x320
[  543.133471][    C0]  schedule+0x14b/0x320
[  543.137649][    C0]  synchronize_rcu_expedited+0x684/0x830
[  543.143305][    C0]  ? __pfx_synchronize_rcu_expedited+0x10/0x10
[  543.149496][    C0]  ? rcu_is_watching+0x15/0xb0
[  543.154292][    C0]  ? kobject_put+0x272/0x480
[  543.864961][    C0]  ? kfree+0x149/0x360
[  543.869097][    C0]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[  543.874412][    C0]  ? __pfx___might_resched+0x10/0x10
[  543.879721][    C0]  ? __pfx_autoremove_wake_function+0x10/0x10
[  543.885849][    C0]  netif_set_real_num_tx_queues+0x4e7/0x900
[  543.891789][    C0]  veth_init_queues+0x82/0x180
[  543.896597][    C0]  veth_newlink+0xa28/0xcd0
[  543.901145][    C0]  ? __pfx_veth_newlink+0x10/0x10
[  543.906212][    C0]  ? alloc_netdev_mqs+0xb9d/0x1000
[  543.911355][    C0]  ? rtnl_newlink+0x140d/0x2070
[  543.916231][    C0]  ? rtnetlink_rcv_msg+0x744/0xd00
[  543.921373][    C0]  ? netlink_rcv_skb+0x1e3/0x430
[  543.926345][    C0]  ? netlink_sendmsg+0x8e4/0xcb0
[  543.931312][    C0]  ? __sock_sendmsg+0x221/0x270
[  543.936196][    C0]  ? __sys_sendto+0x3a4/0x4f0
[  543.940894][    C0]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  543.947018][    C0]  ? alloc_netdev_mqs+0xc55/0x1000
[  543.952155][    C0]  ? validate_linkmsg+0x71e/0x900
[  543.957208][    C0]  ? rtnl_create_link+0x91c/0xc20
[  543.962258][    C0]  ? __pfx_veth_newlink+0x10/0x10
[  544.665475][    C0]  rtnl_newlink+0x14fe/0x2070
[  544.670309][    C0]  ? rtnl_newlink+0x501/0x2070
[  544.675116][    C0]  ? __pfx_rtnl_newlink+0x10/0x10
[  544.680183][    C0]  ? do_raw_spin_unlock+0x13c/0x8b0
[  544.685407][    C0]  ? __mutex_lock+0x527/0xd70
[  544.690116][    C0]  ? security_capable+0x90/0xb0
[  544.694995][    C0]  ? get_rtnl_holder+0x144/0x190
[  544.699960][    C0]  ? __pfx_rtnl_newlink+0x10/0x10
[  544.705013][    C0]  rtnetlink_rcv_msg+0x744/0xd00
[  544.709983][    C0]  ? rtnetlink_rcv_msg+0x1a7/0xd00
[  544.715124][    C0]  ? lock_release+0xbf/0xa30
[  544.719837][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  544.725348][    C0]  ? __pfx_lock_acquire+0x10/0x10
[  544.730431][    C0]  ? rcu_is_watching+0x15/0xb0
[  544.735256][    C0]  ? lock_acquire+0xe3/0x550
[  544.739876][    C0]  netlink_rcv_skb+0x1e3/0x430
[  544.744664][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  544.750150][    C0]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  544.755472][    C0]  ? net_generic+0x1f/0x240
[  544.759989][    C0]  ? netlink_deliver_tap+0x2e/0x1b0
[  544.765207][    C0]  netlink_unicast+0x7f0/0x990
[  545.455409][    C0]  ? __pfx_netlink_unicast+0x10/0x10
[  545.460764][    C0]  ? __virt_addr_valid+0x183/0x530
[  545.465900][    C0]  ? __check_object_size+0x49c/0x900
[  545.471220][    C0]  ? bpf_lsm_netlink_send+0x9/0x10
[  545.476463][    C0]  netlink_sendmsg+0x8e4/0xcb0
[  545.481285][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  545.486709][    C0]  ? aa_sock_msg_perm+0x91/0x160
[  545.491696][    C0]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  545.497271][    C0]  ? security_socket_sendmsg+0x87/0xb0
[  545.502777][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  545.508100][    C0]  __sock_sendmsg+0x221/0x270
[  545.512818][    C0]  __sys_sendto+0x3a4/0x4f0
[  545.517352][    C0]  ? __pfx___sys_sendto+0x10/0x10
[  545.522423][    C0]  ? irqtime_account_irq+0xd4/0x1e0
[  545.527657][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  545.534015][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  545.540376][    C0]  __x64_sys_sendto+0xde/0x100
[  545.545168][    C0]  do_syscall_64+0xf3/0x230
[  545.549699][    C0]  ? clear_bhb_loop+0x35/0x90
[  545.554495][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  546.250395][    C0] RIP: 0033:0x7f729697796c
[  546.254872][    C0] RSP: 002b:00007ffc51305980 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  546.263340][    C0] RAX: ffffffffffffffda RBX: 00007f7297634620 RCX: 00007f729697796c
[  546.271336][    C0] RDX: 000000000000006c RSI: 00007f7297634670 RDI: 0000000000000003
[  546.271343][   T55] Bluetooth: hci7: command tx timeout
[  546.284718][    C0] RBP: 0000000000000000 R08: 00007ffc513059d4 R09: 000000000000000c
[  546.292730][    C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  546.300736][    C0] R13: 0000000000000000 R14: 00007f7297634670 R15: 0000000000000000
[  546.308755][    C0]  </TASK>
[  546.311803][    C0] DEBUG: waiting rtnl_mutex for 3477 jiffies.
[  546.317897][    C0] task:syz-executor    state:D stack:22576 pid:13055 tgid:13055 ppid:1      flags:0x00000004
[  546.328107][    C0] Call Trace:
[  546.331405][    C0]  <TASK>
[  546.334355][    C0]  __schedule+0x1800/0x4a60
[  546.338911][    C0]  ? schedule+0x90/0x320
[  546.343176][    C0]  ? schedule+0x90/0x320
[  546.347439][    C0]  ? lock_release+0xbf/0xa30
[  547.053462][    C0]  ? __pfx___schedule+0x10/0x10
[  547.058393][    C0]  ? __pfx_lock_release+0x10/0x10
[  547.063473][    C0]  ? __mutex_trylock_common+0x92/0x2e0
[  547.069020][    C0]  ? schedule+0x90/0x320
[  547.073300][    C0]  schedule+0x14b/0x320
[  547.077521][    C0]  schedule_preempt_disabled+0x13/0x30
[  547.083053][    C0]  __mutex_lock+0x6a4/0xd70
[  547.087580][    C0]  ? __mutex_lock+0x527/0xd70
[  547.092296][    C0]  ? rtnetlink_rcv_msg+0x6eb/0xd00
[  547.097455][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  547.102528][    C0]  ? security_capable+0x90/0xb0
[  547.107411][    C0]  ? get_rtnl_holder+0x144/0x190
[  547.112388][    C0]  rtnetlink_rcv_msg+0x6eb/0xd00
[  547.117354][    C0]  ? rtnetlink_rcv_msg+0x1a7/0xd00
[  547.122497][    C0]  ? lock_release+0xbf/0xa30
[  547.127112][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  547.132596][    C0]  ? __pfx_lock_acquire+0x10/0x10
[  547.137658][    C0]  ? rcu_is_watching+0x15/0xb0
[  547.142442][    C0]  ? lock_acquire+0xe3/0x550
[  547.147069][    C0]  netlink_rcv_skb+0x1e3/0x430
[  547.151864][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  547.849005][    C0]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  547.854365][    C0]  ? net_generic+0x1f/0x240
[  547.858900][    C0]  ? netlink_deliver_tap+0x2e/0x1b0
[  547.864144][    C0]  netlink_unicast+0x7f0/0x990
[  547.868957][    C0]  ? __pfx_netlink_unicast+0x10/0x10
[  547.874278][    C0]  ? __virt_addr_valid+0x183/0x530
[  547.879431][    C0]  ? __check_object_size+0x49c/0x900
[  547.884764][    C0]  ? bpf_lsm_netlink_send+0x9/0x10
[  547.889922][    C0]  netlink_sendmsg+0x8e4/0xcb0
[  547.894732][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  547.900055][    C0]  ? aa_sock_msg_perm+0x91/0x160
[  547.905025][    C0]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  547.910331][    C0]  ? security_socket_sendmsg+0x87/0xb0
[  547.915932][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  547.921250][    C0]  __sock_sendmsg+0x221/0x270
[  547.926007][    C0]  __sys_sendto+0x3a4/0x4f0
[  547.930536][    C0]  ? __pfx___sys_sendto+0x10/0x10
[  547.935601][    C0]  ? rcu_is_watching+0x15/0xb0
[  547.940384][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  547.946751][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  548.610546][    C0]  ? rcu_is_watching+0x15/0xb0
[  548.615380][    C0]  __x64_sys_sendto+0xde/0x100
[  548.620173][    C0]  do_syscall_64+0xf3/0x230
[  548.624715][    C0]  ? clear_bhb_loop+0x35/0x90
[  548.629432][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  548.634127][T12060] Bluetooth: hci7: command tx timeout
[  548.635343][    C0] RIP: 0033:0x7f1678d7796c
[  548.641171][T12397] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[  548.645107][    C0] RSP: 002b:00007ffd6ca3de10 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  548.652714][T12397] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[  548.660474][    C0] RAX: ffffffffffffffda RBX: 00007f1679a34620 RCX: 00007f1678d7796c
[  548.660498][    C0] RDX: 000000000000006c RSI: 00007f1679a34670 RDI: 0000000000000003
[  548.660515][    C0] RBP: 0000000000000000 R08: 00007ffd6ca3de64 R09: 000000000000000c
[  548.660533][    C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  548.660551][    C0] R13: 0000000000000000 R14: 00007f1679a34670 R15: 0000000000000000
[  548.660580][    C0]  </TASK>
[  548.660592][    C0] DEBUG: waiting rtnl_mutex for 3714 jiffies.
