last executing test programs:

6m4.076484721s ago: executing program 3 (id=6):
syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000100)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x800002, &(0x7f0000000180)={[{@force}, {@nodecompose}, {@uid}, {@gid={'gid', 0x3d, 0xee01}}, {@nobarrier}, {}, {@nls={'nls', 0x3d, 'default'}}, {@nobarrier}]}, 0x3, 0x6b3, &(0x7f0000000780)="$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")
r0 = syz_open_dev$loop(&(0x7f0000000100), 0xd79, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
pselect6(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cgroup.stat\x00', 0x275a, 0x0)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000002c0)={r1, 0x0, {0x2a00, 0x80010000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c, "fee8a2ab78fc979fd1e00d96072000001ea89de2b7fb0000e60080b8785d96000100", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "90be8b1c551265406c7f306003d8a0f4bd00"}})
ioctl$LOOP_GET_STATUS64(r0, 0x4c05, &(0x7f0000000480))

6m3.223182024s ago: executing program 2 (id=3):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
io_uring_setup(0x0, 0x0)
io_uring_setup(0x2c49, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_DEFER_SETUP(r3, 0x112, 0x7, &(0x7f00000006c0), 0x4)

6m3.146463984s ago: executing program 3 (id=8):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x2c41, 0x0)
flock(r0, 0x5)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x2c41, 0x0)
flock(r1, 0x5)
r2 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
flock(r2, 0x1)

6m2.954354445s ago: executing program 4 (id=5):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=@framed={{}, [@ringbuf_output={{0x18, 0x2, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x43}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000001640)='kfree\x00', r1}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x22000406, &(0x7f00000001c0)={[{@data_err_abort}, {@noblock_validity}, {@grpquota}, {@init_itable}, {@block_validity}, {@grpjquota, 0x2e}, {@inlinecrypt}, {@barrier_val={'barrier', 0x3d, 0x6}}, {@jqfmt_vfsv1}, {@grpid}], [], 0x2c}, 0x1, 0x4bf, &(0x7f0000000740)="$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")

6m2.126269267s ago: executing program 2 (id=9):
r0 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x0)
r2 = openat$cgroup_procs(r1, &(0x7f0000000040)='cgroup.procs\x00', 0x2, 0x0)
open_by_handle_at(r2, &(0x7f0000000100)=ANY=[@ANYBLOB="0c000000fe00000057000900"], 0x200000)

6m2.055608617s ago: executing program 3 (id=10):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000040)=@framed, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r0}, 0x10)
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_TIMER_IOCTL_TREAD(r1, 0x40045402, &(0x7f0000000040)=0x1)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r1, 0x40345410, &(0x7f00000083c0)={{0x1}})
readv(r1, &(0x7f0000000200)=[{&(0x7f0000000140)=""/144, 0x90}], 0x1)
ioctl$SNDRV_TIMER_IOCTL_PARAMS(r1, 0x40505412, &(0x7f00000000c0)={0x0, 0x8, 0x0, 0x0, 0xf})
read(r1, &(0x7f00000002c0)=""/196, 0xc4)
ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r1, 0x54a2)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x100002, 0x0)

6m1.941048578s ago: executing program 2 (id=11):
r0 = socket$nl_route(0x10, 0x3, 0x0)
recvfrom(r0, 0x0, 0x0, 0x0, 0x0, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000a40)=ANY=[@ANYBLOB="2c0000001e00431b0000"], 0x2c}}, 0x0)

6m1.880481468s ago: executing program 4 (id=12):
syz_mount_image$udf(&(0x7f0000000f00), &(0x7f00000003c0)='./file1\x00', 0x0, &(0x7f0000000f40)=ANY=[@ANYBLOB="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", @ANYRESOCT, @ANYBLOB="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", @ANYRES64, @ANYRESHEX], 0x9, 0xc56, &(0x7f0000001bc0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x103042, 0x0)
pwritev2(r0, &(0x7f00000001c0)=[{&(0x7f0000000700)="a9", 0x1}], 0x1, 0x2, 0x7, 0x0)

6m1.754021638s ago: executing program 2 (id=13):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="8fcacb7907051175f37538e486dd6300800701082c00db5b686158bbcfe8875a060300000023000000000000000000000000ac1414aa"], 0xfdef)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r1)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0))
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
write$cgroup_subtree(r0, &(0x7f0000000440)=ANY=[@ANYBLOB="8fedcb5d07081175f37538e486dd6372ce22fdb932"], 0xfdef)

6m1.687021269s ago: executing program 4 (id=14):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[], 0x48)
io_uring_setup(0x0, &(0x7f0000000000)={0x0, 0x0, 0x20, 0x1})
r3 = io_uring_setup(0x2c49, &(0x7f0000002240)={0x0, 0x0, 0x0, 0x3})
io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(r3, 0x18, &(0x7f0000000000), 0x1)

6m1.630330598s ago: executing program 3 (id=15):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x9e, 0x17, 0x36, 0x10, 0x17ef, 0x721e, 0xde06, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x2, 0x6}}]}}]}}, 0x0)
syz_usb_control_io$uac1(r0, 0x0, &(0x7f00000006c0)={0x44, &(0x7f0000000000)=ANY=[@ANYBLOB='\x00\x00\a'], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

6m0.154988733s ago: executing program 4 (id=18):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0xca02})
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
close(r0)
socket$netlink(0x10, 0x3, 0x0)
preadv(r1, &(0x7f0000001300)=[{&(0x7f00000000c0)=""/124, 0xe}], 0x3e8, 0x0, 0x0)
ioctl$SIOCSIFHWADDR(r0, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
socket$nl_route(0x10, 0x3, 0x0)

5m59.612102935s ago: executing program 3 (id=21):
socket$packet(0x11, 0x3, 0x300)
r0 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x201, 0x2)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1000002, 0x11012, r0, 0x0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$sock_int(r1, 0x1, 0x3c, &(0x7f0000000040)=0x1, 0xfff0)
setsockopt$inet_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000100)=0x1, 0x4)
connect$inet(r1, &(0x7f00000006c0)={0x2, 0x0, @dev}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x41, 0x0)
ioctl$TCSETS(r2, 0x40045431, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, 0x0, "0062ba7d82000000000000000000f7ffffff00"})
r3 = syz_open_pts(r2, 0x0)
r4 = dup3(r3, r2, 0x80000)
read$watch_queue(r4, &(0x7f0000001e00)=""/4096, 0x1000)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f0000000040)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x5}}, {@journal_dev={'journal_dev', 0x3d, 0x8000}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@minixdf}, {@resgid}, {@grpquota}, {@usrjquota}]}, 0x23, 0x452, &(0x7f0000000880)="$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")
socket$nl_route(0x10, 0x3, 0x0)
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
epoll_create1(0x0)
pipe2(&(0x7f0000000100)={0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x84800)
syz_usb_connect$uac1(0x0, 0xa4, &(0x7f0000000080)=ANY=[@ANYBLOB="2a01000020000040b708000000000000030109029200030172e5000904000000010100000a24010000000201020c0d2407000005000000000000000c240000e9fffff5ffffffff092403f3ff000005024524", @ANYRES8=r5, @ANYBLOB="05"], 0x0)

5m58.781733247s ago: executing program 3 (id=25):
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, 0x0, &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}})
read$FUSE(r0, &(0x7f00000077c0)={0x2020}, 0x2020)
r4 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), r4)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r4, 0x89f1, &(0x7f0000000440)={'ip6gre0\x00', &(0x7f0000000300)={'syztnl2\x00', 0x0, 0x2f, 0x5, 0xfc, 0x9, 0x30, @mcast2, @private0={0xfc, 0x0, '\x00', 0x1}, 0x80, 0x700, 0x6c4, 0x5}})
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000005c0)=ANY=[@ANYBLOB="18000000", @ANYRES16=r6, @ANYBLOB="3183000000000000000019000000040001805c"], 0x18}}, 0x0)

5m46.611670574s ago: executing program 32 (id=13):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="8fcacb7907051175f37538e486dd6300800701082c00db5b686158bbcfe8875a060300000023000000000000000000000000ac1414aa"], 0xfdef)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r1)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0))
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
write$cgroup_subtree(r0, &(0x7f0000000440)=ANY=[@ANYBLOB="8fedcb5d07081175f37538e486dd6372ce22fdb932"], 0xfdef)

5m44.604507439s ago: executing program 33 (id=18):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0xca02})
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
close(r0)
socket$netlink(0x10, 0x3, 0x0)
preadv(r1, &(0x7f0000001300)=[{&(0x7f00000000c0)=""/124, 0xe}], 0x3e8, 0x0, 0x0)
ioctl$SIOCSIFHWADDR(r0, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
socket$nl_route(0x10, 0x3, 0x0)

5m43.536920202s ago: executing program 34 (id=25):
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, 0x0, &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}})
read$FUSE(r0, &(0x7f00000077c0)={0x2020}, 0x2020)
r4 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), r4)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r4, 0x89f1, &(0x7f0000000440)={'ip6gre0\x00', &(0x7f0000000300)={'syztnl2\x00', 0x0, 0x2f, 0x5, 0xfc, 0x9, 0x30, @mcast2, @private0={0xfc, 0x0, '\x00', 0x1}, 0x80, 0x700, 0x6c4, 0x5}})
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000005c0)=ANY=[@ANYBLOB="18000000", @ANYRES16=r6, @ANYBLOB="3183000000000000000019000000040001805c"], 0x18}}, 0x0)

2m36.106482563s ago: executing program 5 (id=885):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0e00000004000000040000000300000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYBLOB], 0x48)
r4 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r4, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)
connect$inet(r4, &(0x7f0000000340)={0x2, 0x4e24, @loopback}, 0x10)
sendmmsg(r4, &(0x7f00000057c0)=[{{0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000840)="ee60", 0x2}], 0x1}}], 0x1, 0x0)
recvmmsg(r4, &(0x7f00000048c0)=[{{0x0, 0x0, &(0x7f0000004a00)=[{&(0x7f0000001a00)=""/4099, 0x1003}], 0x1}}], 0x1003, 0x10122, 0x0)
sendmsg$sock(r4, &(0x7f0000000700)={0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000000500)="c4", 0x1}], 0x1}, 0x0)
r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000001d5551c9dc294c15c459c84a2a35db8c5cad0de1d39664a45ac40ac6dbf473f8c4c31c4e"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x8, 0x1c, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0x60}, {{0x18, 0x1, 0x1, 0x0, r3}, {}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4, 0x1, 0xb, 0x9, 0x0, 0x8}}, {{0x5, 0x0, 0x3}, {0x95, 0x0, 0x0, 0x700}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x9, 0xfe00}, {0x6, 0x0, 0x6, 0x9}, {0x3, 0x3, 0x6, 0xa, 0xa, 0xfff0, 0x50}, {0x7, 0x1, 0xb, 0x6, 0x8, 0x20}, {0x7, 0x0, 0x0, 0x8}, {}, {}, {0x7, 0x0, 0x7, 0x0}, {0x18, 0x2, 0x2, 0x0, r5}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0x0, 0xf00, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
syz_open_dev$loop(&(0x7f0000000300), 0x2, 0x40000)
r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$KDSKBENT(0xffffffffffffffff, 0x4b47, &(0x7f00000002c0)={0x0, 0x0, 0x27f})
ioctl$sock_bt_hci(r6, 0x800448d3, 0x0)
inotify_init1(0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r7}, 0x10)
r8 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r8, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @empty, 0x4}], 0x1c)

2m34.357390598s ago: executing program 1 (id=887):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_open_dev$loop(&(0x7f0000000300), 0x2, 0x40000)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
inotify_init1(0x0)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r3, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @empty, 0x4}], 0x1c)
sendto$inet6(r3, &(0x7f0000000040)='l', 0x1, 0x7ddfdbdfafa51cdd, &(0x7f0000000100)={0xa, 0x4e23, 0x2, @loopback, 0xffffffff}, 0x1c)
sendto$inet6(r3, &(0x7f00000007c0)="87", 0x1, 0x0, 0x0, 0x0)
sendto$inet6(r3, &(0x7f0000000240)="1a", 0x1, 0x0, 0x0, 0x0)
shutdown(r3, 0x1)

2m32.354300574s ago: executing program 5 (id=891):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
r1 = socket$qrtr(0x2a, 0x2, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(r1, 0x8914, &(0x7f0000000000)={'wlan1\x00'})
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
r2 = socket$inet(0x2, 0x6, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x2}}, 0x0, 0x1a, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8b04, &(0x7f0000000000)={'wlan1\x00'})
getsockopt$inet_sctp6_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x83, 0x0, &(0x7f0000000300))
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
socket$inet6_sctp(0xa, 0x1, 0x84)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$inet_dccp(0x2, 0x6, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/mdstat\x00', 0x0, 0x0)
preadv(r4, 0x0, 0x0, 0x59, 0x0)
r5 = openat$vimc2(0xffffff9c, &(0x7f0000000500), 0x2, 0x0)
ioctl$VIDIOC_EXPBUF(r5, 0xc0cc5605, &(0x7f0000000000)={0x1, 0x0, 0x0, 0x34325852})
r6 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_MCAST_MSFILTER(r6, 0x0, 0x30, &(0x7f0000000180)={0x2, {{0x2, 0x4e22, @private=0xa010102}}, 0x1, 0x4}, 0x2e8)
r7 = dup(r3)
write$6lowpan_enable(r7, &(0x7f0000000000)='0', 0xfffffd2c)
pselect6(0x40, &(0x7f0000000600)={0x8, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, &(0x7f0000000680)={0x7ff, 0x2}, 0x0, 0x0)
r8 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r8, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @broadcast})

2m32.126832025s ago: executing program 1 (id=894):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000340), 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
io_setup(0x5, &(0x7f0000000100))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r1, &(0x7f0000002540)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
socket$nl_sock_diag(0x10, 0x3, 0x4)
userfaultfd(0x801)
syz_init_net_socket$ax25(0x3, 0x2, 0x0)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(0xffffffffffffffff, 0x84, 0x76, &(0x7f0000444ff8)={0x0, 0x7}, 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000040)=[@in={0x2, 0x4e22, @local}], 0x10)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
io_uring_setup(0x261a, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f00000000c0)=0xe)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000180)={{0x1, 0x1, 0x18}, '\x00'})
r4 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$EVIOCGPROP(r4, 0x40047438, &(0x7f0000000180)=""/246)
ioctl$PPPIOCGFLAGS1(r4, 0x40047452, &(0x7f0000000100))
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000003c40)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c, &(0x7f0000000240)=[{&(0x7f0000000140)="03", 0x1}], 0x1}}], 0x1, 0x0)
socket$netlink(0x10, 0x3, 0x0)