[  548.660607][    C0] task:syz-executor    state:D stack:22576 pid:13100 tgid:13100 ppid:1      flags:0x00004006
[  548.660652][    C0] Call Trace:
[  548.660667][    C0]  <TASK>
[  548.660680][    C0]  __schedule+0x1800/0x4a60
[  548.660721][    C0]  ? schedule+0x90/0x320
[  548.660764][    C0]  ? schedule+0x90/0x320
[  548.660788][    C0]  ? lock_release+0xbf/0xa30
[  548.660824][    C0]  ? __pfx___schedule+0x10/0x10
[  548.660853][    C0]  ? __pfx_lock_release+0x10/0x10
[  548.660887][    C0]  ? __mutex_trylock_common+0x92/0x2e0
[  548.660912][    C0]  ? mutex_spin_on_owner+0x26c/0x330
[  548.660944][    C0]  ? schedule+0x90/0x320
[  548.660969][    C0]  schedule+0x14b/0x320
[  548.660997][    C0]  schedule_preempt_disabled+0x13/0x30
[  548.661025][    C0]  __mutex_lock+0x6a4/0xd70
[  548.661057][    C0]  ? __mutex_lock+0x527/0xd70
[  548.661088][    C0]  ? rtnetlink_rcv_msg+0x6eb/0xd00
[  548.661122][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  548.661155][    C0]  ? security_capable+0x90/0xb0
[  548.661187][    C0]  ? get_rtnl_holder+0x144/0x190
[  548.661224][    C0]  rtnetlink_rcv_msg+0x6eb/0xd00
[  548.661257][    C0]  ? rtnetlink_rcv_msg+0x1a7/0xd00
[  548.661291][    C0]  ? lock_release+0xbf/0xa30
[  548.661323][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  548.661357][    C0]  ? __pfx_lock_acquire+0x10/0x10
[  548.661388][    C0]  ? rcu_is_watching+0x15/0xb0
[  548.661411][    C0]  ? lock_acquire+0xe3/0x550
[  548.661450][    C0]  netlink_rcv_skb+0x1e3/0x430
[  548.661486][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  548.661521][    C0]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  548.661579][    C0]  ? net_generic+0x1f/0x240
[  548.661607][    C0]  ? netlink_deliver_tap+0x2e/0x1b0
[  548.661642][    C0]  netlink_unicast+0x7f0/0x990
[  548.661684][    C0]  ? __pfx_netlink_unicast+0x10/0x10
[  548.661712][    C0]  ? __virt_addr_valid+0x183/0x530
[  548.661738][    C0]  ? __check_object_size+0x49c/0x900
[  548.661765][    C0]  ? bpf_lsm_netlink_send+0x9/0x10
[  548.661800][    C0]  netlink_sendmsg+0x8e4/0xcb0
[  548.661861][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  548.661898][    C0]  ? aa_sock_msg_perm+0x91/0x160
[  548.661928][    C0]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  548.661964][    C0]  ? security_socket_sendmsg+0x87/0xb0
[  548.661999][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  548.662033][    C0]  __sock_sendmsg+0x221/0x270
[  548.662067][    C0]  __sys_sendto+0x3a4/0x4f0
[  548.662095][    C0]  ? __pfx___sys_sendto+0x10/0x10
[  548.662133][    C0]  ? rcu_is_watching+0x15/0xb0
[  548.662156][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  548.662189][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  548.662223][    C0]  ? rcu_is_watching+0x15/0xb0
[  548.662246][    C0]  __x64_sys_sendto+0xde/0x100
[  548.662273][    C0]  do_syscall_64+0xf3/0x230
[  548.662306][    C0]  ? clear_bhb_loop+0x35/0x90
[  548.662335][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  548.662361][    C0] RIP: 0033:0x7f36df97796c
[  548.662381][    C0] RSP: 002b:00007ffc9c4d07e0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  548.662407][    C0] RAX: ffffffffffffffda RBX: 00007f36e0634620 RCX: 00007f36df97796c
[  548.662426][    C0] RDX: 0000000000000020 RSI: 00007f36e0634670 RDI: 0000000000000003
[  548.662442][    C0] RBP: 0000000000000000 R08: 00007ffc9c4d0834 R09: 000000000000000c
[  548.662458][    C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  548.662474][    C0] R13: 0000000000000000 R14: 00007f36e0634670 R15: 0000000000000000
[  548.662501][    C0]  </TASK>
[  548.662510][    C0] DEBUG: waiting rtnl_mutex for 3637 jiffies.
[  548.662524][    C0] task:kworker/u8:2    state:D stack:21096 pid:35    tgid:35    ppid:2      flags:0x00004000
[  548.662565][    C0] Workqueue: ipv6_addrconf addrconf_dad_work
[  548.662595][    C0] Call Trace:
[  548.662604][    C0]  <TASK>
[  548.662616][    C0]  __schedule+0x1800/0x4a60
[  548.662649][    C0]  ? schedule+0x90/0x320
[  548.662678][    C0]  ? schedule+0x90/0x320
[  548.662701][    C0]  ? lock_release+0xbf/0xa30
[  548.662734][    C0]  ? __pfx___schedule+0x10/0x10
[  548.662761][    C0]  ? __pfx_lock_release+0x10/0x10
[  548.662794][    C0]  ? __mutex_trylock_common+0x92/0x2e0
[  548.662820][    C0]  ? kthread_data+0x52/0xd0
[  548.662851][    C0]  ? schedule+0x90/0x320
[  548.662875][    C0]  ? wq_worker_sleeping+0x66/0x240
[  548.662908][    C0]  ? schedule+0x90/0x320
[  548.662932][    C0]  schedule+0x14b/0x320
[  548.662959][    C0]  schedule_preempt_disabled+0x13/0x30
[  548.662985][    C0]  __mutex_lock+0x6a4/0xd70
[  548.663016][    C0]  ? __mutex_lock+0x527/0xd70
[  548.663045][    C0]  ? addrconf_dad_work+0xd0/0x16f0
[  548.663074][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  548.663109][    C0]  ? get_rtnl_holder+0x144/0x190
[  548.663145][    C0]  addrconf_dad_work+0xd0/0x16f0
[  548.663176][    C0]  ? debug_object_deactivate+0x2d5/0x390
[  548.663202][    C0]  ? __pfx_lock_release+0x10/0x10
[  548.663234][    C0]  ? __pfx_addrconf_dad_work+0x10/0x10
[  548.663262][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  548.663304][    C0]  ? rcu_is_watching+0x15/0xb0
[  548.663348][    C0]  ? process_scheduled_works+0x945/0x1830
[  548.663379][    C0]  process_scheduled_works+0xa2c/0x1830
[  548.663429][    C0]  ? __pfx_process_scheduled_works+0x10/0x10
[  548.663464][    C0]  ? __pfx__raw_spin_lock_irq+0x10/0x10
[  548.663492][    C0]  ? assign_work+0x364/0x3d0
[  548.663526][    C0]  worker_thread+0x86d/0xd40
[  548.663567][    C0]  ? __kthread_parkme+0x169/0x1d0
[  548.663603][    C0]  ? __pfx_worker_thread+0x10/0x10
[  548.663635][    C0]  kthread+0x2f0/0x390
[  548.663658][    C0]  ? __pfx_worker_thread+0x10/0x10
[  548.663694][    C0]  ? __pfx_kthread+0x10/0x10
[  548.663718][    C0]  ret_from_fork+0x4b/0x80
[  548.663752][    C0]  ? __pfx_kthread+0x10/0x10
[  548.663775][    C0]  ret_from_fork_asm+0x1a/0x30
[  548.663819][    C0]  </TASK>
[  548.663831][    C0] INFO: lockdep is turned off.
[  550.102553][    C0] DEBUG: waiting rtnl_mutex for 3785 jiffies.
[  550.102583][    C0] task:syz-executor    state:D stack:22576 pid:13073 tgid:13073 ppid:1      flags:0x00000004
[  550.102630][    C0] Call Trace:
[  550.102641][    C0]  <TASK>
[  550.102655][    C0]  __schedule+0x1800/0x4a60
[  550.102696][    C0]  ? schedule+0x90/0x320
[  550.102721][    C0]  ? schedule+0x90/0x320
[  550.102745][    C0]  ? lock_release+0xbf/0xa30
[  550.102778][    C0]  ? __pfx___schedule+0x10/0x10
[  550.102806][    C0]  ? __pfx_lock_release+0x10/0x10
[  550.102838][    C0]  ? __mutex_trylock_common+0x92/0x2e0
[  550.102870][    C0]  ? schedule+0x90/0x320
[  550.102894][    C0]  schedule+0x14b/0x320
[  550.102920][    C0]  schedule_preempt_disabled+0x13/0x30
[  550.102946][    C0]  __mutex_lock+0x6a4/0xd70
[  550.102978][    C0]  ? __mutex_lock+0x527/0xd70
[  550.103008][    C0]  ? rtnetlink_rcv_msg+0x6eb/0xd00
[  550.103042][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  550.103075][    C0]  ? security_capable+0x90/0xb0
[  550.103106][    C0]  ? get_rtnl_holder+0x144/0x190
[  550.103141][    C0]  rtnetlink_rcv_msg+0x6eb/0xd00
[  550.103173][    C0]  ? rtnetlink_rcv_msg+0x1a7/0xd00
[  550.103206][    C0]  ? lock_release+0xbf/0xa30
[  550.103237][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  550.103297][    C0]  ? __pfx_lock_acquire+0x10/0x10
[  550.103329][    C0]  ? rcu_is_watching+0x15/0xb0
[  550.103353][    C0]  ? lock_acquire+0xe3/0x550
[  550.103391][    C0]  netlink_rcv_skb+0x1e3/0x430
[  550.103426][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  550.103461][    C0]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  550.103506][    C0]  ? net_generic+0x1f/0x240
[  550.103535][    C0]  ? netlink_deliver_tap+0x2e/0x1b0
[  550.103573][    C0]  netlink_unicast+0x7f0/0x990
[  550.103610][    C0]  ? __pfx_netlink_unicast+0x10/0x10
[  550.103640][    C0]  ? __virt_addr_valid+0x183/0x530
[  550.103666][    C0]  ? __check_object_size+0x49c/0x900
[  550.103695][    C0]  ? bpf_lsm_netlink_send+0x9/0x10
[  550.103732][    C0]  netlink_sendmsg+0x8e4/0xcb0
[  550.103775][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  550.103812][    C0]  ? aa_sock_msg_perm+0x91/0x160
[  550.103842][    C0]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  550.103865][    C0]  ? security_socket_sendmsg+0x87/0xb0
[  550.103902][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  550.103936][    C0]  __sock_sendmsg+0x221/0x270
[  550.103971][    C0]  __sys_sendto+0x3a4/0x4f0
[  550.104000][    C0]  ? __pfx___sys_sendto+0x10/0x10
[  550.104040][    C0]  ? rcu_is_watching+0x15/0xb0
[  550.104063][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  550.104098][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  550.104132][    C0]  ? rcu_is_watching+0x15/0xb0
[  550.104157][    C0]  __x64_sys_sendto+0xde/0x100
[  550.104184][    C0]  do_syscall_64+0xf3/0x230
[  550.104219][    C0]  ? clear_bhb_loop+0x35/0x90
[  550.104248][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  550.104274][    C0] RIP: 0033:0x7f00d157796c
[  550.104302][    C0] RSP: 002b:00007ffc0c497480 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  550.104329][    C0] RAX: ffffffffffffffda RBX: 00007f00d2234620 RCX: 00007f00d157796c
[  550.104350][    C0] RDX: 0000000000000050 RSI: 00007f00d2234670 RDI: 0000000000000003
[  550.104368][    C0] RBP: 0000000000000000 R08: 00007ffc0c4974d4 R09: 000000000000000c
[  550.104385][    C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  550.104401][    C0] R13: 0000000000000000 R14: 00007f00d2234670 R15: 0000000000000000
[  550.104430][    C0]  </TASK>
[  550.104440][    C0] DEBUG: waiting rtnl_mutex for 3785 jiffies.
[  550.104454][    C0] task:kworker/0:5     state:D stack:20880 pid:5155  tgid:5155  ppid:2      flags:0x00004000
[  550.104497][    C0] Workqueue: events switchdev_deferred_process_work
[  550.104548][    C0] Call Trace:
[  550.104563][    C0]  <TASK>
[  550.104575][    C0]  __schedule+0x1800/0x4a60
[  550.104608][    C0]  ? schedule+0x90/0x320
[  550.104633][    C0]  ? schedule+0x90/0x320
[  550.104656][    C0]  ? lock_release+0xbf/0xa30
[  550.104689][    C0]  ? __pfx___schedule+0x10/0x10
[  550.104714][    C0]  ? _raw_spin_lock_irq+0xdf/0x120
[  550.104739][    C0]  ? __pfx_lock_release+0x10/0x10
[  550.104771][    C0]  ? kick_pool+0x45c/0x620
[  550.104804][    C0]  ? schedule+0x90/0x320
[  550.104828][    C0]  ? rcu_is_watching+0x15/0xb0
[  550.104852][    C0]  ? schedule+0x90/0x320
[  550.104876][    C0]  schedule+0x14b/0x320
[  550.104902][    C0]  schedule_preempt_disabled+0x13/0x30
[  550.104928][    C0]  __mutex_lock+0x6a4/0xd70
[  550.104958][    C0]  ? __mutex_lock+0x527/0xd70
[  550.104988][    C0]  ? switchdev_deferred_process_work+0xe/0x20
[  550.105024][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  550.105059][    C0]  ? get_rtnl_holder+0x144/0x190
[  550.105094][    C0]  ? process_scheduled_works+0x945/0x1830
[  550.105125][    C0]  switchdev_deferred_process_work+0xe/0x20
[  550.105160][    C0]  process_scheduled_works+0xa2c/0x1830
[  550.105222][    C0]  ? __pfx_process_scheduled_works+0x10/0x10
[  550.105275][    C0]  ? __pfx__raw_spin_lock_irq+0x10/0x10
[  550.105311][    C0]  ? assign_work+0x364/0x3d0
[  550.105345][    C0]  worker_thread+0x86d/0xd40
[  550.105379][    C0]  ? rcu_is_watching+0x15/0xb0
[  550.105405][    C0]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  550.105434][    C0]  ? __kthread_parkme+0x169/0x1d0
[  550.105470][    C0]  ? __pfx_worker_thread+0x10/0x10
[  550.105502][    C0]  kthread+0x2f0/0x390
[  550.105525][    C0]  ? __pfx_worker_thread+0x10/0x10
[  550.105557][    C0]  ? __pfx_kthread+0x10/0x10
[  550.105580][    C0]  ret_from_fork+0x4b/0x80
[  550.105614][    C0]  ? __pfx_kthread+0x10/0x10
[  550.105636][    C0]  ret_from_fork_asm+0x1a/0x30
[  550.105680][    C0]  </TASK>
[  550.105690][    C0] DEBUG: waiting rtnl_mutex for 3707 jiffies.
[  550.105704][    C0] task:kworker/0:0     state:D stack:23112 pid:8     tgid:8     ppid:2      flags:0x00004000
[  550.105744][    C0] Workqueue: events linkwatch_event
[  550.105767][    C0] Call Trace:
[  550.105776][    C0]  <TASK>
[  550.105789][    C0]  __schedule+0x1800/0x4a60
[  550.105822][    C0]  ? schedule+0x90/0x320
[  550.105847][    C0]  ? schedule+0x90/0x320
[  550.105871][    C0]  ? lock_release+0xbf/0xa30
[  550.105905][    C0]  ? __pfx___schedule+0x10/0x10
[  550.105931][    C0]  ? _raw_spin_lock_irq+0xdf/0x120
[  550.105956][    C0]  ? __pfx_lock_release+0x10/0x10
[  550.105989][    C0]  ? kick_pool+0x45c/0x620
[  550.106023][    C0]  ? schedule+0x90/0x320
[  550.106047][    C0]  ? rcu_is_watching+0x15/0xb0
[  550.106072][    C0]  ? schedule+0x90/0x320
[  550.106096][    C0]  schedule+0x14b/0x320
[  550.106123][    C0]  schedule_preempt_disabled+0x13/0x30
[  550.106150][    C0]  __mutex_lock+0x6a4/0xd70
[  550.106181][    C0]  ? __mutex_lock+0x527/0xd70
[  550.106212][    C0]  ? linkwatch_event+0xe/0x60
[  550.106235][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  550.106271][    C0]  ? get_rtnl_holder+0x144/0x190
[  550.106313][    C0]  ? process_scheduled_works+0x945/0x1830
[  550.106343][    C0]  linkwatch_event+0xe/0x60
[  550.106376][    C0]  process_scheduled_works+0xa2c/0x1830
[  550.106424][    C0]  ? __pfx_process_scheduled_works+0x10/0x10
[  550.106458][    C0]  ? __pfx__raw_spin_lock_irq+0x10/0x10
[  550.106484][    C0]  ? assign_work+0x364/0x3d0
[  550.106517][    C0]  worker_thread+0x86d/0xd40
[  550.106557][    C0]  ? __kthread_parkme+0x169/0x1d0
[  550.106592][    C0]  ? __pfx_worker_thread+0x10/0x10
[  550.106623][    C0]  kthread+0x2f0/0x390
[  550.106644][    C0]  ? __pfx_worker_thread+0x10/0x10
[  550.106675][    C0]  ? __pfx_kthread+0x10/0x10
[  550.106698][    C0]  ret_from_fork+0x4b/0x80
[  550.106729][    C0]  ? __pfx_kthread+0x10/0x10
[  550.106751][    C0]  ret_from_fork_asm+0x1a/0x30
[  550.106791][    C0]  </TASK>
[  550.106801][    C0] DEBUG: waiting rtnl_mutex for 3631 jiffies.
[  550.106814][    C0] task:syz-executor    state:D stack:21424 pid:12787 tgid:12787 ppid:1      flags:0x00004002
[  550.106851][    C0] Call Trace:
[  550.106860][    C0]  <TASK>
[  550.106873][    C0]  __schedule+0x1800/0x4a60
[  550.106905][    C0]  ? schedule+0x90/0x320
[  550.106929][    C0]  ? schedule+0x90/0x320
[  550.106952][    C0]  ? lock_release+0xbf/0xa30
[  550.106985][    C0]  ? __pfx___schedule+0x10/0x10
[  550.107012][    C0]  ? __pfx_lock_release+0x10/0x10
[  550.107044][    C0]  ? __mutex_trylock_common+0x92/0x2e0
[  550.107076][    C0]  ? schedule+0x90/0x320
[  550.107100][    C0]  schedule+0x14b/0x320
[  550.107126][    C0]  schedule_preempt_disabled+0x13/0x30
[  550.107152][    C0]  __mutex_lock+0x6a4/0xd70
[  550.107180][    C0]  ? wake_up_q+0xdc/0x120
[  550.107210][    C0]  ? __mutex_lock+0x527/0xd70
[  550.107240][    C0]  ? netdev_run_todo+0x89e/0x1000
[  550.107283][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  550.107321][    C0]  ? __init_swait_queue_head+0xae/0x150
[  550.107369][    C0]  ? get_rtnl_holder+0x144/0x190
[  550.107405][    C0]  netdev_run_todo+0x89e/0x1000
[  550.107435][    C0]  ? __pfx_netdev_run_todo+0x10/0x10
[  550.107459][    C0]  ? netdev_state_change+0xa8/0x1a0
[  550.107490][    C0]  ? __pfx_netdev_state_change+0x10/0x10
[  550.107526][    C0]  ? tun_chr_close+0x108/0x1b0
[  550.107553][    C0]  ? kfree+0x149/0x360
[  550.107582][    C0]  tun_chr_close+0x13a/0x1b0
[  550.107609][    C0]  ? __pfx_tun_chr_close+0x10/0x10
[  550.107637][    C0]  __fput+0x24a/0x8a0
[  550.107674][    C0]  task_work_run+0x24f/0x310
[  550.107702][    C0]  ? __pfx_task_work_run+0x10/0x10
[  550.107729][    C0]  ? do_exit+0xa2a/0x27f0
[  550.107750][    C0]  ? kmem_cache_free+0x145/0x350
[  550.107782][    C0]  do_exit+0xa2f/0x27f0
[  550.107823][    C0]  ? lock_release+0xbf/0xa30
[  550.107859][    C0]  ? __pfx_do_exit+0x10/0x10
[  550.107882][    C0]  ? __pfx_lock_release+0x10/0x10
[  550.107914][    C0]  ? zap_other_threads+0x37e/0x3e0
[  550.107939][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  550.107977][    C0]  ? rcu_is_watching+0x15/0xb0
[  550.108004][    C0]  do_group_exit+0x207/0x2c0
[  550.108032][    C0]  __x64_sys_exit_group+0x3f/0x40
[  550.108057][    C0]  x64_sys_call+0x26c3/0x26d0
[  550.108091][    C0]  do_syscall_64+0xf3/0x230
[  550.108124][    C0]  ? clear_bhb_loop+0x35/0x90
[  550.108153][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  550.108179][    C0] RIP: 0033:0x7fe7dcf75bd9
[  550.108199][    C0] RSP: 002b:00007ffc3702cec8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[  550.108225][    C0] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fe7dcf75bd9
[  550.108245][    C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000043
[  550.108261][    C0] RBP: 00007fe7dcfd50a0 R08: 00007ffc3702ac67 R09: 0000000000000003
[  550.108279][    C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  550.108301][    C0] R13: 0000000000000003 R14: 00000000ffffffff R15: 00007ffc3702d0b0
[  550.108329][    C0]  </TASK>
[  550.108339][    C0] DEBUG: waiting rtnl_mutex for 3556 jiffies.