2m30.778469909s ago: executing program 1 (id=900):
r0 = syz_open_dev$loop(&(0x7f00000001c0), 0x75f, 0x103382)
memfd_create(&(0x7f0000000880)='C\x13\xfc2\x95WD\xaa\xba^\x90\xfd\x8d\xc2\xb1[\x81\xda\xda\xd6\x8c\xc99\xec\x0e*||\xe4\xb3\xc4\xb6\v\xaa\x15\x86,\xac\x8d\x89cu\x10\xdc\x93\x9b\xb4\x93\xafE*:\xe4\xdd\xa5\xa75\xb8\x1e;7\xb7.V\xdcrw[\r\x98\x93j\x9c\xf6\xf8\x99\xefF_\xcd\xdf!b\xc5\xec\ntb\xff\b\xaaF?!\x9f\a\x1a\x03\f\xe94\x1deU\x06zS\xc9\xb4\xa7@\xa1\\B\xc2@\r_b\x9a\xeb\b\xa4(V\xd6/N\xc5\xc6f\xb1\x95Z\xe5w^\xd8\xe7J\x80\xf7\xae\xafuv\x84\x9eG\xd1\xe7\x9b\xf0_9\xc2\x9b\xfd\xc3\xf3\xe4\x95P\xf1m\xcf\xc2\xe1\xe6\xa6\x8c\x11\xfb\xb8S\x8b\x92\\\asW-Ee\x02\x00\x00\x00\xd0;Q\xc1~\x89\xec\xc8\x9b\x88\a\xf2\x93\x82(\x8b\x00\xd8\xb4T\x80\x95\x93i|\xc0\x00\x04\x00\x00\x00\x00\x00\x00v\xef\xee+\xab\x9c\x00^R\xb2n?i=\xbe\x16\x8a\xbf\xe3\xcdB\xed\xe14\xe8\xd0\xb7\xff\xfeQ\x1c\x85n8\x1b\xc1\b\x00\x00\x00\x00\x00\x00\x00\x17\x94\xdfW<GE\xf1\xe9\xf1q\x8c\xf0\xae\x98\x8c\xe0\xc1g}\xaeW\xaa\xa1\x90\x8c\n$\xa6\xbb\x10\xaf\xc7~\x11\x03<v\xe9\xc7K\xf6]\x11)u\xd3\x15\x01}\xe25$\xb0\x86v\x80\r\x9c\xb8\xe6\xd3(\xa0G2s\xa9&\xb3QU~u\x13\x05kKp\xa6&\x8eu\x1d\xb2\xa9!\xc9\xfa\xd0dG5\xcbf<}r\xab\x9c\xd9f6iN\xaa>\x92z\xbe\xb2R)\xf1K\xd7\xaf\x99\xf6d\xe8\xec\xb7\xbd+T3\xa6\xa9\xfaY-1qs\x82\xefn*\x96\xc9\x1e\xf4\xd1\x02Dt\xc0\x19\xf7\x89\x96.D [F\xeeYW\x95\x13\xc7;\xb5\x13^\x13\xcb\xf0C\x9c\xabf\x1daCS2\x02\xb0\xef\xc7\x8c\x9e\xed\a\n<V\xaa\xbfZ1\xa82\x85\x99\x0e$U\xb4X\xc7\xfa\f\b\x8f\xc4\xbeIt\xe4\xc51\xba\xb9H\xe8\x96\x94\xd7\xdc\x81\x111\t\xafl\x97\xd8T\xd40\x90ON\xaaFY\xb4\xb3\xf4\xf8JT\xc5:\xc5\aGc\xb5\x12\x90\x7f\x00\x91\xce@\xe5\xd3A\xcc\xd5|\x9f\x8e5\x042\x9a\xc1\xa1\a\xb7\xf5\xbc,\xd1\xd3k8\xc5\xefo\xb8\x8f]\x14\x1d', 0x0)
ioctl$LOOP_GET_STATUS(r0, 0x4c03, 0x0)

2m30.55652552s ago: executing program 1 (id=903):
openat$audio1(0xffffff9c, &(0x7f0000000040), 0xbfaafea3a8346deb, 0x0)
setsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x41, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r0 = syz_clone(0xc285a00, 0x0, 0x0, 0x0, 0x0, 0x0)
kcmp(r0, 0x0, 0x2, 0xffffffffffffffff, 0xffffffffffffffff)
r1 = openat$ttyprintk(0xffffffffffffff9c, 0x0, 0x8801, 0x0)
r2 = syz_io_uring_setup(0x231, &(0x7f0000000180)={0x0, 0x0, 0x10100}, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000100)=<r4=>0x0)
ioctl$TIOCVHANGUP(r1, 0x5437, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f00000009c0)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0})
io_uring_enter(r2, 0x7a98, 0x0, 0x0, 0x0, 0x0)
r5 = getpid()
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r6, &(0x7f00000002c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r7, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x4)
mount(&(0x7f0000000000)=@nullb, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000040)='hfsplus\x00', 0x8002, 0x0)
r8 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r8, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000380)=@acquire={0x12c, 0x17, 0x1, 0x0, 0x0, {{@in6=@private0}, @in6=@remote, {@in6=@mcast2, @in6=@private0}, {{@in6=@private2, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0xee00}}}, [@XFRMA_IF_ID={0x8, 0x1f, 0x2}]}, 0x12c}}, 0x0)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000000), 0x0, 0xa7c}, 0x38)
r9 = syz_open_dev$sndctrl(&(0x7f0000000240), 0x5, 0x111100)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r9, 0xc008551a, &(0x7f0000000340)={0x8000, 0xc, [0x5, 0x5, 0x9]})

2m30.476664189s ago: executing program 5 (id=905):
r0 = syz_open_dev$sndctrl(&(0x7f0000000440), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r0, 0x40045532, &(0x7f0000000040))
r1 = openat$audio(0xffffffffffffff9c, 0x0, 0x40000000040201, 0x0)
r2 = syz_open_dev$sndpcmp(&(0x7f0000000200), 0x0, 0xa2c65)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000500)={0x0, 0xfffffffffffffd83, 0xfa00, {0x0, 0x0}}, 0xfdbc)
ioctl$SNDRV_PCM_IOCTL_STATUS_EXT32(r2, 0xc06c4124, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2})

2m30.39243308s ago: executing program 5 (id=906):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_open_dev$loop(&(0x7f0000000300), 0x2, 0x40000)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
inotify_init1(0x0)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r3, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @empty, 0x4}], 0x1c)
sendto$inet6(r3, &(0x7f0000000040)='l', 0x1, 0x7ddfdbdfafa51cdd, &(0x7f0000000100)={0xa, 0x4e23, 0x2, @loopback, 0xffffffff}, 0x1c)
sendto$inet6(r3, &(0x7f00000007c0)="87", 0x1, 0x0, 0x0, 0x0)
sendto$inet6(r3, &(0x7f0000000240)="1a", 0x1, 0x0, 0x0, 0x0)
shutdown(r3, 0x1)

2m27.561323108s ago: executing program 1 (id=910):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000340), 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
io_setup(0x5, &(0x7f0000000100))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r1, &(0x7f0000002540)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
socket$nl_sock_diag(0x10, 0x3, 0x4)
userfaultfd(0x801)
syz_init_net_socket$ax25(0x3, 0x2, 0x0)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(0xffffffffffffffff, 0x84, 0x76, &(0x7f0000444ff8)={0x0, 0x7}, 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000040)=[@in={0x2, 0x4e22, @local}], 0x10)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
io_uring_setup(0x261a, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f00000000c0)=0xe)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000180)={{0x1, 0x1, 0x18}, '\x00'})
r4 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$EVIOCGPROP(r4, 0x40047438, &(0x7f0000000180)=""/246)
ioctl$PPPIOCGFLAGS1(r4, 0x40047452, &(0x7f0000000100))
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000003c40)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c, &(0x7f0000000240)=[{&(0x7f0000000140)="03", 0x1}], 0x1}}], 0x1, 0x0)
socket$netlink(0x10, 0x3, 0x0)

2m27.296143939s ago: executing program 5 (id=913):
socket$inet6(0xa, 0x6, 0x0)
socket$inet_dccp(0x2, 0x6, 0x0)
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
unshare(0x4020400)
pselect6(0x40, &(0x7f0000000180)={0x3f, 0x2, 0x0, 0x0, 0xfffffffffffffffe}, 0x0, 0x0, 0x0, 0x0)

2m26.127675453s ago: executing program 5 (id=915):
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
ioctl$FBIOPAN_DISPLAY(r0, 0x4606, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000140)='contention_end\x00'}, 0x10)
syz_open_dev$tty1(0xc, 0x4, 0x1)
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$fuse(0x20000000, &(0x7f0000000400)='./file0\x00', 0x0, 0x223216, 0x0)
chdir(&(0x7f0000000100)='./file0\x00')
syz_usb_connect$hid(0xf63067478e218e8, 0x36, 0x0, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000180)={'syzkaller0\x00', 0x7101})
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r2)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000200))
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f00000000c0)={'syzkaller0\x00', @broadcast})
close(r1)

2m25.940250574s ago: executing program 1 (id=917):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
r1 = socket$qrtr(0x2a, 0x2, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(r1, 0x8914, &(0x7f0000000000)={'wlan1\x00'})
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
r2 = socket$inet(0x2, 0x6, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x2}}, 0x0, 0x1a, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8b04, &(0x7f0000000000)={'wlan1\x00'})
getsockopt$inet_sctp6_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x83, 0x0, &(0x7f0000000300))
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
socket$inet6_sctp(0xa, 0x1, 0x84)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$inet_dccp(0x2, 0x6, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/mdstat\x00', 0x0, 0x0)
preadv(r4, 0x0, 0x0, 0x59, 0x0)
r5 = openat$vimc2(0xffffff9c, &(0x7f0000000500), 0x2, 0x0)
ioctl$VIDIOC_EXPBUF(r5, 0xc0cc5605, &(0x7f0000000000)={0x1, 0x0, 0x0, 0x34325852})
r6 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_MCAST_MSFILTER(r6, 0x0, 0x30, &(0x7f0000000180)={0x2, {{0x2, 0x4e22, @private=0xa010102}}, 0x1, 0x4}, 0x2e8)
r7 = dup(r3)
write$6lowpan_enable(r7, &(0x7f0000000000)='0', 0xfffffd2c)
pselect6(0x40, &(0x7f0000000600)={0x8, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, &(0x7f0000000680)={0x7ff, 0x2}, 0x0, 0x0)
r8 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r8, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @broadcast})

2m10.824925619s ago: executing program 35 (id=917):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
r1 = socket$qrtr(0x2a, 0x2, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(r1, 0x8914, &(0x7f0000000000)={'wlan1\x00'})
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
r2 = socket$inet(0x2, 0x6, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x2}}, 0x0, 0x1a, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8b04, &(0x7f0000000000)={'wlan1\x00'})
getsockopt$inet_sctp6_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x83, 0x0, &(0x7f0000000300))
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
socket$inet6_sctp(0xa, 0x1, 0x84)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$inet_dccp(0x2, 0x6, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/mdstat\x00', 0x0, 0x0)
preadv(r4, 0x0, 0x0, 0x59, 0x0)
r5 = openat$vimc2(0xffffff9c, &(0x7f0000000500), 0x2, 0x0)
ioctl$VIDIOC_EXPBUF(r5, 0xc0cc5605, &(0x7f0000000000)={0x1, 0x0, 0x0, 0x34325852})
r6 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_MCAST_MSFILTER(r6, 0x0, 0x30, &(0x7f0000000180)={0x2, {{0x2, 0x4e22, @private=0xa010102}}, 0x1, 0x4}, 0x2e8)
r7 = dup(r3)
write$6lowpan_enable(r7, &(0x7f0000000000)='0', 0xfffffd2c)
pselect6(0x40, &(0x7f0000000600)={0x8, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, &(0x7f0000000680)={0x7ff, 0x2}, 0x0, 0x0)
r8 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r8, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @broadcast})

2m10.704999749s ago: executing program 36 (id=915):
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
ioctl$FBIOPAN_DISPLAY(r0, 0x4606, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000140)='contention_end\x00'}, 0x10)
syz_open_dev$tty1(0xc, 0x4, 0x1)
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$fuse(0x20000000, &(0x7f0000000400)='./file0\x00', 0x0, 0x223216, 0x0)
chdir(&(0x7f0000000100)='./file0\x00')
syz_usb_connect$hid(0xf63067478e218e8, 0x36, 0x0, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000180)={'syzkaller0\x00', 0x7101})
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r2)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000200))
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f00000000c0)={'syzkaller0\x00', @broadcast})
close(r1)

1m36.91417432s ago: executing program 7 (id=1078):
r0 = openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100))
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x2, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000005c0)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000040))
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000280)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x58, 0x18, &(0x7f0000000140)={@flat=@binder={0x73622a85, 0x3300, 0x1}, @flat=@weak_binder={0x77622a85, 0x10b}, @ptr={0x70742a85, 0xfffffffd, 0x0, 0x0, 0x400000000000001, 0x26}}, &(0x7f0000000240)={0x21, 0x18, 0x30}}, 0x1000}], 0x0, 0x0, 0x0})

1m36.456599861s ago: executing program 7 (id=1081):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r0, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000100)={<r1=>0x0, 0x1c, &(0x7f00000001c0)=[@in6={0xa, 0x0, 0x0, @private0}]}, &(0x7f0000000180)=0x10)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)={@cgroup=r2, r3, 0x2, 0x2, 0x0, @void, @value}, 0x10)
getsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x66, &(0x7f00000000c0)={r1}, &(0x7f0000000140)=0xc)

1m36.242495762s ago: executing program 7 (id=1083):
getsockopt$inet_sctp_SCTP_HMAC_IDENT(0xffffffffffffffff, 0x84, 0x16, &(0x7f0000000140)={0x4, [0x4, 0x1, 0x5, 0x3]}, &(0x7f0000000180)=0xc)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000100)=@newqdisc={0x3c, 0x24, 0x0, 0x70bd2a, 0x0, {0x0, 0x0, 0x0, 0x0, {0x4, 0x9}, {}, {0x2, 0x5}}, [@qdisc_kind_options=@q_cake={{0x9}, {0xc, 0x2, [@TCA_CAKE_TARGET={0x8, 0x8, 0x3}]}}]}, 0x3c}}, 0x20000800)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000280012800a00010076786c616e"], 0x50}}, 0x0)

1m34.030523389s ago: executing program 7 (id=1095):
r0 = socket(0x2a, 0x2, 0x0)
sendmsg$TIPC_NL_LINK_GET(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000280)={0x0, 0x24}}, 0x0)
getsockname$packet(r0, &(0x7f0000000200)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=@newqdisc={0x24, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {0x0, 0xfff1}, {0xffff, 0xffff}}}, 0x24}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000540)=@newtfilter={0x3c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {0xfffa, 0x2}, {}, {0x1c, 0xfff9}}, [@filter_kind_options=@f_flower={{0xb}, {0xc, 0x2, [@TCA_FLOWER_KEY_FLAGS={0x8}]}}]}, 0x3c}}, 0x24000000)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r2, &(0x7f00000002c0), 0x40000000000009f, 0x0)

1m1.254997597s ago: executing program 7 (id=1095):
r0 = socket(0x2a, 0x2, 0x0)
sendmsg$TIPC_NL_LINK_GET(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000280)={0x0, 0x24}}, 0x0)
getsockname$packet(r0, &(0x7f0000000200)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=@newqdisc={0x24, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {0x0, 0xfff1}, {0xffff, 0xffff}}}, 0x24}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000540)=@newtfilter={0x3c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {0xfffa, 0x2}, {}, {0x1c, 0xfff9}}, [@filter_kind_options=@f_flower={{0xb}, {0xc, 0x2, [@TCA_FLOWER_KEY_FLAGS={0x8}]}}]}, 0x3c}}, 0x24000000)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r2, &(0x7f00000002c0), 0x40000000000009f, 0x0)

34.517300387s ago: executing program 7 (id=1095):
r0 = socket(0x2a, 0x2, 0x0)
sendmsg$TIPC_NL_LINK_GET(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000280)={0x0, 0x24}}, 0x0)
getsockname$packet(r0, &(0x7f0000000200)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=@newqdisc={0x24, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {0x0, 0xfff1}, {0xffff, 0xffff}}}, 0x24}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000540)=@newtfilter={0x3c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {0xfffa, 0x2}, {}, {0x1c, 0xfff9}}, [@filter_kind_options=@f_flower={{0xb}, {0xc, 0x2, [@TCA_FLOWER_KEY_FLAGS={0x8}]}}]}, 0x3c}}, 0x24000000)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r2, &(0x7f00000002c0), 0x40000000000009f, 0x0)

4.084570007s ago: executing program 8 (id=1491):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000040420f00b7030000001e00008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp=0x25, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)

4.023327197s ago: executing program 8 (id=1492):
socket(0xa, 0x3, 0x3a)
socket$inet6_udp(0xa, 0x2, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpuacct.usage_sys\x00', 0x275a, 0x0)
socket$alg(0x26, 0x5, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00')
socket(0x40000000002, 0x3, 0x80000000002)
openat$tun(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84)
socket$inet6_sctp(0xa, 0x1, 0x84)
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
bpf$ITER_CREATE(0x21, &(0x7f0000000000)={r0}, 0x8)
ioctl$SIOCSIFHWADDR(r1, 0x89f0, &(0x7f0000000900)={'bridge0\x00', @random='\x00\x00\x00 \x00'})

3.603223519s ago: executing program 8 (id=1498):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@setneightbl={0x14, 0x43, 0x1, 0x70bd2c, 0x25dfdbfb, {0x1c}}, 0x14}, 0x1, 0x0, 0x0, 0x40}, 0x20008000)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000001c0)={0x0, 0x0})
r3 = syz_io_uring_setup(0x10f, &(0x7f0000000340)={0x0, 0x0, 0x2}, &(0x7f00000001c0), &(0x7f0000000280))
io_uring_enter(r3, 0x10b3, 0x5493, 0xb, 0x0, 0x0)

2.391223353s ago: executing program 6 (id=1505):
r0 = socket$igmp6(0xa, 0x3, 0x2)
unshare(0x600)
bind$can_raw(r0, 0x0, 0x0)

2.290182043s ago: executing program 6 (id=1507):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_open_dev$loop(&(0x7f0000000300), 0x2, 0x40000)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
inotify_init1(0x0)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @empty, 0x4}], 0x1c)
sendto$inet6(r1, &(0x7f0000000040)='l', 0x1, 0x7ddfdbdfafa51cdd, &(0x7f0000000100)={0xa, 0x4e23, 0x2, @loopback, 0xffffffff}, 0x1c)
sendto$inet6(r1, &(0x7f00000007c0)="87", 0x1, 0x0, 0x0, 0x0)
sendto$inet6(r1, &(0x7f0000000240)="1a", 0x1, 0x0, 0x0, 0x0)

1.886877204s ago: executing program 9 (id=1508):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=@newlink={0x48, 0x10, 0x801, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @macsec={{0xb}, {0x18, 0x2, 0x0, 0x1, [@IFLA_MACSEC_ICV_LEN={0x5, 0x3, 0x10}, @IFLA_MACSEC_CIPHER_SUITE={0xc, 0x4, 0x8}]}}}]}, 0x48}}, 0x0)

1.767089504s ago: executing program 8 (id=1510):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000340), 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000002540)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
socket$nl_sock_diag(0x10, 0x3, 0x4)
userfaultfd(0x801)
syz_init_net_socket$ax25(0x3, 0x2, 0x0)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r3, 0x84, 0x76, &(0x7f0000444ff8)={0x0, 0x7}, 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r3, 0x84, 0x64, &(0x7f0000000040)=[@in={0x2, 0x4e22, @local}], 0x10)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
io_uring_setup(0x261a, 0x0)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f00000000c0)=0xe)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000180)={{0x1, 0x1, 0x18}, '\x00'})
r5 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$EVIOCGPROP(r5, 0x40047438, &(0x7f0000000180)=""/246)
ioctl$PPPIOCGFLAGS1(r5, 0x40047452, &(0x7f0000000100))
sendmmsg$inet6(r3, &(0x7f0000003c40)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c, &(0x7f0000000240)=[{&(0x7f0000000140)="03", 0x1}], 0x1}}], 0x1, 0x0)
socket$netlink(0x10, 0x3, 0x0)

1.733576325s ago: executing program 9 (id=1511):
r0 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r0, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x10)
sendmsg$rds(r0, &(0x7f0000000080)={&(0x7f0000000180)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}, 0x0)
unshare(0x22020400)
setsockopt$RDS_CANCEL_SENT_TO(r0, 0x114, 0x1, &(0x7f0000000ec0)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10)

1.626066815s ago: executing program 9 (id=1512):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000000)={0x0, 0x3, &(0x7f0000000080)={&(0x7f0000000140)={0x2, 0x3, 0x0, 0x0, 0xa, 0x0, 0x50bd25, 0x0, [@sadb_address={0x3, 0x6, 0x0, 0x0, 0xe, @in={0x2, 0x0, @local}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0xff, 0x4}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x4e23, @private=0xa010100}}]}, 0x50}}, 0xa024)

1.547049465s ago: executing program 0 (id=1513):
socket$vsock_stream(0x28, 0x1, 0x0)
socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x1b, 0x0, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x1b, &(0x7f00000000c0)={@remote={0xfe, 0x80, '\x00', 0xffffffffffffffff}}, 0x20)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, 0x0)
sendmsg$L2TP_CMD_SESSION_GET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r1, 0x89f3, &(0x7f00000000c0)={'syztnl2\x00', &(0x7f0000000040)={'syztnl0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @remote, @mcast2={0xff, 0x5}}})
syz_emit_ethernet(0x42, &(0x7f0000000040)=ANY=[@ANYRESHEX], 0x0)
close(0x4)
syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={0x0, 0x0, 0x4c, 0x0, 0x8, 0x0, 0x0, @void, @value}, 0x28)
setsockopt$inet6_tcp_TCP_ULP(r2, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)

1.530564145s ago: executing program 6 (id=1514):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r0, @ANYBLOB="0000000000000000b702000040420f00b7030000001e00008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp=0x25, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)

1.416212926s ago: executing program 9 (id=1515):
socket$inet6_sctp(0xa, 0x1, 0x84)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000003900)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd120000000000008500000006000000b70000000000000095000000000000003faf4f1e7f2aa3d9b18ed81c0c869b51ec6c0af4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f36c70d0f13905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64f751a0f241b07080008002d75593a286cecc93e64c227c95aa0b784625704f07a72c234664c0af9360a1f7a5e6b607130c89f18c0c1089d8b853289e01aa27ae8b09e00e79ab20b0b8e1148f49faf2ad0000000000000006fa03c6468972089b302d7bf6023cdcedb5e0125ebbc08dee510cb2364149215108333719acd97cfa107d40224edc5465a932b77e74e802a0d42bc6099ad2300000080006ef6c1ff0900000000000010c63a949e8b7955394ffa82b8e942c89112f4ab87b1bfeda7be586602d985430cea0162ab3fcf4591c926abfb0767192302000000b0eea24492a660583eecb42cbcd3de3a83209da17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c95c25a573dc2edcaea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b5b7632f32030916f89c6dad7603f2ba2a790d62d6faec2fed44da4928b30142ba11de6c5d50b83bae613402216b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0eb97fca585ec6bf5af51d564beb6d952aab9c70764b0a8a7583c90b3433b809bdb9fbd48bc873495cbff8a326eea31ae4e0f7505ebf6c9d13330ca005ace1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223a0eb4fa39f6b5c02e6d6d90756ff57902a8f57000000009700cf0b4b8bc2294133000000000000000000030000000000000000000000000010008bc0d9559711e6e8861c46495ba585a4b2d02edc3e28dd271c896249ed85b980680b00002b435ac15fc0288d9b2a169cdcacc413038dafb7a2c8cb482bac0ac502d9ba96ffffff7f0000100000000000007d5ad897ef3b7cda42013d53046da21b40216e14ba2d6ad5656bfff17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccff729433282830689da6b53b263339863297771429d120000003341bf4abacac95900fca0493cf29b33dcc9ffffffffffffffd39fec2271ff01589646efd1cf870cd7bb2366fde41f94290c2a5ff870ce41fd3467decb05cfd9fcb32c8ed1dbd9d10a64c1083d5e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78100788f11f76161d46ea3abe0fa4d30dc94ef241875f3b4ce0232fcea69c271d7fa29822aea68a660e717a04becff0f719197724f4fce1093b62d7e8c7123d8ec571be54c72d978cf906df0042e36acd37d7f9e119f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2ae582786105c7df8be5877050c91301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c4d75cf2458e3546c1c776da64fb5abee0acfd235f2f4632c9062ece84c99a061887a20639b41c8c12ee86c50804042b3fb5aac518a75f9e7d7101d5e186c489b3a06fb99e0aa7f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af40326993947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f54c2d3335457acf37331766e472391e358c3b377327ac9ecc34f24c9ae153ec60ac0694dc55bff9f5f45f90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e66964ae09bb6d163118e4cbe024fd4500f8ff0700000000cc9d8046c216c1f895778cb25122a2a9f9b444aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99b355b72d538ba4958ea8e4aa37094191e10096e7e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250ddc8674152f94e3a409e2a3bce109b60000000000000000d6d5210d7503000000a87a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137abf9a404abde7750898b1bd627e873f8703be8672d70d1ab57075228a9f46ed9bd1f08fb8191bbab2dc51de3a61f0868afc4294859323e6c257a45319f18101288d139bd3da20fed05a8fe64680b0a3fc22dd70400000000946912d6c98cd1a9fbe1e7d58c08acaf30235b918a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ced69993e9960ff5f76015e6009556237badf4e7965bbe2777e808fcba821aa8e8c5c39609ff854352cb4900000000000000000000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66418d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466a53f1c96e0d4b3bc19faa5449209b083dbd334b47f067bbab40743b2a42010082008df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c3431ee97471c7868dcda7eaa69eb7f7f80572fdd11bb1d0d1280fbc22bf73468788df51710d7d31c632fc5ed1762eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331945ecefa26b8471d42645288d7226bbd9ccd628ab84875f2c50ba891cea592b0430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71f96756ea5cce7daac4be290159f6bcd75f0dda9de5532e71ae9e48b0ed0254a83100000000f6fbb869604d51a36a54c832e45b2569dc0d90b075225fde44c4e0973171ad47d6b0fdf9743af932cd6db49a47613808bad959710300000000000000832d0a45fa4242e24c7e800003c9e8095e02985f28e678f66422436f949e2ab8f162d7e3f855e378f4a1f40b0c6fb2d4b205a800b6d713acebc5b014e61a543a5a194f9ac18d76b5440e3b1a569e7397f6cafa86966d7ba19e720413267a6ccea9c439671d2c680f2753ca184eeeb843450368acb4383a01d25eb3d1e23e0f2645d1cdfa9fa410632f95a5f622f851c66ee7e30393cd7a4d67ff2a49c4f93c0984b5c2d4523497e4d64f95f08493564a1df87111c9bf3194fef97dcecc467ace45feeb685c5870d05f88a0f463db88d377442e1349acaf766218b54a9d624778e1c4e064c98e494198276eb2df7766411bef0ebb5000000000006065d635b0b7a00ee767221d8af9753387e0cd8d718f54a29df6eba3bd4c440e6e2172e3fcc01b8babb757b5c59217b80d0db3ba582814a604e4ef7a803e9ca7c85b35c9b93a9e0885e238b44ae1c2e64cce3b27083b8246829e64056000302bffff15405bd5f2eba20000000000000000000000000000000000009a9823fd8fbc5aa16509945ed032b48ea12d8e0588dc52702e4084913a06d468d0928bad76d697e1f85ab030e788d38788ee5b5428d4a971cc97db9fd231088e570735ce129e7e77fc2777692664a1488fd8d6dff4dad618fd54f529d4555c6507009ee69dd1bc55258789b24052137e9637f3efbab71720f88c3c44b3b7486f979e8a3174b531f573fe0e5239c000be2733c49546f6e8a9175ec6f14dbf72cac91643b2fd99c29eca28a3c2e60d5e5b8795fae16a7c3ea57e728eca35eaf0155a39f97580e079175426c088a0208040982a0000000000000000000000000051ceaaf0159fe61f2eade7603d0a7a56fb09cd119ac06adb6597155ae47846892bb423c024d8cbe9240b71ec6dc2124d3a19e2d714b273d95d1d3aa737cb04a33615ff2a730e51067d5d675d7122361c37c61a43b5afd865b60d4cae891b73220f17d25985a7f76834995e53a93a1c7b9eef267df691ca983a0b15bda7f6c5c1ca7aa50261a3089a1ebf0734c9b07e8951ff023263ad5aed8cfb49b49e128c697724c057d22c5df5aef27ce3db11d5ad5527d149d076e1a87e2df27c0cb8a67ad026bf953e88f10447e125c2c0f1aebee1f3390a9e3ddad4e2a6e0f6e4569fdefa19e870e04acf9493b963f98e23cfc665e4f465fa3f801e1957c399e45f61d3459b1c606204368bb931345af2823c487d2fd99db6ea6e008e7ffa06ca861551189d155bd077a79fe2c7e961352e56824f727d21d41eae78bfec4a2d7a7edbc8ef958c5ea599f7c25bf71c2340558aa12fdd24a88aaad5921aee7dae6a2f3009d9cb43ab4898d0f0aa565431b6abe585d75db04d1c9ba0b9de4ae8b0d3132bc6810cc9a693979f55174a72e1df9fdef35bc470f9e6e591982757f45c52c645d891bf63bb21fb66926ebe1a8525611fc3e8bb8795c36dc2a86b5ab46ff33cc74f61751b2dae92676db85c8d0c721b7ea4544bf51c95c86fcac1f434d09d1ee4928aafe23de66fed972e0dddfb33f64e48701b049239e7f552d816441d11c4c2647c014462344359198d97c4b6e9ed31ca18987b64de079b2bed641e8a92f13ca70844c65cb423d01950b0ebf44bd28e09c05d9ae5dd689fb880fb18d042219f5ac60c3a03b085abf3e8e3efc842a8d328733461f04c99607061c65ed14c61322a5ac2d371a95b8ad867ec92d13a4fa4ae033a09673866cd77f4bcdaaa05207166b19a8758d8855400d8c6a7242dc207251e8797eca24ea4f487663e60f2f5e1f1424958fd148f846830e88a42d93e1fe9c0b4a4a268921738938aa9f3cb3811ac87c54c8ebc8bcfb4613cc3a997ff1579edbd4ade8020e3ad001b072b1a751b588ac4639f35a58e00a50c0270608c7a7f10132b1c25b9ea81232fbef665f6212f875b2a0000000000000000000000000000cf7b6c4ba9bec153d6834bfef080df374703a8ff56a63ec1fe5f2e05a79e3cace7283dd68d41e94420c325fe4dae144fde5ec25a87d625cab20753a77b323fa3783c8b675859b9012647885a242adfee2fe812ecbe5191e0a15142f7349e7627cc39d724e2e34e7a24154f26ae3125b36d0504965295d0453902ac7079b11a3a1e655e482331e3dc35b2e7e4e3ea99064fe5b9c8ae0ca3e5fd653f3286a99d81ce4eba765c38d097391ad4babac38ce5b4344e24a361cd54e5"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
getsockname$packet(0xffffffffffffffff, 0x0, &(0x7f0000000240))
bind$packet(0xffffffffffffffff, 0x0, 0x0)
setsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0)
ioctl$int_in(r0, 0x5452, &(0x7f0000000000)=0xfffffffffffffffd)
sendmmsg$unix(r0, &(0x7f00000bd000), 0x318, 0x0)
close(0x4)