[  550.108353][    C0] task:syz-executor    state:D stack:25840 pid:13137 tgid:13137 ppid:13136  flags:0x00000000
[  550.108393][    C0] Call Trace:
[  550.108403][    C0]  <TASK>
[  550.108416][    C0]  __schedule+0x1800/0x4a60
[  550.108449][    C0]  ? schedule+0x90/0x320
[  550.108474][    C0]  ? schedule+0x90/0x320
[  550.108498][    C0]  ? lock_release+0xbf/0xa30
[  550.108533][    C0]  ? __pfx___schedule+0x10/0x10
[  550.108561][    C0]  ? __pfx_lock_release+0x10/0x10
[  550.108594][    C0]  ? __mutex_trylock_common+0x92/0x2e0
[  550.108626][    C0]  ? schedule+0x90/0x320
[  550.108651][    C0]  schedule+0x14b/0x320
[  550.108678][    C0]  schedule_preempt_disabled+0x13/0x30
[  550.108716][    C0]  __mutex_lock+0x6a4/0xd70
[  550.108747][    C0]  ? __mutex_lock+0x527/0xd70
[  550.108776][    C0]  ? rtnetlink_rcv_msg+0x6eb/0xd00
[  550.108809][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  550.108841][    C0]  ? security_capable+0x90/0xb0
[  550.108871][    C0]  ? get_rtnl_holder+0x144/0x190
[  550.108907][    C0]  rtnetlink_rcv_msg+0x6eb/0xd00
[  550.108937][    C0]  ? rtnetlink_rcv_msg+0x1a7/0xd00
[  550.108970][    C0]  ? lock_release+0xbf/0xa30
[  550.109001][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  550.109033][    C0]  ? __pfx_lock_acquire+0x10/0x10
[  550.109063][    C0]  ? rcu_is_watching+0x15/0xb0
[  550.109085][    C0]  ? lock_acquire+0xe3/0x550
[  550.109122][    C0]  netlink_rcv_skb+0x1e3/0x430
[  550.109156][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  550.109189][    C0]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  550.109233][    C0]  ? net_generic+0x1f/0x240
[  550.109262][    C0]  ? netlink_deliver_tap+0x2e/0x1b0
[  550.109302][    C0]  netlink_unicast+0x7f0/0x990
[  550.109338][    C0]  ? __pfx_netlink_unicast+0x10/0x10
[  550.109367][    C0]  ? __virt_addr_valid+0x183/0x530
[  550.109392][    C0]  ? __check_object_size+0x49c/0x900
[  550.109419][    C0]  ? bpf_lsm_netlink_send+0x9/0x10
[  550.109453][    C0]  netlink_sendmsg+0x8e4/0xcb0
[  550.109495][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  550.109528][    C0]  ? count_memcg_event_mm+0x94/0x420
[  550.109563][    C0]  ? aa_sock_msg_perm+0x91/0x160
[  550.109591][    C0]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  550.109613][    C0]  ? security_socket_sendmsg+0x87/0xb0
[  550.109648][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  550.109681][    C0]  __sock_sendmsg+0x221/0x270
[  550.109714][    C0]  __sys_sendto+0x3a4/0x4f0
[  550.109741][    C0]  ? __pfx___sys_sendto+0x10/0x10
[  550.109773][    C0]  ? __pfx_lock_acquire+0x10/0x10
[  550.109810][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  550.109843][    C0]  ? __pfx___up_read+0x10/0x10
[  550.109868][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  550.109900][    C0]  ? rcu_is_watching+0x15/0xb0
[  550.109924][    C0]  __x64_sys_sendto+0xde/0x100
[  550.109951][    C0]  do_syscall_64+0xf3/0x230
[  550.109982][    C0]  ? clear_bhb_loop+0x35/0x90
[  550.110010][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  550.110035][    C0] RIP: 0033:0x7f125a97796c
[  550.110054][    C0] RSP: 002b:00007ffc16de0bb0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  550.110078][    C0] RAX: ffffffffffffffda RBX: 00007f125b634620 RCX: 00007f125a97796c
[  550.110097][    C0] RDX: 0000000000000028 RSI: 00007f125b634670 RDI: 0000000000000003
[  550.110113][    C0] RBP: 0000000000000000 R08: 00007ffc16de0c04 R09: 000000000000000c
[  550.110130][    C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  550.110146][    C0] R13: 0000000000000000 R14: 00007f125b634670 R15: 0000000000000000
[  550.110172][    C0]  </TASK>
[  550.110182][    C0] DEBUG: waiting rtnl_mutex for 706 jiffies.
[  550.110195][    C0] task:syz-executor    state:D stack:25840 pid:13144 tgid:13144 ppid:13142  flags:0x00000000
[  550.110233][    C0] Call Trace:
[  550.110242][    C0]  <TASK>
[  550.110254][    C0]  __schedule+0x1800/0x4a60
[  550.110286][    C0]  ? schedule+0x90/0x320
[  550.110317][    C0]  ? schedule+0x90/0x320
[  550.110340][    C0]  ? lock_release+0xbf/0xa30
[  550.110373][    C0]  ? __pfx___schedule+0x10/0x10
[  550.110400][    C0]  ? __pfx_lock_release+0x10/0x10
[  550.110432][    C0]  ? __mutex_trylock_common+0x92/0x2e0
[  550.110463][    C0]  ? schedule+0x90/0x320
[  550.110487][    C0]  schedule+0x14b/0x320
[  550.110513][    C0]  schedule_preempt_disabled+0x13/0x30
[  550.110539][    C0]  __mutex_lock+0x6a4/0xd70
[  550.110570][    C0]  ? __mutex_lock+0x527/0xd70
[  550.110599][    C0]  ? rtnetlink_rcv_msg+0x6eb/0xd00
[  550.110632][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  550.110664][    C0]  ? security_capable+0x90/0xb0
[  550.110694][    C0]  ? get_rtnl_holder+0x144/0x190
[  550.110730][    C0]  rtnetlink_rcv_msg+0x6eb/0xd00
[  550.110760][    C0]  ? rtnetlink_rcv_msg+0x1a7/0xd00
[  550.110793][    C0]  ? lock_release+0xbf/0xa30
[  550.110823][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  550.110855][    C0]  ? __pfx_lock_acquire+0x10/0x10
[  550.110885][    C0]  ? rcu_is_watching+0x15/0xb0
[  550.110907][    C0]  ? lock_acquire+0xe3/0x550
[  550.110943][    C0]  netlink_rcv_skb+0x1e3/0x430
[  550.110977][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  550.111010][    C0]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  550.111053][    C0]  ? net_generic+0x1f/0x240
[  550.111082][    C0]  ? netlink_deliver_tap+0x2e/0x1b0
[  550.111117][    C0]  netlink_unicast+0x7f0/0x990
[  550.111152][    C0]  ? __pfx_netlink_unicast+0x10/0x10
[  550.111181][    C0]  ? __virt_addr_valid+0x183/0x530
[  550.111205][    C0]  ? __check_object_size+0x49c/0x900
[  550.111232][    C0]  ? bpf_lsm_netlink_send+0x9/0x10
[  550.111266][    C0]  netlink_sendmsg+0x8e4/0xcb0
[  550.111312][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  550.111345][    C0]  ? count_memcg_event_mm+0x94/0x420
[  550.111380][    C0]  ? aa_sock_msg_perm+0x91/0x160
[  550.111409][    C0]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  550.111430][    C0]  ? security_socket_sendmsg+0x87/0xb0
[  550.111464][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  550.111497][    C0]  __sock_sendmsg+0x221/0x270
[  550.111530][    C0]  __sys_sendto+0x3a4/0x4f0
[  550.111558][    C0]  ? __pfx___sys_sendto+0x10/0x10
[  550.111590][    C0]  ? __pfx_lock_acquire+0x10/0x10
[  550.111626][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  550.111660][    C0]  ? __pfx___up_read+0x10/0x10
[  550.111684][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  550.111717][    C0]  ? rcu_is_watching+0x15/0xb0
[  550.111741][    C0]  __x64_sys_sendto+0xde/0x100
[  550.111767][    C0]  do_syscall_64+0xf3/0x230
[  550.111799][    C0]  ? clear_bhb_loop+0x35/0x90
[  550.111826][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  550.111851][    C0] RIP: 0033:0x7f88b3b7796c
[  550.111869][    C0] RSP: 002b:00007ffd5b18b270 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  550.111893][    C0] RAX: ffffffffffffffda RBX: 00007f88b4834620 RCX: 00007f88b3b7796c
[  550.111911][    C0] RDX: 0000000000000028 RSI: 00007f88b4834670 RDI: 0000000000000003
[  550.111928][    C0] RBP: 0000000000000000 R08: 00007ffd5b18b2c4 R09: 000000000000000c
[  550.111944][    C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  550.111960][    C0] R13: 0000000000000000 R14: 00007f88b4834670 R15: 0000000000000000
[  550.111986][    C0]  </TASK>
[  550.111996][    C0] DEBUG: waiting rtnl_mutex for 2782 jiffies.
[  550.112008][    C0] task:syz-executor    state:D stack:22576 pid:13097 tgid:13097 ppid:1      flags:0x00000004
[  550.112045][    C0] Call Trace:
[  550.112054][    C0]  <TASK>
[  550.112066][    C0]  __schedule+0x1800/0x4a60
[  550.112099][    C0]  ? schedule+0x90/0x320
[  550.112123][    C0]  ? schedule+0x90/0x320
[  550.112146][    C0]  ? lock_release+0xbf/0xa30
[  550.112179][    C0]  ? __pfx___schedule+0x10/0x10
[  550.112206][    C0]  ? __pfx_lock_release+0x10/0x10
[  550.112238][    C0]  ? __mutex_trylock_common+0x92/0x2e0
[  550.112270][    C0]  ? schedule+0x90/0x320
[  550.112298][    C0]  schedule+0x14b/0x320
[  550.112325][    C0]  schedule_preempt_disabled+0x13/0x30
[  550.112351][    C0]  __mutex_lock+0x6a4/0xd70
[  550.112382][    C0]  ? __mutex_lock+0x527/0xd70
[  550.112411][    C0]  ? rtnetlink_rcv_msg+0x6eb/0xd00
[  550.112443][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  550.112476][    C0]  ? security_capable+0x90/0xb0
[  550.112506][    C0]  ? get_rtnl_holder+0x144/0x190
[  550.112541][    C0]  rtnetlink_rcv_msg+0x6eb/0xd00
[  550.112571][    C0]  ? rtnetlink_rcv_msg+0x1a7/0xd00
[  550.112605][    C0]  ? lock_release+0xbf/0xa30
[  550.112635][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  550.112667][    C0]  ? __pfx_lock_acquire+0x10/0x10
[  550.112698][    C0]  ? rcu_is_watching+0x15/0xb0
[  550.112720][    C0]  ? lock_acquire+0xe3/0x550
[  550.112756][    C0]  netlink_rcv_skb+0x1e3/0x430
[  550.112789][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  550.112821][    C0]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  550.112866][    C0]  ? net_generic+0x1f/0x240
[  550.112894][    C0]  ? netlink_deliver_tap+0x2e/0x1b0
[  550.112929][    C0]  netlink_unicast+0x7f0/0x990
[  550.112964][    C0]  ? __pfx_netlink_unicast+0x10/0x10
[  550.112993][    C0]  ? __virt_addr_valid+0x183/0x530
[  550.113017][    C0]  ? __check_object_size+0x49c/0x900
[  550.113044][    C0]  ? bpf_lsm_netlink_send+0x9/0x10
[  550.113077][    C0]  netlink_sendmsg+0x8e4/0xcb0
[  550.113118][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  550.113154][    C0]  ? aa_sock_msg_perm+0x91/0x160
[  550.113182][    C0]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  550.113203][    C0]  ? security_socket_sendmsg+0x87/0xb0
[  550.113239][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  550.113275][    C0]  __sock_sendmsg+0x221/0x270
[  550.113330][    C0]  __sys_sendto+0x3a4/0x4f0
[  550.113358][    C0]  ? __pfx___sys_sendto+0x10/0x10
[  550.113400][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  550.113435][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  550.113469][    C0]  ? rcu_is_watching+0x15/0xb0
[  550.113493][    C0]  __x64_sys_sendto+0xde/0x100
[  550.113520][    C0]  do_syscall_64+0xf3/0x230
[  550.113553][    C0]  ? clear_bhb_loop+0x35/0x90
[  550.113582][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  550.113607][    C0] RIP: 0033:0x7fa23997796c
[  550.113626][    C0] RSP: 002b:00007ffece22be40 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  550.113651][    C0] RAX: ffffffffffffffda RBX: 00007fa23a634620 RCX: 00007fa23997796c
[  550.113670][    C0] RDX: 0000000000000068 RSI: 00007fa23a634670 RDI: 0000000000000003
[  550.113687][    C0] RBP: 0000000000000000 R08: 00007ffece22be94 R09: 000000000000000c
[  550.113703][    C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  550.113720][    C0] R13: 0000000000000000 R14: 00007fa23a634670 R15: 0000000000000000
[  550.113747][    C0]  </TASK>
[  550.113757][    C0] DEBUG: waiting rtnl_mutex for 2626 jiffies.