611.915948ms ago: executing program 6 (id=1516):
syz_init_net_socket$ax25(0x3, 0x2, 0xc4)
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000200)={'vxcan1\x00'})
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r1, 0x8982, &(0x7f0000000080)={0x0, 'batadv0\x00', {0x8}, 0x1})
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r3, 0x8933, &(0x7f0000000040)={'batadv0\x00', <r4=>0x0})
sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000080)=ANY=[@ANYBLOB="3c00000013000100"/20, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=r4, @ANYBLOB="1400350064756d6d793000000000020200000000"], 0x3c}}, 0x0)
r5 = socket$pppl2tp(0x18, 0x1, 0x1)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r1, 0x0, 0x40, &(0x7f00000004c0)=@security={'security\x00', 0xe, 0x4, 0x380, 0xffffffff, 0x0, 0x2e8, 0xd0, 0xffffffff, 0xffffffff, 0x2e8, 0x2e8, 0x2e8, 0xffffffff, 0x4, &(0x7f0000000140), {[{{@ip={@rand_addr=0x64010102, @dev={0xac, 0x14, 0x14, 0x24}, 0xffffff00, 0x0, 'macvlan0\x00', 'dummy0\x00', {0xff}, {}, 0x2f, 0x0, 0x40}, 0x0, 0x70, 0xd0}, @common=@CLUSTERIP={0x60, 'CLUSTERIP\x00', 0x0, {0x1, @link_local, 0x3, 0xc, [0xa, 0x2a, 0x2c, 0xf, 0x23, 0x8, 0x24, 0x80, 0x2c, 0x24, 0x3d, 0x2d, 0x3b, 0x5, 0x13, 0x27], 0x2, 0x10001, 0x7}}}, {{@uncond, 0x0, 0xc0, 0x120, 0x0, {}, [@common=@icmp={{0x28}, {0xf, "93a1", 0x1}}, @common=@ttl={{0x28}, {0x2, 0x4e}}]}, @common=@SET={0x60, 'SET\x00', 0x0, {{0x0, [0x4, 0x6, 0x6, 0x4, 0x1, 0x2], 0x0, 0x5}, {0x2, [0x7, 0x1, 0x2, 0x7], 0x2, 0x4}}}}, {{@ip={@private=0xa010102, @broadcast, 0xffffff00, 0xff, 'veth0_macvtap\x00', 'bond_slave_1\x00', {0xff}, {}, 0x0, 0x0, 0x4a}, 0x0, 0x98, 0xf8, 0x0, {}, [@common=@ttl={{0x28}, {0x1, 0xe0}}]}, @common=@SET={0x60, 'SET\x00', 0x0, {{0x4, [0x4, 0x3, 0x3, 0x4, 0x3, 0x4], 0x1, 0x2}, {0x1, [0x4, 0x4, 0x6, 0x0, 0x1, 0x3], 0x4, 0x6}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x3e0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$devlink(&(0x7f0000000dc0), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_TRAP_SET(r6, &(0x7f0000000fc0)={0x0, 0x0, &(0x7f0000000f80)={&(0x7f0000000e00)={0x14, r7, 0x605, 0x0, 0x3}, 0x14}}, 0x0)
ioctl$SIOCSIFMTU(r5, 0x8922, &(0x7f0000000080)={'dummy0\x00'})

611.045398ms ago: executing program 8 (id=1517):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nbd(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NBD_CMD_CONNECT(r0, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000001a80)={&(0x7f0000001a00)={0x24, r1, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x400}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0)

559.263968ms ago: executing program 0 (id=1518):
r0 = socket(0x1d, 0x2, 0x6)
unshare(0x20000400)
setsockopt$CAIFSO_LINK_SELECT(r0, 0x116, 0x7f, 0x0, 0x0)

495.973918ms ago: executing program 0 (id=1519):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100))
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x2, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000005c0)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000040))
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

486.091568ms ago: executing program 8 (id=1520):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@setneightbl={0x14, 0x43, 0x1, 0x70bd2c, 0x25dfdbfb, {0x1c}}, 0x14}, 0x1, 0x0, 0x0, 0x40}, 0x20008000)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000001c0)={0x0, 0x0})
r3 = syz_io_uring_setup(0x10f, &(0x7f0000000340)={0x0, 0x0, 0x2}, &(0x7f00000001c0), &(0x7f0000000280))
io_uring_enter(r3, 0x10b3, 0x5493, 0xb, 0x0, 0x0)

337.370399ms ago: executing program 9 (id=1521):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x9511, &(0x7f0000000100)=[{&(0x7f0000000000)="2c10", 0xffd0}], 0x1, 0x0, 0x0, 0x2c}, 0x44004)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f00000001c0)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0x69df}, {0x28, 0x0, 0x0, 0x6ebf}, {0x6}]}, 0x10)
sendmmsg$unix(r0, &(0x7f00000000c0), 0x3f, 0x0)

277.678319ms ago: executing program 0 (id=1522):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$inet_dccp(0x2, 0x6, 0x0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000140)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000940)={0x38, r2, 0x11, 0x70bd2b, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_SCAN_FREQUENCIES={0x1c, 0x2c, 0x0, 0x1, [{0x8}, {0x8}, {0x8}]}]}, 0x38}}, 0x880)

171.058849ms ago: executing program 9 (id=1523):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r2=>0x0})
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r5=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r4, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x3}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_START_AP(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)={0x5c, r4, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r5}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {{{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @default, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x5c}}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000003c0)={<r6=>0xffffffffffffffff})
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f80), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r9=>0x0})
sendmsg$NL80211_CMD_NEW_STATION(r7, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000001040)={&(0x7f0000000340)={0x3c, r8, 0xb97534d5fe9704cf, 0x0, 0x0, {{}, {@val={0x8, 0x3, r9}, @void}}, [@NL80211_ATTR_STA_SUPPORTED_RATES={0x4}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_STA_AID={0x6, 0x10, 0x580}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6}]}, 0x3c}, 0x1, 0x0, 0x0, 0xc0}, 0x0)
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)

170.828189ms ago: executing program 0 (id=1524):
r0 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=@newtaction={0x70, 0x32, 0x53b, 0x70bd2b, 0x0, {0x9}, [{0x5c, 0x1, [@m_sample={0x58, 0x1, 0x0, 0x0, {{0xb}, {0x2c, 0x2, 0x0, 0x1, [@TCA_SAMPLE_PARMS={0x18, 0x2, {0x300, 0xfffffffd, 0xffffffffffffffff}}, @TCA_SAMPLE_RATE={0x8, 0x3, 0x4}, @TCA_SAMPLE_PSAMPLE_GROUP={0x8, 0x5, 0xc}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x3}}}}]}]}, 0x70}}, 0x0)

170.431669ms ago: executing program 6 (id=1525):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_open_dev$loop(&(0x7f0000000300), 0x2, 0x40000)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
inotify_init1(0x0)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r3, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @empty, 0x4}], 0x1c)
sendto$inet6(r3, &(0x7f0000000040)='l', 0x1, 0x7ddfdbdfafa51cdd, &(0x7f0000000100)={0xa, 0x4e23, 0x2, @loopback, 0xffffffff}, 0x1c)
sendto$inet6(r3, &(0x7f00000007c0)="87", 0x1, 0x0, 0x0, 0x0)
sendto$inet6(r3, &(0x7f0000000240)="1a", 0x1, 0x0, 0x0, 0x0)

16.25957ms ago: executing program 0 (id=1526):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r0, @ANYBLOB="0000000000000000b702000040420f00b7030000001e00008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp=0x25, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)

0s ago: executing program 6 (id=1527):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
connect$bt_l2cap(r0, &(0x7f0000000400)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0xd}, 0xe)
setsockopt$bt_BT_SECURITY(r0, 0x112, 0x4, &(0x7f0000000500)={0x1}, 0x2)

kernel console output (not intermixed with test programs):

set [1, 0] type 2 family 0 port 6081 - 0
[   93.933077][ T4505] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   93.941997][ T4561] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   93.943768][ T4561] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   93.950893][ T4641] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   93.953161][ T4641] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   93.968385][ T4521] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   93.970916][ T4521] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   93.972948][ T4521] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   93.978661][ T4521] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   93.980762][ T4521] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   93.983040][ T4521] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   93.988858][ T4521] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   93.991160][ T4521] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   93.993096][ T4521] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   93.995564][ T4521] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   94.000763][ T4521] batman_adv: batadv0: Interface activated: batadv_slave_0
[   94.017843][ T4383] usb 1-1: Using ep0 maxpacket: 32
[   94.022524][ T4383] usb 1-1: config index 0 descriptor too short (expected 29220, got 36)
[   94.024758][ T4383] usb 1-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[   94.026580][ T4383] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   94.028664][ T4383] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 81
[   94.030504][ T4383] usb 1-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0x0, skipping
[   94.035592][ T4383] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 18
[   94.040414][ T4383] usb 1-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[   94.042589][ T4383] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   94.048805][ T4383] usb 1-1: config 0 descriptor??
[   94.164638][ T4641] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   94.167058][ T4641] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   94.194976][ T4521] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   94.197267][ T4521] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   94.199228][ T4521] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   94.201327][ T4521] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   94.203398][ T4521] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   94.216398][ T4521] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   94.218466][ T4521] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   94.220732][ T4521] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   94.222801][ T4521] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   94.232071][ T4521] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   94.241701][ T4887] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   94.251101][ T4887] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   94.252070][ T4521] batman_adv: batadv0: Interface activated: batadv_slave_1
[   94.273885][   T22] usb 1-1: USB disconnect, device number 3
[   94.378251][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   94.380527][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   94.397030][ T4521] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   94.399109][ T4521] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   94.400824][ T4521] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   94.402550][ T4521] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   94.609007][    T9] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   94.611720][    T9] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   94.710638][ T4641] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   94.753627][ T4428] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   94.763365][ T4428] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   94.787807][ T4428] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   94.854763][   T22] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[   95.094559][   T22] usb 1-1: Using ep0 maxpacket: 32
[   95.121625][   T22] usb 1-1: config index 0 descriptor too short (expected 29220, got 36)
[   96.015505][   T22] usb 1-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[   96.017339][   T22] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   96.019449][   T22] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 81
[   96.021298][   T22] usb 1-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0x0, skipping
[   96.023506][   T22] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 18
[   96.026685][   T22] usb 1-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[   96.028617][   T22] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   96.053990][   T22] usb 1-1: config 0 descriptor??
[   96.189626][ T4428] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   96.204849][ T4428] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   96.208735][ T4486] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   96.283317][ T4925] loop6: detected capacity change from 0 to 64
[   96.286882][    T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   96.298890][    T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   96.308833][ T4347] usb 1-1: USB disconnect, device number 4
[   96.318417][ T4928] loop5: detected capacity change from 0 to 512
[   96.330284][ T4928] EXT4-fs (loop5): unsupported inode size: 3
[   96.331656][ T4928] EXT4-fs (loop5): blocksize: 1024
[   96.401568][ T4928] netlink: 8 bytes leftover after parsing attributes in process `syz.5.90'.
[   97.454748][ T4428] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   97.835499][ T4941] loop7: detected capacity change from 0 to 8192
[   98.314623][ T4347] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[   98.714820][ T4941] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[   98.717807][ T4941] REISERFS (device loop7): found reiserfs format "3.6" with non-standard journal
[   98.719905][ T4941] REISERFS (device loop7): using ordered data mode
[   98.721351][ T4941] reiserfs: using flush barriers
[   98.726663][ T4347] usb 1-1: Using ep0 maxpacket: 8
[   98.729135][ T4347] usb 1-1: too many endpoints for config 0 interface 0 altsetting 0: 255, using maximum allowed: 30
[   98.731611][ T4347] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   98.733927][ T4347] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   98.741901][ T4347] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 255
[   98.744918][ T4347] usb 1-1: New USB device found, idVendor=0c45, idProduct=760b, bcdDevice= 0.00
[   98.746900][ T4347] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   98.757683][ T4347] usb 1-1: config 0 descriptor??
[   98.781544][ T4923] infiniband syz0: set active
[   98.782908][ T4923] infiniband syz0: added bond0
[   98.788973][ T4941] REISERFS (device loop7): journal params: device loop7, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[   98.792895][ T4941] REISERFS (device loop7): checking transaction log (loop7)
[   99.177968][ T4923] RDS/IB: syz0: added
[   99.179429][ T4923] smc: adding ib device syz0 with port count 1
[   99.180857][ T4923] smc:    ib device syz0 port 1 has pnetid 
[   99.189846][ T4347] hid (null): invalid report_count 24470
[   99.191267][ T4347] hid (null): global environment stack underflow
[   99.192635][ T4347] hid (null): global environment stack underflow
[   99.331483][ T4347] hid (null): report_id 0 is invalid
[   99.337040][ T4347] redragon 0003:0C45:760B.0002: unknown main item tag 0x6
[   99.338698][ T4347] redragon 0003:0C45:760B.0002: unknown main item tag 0x0
[   99.340867][ T4347] redragon 0003:0C45:760B.0002: unknown main item tag 0x0
[   99.342916][ T4347] redragon 0003:0C45:760B.0002: unknown main item tag 0x0
[   99.344239][ T4941] REISERFS (device loop7): Using tea hash to sort names
[   99.344981][ T4347] redragon 0003:0C45:760B.0002: unknown main item tag 0x0
[   99.347563][ T4347] redragon 0003:0C45:760B.0002: unknown main item tag 0x0
[   99.348987][ T4347] redragon 0003:0C45:760B.0002: unknown main item tag 0x0
[   99.350379][ T4347] redragon 0003:0C45:760B.0002: invalid report_count 24470
[   99.351769][ T4347] redragon 0003:0C45:760B.0002: item 0 4 1 9 parsing failed
[   99.353611][ T4347] redragon: probe of 0003:0C45:760B.0002 failed with error -22
[   99.363657][ T4941] REISERFS (device loop7): Created .reiserfs_priv - reserved for xattr storage.
[  100.388310][ T4347] usb 1-1: USB disconnect, device number 5
[  102.861321][ T5019] netlink: 8 bytes leftover after parsing attributes in process `syz.5.112'.
[  102.863525][ T5019] netlink: 4 bytes leftover after parsing attributes in process `syz.5.112'.
[  102.881822][ T5019] netlink: 32 bytes leftover after parsing attributes in process `syz.5.112'.
[  103.214252][ T5030] loop5: detected capacity change from 0 to 256
[  103.256740][ T5030] exFAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  103.259284][ T5030] exFAT-fs (loop5): Medium has reported failures. Some data may be lost.
[  103.308368][ T5030] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  104.730608][ T1613] device hsr_slave_0 left promiscuous mode
[  104.732531][ T1613] device hsr_slave_1 left promiscuous mode
[  104.734274][ T1613] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  104.736687][ T1613] batman_adv: batadv0: Removing interface: batadv_slave_0
[  104.738730][ T1613] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  104.740382][ T1613] batman_adv: batadv0: Removing interface: batadv_slave_1
[  104.746786][ T1613] device bridge_slave_1 left promiscuous mode
[  104.748181][ T1613] bridge0: port 2(bridge_slave_1) entered disabled state
[  104.753774][ T1613] device bridge_slave_0 left promiscuous mode
[  104.759484][ T1613] bridge0: port 1(bridge_slave_0) entered disabled state
[  104.770585][ T1613] device hsr_slave_0 left promiscuous mode
[  104.773945][ T1613] device hsr_slave_1 left promiscuous mode
[  104.786066][ T1613] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  104.787698][ T1613] batman_adv: batadv0: Removing interface: batadv_slave_0
[  104.822024][ T1613] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  104.823779][ T1613] batman_adv: batadv0: Removing interface: batadv_slave_1
[  106.091568][ T1613] device bridge_slave_1 left promiscuous mode
[  106.092972][ T1613] bridge0: port 2(bridge_slave_1) entered disabled state
[  106.124543][ T5060] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  106.126154][ T5060] Bluetooth: hci5: Opcode 0x0406 failed: -4
[  106.127805][ T5060] Bluetooth: hci5: Suspend notifier action (1) failed: -4
[  106.129448][ T5060] Bluetooth: hci6: Opcode 0x0c1a failed: -4
[  106.130728][ T5060] Bluetooth: hci6: Opcode 0x0406 failed: -4
[  106.140813][ T1613] device bridge_slave_0 left promiscuous mode
[  106.142616][ T1613] bridge0: port 1(bridge_slave_0) entered disabled state
[  106.168735][ T5060] Bluetooth: hci6: Suspend notifier action (1) failed: -4
[  106.170970][ T5060] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  106.178925][ T5060] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  106.180334][ T5060] Bluetooth: hci3: Suspend notifier action (1) failed: -4
[  106.197895][ T5084] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  106.218170][ T5084] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  106.406434][ T1613] device veth1_macvtap left promiscuous mode
[  106.407944][ T1613] device veth0_macvtap left promiscuous mode
[  106.413574][ T1613] device veth1_vlan left promiscuous mode
[  106.419657][ T1613] device veth0_vlan left promiscuous mode
[  106.449676][ T1613] device veth1_macvtap left promiscuous mode
[  106.451049][ T1613] device veth0_macvtap left promiscuous mode
[  106.453401][ T1613] device veth1_vlan left promiscuous mode
[  106.465164][ T1613] device veth0_vlan left promiscuous mode
[  107.636649][ T4299] Bluetooth: hci5: command 0x0c1a tx timeout
[  107.643261][ T1613] team0 (unregistering): Port device team_slave_1 removed
[  107.703211][ T1613] team0 (unregistering): Port device team_slave_0 removed
[  107.779011][ T1613] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  107.836846][ T1613] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  108.205322][ T4299] Bluetooth: hci3: command 0x0c1a tx timeout
[  108.205348][   T47] Bluetooth: hci6: command 0x0c1a tx timeout
[  108.301486][ T1613] bond0 (unregistering): Released all slaves
[  109.183194][ T1613] team0 (unregistering): Port device team_slave_1 removed
[  109.282389][ T1613] team0 (unregistering): Port device team_slave_0 removed
[  109.369505][ T1613] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  109.472982][ T1613] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  109.714510][   T47] Bluetooth: hci5: command 0x0406 tx timeout
[  110.009306][ T1613] bond0 (unregistering): Released all slaves
[  110.274617][ T4301] Bluetooth: hci6: command 0x0406 tx timeout
[  110.276031][ T4301] Bluetooth: hci3: command 0x0406 tx timeout
[  115.167633][ T5194] netlink: 12 bytes leftover after parsing attributes in process `syz.1.160'.
[  124.840934][ T5332] sctp: failed to load transform for md5: -2
[  125.061526][ T5350] futex_wake_op: syz.6.199 tries to shift op by 144; fix this program
[  127.030992][ T2060] ieee802154 phy0 wpan0: encryption failed: -22
[  127.032339][ T2060] ieee802154 phy1 wpan1: encryption failed: -22
[  131.560496][ T5469] netlink: 60 bytes leftover after parsing attributes in process `syz.7.228'.
[  131.832769][ T5481] Zero length message leads to an empty skb
[  135.820305][ T5551] Bluetooth: MGMT ver 1.22
[  136.556535][ T5550] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  136.834803][ T5570] netlink: 168 bytes leftover after parsing attributes in process `syz.0.249'.
[  136.838798][ T5570] netlink: 4 bytes leftover after parsing attributes in process `syz.0.249'.
[  138.306998][ T5601] team0: Device wg2 is of different type
[  144.101066][ T5750] syz.0.309 uses obsolete (PF_INET,SOCK_PACKET)
[  144.143046][ T5750] device syzkaller1 entered promiscuous mode
[  146.013067][ T5813] netlink: 4 bytes leftover after parsing attributes in process `syz.6.330'.
[  148.849266][ T5890] netlink: 4 bytes leftover after parsing attributes in process `syz.5.347'.
[  149.076826][ T5903] fuse: Bad value for 'fd'
[  150.341544][ T5924] netlink: 'syz.0.356': attribute type 10 has an invalid length.
[  150.352000][ T5924] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  150.377167][ T5897] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  150.385342][ T5897] Bluetooth: hci5: Opcode 0x0406 failed: -4
[  150.391246][ T5897] Bluetooth: hci5: Suspend notifier action (1) failed: -4
[  150.397333][ T5897] Bluetooth: hci6: Opcode 0x0c1a failed: -4
[  150.403948][ T5897] Bluetooth: hci6: Opcode 0x0406 failed: -4
[  150.411682][ T5897] Bluetooth: hci6: Suspend notifier action (1) failed: -4
[  150.415943][ T5897] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  150.420627][ T5897] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  150.422099][ T5897] Bluetooth: hci3: Suspend notifier action (1) failed: -4
[  151.561761][   T47] Bluetooth: hci5: command 0x0c1a tx timeout
[  151.606334][ T5923] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  152.086689][ T5971] netlink: 4 bytes leftover after parsing attributes in process `syz.7.363'.
[  152.444425][ T4301] Bluetooth: hci3: command 0x0c1a tx timeout
[  152.447031][ T4301] Bluetooth: hci6: command 0x0c1a tx timeout
[  153.065107][ T5994] smc: net device bond0 applied user defined pnetid SYZ0
[  153.085761][ T5994] ptrace attach of "./syz-executor exec"[4295] was attempted by ""[5994]
[  153.634526][   T47] Bluetooth: hci5: command 0x0406 tx timeout
[  154.472411][ T6021] dccp_close: ABORT with 52 bytes unread
[  154.516377][   T47] Bluetooth: hci6: command 0x0406 tx timeout
[  154.517638][   T47] Bluetooth: hci3: command 0x0406 tx timeout
[  159.883338][ T4301] Bluetooth: hci3: unexpected event for opcode 0x0c14
[  160.159453][ T6122] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  160.160877][ T6122] Bluetooth: hci5: Opcode 0x0406 failed: -4
[  160.162179][ T6122] Bluetooth: hci5: Suspend notifier action (1) failed: -4
[  160.164148][ T6122] Bluetooth: hci6: Opcode 0x0c1a failed: -4
[  160.166034][ T6122] Bluetooth: hci6: Opcode 0x0406 failed: -4
[  160.167368][ T6122] Bluetooth: hci6: Suspend notifier action (1) failed: -4
[  160.169052][ T6122] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  160.170386][ T6122] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  160.171695][ T6122] Bluetooth: hci3: Suspend notifier action (1) failed: -4
[  160.412750][ T6166] netlink: 'syz.6.410': attribute type 1 has an invalid length.
[  160.535064][ T6172] loop5: detected capacity change from 0 to 512
[  160.552712][ T6172] FAT-fs (loop5): bogus logical sector size 2175
[  160.563858][ T6172] FAT-fs (loop5): Can't find a valid FAT filesystem
[  161.043063][ T4301] Bluetooth: hci5: command 0x0c1a tx timeout
[  161.630828][ T6173] device syzkaller1 entered promiscuous mode
[  162.196935][   T47] Bluetooth: hci6: command 0x0c1a tx timeout
[  162.199056][ T4301] Bluetooth: hci3: command 0x0c1a tx timeout
[  162.282118][ T6204] netlink: 16 bytes leftover after parsing attributes in process `syz.5.420'.
[  162.794857][ T6201] netlink: 16 bytes leftover after parsing attributes in process `syz.5.420'.
[  163.091655][ T6222] loop0: detected capacity change from 0 to 512
[  163.110184][   T47] Bluetooth: hci5: command 0x0406 tx timeout
[  163.174711][ T6222] FAT-fs (loop0): bogus logical sector size 2175
[  163.176085][ T6222] FAT-fs (loop0): Can't find a valid FAT filesystem
[  163.188301][ T6223] loop7: detected capacity change from 0 to 2048
[  163.926932][ T6223] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  164.274564][ T4301] Bluetooth: hci6: command 0x0406 tx timeout
[  164.276077][ T4301] Bluetooth: hci3: command 0x0406 tx timeout
[  166.778671][ T6264] loop0: detected capacity change from 0 to 512
[  166.818817][ T6258] loop6: detected capacity change from 0 to 512
[  166.843226][ T6275] netlink: 16 bytes leftover after parsing attributes in process `syz.7.433'.
[  166.854949][ T6269] netlink: 16 bytes leftover after parsing attributes in process `syz.7.433'.
[  166.859559][ T6258] EXT4-fs error (device loop6): ext4_xattr_inode_iget:404: comm syz.6.430: inode #1: comm syz.6.430: iget: illegal inode #
[  166.883584][ T6258] EXT4-fs error (device loop6): ext4_xattr_inode_iget:409: comm syz.6.430: error while reading EA inode 1 err=-117
[  166.884335][ T6264] EXT4-fs error (device loop0): ext4_xattr_block_get:546: inode #2: comm syz.0.432: corrupted xattr block 255
[  166.891536][ T6258] EXT4-fs error (device loop6): ext4_xattr_inode_iget:404: comm syz.6.430: inode #1: comm syz.6.430: iget: illegal inode #
[  166.902480][ T6264] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -117
[  166.904828][ T6264] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  166.906225][ T6258] EXT4-fs error (device loop6): ext4_xattr_inode_iget:409: comm syz.6.430: error while reading EA inode 1 err=-117
[  166.911871][ T6258] EXT4-fs (loop6): 1 orphan inode deleted
[  166.913133][ T6258] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  166.914595][ T6264] EXT4-fs error (device loop0): ext4_xattr_block_get:546: inode #2: comm syz.0.432: corrupted xattr block 255
[  166.963641][ T6258] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  166.994923][ T6258] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  167.150266][ T4302] EXT4-fs (loop0): unmounting filesystem.
[  168.263706][ T6303] loop7: detected capacity change from 0 to 512
[  168.312434][ T6303] FAT-fs (loop7): bogus logical sector size 2175
[  168.313917][ T6303] FAT-fs (loop7): Can't find a valid FAT filesystem
[  170.330165][ T4505] EXT4-fs (loop6): unmounting filesystem.
[  170.446144][ T6324] netlink: 16 bytes leftover after parsing attributes in process `syz.0.446'.
[  170.448473][ T6320] netlink: 16 bytes leftover after parsing attributes in process `syz.0.446'.
[  171.061935][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  171.119694][ T6365] netlink: 'syz.6.457': attribute type 1 has an invalid length.
[  172.148641][ T6379] loop5: detected capacity change from 0 to 512
[  172.306907][ T6379] EXT4-fs error (device loop5): ext4_xattr_inode_iget:404: comm syz.5.460: inode #1: comm syz.5.460: iget: illegal inode #
[  172.310390][ T6379] EXT4-fs error (device loop5): ext4_xattr_inode_iget:409: comm syz.5.460: error while reading EA inode 1 err=-117
[  172.315375][ T6379] EXT4-fs error (device loop5): ext4_xattr_inode_iget:404: comm syz.5.460: inode #1: comm syz.5.460: iget: illegal inode #
[  172.325325][ T6379] EXT4-fs error (device loop5): ext4_xattr_inode_iget:409: comm syz.5.460: error while reading EA inode 1 err=-117
[  172.548782][ T6379] EXT4-fs (loop5): 1 orphan inode deleted
[  172.622575][ T6379] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  173.143022][ T6379] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  173.155175][ T6379] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  174.382016][ T4499] EXT4-fs (loop5): unmounting filesystem.
[  176.609926][ T6461] block device autoloading is deprecated and will be removed.
[  176.619499][ T6450] md: md2 stopped.
[  176.736839][   T27] audit: type=1326 audit(176.700:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6465 comm="syz.0.488" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb654d828 code=0x7fc00000
[  176.763211][   T27] audit: type=1326 audit(176.720:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6465 comm="syz.0.488" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=20 compat=0 ip=0xffffb654d828 code=0x7fc00000
[  176.781440][   T27] audit: type=1326 audit(176.740:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6465 comm="syz.0.488" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb654d828 code=0x7fc00000
[  179.394759][ T6536] Driver unsupported XDP return value 0 on prog  (id 35) dev N/A, expect packet loss!