[  550.113770][    C0] task:syz-executor    state:D stack:25840 pid:13140 tgid:13140 ppid:13139  flags:0x00000000
[  550.113808][    C0] Call Trace:
[  550.113817][    C0]  <TASK>
[  550.113830][    C0]  __schedule+0x1800/0x4a60
[  550.113864][    C0]  ? schedule+0x90/0x320
[  550.113889][    C0]  ? schedule+0x90/0x320
[  550.113913][    C0]  ? lock_release+0xbf/0xa30
[  550.113947][    C0]  ? __pfx___schedule+0x10/0x10
[  550.113975][    C0]  ? __pfx_lock_release+0x10/0x10
[  550.114008][    C0]  ? __mutex_trylock_common+0x92/0x2e0
[  550.114041][    C0]  ? schedule+0x90/0x320
[  550.114065][    C0]  schedule+0x14b/0x320
[  550.114092][    C0]  schedule_preempt_disabled+0x13/0x30
[  550.114119][    C0]  __mutex_lock+0x6a4/0xd70
[  550.114151][    C0]  ? __mutex_lock+0x527/0xd70
[  550.114181][    C0]  ? rtnetlink_rcv_msg+0x6eb/0xd00
[  550.114214][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  550.114247][    C0]  ? security_capable+0x90/0xb0
[  550.114278][    C0]  ? get_rtnl_holder+0x144/0x190
[  550.114321][    C0]  rtnetlink_rcv_msg+0x6eb/0xd00
[  550.114353][    C0]  ? rtnetlink_rcv_msg+0x1a7/0xd00
[  550.114387][    C0]  ? lock_release+0xbf/0xa30
[  550.114419][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  550.114452][    C0]  ? __pfx_lock_acquire+0x10/0x10
[  550.114484][    C0]  ? rcu_is_watching+0x15/0xb0
[  550.114507][    C0]  ? lock_acquire+0xe3/0x550
[  550.114557][    C0]  netlink_rcv_skb+0x1e3/0x430
[  550.114590][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  550.114623][    C0]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  550.114668][    C0]  ? net_generic+0x1f/0x240
[  550.114697][    C0]  ? netlink_deliver_tap+0x2e/0x1b0
[  550.114731][    C0]  netlink_unicast+0x7f0/0x990
[  550.114767][    C0]  ? __pfx_netlink_unicast+0x10/0x10
[  550.114796][    C0]  ? __virt_addr_valid+0x183/0x530
[  550.114821][    C0]  ? __check_object_size+0x49c/0x900
[  550.114847][    C0]  ? bpf_lsm_netlink_send+0x9/0x10
[  550.114881][    C0]  netlink_sendmsg+0x8e4/0xcb0
[  550.114923][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  550.114956][    C0]  ? count_memcg_event_mm+0x94/0x420
[  550.114991][    C0]  ? aa_sock_msg_perm+0x91/0x160
[  550.115020][    C0]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  550.115041][    C0]  ? security_socket_sendmsg+0x87/0xb0
[  550.115077][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  550.115110][    C0]  __sock_sendmsg+0x221/0x270
[  550.115143][    C0]  __sys_sendto+0x3a4/0x4f0
[  550.115170][    C0]  ? __pfx___sys_sendto+0x10/0x10
[  550.115202][    C0]  ? __pfx_lock_acquire+0x10/0x10
[  550.115239][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  550.115272][    C0]  ? __pfx___up_read+0x10/0x10
[  550.115301][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  550.115334][    C0]  ? rcu_is_watching+0x15/0xb0
[  550.115358][    C0]  __x64_sys_sendto+0xde/0x100
[  550.115384][    C0]  do_syscall_64+0xf3/0x230
[  550.115416][    C0]  ? clear_bhb_loop+0x35/0x90
[  550.115444][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  550.115469][    C0] RIP: 0033:0x7f0d94d7796c
[  550.115487][    C0] RSP: 002b:00007ffca9c9a220 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  550.115511][    C0] RAX: ffffffffffffffda RBX: 00007f0d95a34620 RCX: 00007f0d94d7796c
[  550.115530][    C0] RDX: 0000000000000028 RSI: 00007f0d95a34670 RDI: 0000000000000003
[  550.115547][    C0] RBP: 0000000000000000 R08: 00007ffca9c9a274 R09: 000000000000000c
[  550.115564][    C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  550.115579][    C0] R13: 0000000000000000 R14: 00007f0d95a34670 R15: 0000000000000000
[  550.115606][    C0]  </TASK>
[  550.115615][    C0] DEBUG: holding rtnl_mutex for 3862 jiffies.
[  550.115628][    C0] task:syz-executor    state:D stack:22576 pid:13099 tgid:13099 ppid:1      flags:0x00004004
[  550.115664][    C0] Call Trace:
[  550.115673][    C0]  <TASK>
[  550.115685][    C0]  __schedule+0x1800/0x4a60
[  550.115717][    C0]  ? schedule+0x90/0x320
[  550.115741][    C0]  ? schedule+0x90/0x320
[  550.115764][    C0]  ? lock_release+0xbf/0xa30
[  550.115797][    C0]  ? __pfx___schedule+0x10/0x10
[  550.115821][    C0]  ? rcu_is_watching+0x15/0xb0
[  550.115844][    C0]  ? __pfx_lock_release+0x10/0x10
[  550.115874][    C0]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  550.115908][    C0]  ? schedule+0x90/0x320
[  550.115932][    C0]  schedule+0x14b/0x320
[  550.115958][    C0]  synchronize_rcu_expedited+0x684/0x830
[  550.115985][    C0]  ? __pfx_synchronize_rcu_expedited+0x10/0x10
[  550.116011][    C0]  ? rcu_is_watching+0x15/0xb0
[  550.116037][    C0]  ? kobject_put+0x272/0x480
[  550.116067][    C0]  ? kfree+0x149/0x360
[  550.116094][    C0]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[  550.116117][    C0]  ? __pfx___might_resched+0x10/0x10
[  550.116148][    C0]  ? __pfx_autoremove_wake_function+0x10/0x10
[  550.116188][    C0]  netif_set_real_num_tx_queues+0x4e7/0x900
[  550.116221][    C0]  veth_init_queues+0x82/0x180
[  550.116251][    C0]  veth_newlink+0xa28/0xcd0
[  550.116279][    C0]  ? __pfx_veth_newlink+0x10/0x10
[  550.116307][    C0]  ? alloc_netdev_mqs+0xb9d/0x1000
[  550.116333][    C0]  ? rtnl_newlink+0x140d/0x2070
[  550.116358][    C0]  ? rtnetlink_rcv_msg+0x744/0xd00
[  550.116389][    C0]  ? netlink_rcv_skb+0x1e3/0x430
[  550.116420][    C0]  ? netlink_sendmsg+0x8e4/0xcb0
[  550.116453][    C0]  ? __sock_sendmsg+0x221/0x270
[  550.116482][    C0]  ? __sys_sendto+0x3a4/0x4f0
[  550.116505][    C0]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  550.116563][    C0]  ? alloc_netdev_mqs+0xc55/0x1000
[  550.116590][    C0]  ? validate_linkmsg+0x71e/0x900
[  550.116619][    C0]  ? rtnl_create_link+0x91c/0xc20
[  550.116645][    C0]  ? __pfx_veth_newlink+0x10/0x10
[  550.116670][    C0]  rtnl_newlink+0x14fe/0x2070
[  550.116707][    C0]  ? rtnl_newlink+0x501/0x2070
[  550.116739][    C0]  ? __pfx_rtnl_newlink+0x10/0x10
[  550.116768][    C0]  ? do_raw_spin_unlock+0x13c/0x8b0
[  550.116806][    C0]  ? __mutex_lock+0x527/0xd70
[  550.116843][    C0]  ? security_capable+0x90/0xb0
[  550.116873][    C0]  ? get_rtnl_holder+0x144/0x190
[  550.116905][    C0]  ? __pfx_rtnl_newlink+0x10/0x10
[  550.116933][    C0]  rtnetlink_rcv_msg+0x744/0xd00
[  550.116964][    C0]  ? rtnetlink_rcv_msg+0x1a7/0xd00
[  550.116997][    C0]  ? lock_release+0xbf/0xa30
[  550.117028][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  550.117061][    C0]  ? __pfx_lock_acquire+0x10/0x10
[  550.117091][    C0]  ? rcu_is_watching+0x15/0xb0
[  550.117114][    C0]  ? lock_acquire+0xe3/0x550
[  550.117150][    C0]  netlink_rcv_skb+0x1e3/0x430
[  550.117184][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  550.117217][    C0]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  550.117261][    C0]  ? net_generic+0x1f/0x240
[  550.117294][    C0]  ? netlink_deliver_tap+0x2e/0x1b0
[  550.117329][    C0]  netlink_unicast+0x7f0/0x990
[  550.117365][    C0]  ? __pfx_netlink_unicast+0x10/0x10
[  550.117395][    C0]  ? __virt_addr_valid+0x183/0x530
[  550.117419][    C0]  ? __check_object_size+0x49c/0x900
[  550.117446][    C0]  ? bpf_lsm_netlink_send+0x9/0x10
[  550.117480][    C0]  netlink_sendmsg+0x8e4/0xcb0
[  550.117522][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  550.117558][    C0]  ? aa_sock_msg_perm+0x91/0x160
[  550.117587][    C0]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  550.117609][    C0]  ? security_socket_sendmsg+0x87/0xb0
[  550.117644][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  550.117677][    C0]  __sock_sendmsg+0x221/0x270
[  550.117710][    C0]  __sys_sendto+0x3a4/0x4f0
[  550.117738][    C0]  ? __pfx___sys_sendto+0x10/0x10
[  550.117779][    C0]  ? irqtime_account_irq+0xd4/0x1e0
[  550.117812][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  550.117845][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  550.117879][    C0]  __x64_sys_sendto+0xde/0x100
[  550.117906][    C0]  do_syscall_64+0xf3/0x230
[  550.117938][    C0]  ? clear_bhb_loop+0x35/0x90
[  550.117965][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  550.117990][    C0] RIP: 0033:0x7f729697796c
[  550.118008][    C0] RSP: 002b:00007ffc51305980 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  550.118032][    C0] RAX: ffffffffffffffda RBX: 00007f7297634620 RCX: 00007f729697796c
[  550.118047][    C0] RDX: 000000000000006c RSI: 00007f7297634670 RDI: 0000000000000003
[  550.118062][    C0] RBP: 0000000000000000 R08: 00007ffc513059d4 R09: 000000000000000c
[  550.118076][    C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  550.118091][    C0] R13: 0000000000000000 R14: 00007f7297634670 R15: 0000000000000000
[  550.118115][    C0]  </TASK>
[  550.118124][    C0] DEBUG: waiting rtnl_mutex for 3862 jiffies.
[  550.118137][    C0] task:syz-executor    state:D stack:22576 pid:13055 tgid:13055 ppid:1      flags:0x00000004
[  550.118174][    C0] Call Trace:
[  550.118182][    C0]  <TASK>
[  550.118194][    C0]  __schedule+0x1800/0x4a60
[  550.118226][    C0]  ? schedule+0x90/0x320
[  550.118250][    C0]  ? schedule+0x90/0x320
[  550.118273][    C0]  ? lock_release+0xbf/0xa30
[  550.118311][    C0]  ? __pfx___schedule+0x10/0x10
[  550.118337][    C0]  ? __pfx_lock_release+0x10/0x10
[  550.118369][    C0]  ? __mutex_trylock_common+0x92/0x2e0
[  550.118399][    C0]  ? schedule+0x90/0x320
[  550.118423][    C0]  schedule+0x14b/0x320
[  550.118449][    C0]  schedule_preempt_disabled+0x13/0x30
[  550.118473][    C0]  __mutex_lock+0x6a4/0xd70
[  550.118504][    C0]  ? __mutex_lock+0x527/0xd70
[  550.118533][    C0]  ? rtnetlink_rcv_msg+0x6eb/0xd00
[  550.118565][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  550.118597][    C0]  ? security_capable+0x90/0xb0
[  550.118626][    C0]  ? get_rtnl_holder+0x144/0x190
[  550.118661][    C0]  rtnetlink_rcv_msg+0x6eb/0xd00
[  550.118691][    C0]  ? rtnetlink_rcv_msg+0x1a7/0xd00
[  550.118724][    C0]  ? lock_release+0xbf/0xa30
[  550.118754][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  550.118782][    C0]  ? __pfx_lock_acquire+0x10/0x10
[  550.118811][    C0]  ? rcu_is_watching+0x15/0xb0
[  550.118832][    C0]  ? lock_acquire+0xe3/0x550
[  550.118867][    C0]  netlink_rcv_skb+0x1e3/0x430
[  550.118898][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  550.118931][    C0]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  550.118973][    C0]  ? net_generic+0x1f/0x240
[  550.118999][    C0]  ? netlink_deliver_tap+0x2e/0x1b0
[  550.119033][    C0]  netlink_unicast+0x7f0/0x990
[  550.119068][    C0]  ? __pfx_netlink_unicast+0x10/0x10
[  550.119096][    C0]  ? __virt_addr_valid+0x183/0x530
[  550.119121][    C0]  ? __check_object_size+0x49c/0x900
[  550.119147][    C0]  ? bpf_lsm_netlink_send+0x9/0x10
[  550.119180][    C0]  netlink_sendmsg+0x8e4/0xcb0
[  550.119221][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  550.119257][    C0]  ? aa_sock_msg_perm+0x91/0x160
[  550.119285][    C0]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  550.119313][    C0]  ? security_socket_sendmsg+0x87/0xb0
[  550.119348][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  550.119381][    C0]  __sock_sendmsg+0x221/0x270
[  550.119413][    C0]  __sys_sendto+0x3a4/0x4f0
[  550.119440][    C0]  ? __pfx___sys_sendto+0x10/0x10
[  550.119478][    C0]  ? rcu_is_watching+0x15/0xb0
[  550.119500][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  550.119533][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  550.119565][    C0]  ? rcu_is_watching+0x15/0xb0
[  550.119588][    C0]  __x64_sys_sendto+0xde/0x100
[  550.119614][    C0]  do_syscall_64+0xf3/0x230
[  550.119645][    C0]  ? clear_bhb_loop+0x35/0x90
[  550.119672][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  550.119696][    C0] RIP: 0033:0x7f1678d7796c
[  550.119714][    C0] RSP: 002b:00007ffd6ca3de10 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  550.119738][    C0] RAX: ffffffffffffffda RBX: 00007f1679a34620 RCX: 00007f1678d7796c
[  550.119757][    C0] RDX: 000000000000006c RSI: 00007f1679a34670 RDI: 0000000000000003
[  550.119773][    C0] RBP: 0000000000000000 R08: 00007ffd6ca3de64 R09: 000000000000000c
[  550.119788][    C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  550.119804][    C0] R13: 0000000000000000 R14: 00007f1679a34670 R15: 0000000000000000
[  550.119830][    C0]  </TASK>
[  550.119839][    C0] DEBUG: waiting rtnl_mutex for 3862 jiffies.
[  550.119852][    C0] task:syz-executor    state:D stack:22576 pid:13100 tgid:13100 ppid:1      flags:0x00004006
[  550.119889][    C0] Call Trace:
[  550.119897][    C0]  <TASK>
[  550.119909][    C0]  __schedule+0x1800/0x4a60
[  550.119940][    C0]  ? schedule+0x90/0x320
[  550.119965][    C0]  ? schedule+0x90/0x320
[  550.132707][T12397] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[  550.134978][    C0]  ? lock_release+0xbf/0xa30
[  550.140030][T12397] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[  550.144580][    C0]  ? __pfx___schedule+0x10/0x10
[  550.149695][T12397] Bluetooth: hci8: unexpected cc 0x0c25 length: 249 > 3
[  550.153722][    C0]  ? __pfx_lock_release+0x10/0x10
[  550.159174][T12397] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[  550.163823][    C0]  ? __mutex_trylock_common+0x92/0x2e0
[  550.902959][T12397] Bluetooth: hci7: command tx timeout
[  550.907226][    C0]  ? mutex_spin_on_owner+0x26c/0x330
[  550.912556][T12397] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1
[  550.917424][    C0]  ? schedule+0x90/0x320
[  550.957561][T13152] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9
[  550.957879][T13152] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9
[  550.958700][T13152] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4
[  550.959258][T13152] Bluetooth: hci9: unexpected cc 0x0c25 length: 249 > 3
[  550.959554][T13152] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2
[  552.495054][T12060] Bluetooth: hci8: command tx timeout
[  553.244094][T13152] Bluetooth: hci7: command tx timeout
[  553.244139][T13152] Bluetooth: hci9: command tx timeout
[  554.766236][T12060] Bluetooth: hci8: command tx timeout
[  555.536303][T12060] Bluetooth: hci9: command tx timeout
[  555.540063][    C0]  schedule+0x14b/0x320
[  557.094331][T13152] Bluetooth: hci8: command tx timeout
[  557.853219][T13152] Bluetooth: hci9: command tx timeout
[  559.402274][T13152] Bluetooth: hci8: command tx timeout
[  559.404348][    C0]  schedule_preempt_disabled+0x13/0x30
[  559.404393][    C0]  __mutex_lock+0x6a4/0xd70
[  560.202743][T13152] Bluetooth: hci9: command tx timeout
[  574.053771][    C0]  ? __mutex_lock+0x527/0xd70
[  574.058500][    C0]  ? rtnetlink_rcv_msg+0x6eb/0xd00
[  574.063650][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  574.068723][    C0]  ? security_capable+0x90/0xb0
[  574.073635][    C0]  ? get_rtnl_holder+0x144/0x190
[  574.078613][    C0]  rtnetlink_rcv_msg+0x6eb/0xd00
[  574.083586][    C0]  ? rtnetlink_rcv_msg+0x1a7/0xd00
[  574.088734][    C0]  ? lock_release+0xbf/0xa30
[  574.093364][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  574.704139][    C0]  ? __pfx_lock_acquire+0x10/0x10
[  574.709244][    C0]  ? rcu_is_watching+0x15/0xb0
[  574.714031][    C0]  ? lock_acquire+0xe3/0x550
[  574.718657][    C0]  netlink_rcv_skb+0x1e3/0x430
[  574.723472][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  574.728979][    C0]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  574.734317][    C0]  ? net_generic+0x1f/0x240
[  574.738849][    C0]  ? netlink_deliver_tap+0x2e/0x1b0
[  574.744189][    C0]  netlink_unicast+0x7f0/0x990
[  574.749004][    C0]  ? __pfx_netlink_unicast+0x10/0x10
[  574.754325][    C0]  ? __virt_addr_valid+0x183/0x530
[  574.759482][    C0]  ? __check_object_size+0x49c/0x900
[  574.764802][    C0]  ? bpf_lsm_netlink_send+0x9/0x10
[  574.769957][    C0]  netlink_sendmsg+0x8e4/0xcb0
[  574.774769][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  574.780106][    C0]  ? aa_sock_msg_perm+0x91/0x160
[  574.785087][    C0]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  574.790407][    C0]  ? security_socket_sendmsg+0x87/0xb0
[  574.795921][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  574.801262][    C0]  __sock_sendmsg+0x221/0x270
[  574.856062][T12060] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1
[  574.856389][T12060] Bluetooth: hci10: unexpected cc 0x1003 length: 249 > 9
[  574.856677][T12060] Bluetooth: hci10: unexpected cc 0x1001 length: 249 > 9
[  574.857520][T12060] Bluetooth: hci10: unexpected cc 0x0c23 length: 249 > 4
[  574.858085][T12060] Bluetooth: hci10: unexpected cc 0x0c25 length: 249 > 3
[  574.858375][T12060] Bluetooth: hci10: unexpected cc 0x0c38 length: 249 > 2
[  575.506087][    C0]  __sys_sendto+0x3a4/0x4f0
[  575.510629][    C0]  ? __pfx___sys_sendto+0x10/0x10
[  575.515691][    C0]  ? rcu_is_watching+0x15/0xb0
[  575.520478][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  575.526923][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  575.533286][    C0]  ? rcu_is_watching+0x15/0xb0
[  575.538068][    C0]  __x64_sys_sendto+0xde/0x100
[  575.542861][    C0]  do_syscall_64+0xf3/0x230
[  575.547395][    C0]  ? clear_bhb_loop+0x35/0x90
[  575.552092][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  575.558004][    C0] RIP: 0033:0x7f36df97796c
[  575.562436][    C0] RSP: 002b:00007ffc9c4d07e0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  576.175491][    C0] RAX: ffffffffffffffda RBX: 00007f36e0634620 RCX: 00007f36df97796c
[  576.183511][    C0] RDX: 0000000000000020 RSI: 00007f36e0634670 RDI: 0000000000000003
[  576.191499][    C0] RBP: 0000000000000000 R08: 00007ffc9c4d0834 R09: 000000000000000c
[  576.199482][    C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  576.207463][    C0] R13: 0000000000000000 R14: 00007f36e0634670 R15: 0000000000000000
[  576.215461][    C0]  </TASK>
[  576.218490][    C0] DEBUG: waiting rtnl_mutex for 6394 jiffies.