[  180.564965][ T6544] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  180.567212][ T6544] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  180.611374][ T6566] device veth1_macvtap left promiscuous mode
[  183.200880][ T6630] bridge: RTM_NEWNEIGH with unconfigured vlan 3 on bridge0
[  184.742622][ T4301] Bluetooth: hci5: command 0x0406 tx timeout
[  184.743994][ T4301] Bluetooth: hci6: command 0x0406 tx timeout
[  185.221896][ T6664] input: syz0 as /devices/virtual/input/input2
[  185.415176][ T6667] block device autoloading is deprecated and will be removed.
[  186.467475][ T6680] loop7: detected capacity change from 0 to 16384
[  186.646122][ T6688] netlink: 16 bytes leftover after parsing attributes in process `syz.0.551'.
[  187.397967][ T2060] ieee802154 phy0 wpan0: encryption failed: -22
[  187.399661][ T2060] ieee802154 phy1 wpan1: encryption failed: -22
[  189.422230][ T6726] md: md2 stopped.
[  190.900195][ T6773] 9pnet_virtio: no channels available for device syz
[  193.804430][ T6817] loop7: detected capacity change from 0 to 16384
[  197.292308][ T6908] loop7: detected capacity change from 0 to 16384
[  201.600410][ T7012] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  207.127686][ T7159] tipc: Started in network mode
[  207.129066][ T7159] tipc: Node identity 800, cluster identity 4711
[  207.149969][ T7159] tipc: Node number set to 2048
[  211.638458][ T7262] netlink: 8 bytes leftover after parsing attributes in process `syz.5.685'.
[  211.789559][   T27] audit: type=1326 audit(211.750:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7267 comm="syz.7.687" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffac14d828 code=0x7fc00000
[  212.804515][   T27] audit: type=1326 audit(212.700:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7267 comm="syz.7.687" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=20 compat=0 ip=0xffffac14d828 code=0x7fc00000
[  212.808892][   T27] audit: type=1326 audit(212.700:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7267 comm="syz.7.687" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffac14d828 code=0x7fc00000
[  212.813176][   T27] audit: type=1326 audit(212.700:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7267 comm="syz.7.687" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffac14d828 code=0x7fc00000
[  212.835842][   T27] audit: type=1326 audit(212.700:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7267 comm="syz.7.687" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffac14d828 code=0x7fc00000
[  212.871240][   T27] audit: type=1326 audit(212.700:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7267 comm="syz.7.687" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffac14d828 code=0x7fc00000
[  213.115516][   T27] audit: type=1326 audit(212.700:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7267 comm="syz.7.687" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffac14d828 code=0x7fc00000
[  213.119897][   T27] audit: type=1326 audit(212.700:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7267 comm="syz.7.687" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffac14d828 code=0x7fc00000
[  213.125278][   T27] audit: type=1326 audit(212.700:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7267 comm="syz.7.687" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffac14d828 code=0x7fc00000
[  213.129846][   T27] audit: type=1326 audit(212.700:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7267 comm="syz.7.687" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffac14d828 code=0x7fc00000
[  214.422627][ T7328] device hsr0 entered promiscuous mode
[  214.450041][ T7328] device hsr_slave_0 left promiscuous mode
[  214.484828][ T7328] device hsr_slave_1 left promiscuous mode
[  216.713400][ T7399] mmap: syz.1.722 (7399) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  218.277520][   T27] kauditd_printk_skb: 124 callbacks suppressed
[  218.277536][   T27] audit: type=1326 audit(218.220:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7406 comm="syz.1.729" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8a74d828 code=0x7fc00000
[  218.368460][   T27] audit: type=1326 audit(218.330:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7406 comm="syz.1.729" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=20 compat=0 ip=0xffff8a74d828 code=0x7fc00000
[  219.254668][ T7453] rdma_rxe: rxe_register_device failed with error -23
[  219.256569][ T7453] rdma_rxe: failed to add bond0
[  220.084100][   T27] audit: type=1326 audit(220.040:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7447 comm="syz.6.742" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff99d4d828 code=0x7fc00000
[  220.225259][   T27] audit: type=1326 audit(220.190:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7447 comm="syz.6.742" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=20 compat=0 ip=0xffff99d4d828 code=0x7fc00000
[  220.234523][   T27] audit: type=1326 audit(220.190:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7447 comm="syz.6.742" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff99d4d828 code=0x7fc00000
[  220.239033][   T27] audit: type=1326 audit(220.190:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7447 comm="syz.6.742" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff99d4d828 code=0x7fc00000
[  220.266807][   T27] audit: type=1326 audit(220.190:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7447 comm="syz.6.742" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff99d4d828 code=0x7fc00000
[  220.295507][   T27] audit: type=1326 audit(220.190:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7447 comm="syz.6.742" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff99d4d828 code=0x7fc00000
[  220.300047][   T27] audit: type=1326 audit(220.190:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7447 comm="syz.6.742" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff99d4d828 code=0x7fc00000
[  220.327214][   T27] audit: type=1326 audit(220.190:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7447 comm="syz.6.742" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff99d4d828 code=0x7fc00000
[  220.362655][   T47] Bluetooth: hci5: unexpected event for opcode 0x1003
[  220.492197][ T7479] netlink: 4 bytes leftover after parsing attributes in process `syz.5.752'.
[  220.530863][ T7480] qnx6: unable to read the first superblock
[  220.539483][ T7479] netlink: 28 bytes leftover after parsing attributes in process `syz.5.752'.
[  221.053528][   T47] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci5/hci5:201'
[  221.056189][   T47] CPU: 0 PID: 47 Comm: kworker/u5:0 Not tainted 6.1.119-syzkaller #0
[  221.057901][   T47] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  221.059954][   T47] Workqueue: hci5 hci_rx_work
[  221.061016][   T47] Call trace:
[  221.061688][   T47]  dump_backtrace+0x1c8/0x1f4
[  221.062659][   T47]  show_stack+0x2c/0x3c
[  221.063498][   T47]  dump_stack_lvl+0x108/0x170
[  221.064445][   T47]  dump_stack+0x1c/0x58
[  221.065231][   T47]  sysfs_create_dir_ns+0x278/0x318
[  221.066352][   T47]  kobject_add_internal+0x598/0xb14
[  221.067428][   T47]  kobject_add+0x14c/0x21c
[  221.068307][   T47]  device_add+0x400/0xef4
[  221.069242][   T47]  hci_conn_add_sysfs+0xc4/0x1cc
[  221.070305][   T47]  le_conn_complete_evt+0xa0c/0xfe0
[  221.071365][   T47]  hci_le_enh_conn_complete_evt+0x114/0x414
[  221.072616][   T47]  hci_le_meta_evt+0x2b8/0x47c
[  221.073733][   T47]  hci_event_packet+0x6f8/0x109c
[  221.074806][   T47]  hci_rx_work+0x318/0xa68
[  221.075680][   T47]  process_one_work+0x7ac/0x1404
[  221.076709][   T47]  worker_thread+0x8e4/0xfec
[  221.077833][   T47]  kthread+0x250/0x2d8
[  221.078716][   T47]  ret_from_fork+0x10/0x20
[  221.081389][   T47] kobject_add_internal failed for hci5:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  221.084198][   T47] Bluetooth: hci5: failed to register connection device
[  222.204192][ T7492] RDS: rds_bind could not find a transport for fe80::, load rds_tcp or rds_rdma?
[  223.154460][   T47] Bluetooth: hci5: command 0x2016 tx timeout
[  226.146102][   T27] kauditd_printk_skb: 31 callbacks suppressed
[  226.146114][   T27] audit: type=1326 audit(226.110:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7548 comm="syz.7.777" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffac14d828 code=0x7fc00000
[  226.351513][   T27] audit: type=1326 audit(226.310:181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7548 comm="syz.7.777" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=20 compat=0 ip=0xffffac14d828 code=0x7fc00000
[  226.359763][   T27] audit: type=1326 audit(226.310:182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7548 comm="syz.7.777" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffac14d828 code=0x7fc00000
[  226.382559][   T27] audit: type=1326 audit(226.310:183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7548 comm="syz.7.777" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffac14d828 code=0x7fc00000
[  226.413675][   T27] audit: type=1326 audit(226.310:184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7548 comm="syz.7.777" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffac14d828 code=0x7fc00000
[  226.420854][   T27] audit: type=1326 audit(226.310:185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7548 comm="syz.7.777" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffac14d828 code=0x7fc00000
[  226.426177][   T27] audit: type=1326 audit(226.310:186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7548 comm="syz.7.777" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffac14d828 code=0x7fc00000
[  226.431139][   T27] audit: type=1326 audit(226.310:187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7548 comm="syz.7.777" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffac14d828 code=0x7fc00000
[  226.453124][   T27] audit: type=1326 audit(226.310:188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7548 comm="syz.7.777" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffac14d828 code=0x7fc00000
[  226.462580][   T27] audit: type=1326 audit(226.310:189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7548 comm="syz.7.777" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffac14d828 code=0x7fc00000
[  228.351611][ T7596] netlink: 'syz.5.794': attribute type 2 has an invalid length.
[  230.351542][ T7620] device syzkaller1 entered promiscuous mode
[  233.295547][   T27] kauditd_printk_skb: 65 callbacks suppressed
[  233.295566][   T27] audit: type=1326 audit(233.260:255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7646 comm="syz.0.810" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb654d828 code=0x7fc00000
[  233.319332][   T27] audit: type=1326 audit(233.270:256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7646 comm="syz.0.810" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=20 compat=0 ip=0xffffb654d828 code=0x7fc00000
[  233.344926][   T27] audit: type=1326 audit(233.270:257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7646 comm="syz.0.810" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb654d828 code=0x7fc00000
[  233.349263][   T27] audit: type=1326 audit(233.270:258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7646 comm="syz.0.810" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb654d828 code=0x7fc00000
[  233.410301][   T27] audit: type=1326 audit(233.270:259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7646 comm="syz.0.810" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb654d828 code=0x7fc00000
[  233.432618][   T27] audit: type=1326 audit(233.270:260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7646 comm="syz.0.810" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb654d828 code=0x7fc00000
[  233.453626][   T27] audit: type=1326 audit(233.270:261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7646 comm="syz.0.810" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb654d828 code=0x7fc00000
[  233.464481][   T27] audit: type=1326 audit(233.270:262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7646 comm="syz.0.810" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb654d828 code=0x7fc00000
[  233.468788][   T27] audit: type=1326 audit(233.270:263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7646 comm="syz.0.810" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb654d828 code=0x7fc00000
[  233.473072][   T27] audit: type=1326 audit(233.270:264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7646 comm="syz.0.810" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb654d828 code=0x7fc00000
[  235.564692][ T4301] Bluetooth: hci3: command 0x0406 tx timeout
[  235.846233][ T7703] device syzkaller1 entered promiscuous mode
[  240.508660][ T7739] tipc: Started in network mode
[  240.509804][ T7739] tipc: Node identity 10000, cluster identity 4711
[  240.511193][ T7739] tipc: Node number set to 65536
[  241.417853][ T7754] netlink: 8 bytes leftover after parsing attributes in process `syz.5.843'.
[  241.484526][   T27] kauditd_printk_skb: 56 callbacks suppressed
[  241.484542][   T27] audit: type=1326 audit(241.400:321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7748 comm="syz.7.840" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffac14d828 code=0x7fc00000
[  241.490350][   T27] audit: type=1326 audit(241.400:322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7748 comm="syz.7.840" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=20 compat=0 ip=0xffffac14d828 code=0x7fc00000
[  241.514515][   T27] audit: type=1326 audit(241.410:323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7748 comm="syz.7.840" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffac14d828 code=0x7fc00000
[  243.658957][ T7784] block device autoloading is deprecated and will be removed.
[  243.688192][ T7773] md: md2 stopped.
[  244.030939][ T7800] binder: 7799:7800 tried to acquire reference to desc 0, got 1 instead
[  244.042120][ T7800] binder: 7799:7800 got transaction with invalid offset (33, min 0 max 88) or object.
[  244.051972][ T7800] binder: 7799:7800 transaction call to 7799:0 failed 5/29201/-22, size 88-24 line 3355
[  244.068307][ T4347] binder: undelivered TRANSACTION_ERROR: 29201
[  244.141642][   T27] audit: type=1326 audit(244.100:324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7795 comm="syz.6.858" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff99d4d828 code=0x7fc00000
[  246.082217][   T27] audit: type=1326 audit(246.030:325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7795 comm="syz.6.858" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=20 compat=0 ip=0xffff99d4d828 code=0x7fc00000
[  247.163043][ T7828] device syzkaller1 entered promiscuous mode
[  247.172924][ T7849] netlink: 8 bytes leftover after parsing attributes in process `syz.7.873'.
[  248.912668][ T2060] ieee802154 phy0 wpan0: encryption failed: -22
[  248.914131][ T2060] ieee802154 phy1 wpan1: encryption failed: -22
[  249.125804][   T27] audit: type=1326 audit(249.090:326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7869 comm="syz.6.879" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff99d4d828 code=0x7fc00000
[  249.141692][   T27] audit: type=1326 audit(249.100:327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7869 comm="syz.6.879" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=20 compat=0 ip=0xffff99d4d828 code=0x7fc00000
[  249.150846][   T27] audit: type=1326 audit(249.100:328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7869 comm="syz.6.879" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff99d4d828 code=0x7fc00000
[  249.156666][   T27] audit: type=1326 audit(249.100:329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7869 comm="syz.6.879" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff99d4d828 code=0x7fc00000
[  249.161369][   T27] audit: type=1326 audit(249.100:330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7869 comm="syz.6.879" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff99d4d828 code=0x7fc00000
[  249.167371][   T27] audit: type=1326 audit(249.100:331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7869 comm="syz.6.879" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff99d4d828 code=0x7fc00000
[  249.172303][   T27] audit: type=1326 audit(249.100:332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7869 comm="syz.6.879" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff99d4d828 code=0x7fc00000
[  249.182588][   T27] audit: type=1326 audit(249.100:333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7869 comm="syz.6.879" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff99d4d828 code=0x7fc00000
[  249.187746][   T27] audit: type=1326 audit(249.100:334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7869 comm="syz.6.879" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff99d4d828 code=0x7fc00000
[  249.192273][   T27] audit: type=1326 audit(249.100:335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7869 comm="syz.6.879" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff99d4d828 code=0x7fc00000
[  253.197907][ T7922] device syzkaller1 entered promiscuous mode
[  254.504528][   T27] kauditd_printk_skb: 57 callbacks suppressed
[  254.504550][   T27] audit: type=1326 audit(254.440:393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7933 comm="syz.6.899" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff99d4d828 code=0x7fc00000
[  254.510414][   T27] audit: type=1326 audit(254.450:394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7933 comm="syz.6.899" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=20 compat=0 ip=0xffff99d4d828 code=0x7fc00000
[  254.556294][   T27] audit: type=1326 audit(254.450:395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7933 comm="syz.6.899" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff99d4d828 code=0x7fc00000
[  254.560696][   T27] audit: type=1326 audit(254.450:396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7933 comm="syz.6.899" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff99d4d828 code=0x7fc00000
[  254.603449][ T7940] binder: 7939:7940 IncRefs 0 refcount change on invalid ref 0 ret -22
[  254.609793][ T7940] binder: 7939:7940 Acquire 1 refcount change on invalid ref 0 ret -22
[  254.611757][ T7940] binder: 7939:7940 got transaction to invalid handle, 1
[  254.613441][ T7940] binder: 7940:7939 cannot find target node
[  254.662150][ T7940] binder: 7939:7940 transaction call to 0:0 failed 6/29201/-22, size 88-24 line 3054
[  254.668941][   T27] audit: type=1326 audit(254.450:397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7933 comm="syz.6.899" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff99d4d828 code=0x7fc00000
[  254.673512][   T27] audit: type=1326 audit(254.450:398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7933 comm="syz.6.899" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff99d4d828 code=0x7fc00000
[  254.681332][   T14] binder: undelivered TRANSACTION_ERROR: 29201
[  254.719539][   T27] audit: type=1326 audit(254.450:399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7933 comm="syz.6.899" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff99d4d828 code=0x7fc00000
[  254.724030][   T27] audit: type=1326 audit(254.450:400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7933 comm="syz.6.899" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff99d4d828 code=0x7fc00000
[  254.842892][   T27] audit: type=1326 audit(254.450:401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7933 comm="syz.6.899" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff99d4d828 code=0x7fc00000
[  254.880845][   T27] audit: type=1326 audit(254.450:402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7933 comm="syz.6.899" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff99d4d828 code=0x7fc00000
[  256.457576][ T7960] netlink: 4 bytes leftover after parsing attributes in process `syz.1.903'.
[  259.156813][ T7985] device syzkaller0 entered promiscuous mode
[  263.049741][   T27] kauditd_printk_skb: 32 callbacks suppressed
[  263.049755][   T27] audit: type=1326 audit(263.000:435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8037 comm="syz.0.930" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb654d828 code=0x7fc00000
[  263.068400][   T27] audit: type=1326 audit(263.020:436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8037 comm="syz.0.930" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=20 compat=0 ip=0xffffb654d828 code=0x7fc00000
[  263.075680][   T27] audit: type=1326 audit(263.020:437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8037 comm="syz.0.930" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb654d828 code=0x7fc00000
[  263.871881][ T8051] netlink: 4 bytes leftover after parsing attributes in process `syz.0.934'.
[  267.064549][   T27] audit: type=1326 audit(267.010:438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8077 comm="syz.7.944" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffac14d828 code=0x7fc00000
[  267.072254][   T27] audit: type=1326 audit(267.010:439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8077 comm="syz.7.944" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=20 compat=0 ip=0xffffac14d828 code=0x7fc00000
[  267.079891][   T27] audit: type=1326 audit(267.010:440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8077 comm="syz.7.944" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffac14d828 code=0x7fc00000
[  267.751593][ T8094] netlink: 4 bytes leftover after parsing attributes in process `syz.6.949'.
[  270.070491][   T27] audit: type=1326 audit(270.030:441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8113 comm="syz.0.957" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb654d828 code=0x7fc00000
[  270.075095][   T27] audit: type=1326 audit(270.030:442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8113 comm="syz.0.957" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=20 compat=0 ip=0xffffb654d828 code=0x7fc00000
[  270.079538][   T27] audit: type=1326 audit(270.030:443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8113 comm="syz.0.957" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb654d828 code=0x7fc00000