[  576.224561][    C0] task:kworker/u8:2    state:D stack:21096 pid:35    tgid:35    ppid:2      flags:0x00004000
[  576.234753][    C0] Workqueue: ipv6_addrconf addrconf_dad_work
[  576.240809][    C0] Call Trace:
[  576.244110][    C0]  <TASK>
[  576.247066][    C0]  __schedule+0x1800/0x4a60
[  576.251604][    C0]  ? schedule+0x90/0x320
[  576.255868][    C0]  ? schedule+0x90/0x320
[  576.260228][    C0]  ? lock_release+0xbf/0xa30
[  576.264846][    C0]  ? __pfx___schedule+0x10/0x10
[  576.269715][    C0]  ? __pfx_lock_release+0x10/0x10
[  576.274774][    C0]  ? __mutex_trylock_common+0x92/0x2e0
[  576.867381][    C0]  ? kthread_data+0x52/0xd0
[  576.871949][    C0]  ? schedule+0x90/0x320
[  576.876218][    C0]  ? wq_worker_sleeping+0x66/0x240
[  576.881359][    C0]  ? schedule+0x90/0x320
[  576.885622][    C0]  schedule+0x14b/0x320
[  576.889802][    C0]  schedule_preempt_disabled+0x13/0x30
[  576.895279][    C0]  __mutex_lock+0x6a4/0xd70
[  576.899808][    C0]  ? __mutex_lock+0x527/0xd70
[  576.904512][    C0]  ? addrconf_dad_work+0xd0/0x16f0
[  576.909649][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  576.914704][    C0]  ? get_rtnl_holder+0x144/0x190
[  576.919678][    C0]  addrconf_dad_work+0xd0/0x16f0
[  576.924643][    C0]  ? debug_object_deactivate+0x2d5/0x390
[  576.930294][    C0]  ? __pfx_lock_release+0x10/0x10
[  576.935365][    C0]  ? __pfx_addrconf_dad_work+0x10/0x10
[  576.940870][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  576.947256][    C0]  ? rcu_is_watching+0x15/0xb0
[  576.952053][    C0]  ? process_scheduled_works+0x945/0x1830
[  576.957802][    C0]  process_scheduled_works+0xa2c/0x1830
[  576.963402][    C0]  ? __pfx_process_scheduled_works+0x10/0x10
[  577.175566][T12060] Bluetooth: hci10: command tx timeout
[  577.176523][   T19] rcu: INFO: rcu_preempt detected expedited stalls on CPUs/tasks: { 0-.... } 2706 jiffies s: 52261 root: 0x1/.
[  577.176566][   T19] rcu: blocking rcu_node structures (internal RCU debug):
[  577.176580][   T19] Sending NMI from CPU 1 to CPUs 0:
[  577.176621][    C0] NMI backtrace for cpu 0
[  577.176637][    C0] CPU: 0 UID: 0 PID: 5153 Comm: kworker/0:3 Not tainted 6.10.0-rc7-next-20240712-syzkaller #0
[  577.176660][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  577.176673][    C0] Workqueue: events_power_efficient gc_worker
[  577.176706][    C0] RIP: 0010:lock_acquire+0x2a4/0x550
[  577.176740][    C0] Code: 11 00 00 00 00 66 43 c7 44 25 15 00 00 43 c6 44 25 17 00 65 48 8b 04 25 28 00 00 00 48 3b 84 24 00 01 00 00 0f 85 95 02 00 00 <48> 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc 65 8b 05
[  577.176757][    C0] RSP: 0018:ffffc90000006ca0 EFLAGS: 00000046
[  577.176773][    C0] RAX: a767221c58893e00 RBX: 0000000000000000 RCX: ffffffff816fb024
[  577.176788][    C0] RDX: 0000000000000000 RSI: ffffffff8c209f40 RDI: ffffffff8c209f00
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  577.176802][    C0] RBP: ffffc90000006de8 R08: ffffffff8faffd6f R09: 1ffffffff1f5ffad
[  577.176817][    C0] R10: dffffc0000000000 R11: fffffbfff1f5ffae R12: 1ffff92000000d9c
[  577.176832][    C0] R13: dffffc0000000000 R14: 0000000000000000 R15: ffff88807b589340
[  577.176846][    C0] FS:  0000000000000000(0000) GS:ffff8880b9400000(0000) knlGS:0000000000000000
[  577.176863][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  577.176877][    C0] CR2: 00007f7dbf3ffd00 CR3: 000000004c40a000 CR4: 00000000003506f0
[  577.176894][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  577.176906][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  577.176919][    C0] Call Trace:
[  577.176926][    C0]  <NMI>
[  577.176935][    C0]  ? nmi_cpu_backtrace+0x3c2/0x4d0
[  577.176955][    C0]  ? __pfx_lock_acquire+0x10/0x10
[  577.176984][    C0]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  577.177013][    C0]  ? nmi_cpu_backtrace_handler+0xc/0x20
[  577.177038][    C0]  ? nmi_handle+0x14f/0x5a0
[  577.177056][    C0]  ? nmi_handle+0x2a/0x5a0
[  577.177076][    C0]  ? lock_acquire+0x2a4/0x550
[  577.177100][    C0]  ? default_do_nmi+0x63/0x160
[  577.177121][    C0]  ? exc_nmi+0x123/0x1f0
[  577.177140][    C0]  ? end_repeat_nmi+0xf/0x53
[  577.177176][    C0]  ? lock_acquire+0xd4/0x550
[  577.177202][    C0]  ? lock_acquire+0x2a4/0x550
[  577.177226][    C0]  ? lock_acquire+0x2a4/0x550
[  577.177252][    C0]  ? lock_acquire+0x2a4/0x550
[  577.177276][    C0]  </NMI>
[  577.177283][    C0]  <IRQ>
[  577.177293][    C0]  ? __pfx_lock_acquire+0x10/0x10
[  577.177317][    C0]  ? do_raw_spin_unlock+0x13c/0x8b0
[  577.177340][    C0]  ? __pfx_lock_release+0x10/0x10
[  577.177366][    C0]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  577.177390][    C0]  ? debug_objects_fill_pool+0x80/0x9b0
[  577.177411][    C0]  debug_objects_fill_pool+0x9f/0x9b0
[  577.177430][    C0]  ? debug_objects_fill_pool+0x80/0x9b0
[  577.177449][    C0]  ? lock_release+0xbf/0xa30
[  577.177476][    C0]  ? do_raw_spin_lock+0x14f/0x370
[  577.177499][    C0]  ? __pfx_debug_objects_fill_pool+0x10/0x10
[  577.177521][    C0]  ? rcu_is_watching+0x15/0xb0
[  577.177538][    C0]  ? lock_acquire+0xe3/0x550
[  577.177563][    C0]  ? advance_sched+0xa02/0xca0
[  577.177586][    C0]  debug_object_activate+0x135/0x510
[  577.177606][    C0]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  577.177628][    C0]  ? __pfx_debug_object_activate+0x10/0x10
[  577.177646][    C0]  ? advance_sched+0xa02/0xca0
[  577.177667][    C0]  ? _raw_spin_lock_irq+0xdf/0x120
[  577.177685][    C0]  ? __pfx__raw_spin_lock_irq+0x10/0x10
[  577.177713][    C0]  enqueue_hrtimer+0x30/0x3c0
[  577.177738][    C0]  __hrtimer_run_queues+0x6cb/0xd50
[  577.177760][    C0]  ? ktime_get_update_offsets_now+0x3c/0x250
[  577.177797][    C0]  ? __pfx___hrtimer_run_queues+0x10/0x10
[  577.177825][    C0]  hrtimer_interrupt+0x396/0x990
[  577.177859][    C0]  __sysvec_apic_timer_interrupt+0x110/0x3f0
[  577.177889][    C0]  sysvec_apic_timer_interrupt+0x52/0xc0
[  577.177913][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  577.177934][    C0] RIP: 0010:console_flush_all+0x9f7/0xf50
[  577.177956][    C0] Code: 20 00 90 0f 0b 90 e9 f3 f9 ff ff e8 c3 1b 20 00 e8 7e 56 20 0a 4d 85 f6 74 c0 e8 b4 1b 20 00 fb 49 bd 00 00 00 00 00 fc ff df <43> 80 3c 2f 00 48 8b 5c 24 30 74 08 48 89 df e8 d5 a1 87 00 4c 8b
[  577.177971][    C0] RSP: 0018:ffffc90000007480 EFLAGS: 00000246
[  577.177987][    C0] RAX: ffffffff8173af3c RBX: 0000000000000000 RCX: ffff888028ad9e00
[  577.178000][    C0] RDX: 0000000000000101 RSI: 0000000000000000 RDI: 0000000000000000
[  577.178012][    C0] RBP: ffffc90000007610 R08: ffffffff8173aee3 R09: 1ffffffff1f5ffad
[  577.178026][    C0] R10: dffffc0000000000 R11: fffffbfff1f5ffae R12: ffffffff8eb30c00
[  577.178041][    C0] R13: dffffc0000000000 R14: 0000000000000200 R15: 1ffffffff1d6618b
[  577.178058][    C0]  ? console_flush_all+0x993/0xf50
[  577.178078][    C0]  ? console_flush_all+0x9ec/0xf50
[  577.178106][    C0]  ? console_flush_all+0x147/0xf50
[  577.178130][    C0]  ? __pfx_console_flush_all+0x10/0x10
[  577.178154][    C0]  ? __pfx_lock_acquire+0x10/0x10
[  577.178180][    C0]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  577.178201][    C0]  ? rcu_is_watching+0x15/0xb0
[  577.178219][    C0]  console_unlock+0x13b/0x4d0
[  577.178242][    C0]  ? __pfx_console_unlock+0x10/0x10
[  577.178260][    C0]  ? _printk+0xd5/0x120
[  577.178283][    C0]  ? _printk+0xd5/0x120
[  577.178305][    C0]  ? __pfx___down_trylock_console_sem+0x10/0x10
[  577.178327][    C0]  ? vprintk_emit+0x7ce/0x900
[  577.178351][    C0]  vprintk_emit+0x7a1/0x900
[  577.178373][    C0]  ? __pfx_vprintk_emit+0x10/0x10
[  577.178391][    C0]  ? rcu_is_watching+0x15/0xb0
[  577.178408][    C0]  ? lock_release+0xbf/0xa30
[  577.178432][    C0]  ? __pfx_lock_acquire+0x10/0x10
[  577.178462][    C0]  _printk+0xd5/0x120
[  577.178486][    C0]  ? __pfx_process_scheduled_works+0x10/0x10
[  577.178510][    C0]  ? wq_watchdog_touch+0xe5/0x180
[  577.178532][    C0]  ? __pfx__printk+0x10/0x10
[  577.178556][    C0]  ? is_bpf_text_address+0x285/0x2a0
[  577.178574][    C0]  ? is_bpf_text_address+0x26/0x2a0
[  577.178594][    C0]  ? wq_watchdog_touch+0xef/0x180
[  577.178615][    C0]  ? __pfx_process_scheduled_works+0x10/0x10
[  577.178657][    C0]  show_trace_log_lvl+0x43a/0x520
[  577.178692][    C0]  ? worker_thread+0x86d/0xd40
[  577.178725][    C0]  sched_show_task+0x506/0x6d0
[  577.178748][    C0]  ? report_rtnl_holders+0x29e/0x3f0
[  577.178773][    C0]  ? __pfx__printk+0x10/0x10
[  577.178797][    C0]  ? __pfx_sched_show_task+0x10/0x10
[  577.178818][    C0]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  577.178838][    C0]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  577.178874][    C0]  report_rtnl_holders+0x320/0x3f0