[  271.734165][ T8138] netlink: 4 bytes leftover after parsing attributes in process `syz.0.963'.
[  273.552928][   T27] audit: type=1326 audit(273.510:444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8149 comm="syz.0.968" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb654d828 code=0x7fc00000
[  273.559489][   T27] audit: type=1326 audit(273.520:445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8149 comm="syz.0.968" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=20 compat=0 ip=0xffffb654d828 code=0x7fc00000
[  273.563884][   T27] audit: type=1326 audit(273.520:446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8149 comm="syz.0.968" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb654d828 code=0x7fc00000
[  274.645221][ T4301] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  274.648493][ T4301] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  274.651372][ T4301] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  274.653677][ T4301] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  274.656959][ T4301] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  274.658691][ T4301] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  274.846546][ T4301] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  274.850359][ T4301] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  274.852772][ T4301] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  274.855849][ T4301] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  274.857743][ T4301] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  274.860163][ T4301] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  276.684783][ T4301] Bluetooth: hci1: command 0x0409 tx timeout
[  276.777616][   T27] audit: type=1326 audit(276.740:447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8188 comm="syz.0.979" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb654d828 code=0x7fc00000
[  276.783080][   T27] audit: type=1326 audit(276.740:448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8188 comm="syz.0.979" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=20 compat=0 ip=0xffffb654d828 code=0x7fc00000
[  276.799791][   T27] audit: type=1326 audit(276.740:449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8188 comm="syz.0.979" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb654d828 code=0x7fc00000
[  276.915573][ T4301] Bluetooth: hci4: command 0x0409 tx timeout
[  278.432026][ T8200] syz.0.982 (8200): drop_caches: 2
[  278.754498][ T4301] Bluetooth: hci1: command 0x041b tx timeout
[  278.994612][ T4301] Bluetooth: hci4: command 0x041b tx timeout
[  280.834451][ T4301] Bluetooth: hci1: command 0x040f tx timeout
[  281.074520][ T4301] Bluetooth: hci4: command 0x040f tx timeout
[  281.648315][ T8166] netlink: 20 bytes leftover after parsing attributes in process `syz.6.972'.
[  281.774759][ T8199] netlink: 'syz.0.982': attribute type 10 has an invalid length.
[  282.771444][ T8231] netlink: 'syz.7.985': attribute type 1 has an invalid length.
[  282.793260][ T8231] 8021q: adding VLAN 0 to HW filter on device bond1
[  282.806281][ T8232] bond1: (slave ip6gretap1): making interface the new active one
[  282.809031][ T8232] bond1: (slave ip6gretap1): Enslaving as an active interface with an up link
[  282.924446][ T4301] Bluetooth: hci1: command 0x0419 tx timeout
[  283.152327][   T27] audit: type=1326 audit(283.110:450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8245 comm="syz.0.988" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb654d828 code=0x7fc00000
[  283.157825][   T27] audit: type=1326 audit(283.110:451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8245 comm="syz.0.988" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=20 compat=0 ip=0xffffb654d828 code=0x7fc00000
[  283.164433][   T47] Bluetooth: hci4: command 0x0419 tx timeout
[  283.173958][   T27] audit: type=1326 audit(283.110:452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8245 comm="syz.0.988" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb654d828 code=0x7fc00000
[  283.194633][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bond1: link becomes ready
[  285.100438][ T5587] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  285.614514][ T8169] chnl_net:caif_netlink_parms(): no params data found
[  285.857529][ T5587] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  285.888316][ T8169] bridge0: port 1(bridge_slave_0) entered blocking state
[  285.890970][ T8169] bridge0: port 1(bridge_slave_0) entered disabled state
[  285.899929][ T8169] device bridge_slave_0 entered promiscuous mode
[  285.994459][ T5587] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  285.998099][ T8169] bridge0: port 2(bridge_slave_1) entered blocking state
[  285.999889][ T8169] bridge0: port 2(bridge_slave_1) entered disabled state
[  286.002263][ T8169] device bridge_slave_1 entered promiscuous mode
[  286.013182][ T8175] chnl_net:caif_netlink_parms(): no params data found
[  286.033799][ T8169] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  286.038670][ T8169] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  286.107009][ T5587] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  286.119916][ T8169] team0: Port device team_slave_0 added
[  286.123679][ T8169] team0: Port device team_slave_1 added
[  286.152897][ T8169] batman_adv: batadv0: Adding interface: batadv_slave_0
[  286.156727][ T8169] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  286.162103][ T8169] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  286.186732][ T8175] bridge0: port 1(bridge_slave_0) entered blocking state
[  286.191711][ T8175] bridge0: port 1(bridge_slave_0) entered disabled state
[  286.201022][ T8175] device bridge_slave_0 entered promiscuous mode
[  286.209408][ T8175] bridge0: port 2(bridge_slave_1) entered blocking state
[  286.214855][ T8175] bridge0: port 2(bridge_slave_1) entered disabled state
[  286.218088][ T8175] device bridge_slave_1 entered promiscuous mode
[  286.220594][ T8169] batman_adv: batadv0: Adding interface: batadv_slave_1
[  286.222220][ T8169] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  286.228294][ T8169] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  286.250317][ T8175] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  286.254969][ T8175] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  286.292627][ T8175] team0: Port device team_slave_0 added
[  286.336204][ T8169] device hsr_slave_0 entered promiscuous mode
[  286.374982][ T8169] device hsr_slave_1 entered promiscuous mode
[  286.418524][ T8175] team0: Port device team_slave_1 added
[  286.467397][ T8175] batman_adv: batadv0: Adding interface: batadv_slave_0
[  286.468875][ T8175] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  286.480341][ T8175] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  286.487148][ T8175] batman_adv: batadv0: Adding interface: batadv_slave_1
[  286.488991][ T8175] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  286.496433][ T8175] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  286.634934][   T27] audit: type=1326 audit(286.600:453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8308 comm="syz.0.998" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb654d828 code=0x7fc00000
[  286.644818][ T8175] device hsr_slave_0 entered promiscuous mode
[  286.704102][ T8175] device hsr_slave_1 entered promiscuous mode
[  286.725288][ T8175] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  286.726948][ T8175] Cannot create hsr debugfs directory
[  286.730578][ T5587] tipc: Left network mode
[  287.153121][ T8169] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  287.289541][ T8169] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  287.336172][ T8169] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  287.492057][ T8169] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  287.657717][ T8175] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  287.754874][ T8175] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  287.796332][ T8175] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  287.907075][ T8175] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  287.985317][   T27] audit: type=1326 audit(287.950:454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8339 comm="syz.0.1010" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb654d828 code=0x7fc00000
[  288.226170][ T8169] 8021q: adding VLAN 0 to HW filter on device bond0
[  289.166089][ T1613] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  289.168188][ T1613] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  289.203865][ T8169] 8021q: adding VLAN 0 to HW filter on device team0
[  289.445190][ T8175] 8021q: adding VLAN 0 to HW filter on device bond0
[  290.079268][ T4394] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  290.082361][ T4394] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  290.085649][ T4394] bridge0: port 1(bridge_slave_0) entered blocking state
[  290.087232][ T4394] bridge0: port 1(bridge_slave_0) entered forwarding state
[  290.099727][ T4394] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  290.133333][ T4394] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  290.135456][ T4394] bridge0: port 2(bridge_slave_1) entered blocking state
[  290.136921][ T4394] bridge0: port 2(bridge_slave_1) entered forwarding state
[  290.138856][ T4394] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  290.141387][ T4394] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  290.143776][ T4394] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  290.147338][ T4394] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  290.149655][ T4394] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  290.151750][ T4394] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  290.217949][ T4561] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  290.220383][ T4561] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  290.222746][ T4561] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  290.229818][ T4561] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  290.523081][ T4561] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  290.530564][ T4561] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  290.532649][ T4561] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  290.541244][ T4561] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  290.548327][ T8175] 8021q: adding VLAN 0 to HW filter on device team0
[  290.556865][ T5587] device hsr_slave_0 left promiscuous mode
[  290.585172][ T5587] device hsr_slave_1 left promiscuous mode
[  290.654858][ T5587] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  290.656626][ T5587] batman_adv: batadv0: Removing interface: batadv_slave_0
[  290.659911][ T5587] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  290.662670][ T5587] batman_adv: batadv0: Removing interface: batadv_slave_1
[  290.681095][ T5587] device bridge_slave_1 left promiscuous mode
[  290.682605][ T5587] bridge0: port 2(bridge_slave_1) entered disabled state
[  290.715994][ T5587] device bridge_slave_0 left promiscuous mode
[  290.717539][ T5587] bridge0: port 1(bridge_slave_0) entered disabled state
[  290.865590][ T5587] device veth1_macvtap left promiscuous mode
[  290.868163][ T5587] device veth0_macvtap left promiscuous mode
[  290.869684][ T5587] device veth1_vlan left promiscuous mode
[  290.874238][ T5587] device veth0_vlan left promiscuous mode
[  290.991882][ T5587] infiniband syz0: set down
[  291.010357][ T8403] syz.7.1011 (8403): drop_caches: 2
[  292.005378][   T27] audit: type=1326 audit(291.970:455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8405 comm="syz.0.1012" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb654d828 code=0x7fc00000
[  292.055191][ T8419] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1017'.
[  292.818154][ T5587] team0 (unregistering): Port device team_slave_1 removed
[  292.999114][ T5587] team0 (unregistering): Port device team_slave_0 removed
[  293.176083][ T5587] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  293.395362][ T5587] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  295.964567][ T5587] bond0 (unregistering): Released all slaves
[  295.965761][ T4953] smc: removing ib device syz0
[  296.239466][ T8169] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  296.246852][ T8402] netlink: 'syz.7.1011': attribute type 10 has an invalid length.
[  296.249557][ T8402] bond0: (slave wlan1): Opening slave failed
[  296.253030][   T24] bond0 speed is unknown, defaulting to 1000
[  296.353433][ T5071] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  296.355935][ T5071] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  296.357976][ T5071] bridge0: port 1(bridge_slave_0) entered blocking state
[  296.359639][ T5071] bridge0: port 1(bridge_slave_0) entered forwarding state
[  296.361472][ T5071] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  296.375985][ T5071] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  296.405807][ T5071] bridge0: port 2(bridge_slave_1) entered blocking state
[  296.407482][ T5071] bridge0: port 2(bridge_slave_1) entered forwarding state
[  296.409394][ T5071] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  296.428224][ T5071] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  296.430468][ T5071] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  296.438866][ T5071] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  296.447991][ T5071] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  296.453726][ T5071] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  296.468536][ T5071] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  296.470805][ T5071] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  296.495056][ T5071] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  296.497095][ T8431] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  296.504287][ T8175] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  296.530784][ T8175] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  296.547088][ T5071] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  296.549388][ T5071] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  296.574959][ T5071] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  297.336751][ T5071] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  297.338399][ T5071] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  297.369869][ T8169] 8021q: adding VLAN 0 to HW filter on device batadv0
[  297.732197][ T4561] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  297.744185][ T4561] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  297.752644][ T8175] 8021q: adding VLAN 0 to HW filter on device batadv0
[  297.952131][ T4641] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  297.955035][ T4641] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  297.964799][   T27] audit: type=1326 audit(297.930:456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8471 comm="syz.0.1025" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb654d828 code=0x7fc00000
[  298.006966][ T4561] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  298.009304][ T4561] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  298.026063][ T4561] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  298.028898][ T4561] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  298.041474][ T8169] device veth0_vlan entered promiscuous mode
[  298.067241][ T8169] device veth1_vlan entered promiscuous mode
[  298.131993][ T5071] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  298.134667][ T5071] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  298.137021][ T5071] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  298.832286][   T27] audit: type=1326 audit(298.790:457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8471 comm="syz.0.1025" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=20 compat=0 ip=0xffffb654d828 code=0x7fc00000
[  298.856871][ T5071] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  298.865361][   T27] audit: type=1326 audit(298.790:458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8471 comm="syz.0.1025" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb654d828 code=0x7fc00000
[  298.871637][   T27] audit: type=1326 audit(298.790:459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8471 comm="syz.0.1025" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb654d828 code=0x7fc00000
[  298.875152][ T8169] device veth0_macvtap entered promiscuous mode
[  298.897502][   T27] audit: type=1326 audit(298.790:460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8471 comm="syz.0.1025" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb654d828 code=0x7fc00000
[  298.903107][ T8169] device veth1_macvtap entered promiscuous mode
[  298.911095][   T27] audit: type=1326 audit(298.790:461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8471 comm="syz.0.1025" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb654d828 code=0x7fc00000
[  298.927343][   T27] audit: type=1326 audit(298.790:462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8471 comm="syz.0.1025" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb654d828 code=0x7fc00000
[  298.932171][   T27] audit: type=1326 audit(298.790:463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8471 comm="syz.0.1025" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb654d828 code=0x7fc00000
[  298.939896][   T27] audit: type=1326 audit(298.790:464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8471 comm="syz.0.1025" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb654d828 code=0x7fc00000
[  298.944241][   T27] audit: type=1326 audit(298.790:465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8471 comm="syz.0.1025" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb654d828 code=0x7fc00000
[  299.075863][ T8169] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  299.082782][ T8169] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  299.092394][ T8169] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  299.102527][ T8169] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  299.112665][ T8169] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  299.116102][ T8169] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  299.150449][ T8169] batman_adv: batadv0: Interface activated: batadv_slave_0
[  299.153870][ T8492] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1027'.
[  299.175180][ T4394] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  299.177762][ T4394] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  299.214757][ T8169] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  299.216960][ T8169] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  299.218920][ T8169] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  299.334786][ T8169] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  299.336911][ T8169] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  299.339066][ T8169] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  299.365807][ T8169] batman_adv: batadv0: Interface activated: batadv_slave_1
[  299.398620][ T8169] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  299.406912][ T8169] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  299.408827][ T8169] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  299.412858][ T8169] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  299.423196][ T4394] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  299.425977][ T4394] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  299.431520][ T4394] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  299.434938][ T4394] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  300.154117][ T4953] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  300.159690][ T4953] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  300.183256][ T8175] device veth0_vlan entered promiscuous mode
[  300.196431][ T4953] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  300.198515][ T4953] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  300.679686][ T4561] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  300.688921][ T8175] device veth1_vlan entered promiscuous mode
[  300.779286][ T4561] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  300.803376][ T5587] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  300.810443][ T5587] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  300.819463][ T1613] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  300.888612][ T4561] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  300.899975][ T5071] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  300.905755][ T5071] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  300.913883][ T4486] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  300.916818][ T4486] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  300.925420][ T8175] device veth0_macvtap entered promiscuous mode
[  300.933000][ T5071] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  300.936469][ T5071] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  300.963211][ T8175] device veth1_macvtap entered promiscuous mode
[  301.043579][ T8175] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  301.046099][ T8175] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  301.048141][ T8175] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  301.050152][ T8175] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  301.052099][ T8175] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  301.054217][ T8175] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  301.056385][ T8175] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  301.058574][ T8175] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  301.061897][ T8175] batman_adv: batadv0: Interface activated: batadv_slave_0
[  301.068971][ T8175] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  301.071517][ T8175] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  301.074143][ T8175] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  301.076953][ T8175] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  301.079306][ T8175] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  301.081429][ T8175] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  301.083398][ T8175] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  301.085626][ T8175] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  301.782428][ T8175] batman_adv: batadv0: Interface activated: batadv_slave_1