[  577.178901][    C0]  call_timer_fn+0x18e/0x650
[  577.178920][    C0]  ? call_timer_fn+0xc0/0x650
[  577.178937][    C0]  ? __pfx_report_rtnl_holders+0x10/0x10
[  577.178960][    C0]  ? __pfx_call_timer_fn+0x10/0x10
[  577.178982][    C0]  ? __pfx_report_rtnl_holders+0x10/0x10
[  577.179006][    C0]  ? __pfx_report_rtnl_holders+0x10/0x10
[  577.179028][    C0]  ? rcu_is_watching+0x15/0xb0
[  577.179044][    C0]  ? __pfx_report_rtnl_holders+0x10/0x10
[  577.179066][    C0]  ? __pfx_report_rtnl_holders+0x10/0x10
[  577.179090][    C0]  __run_timer_base+0x66a/0x8e0
[  577.179124][    C0]  ? __pfx___run_timer_base+0x10/0x10
[  577.179150][    C0]  ? __local_bh_disable_ip+0x179/0x220
[  577.179177][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  577.179207][    C0]  run_timer_softirq+0xb7/0x170
[  577.179225][    C0]  handle_softirqs+0x2c4/0x970
[  577.179250][    C0]  ? __irq_exit_rcu+0xf4/0x1c0
[  577.179276][    C0]  ? __pfx_handle_softirqs+0x10/0x10
[  577.179321][    C0]  ? irqtime_account_irq+0xd4/0x1e0
[  577.179350][    C0]  __irq_exit_rcu+0xf4/0x1c0
[  577.179374][    C0]  ? __pfx___irq_exit_rcu+0x10/0x10
[  577.179403][    C0]  irq_exit_rcu+0x9/0x30
[  577.179426][    C0]  sysvec_apic_timer_interrupt+0xa6/0xc0
[  577.179450][    C0]  </IRQ>
[  577.179457][    C0]  <TASK>
[  577.179464][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  577.179486][    C0] RIP: 0010:__sanitizer_cov_trace_const_cmp4+0x0/0x90
[  577.179516][    C0] Code: 10 48 89 74 0a 18 4c 89 44 0a 20 c3 cc cc cc cc 66 2e 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 <f3> 0f 1e fa 4c 8b 04 24 65 48 8b 14 25 40 d7 03 00 65 8b 05 00 08
[  577.179532][    C0] RSP: 0018:ffffc900037dfa58 EFLAGS: 00000246
[  577.179547][    C0] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffff888028ad9e00
[  577.179560][    C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  577.179572][    C0] RBP: ffffc900037dfbb0 R08: ffffffff89ad811f R09: 1ffffffff1f5ffad
[  577.179587][    C0] R10: dffffc0000000000 R11: fffffbfff1f5ffae R12: 0000000000040000
[  577.179602][    C0] R13: dffffc0000000000 R14: ffff88801dc00000 R15: 0000000000031bf1
[  577.179620][    C0]  ? gc_worker+0x3bf/0x1530
[  577.179652][    C0]  gc_worker+0xd28/0x1530
[  577.179680][    C0]  ? gc_worker+0x26b/0x1530
[  577.179728][    C0]  ? __pfx_gc_worker+0x10/0x10
[  577.179757][    C0]  ? rcu_is_watching+0x15/0xb0
[  577.179777][    C0]  ? process_scheduled_works+0x945/0x1830
[  577.179801][    C0]  process_scheduled_works+0xa2c/0x1830
[  577.179842][    C0]  ? __pfx_process_scheduled_works+0x10/0x10
[  577.179869][    C0]  ? __pfx__raw_spin_lock_irq+0x10/0x10
[  577.179891][    C0]  ? assign_work+0x364/0x3d0
[  577.179918][    C0]  worker_thread+0x86d/0xd40
[  577.179944][    C0]  ? rcu_is_watching+0x15/0xb0
[  577.179965][    C0]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  577.179988][    C0]  ? __kthread_parkme+0x169/0x1d0
[  577.180016][    C0]  ? __pfx_worker_thread+0x10/0x10
[  577.180053][    C0]  kthread+0x2f0/0x390
[  577.180069][    C0]  ? __pfx_worker_thread+0x10/0x10
[  577.180093][    C0]  ? __pfx_kthread+0x10/0x10
[  577.180111][    C0]  ret_from_fork+0x4b/0x80
[  577.180136][    C0]  ? __pfx_kthread+0x10/0x10
[  577.180153][    C0]  ret_from_fork_asm+0x1a/0x30
[  577.180187][    C0]  </TASK>
[  579.615601][T12060] Bluetooth: hci10: command tx timeout
[  582.009343][T12060] Bluetooth: hci10: command tx timeout
[  583.550820][    C0]  ? __pfx__raw_spin_lock_irq+0x10/0x10
[  583.556403][    C0]  ? assign_work+0x364/0x3d0
[  583.561006][    C0]  worker_thread+0x86d/0xd40
[  583.565607][    C0]  ? __kthread_parkme+0x169/0x1d0
[  583.570647][    C0]  ? __pfx_worker_thread+0x10/0x10
[  583.575780][    C0]  kthread+0x2f0/0x390
[  583.579851][    C0]  ? __pfx_worker_thread+0x10/0x10
[  583.584968][    C0]  ? __pfx_kthread+0x10/0x10
[  583.589555][    C0]  ret_from_fork+0x4b/0x80
[  583.593999][    C0]  ? __pfx_kthread+0x10/0x10
[  583.598585][    C0]  ret_from_fork_asm+0x1a/0x30
[  583.603533][    C0]  </TASK>
[  583.606552][    C0] INFO: lockdep is turned off.
[  584.270910][T12060] Bluetooth: hci10: command tx timeout
[  584.952873][ T1251] ieee802154 phy0 wpan0: encryption failed: -22
[  584.959232][ T1251] ieee802154 phy1 wpan1: encryption failed: -22
[  585.461391][    C0] DEBUG: waiting rtnl_mutex for 7326 jiffies.
[  585.467513][    C0] task:syz-executor    state:D stack:22576 pid:13073 tgid:13073 ppid:1      flags:0x00000004
[  585.477737][    C0] Call Trace:
[  585.481027][    C0]  <TASK>
[  585.483975][    C0]  __schedule+0x1800/0x4a60
[  585.488509][    C0]  ? schedule+0x90/0x320
[  585.492764][    C0]  ? schedule+0x90/0x320
[  585.497034][    C0]  ? lock_release+0xbf/0xa30
[  585.501685][    C0]  ? __pfx___schedule+0x10/0x10
[  585.506641][    C0]  ? __pfx_lock_release+0x10/0x10
[  585.511710][    C0]  ? __mutex_trylock_common+0x92/0x2e0
[  585.517196][    C0]  ? schedule+0x90/0x320
[  585.521452][    C0]  schedule+0x14b/0x320
[  585.525641][    C0]  schedule_preempt_disabled+0x13/0x30
[  585.531110][    C0]  __mutex_lock+0x6a4/0xd70
[  585.535636][    C0]  ? __mutex_lock+0x527/0xd70
[  585.540348][    C0]  ? rtnetlink_rcv_msg+0x6eb/0xd00
[  585.545507][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  585.550578][    C0]  ? security_capable+0x90/0xb0
[  585.555459][    C0]  ? get_rtnl_holder+0x144/0x190
[  585.560425][    C0]  rtnetlink_rcv_msg+0x6eb/0xd00
[  586.034368][    C0]  ? rtnetlink_rcv_msg+0x1a7/0xd00
[  586.039574][    C0]  ? lock_release+0xbf/0xa30
[  586.044192][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  586.049696][    C0]  ? __pfx_lock_acquire+0x10/0x10
[  586.054747][    C0]  ? rcu_is_watching+0x15/0xb0
[  586.059608][    C0]  ? lock_acquire+0xe3/0x550
[  586.064228][    C0]  netlink_rcv_skb+0x1e3/0x430
[  586.069020][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  586.074499][    C0]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  586.079860][    C0]  ? net_generic+0x1f/0x240
[  586.084470][    C0]  ? netlink_deliver_tap+0x2e/0x1b0
[  586.089706][    C0]  netlink_unicast+0x7f0/0x990
[  586.094512][    C0]  ? __pfx_netlink_unicast+0x10/0x10
[  586.099832][    C0]  ? __virt_addr_valid+0x183/0x530
[  586.104961][    C0]  ? __check_object_size+0x49c/0x900
[  586.110259][    C0]  ? bpf_lsm_netlink_send+0x9/0x10
[  586.115388][    C0]  netlink_sendmsg+0x8e4/0xcb0
[  586.120194][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  586.125507][    C0]  ? aa_sock_msg_perm+0x91/0x160
[  586.130465][    C0]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  586.273630][T12060] Bluetooth: hci3: command 0x0406 tx timeout
[  586.273681][T12060] Bluetooth: hci4: command 0x0406 tx timeout
[  586.615022][    C0]  ? security_socket_sendmsg+0x87/0xb0
[  586.620540][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  586.625859][    C0]  __sock_sendmsg+0x221/0x270
[  586.630573][    C0]  __sys_sendto+0x3a4/0x4f0
[  586.635100][    C0]  ? __pfx___sys_sendto+0x10/0x10
[  586.640153][    C0]  ? rcu_is_watching+0x15/0xb0
[  586.644925][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  586.651275][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  586.657624][    C0]  ? rcu_is_watching+0x15/0xb0
[  586.662400][    C0]  __x64_sys_sendto+0xde/0x100
[  586.667204][    C0]  do_syscall_64+0xf3/0x230
[  586.671729][    C0]  ? clear_bhb_loop+0x35/0x90
[  586.676423][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  586.682328][    C0] RIP: 0033:0x7f00d157796c
[  586.686756][    C0] RSP: 002b:00007ffc0c497480 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  586.695193][    C0] RAX: ffffffffffffffda RBX: 00007f00d2234620 RCX: 00007f00d157796c
[  587.172927][    C0] RDX: 0000000000000050 RSI: 00007f00d2234670 RDI: 0000000000000003
[  587.180937][    C0] RBP: 0000000000000000 R08: 00007ffc0c4974d4 R09: 000000000000000c
[  587.188922][    C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  587.196905][    C0] R13: 0000000000000000 R14: 00007f00d2234670 R15: 0000000000000000
[  587.204904][    C0]  </TASK>
[  587.207936][    C0] DEBUG: waiting rtnl_mutex for 7499 jiffies.
[  587.214011][    C0] task:kworker/0:5     state:D stack:20880 pid:5155  tgid:5155  ppid:2      flags:0x00004000
[  587.224202][    C0] Workqueue: events switchdev_deferred_process_work
[  587.230829][    C0] Call Trace:
[  587.234120][    C0]  <TASK>
[  587.237062][    C0]  __schedule+0x1800/0x4a60
[  587.241589][    C0]  ? schedule+0x90/0x320
[  587.245855][    C0]  ? schedule+0x90/0x320
[  587.250296][    C0]  ? lock_release+0xbf/0xa30
[  587.254909][    C0]  ? __pfx___schedule+0x10/0x10
[  587.259778][    C0]  ? _raw_spin_lock_irq+0xdf/0x120
[  587.264904][    C0]  ? __pfx_lock_release+0x10/0x10
[  587.269951][    C0]  ? kick_pool+0x45c/0x620