[  301.901302][ T4561] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  301.928909][ T5587] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  301.940628][ T5587] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  301.943034][ T5587] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  301.947246][ T5587] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  301.949576][ T5587] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  301.955891][ T8175] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  301.958926][ T8175] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  301.960819][ T8175] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  301.962647][ T8175] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  302.132988][ T5587] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  302.137365][ T5587] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  302.149974][ T4394] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  302.175304][ T1613] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  302.178135][ T1613] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  302.194204][ T5587] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  302.466996][ T8563] device veth1_to_hsr entered promiscuous mode
[  302.520418][ T8563] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1044'.
[  303.895728][   T27] kauditd_printk_skb: 60 callbacks suppressed
[  303.895741][   T27] audit: type=1326 audit(303.860:526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8572 comm="syz.9.1047" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9194d828 code=0x7fc00000
[  304.002977][   T27] audit: type=1326 audit(303.960:527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8572 comm="syz.9.1047" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=20 compat=0 ip=0xffff9194d828 code=0x7fc00000
[  304.357625][ T8563] device hsr_slave_1 left promiscuous mode
[  304.707096][   T27] audit: type=1326 audit(304.670:528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8615 comm="syz.8.1060" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8914d828 code=0x7fc00000
[  304.716280][   T27] audit: type=1326 audit(304.670:529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8615 comm="syz.8.1060" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=20 compat=0 ip=0xffff8914d828 code=0x7fc00000
[  304.735331][   T27] audit: type=1326 audit(304.670:530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8615 comm="syz.8.1060" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8914d828 code=0x7fc00000
[  307.472878][    C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  307.504519][   T27] audit: type=1326 audit(307.460:531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8657 comm="syz.7.1072" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffac14d828 code=0x7fc00000
[  307.509715][   T27] audit: type=1326 audit(307.460:532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8657 comm="syz.7.1072" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=20 compat=0 ip=0xffffac14d828 code=0x7fc00000
[  307.524430][   T27] audit: type=1326 audit(307.460:533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8657 comm="syz.7.1072" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffac14d828 code=0x7fc00000
[  308.465724][ T8676] binder: 8675:8676 IncRefs 0 refcount change on invalid ref 0 ret -22
[  308.516068][ T8676] binder: 8675:8676 got transaction to invalid handle, 1
[  308.517653][ T8676] binder: 8676:8675 cannot find target node
[  308.518875][ T8676] binder: 8675:8676 transaction call to 0:0 failed 14/29201/-22, size 88-24 line 3054
[  308.666294][ T3875] binder: undelivered TRANSACTION_ERROR: 29201
[  308.727658][ T8692] fuse: Unknown parameter 'grou00000000000000000000'
[  310.464681][ T2060] ieee802154 phy0 wpan0: encryption failed: -22
[  310.466079][ T2060] ieee802154 phy1 wpan1: encryption failed: -22
[  310.686533][ T8726] binder: 8725:8726 ioctl 4018620d 0 returned -22
[  310.688967][ T8726] binder: 8725:8726 IncRefs 0 refcount change on invalid ref 0 ret -22
[  310.700975][ T8726] binder: 8725:8726 got transaction to invalid handle, 1
[  310.704231][ T8726] binder: 8726:8725 cannot find target node
[  310.710023][ T8726] binder: 8725:8726 transaction call to 0:0 failed 17/29201/-22, size 88-24 line 3054
[  310.713921][ T4344] binder: undelivered TRANSACTION_ERROR: 29201
[  310.894614][ T8730] fuse: Unknown parameter 'grou00000000000000000000'
[  311.144176][ T8729] netlink: 'syz.8.1093': attribute type 10 has an invalid length.
[  311.172081][ T8729] 8021q: adding VLAN 0 to HW filter on device team0
[  311.180615][ T8729] bond0: (slave team0): Enslaving as an active interface with an up link
[  311.385252][   T47] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  311.389055][   T47] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  311.391970][   T47] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  311.394164][   T47] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  311.396455][   T47] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  311.398127][   T47] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  311.572100][ T8731] infiniband syz2: set active
[  311.603807][ T8746] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  311.606265][ T8731] infiniband syz2: added team0
[  311.663409][ T8731] RDS/IB: syz2: added
[  311.668775][ T8731] smc: adding ib device syz2 with port count 1
[  311.670159][ T8731] smc:    ib device syz2 port 1 has pnetid 
[  312.663900][ T8766] binder: 8765:8766 ioctl 4018620d 0 returned -22
[  312.676595][ T8766] binder: 8765:8766 IncRefs 0 refcount change on invalid ref 0 ret -22
[  312.694379][ T8766] binder: 8765:8766 got transaction to invalid handle, 1
[  312.696143][ T8766] binder: 8766:8765 cannot find target node
[  312.716730][ T8766] binder: 8765:8766 transaction call to 0:0 failed 20/29201/-22, size 88-24 line 3054
[  312.730710][ T3764] binder: undelivered TRANSACTION_ERROR: 29201
[  312.843735][ T8772] fuse: Unknown parameter 'grou00000000000000000000'
[  313.476379][ T4299] Bluetooth: hci0: command 0x0409 tx timeout
[  315.466869][ T8827] binder: 8824:8827 ioctl 4018620d 0 returned -22
[  315.469174][ T8827] binder: 8824:8827 IncRefs 0 refcount change on invalid ref 0 ret -22
[  315.473145][ T8827] binder: 8824:8827 got transaction to invalid handle, 1
[  315.514667][ T8827] binder: 8827:8824 cannot find target node
[  315.516041][ T8827] binder: 8824:8827 transaction call to 0:0 failed 23/29201/-22, size 88-24 line 3054
[  315.540045][  T111] binder: undelivered TRANSACTION_ERROR: 29201
[  315.554468][   T47] Bluetooth: hci0: command 0x041b tx timeout
[  315.585321][ T8831] fuse: Unknown parameter 'group_i00000000000000000000'
[  315.597045][ T4561] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  315.598664][ T4561] batman_adv: batadv0: Removing interface: batadv_slave_0
[  315.600779][ T4561] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  315.602369][ T4561] batman_adv: batadv0: Removing interface: batadv_slave_1
[  315.640644][ T4561] device bridge_slave_1 left promiscuous mode
[  315.642045][ T4561] bridge0: port 2(bridge_slave_1) entered disabled state
[  315.806459][ T4561] device bridge_slave_0 left promiscuous mode
[  315.808034][ T4561] bridge0: port 1(bridge_slave_0) entered disabled state
[  316.165033][ T4561] device veth0_macvtap left promiscuous mode
[  316.178124][ T4561] device veth1_vlan left promiscuous mode
[  316.183703][ T4561] device veth0_vlan left promiscuous mode
[  317.555250][ T8855] netlink: 104 bytes leftover after parsing attributes in process `syz.9.1125'.
[  317.635038][   T47] Bluetooth: hci0: command 0x040f tx timeout
[  318.681010][ T8864] binder: BINDER_SET_CONTEXT_MGR already set
[  318.682587][ T8864] binder: 8863:8864 ioctl 4018620d 20000040 returned -16
[  319.714953][ T4299] Bluetooth: hci0: command 0x0419 tx timeout
[  321.097352][ T4561] team0 (unregistering): Port device team_slave_1 removed
[  321.440704][ T4561] team0 (unregistering): Port device team_slave_0 removed
[  321.725342][ T4561] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  322.583522][ T8902] binder: BINDER_SET_CONTEXT_MGR already set
[  322.586334][ T8902] binder: 8901:8902 ioctl 4018620d 20000040 returned -16
[  323.046873][ T4561] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  326.828022][ T4561] bond0 (unregistering): Released all slaves
[  327.039994][ T8736] chnl_net:caif_netlink_parms(): no params data found
[  327.634072][ T8736] bridge0: port 1(bridge_slave_0) entered blocking state
[  327.642544][ T8736] bridge0: port 1(bridge_slave_0) entered disabled state
[  327.644911][ T8736] device bridge_slave_0 entered promiscuous mode
[  327.649985][ T8736] bridge0: port 2(bridge_slave_1) entered blocking state
[  327.651661][ T8736] bridge0: port 2(bridge_slave_1) entered disabled state
[  327.658324][ T8736] device bridge_slave_1 entered promiscuous mode
[  327.731860][ T8736] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  327.765732][ T8736] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  327.892452][ T8736] team0: Port device team_slave_0 added
[  327.937288][ T8736] team0: Port device team_slave_1 added
[  328.775500][ T8736] batman_adv: batadv0: Adding interface: batadv_slave_0
[  328.777031][ T8736] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  328.784949][ T8736] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  328.811762][ T8736] batman_adv: batadv0: Adding interface: batadv_slave_1
[  328.813274][ T8736] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  328.851792][ T8736] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  328.918071][ T8964] rdma_rxe: rxe_register_device failed with error -23
[  328.919646][ T8964] rdma_rxe: failed to add team0
[  329.003499][ T8736] device hsr_slave_0 entered promiscuous mode
[  329.079723][ T8736] device hsr_slave_1 entered promiscuous mode
[  329.126859][ T8736] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  329.128464][ T8736] Cannot create hsr debugfs directory
[  329.130947][ T8960] netlink: 'syz.9.1153': attribute type 10 has an invalid length.
[  329.186579][ T8960] 8021q: adding VLAN 0 to HW filter on device team0
[  329.196791][ T8960] bond0: (slave team0): Enslaving as an active interface with an up link
[  330.703333][ T8736] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  330.957189][ T9000] binder: 8999:9000 ioctl c0306201 0 returned -14
[  330.962777][ T9000] binder: 8999:9000 got transaction to invalid handle, 1
[  330.968967][ T9000] binder: 9000:8999 cannot find target node
[  330.971548][ T9000] binder: 8999:9000 transaction call to 0:0 failed 30/29201/-22, size 88-24 line 3054
[  330.975007][ T3875] binder: undelivered TRANSACTION_ERROR: 29201
[  331.752372][ T8736] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  331.959565][ T8736] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  332.750131][ T8736] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  333.649457][ T8736] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  333.677558][ T8736] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  333.716160][ T8736] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  333.766219][ T8736] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  333.987380][ T8736] 8021q: adding VLAN 0 to HW filter on device bond0
[  334.006567][ T4953] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  334.013536][ T4953] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  334.026694][ T9055] binder: 9054:9055 ioctl c0306201 0 returned -14
[  334.028353][ T8736] 8021q: adding VLAN 0 to HW filter on device team0
[  334.038678][ T9055] binder: 9054:9055 got transaction to invalid handle, 1
[  334.040340][ T9055] binder: 9055:9054 cannot find target node
[  334.044817][ T9055] binder: 9054:9055 transaction call to 0:0 failed 34/29201/-22, size 88-24 line 3054
[  334.050788][ T3764] binder: undelivered TRANSACTION_ERROR: 29201
[  334.066325][ T4953] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  334.068772][ T4953] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  334.071095][ T4953] bridge0: port 1(bridge_slave_0) entered blocking state
[  334.072666][ T4953] bridge0: port 1(bridge_slave_0) entered forwarding state
[  334.080214][ T4953] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  334.091439][ T4953] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  334.099069][ T4953] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  334.113799][ T4953] bridge0: port 2(bridge_slave_1) entered blocking state
[  334.115447][ T4953] bridge0: port 2(bridge_slave_1) entered forwarding state
[  334.314656][ T8805] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  334.317120][ T8805] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  334.472078][ T8736] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  334.490817][ T8736] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  334.505233][ T4953] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  334.520460][ T4953] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  334.526072][ T4953] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  334.530709][ T4953] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  334.540217][ T4953] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  334.542457][ T4953] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  334.552696][ T4953] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  334.555717][ T4953] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  334.558039][ T4953] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  334.560359][ T4953] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  335.908602][  T199] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  335.931229][  T199] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  335.979057][ T8736] 8021q: adding VLAN 0 to HW filter on device batadv0
[  336.266934][ T9108] binder: 9107:9108 ioctl c0306201 0 returned -14
[  336.287918][ T9108] binder: 9107:9108 got transaction to invalid handle, 1
[  336.306534][ T9108] binder: 9108:9107 cannot find target node
[  336.307996][ T9108] binder: 9107:9108 transaction call to 0:0 failed 38/29201/-22, size 88-24 line 3054
[  336.329345][ T4847] binder: undelivered TRANSACTION_ERROR: 29201
[  336.758107][ T4561] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  336.761373][ T4561] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  337.499896][ T8736] device veth0_vlan entered promiscuous mode
[  337.506613][ T8736] device veth1_vlan entered promiscuous mode
[  337.528805][ T4953] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  337.541116][ T4953] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  337.584899][ T4953] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  337.589989][ T4953] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  337.621394][ T8736] device veth0_macvtap entered promiscuous mode
[  337.633074][ T4953] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  337.644977][ T4953] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  337.653581][ T4953] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  337.693155][ T4953] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  337.712409][ T8736] device veth1_macvtap entered promiscuous mode
[  337.723614][ T4953] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  337.730032][ T4953] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  337.753804][ T8736] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  337.762817][ T8736] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  337.769623][ T8736] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  337.777364][ T8736] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  337.783936][ T8736] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  337.792453][ T8736] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  337.801185][ T8736] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  337.809904][ T8736] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  337.820245][ T8736] batman_adv: batadv0: Interface activated: batadv_slave_0
[  337.827622][ T4520] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  337.830006][ T4520] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  337.838109][ T8736] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  337.843562][ T8736] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  337.868155][ T8736] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  337.878330][ T8736] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  337.890715][ T8736] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  337.895656][ T8736] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  337.897705][ T8736] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  337.900268][ T8736] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  337.904079][ T8736] batman_adv: batadv0: Interface activated: batadv_slave_1
[  337.907446][ T4641] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  337.910140][ T4641] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  337.914120][ T8736] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  337.916154][ T8736] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  337.917986][ T8736] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  337.919802][ T8736] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  338.017853][ T4492] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  338.020496][ T4492] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  338.026911][ T8805] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  338.092262][ T8805] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  338.095541][ T8805] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  338.101464][ T4953] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  338.670393][ T9176] binder: 9174:9176 got transaction to invalid handle, 1
[  338.672145][ T9176] binder: 9176:9174 cannot find target node
[  338.673387][ T9176] binder: 9174:9176 transaction call to 0:0 failed 42/29201/-22, size 88-24 line 3054
[  338.677430][ T4347] binder: undelivered TRANSACTION_ERROR: 29201
[  341.279568][ T9243] binder: 9240:9243 got transaction to invalid handle, 1
[  341.282615][ T9243] binder: 9243:9240 cannot find target node
[  341.284113][ T9243] binder: 9240:9243 transaction call to 0:0 failed 46/29201/-22, size 88-24 line 3054
[  341.298398][   T14] binder: undelivered TRANSACTION_ERROR: 29201
[  343.625251][ T9356] binder: 9354:9356 got transaction to invalid handle, 1
[  343.626970][ T9356] binder: 9356:9354 cannot find target node
[  343.628405][ T9356] binder: 9354:9356 transaction call to 0:0 failed 50/29201/-22, size 88-24 line 3054
[  343.631996][ T4847] binder: undelivered TRANSACTION_ERROR: 29201
[  345.069056][ T4299] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  345.083431][ T4299] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  345.128317][ T4299] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  345.131826][ T4299] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  345.133828][ T4299] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  345.137752][ T4299] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  345.327633][ T5448] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  345.391903][ T9407] netlink: 20 bytes leftover after parsing attributes in process `syz.9.1233'.
[  345.647935][ T9415] binder: 9414:9415 got transaction to invalid handle, 1
[  345.649490][ T9415] binder: 9415:9414 cannot find target node
[  345.650734][ T9415] binder: 9414:9415 transaction call to 0:0 failed 54/29201/-22, size 88-24 line 3054
[  346.010942][ T3764] binder: undelivered TRANSACTION_ERROR: 29201
[  346.616187][ T9425] netlink: 'syz.8.1237': attribute type 7 has an invalid length.
[  346.617927][ T9425] netlink: 8 bytes leftover after parsing attributes in process `syz.8.1237'.
[  347.796737][ T9385] chnl_net:caif_netlink_parms(): no params data found
[  347.803823][   T47] Bluetooth: hci0: command 0x0409 tx timeout
[  348.078349][ T5448] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  348.147848][ T9467] binder: 9466:9467 got transaction to invalid handle, 1
[  348.149355][ T9467] binder: 9467:9466 cannot find target node
[  348.150598][ T9467] binder: 9466:9467 transaction call to 0:0 failed 58/29201/-22, size 88-24 line 3054
[  348.175579][  T111] binder: undelivered TRANSACTION_ERROR: 29201
[  348.193229][ T9456] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  348.215387][ T9456] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  348.264535][ T9456] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  348.326401][ T5448] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  348.330052][ T9385] bridge0: port 1(bridge_slave_0) entered blocking state
[  348.331881][ T9385] bridge0: port 1(bridge_slave_0) entered disabled state
[  348.334180][ T9385] device bridge_slave_0 entered promiscuous mode
[  348.351931][ T9385] bridge0: port 2(bridge_slave_1) entered blocking state
[  348.360121][ T9385] bridge0: port 2(bridge_slave_1) entered disabled state
[  348.368327][ T9385] device bridge_slave_1 entered promiscuous mode
[  348.488924][ T5448] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  348.519011][ T9385] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  348.528203][ T9385] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  348.582047][ T9385] team0: Port device team_slave_0 added
[  348.596624][ T9385] team0: Port device team_slave_1 added
[  348.644634][ T9385] batman_adv: batadv0: Adding interface: batadv_slave_0
[  348.646086][ T9385] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  348.660766][ T9385] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  348.673838][ T9385] batman_adv: batadv0: Adding interface: batadv_slave_1
[  348.676793][ T9385] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  348.682408][ T9385] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  348.728338][ T9486] IPv6: ADDRCONF(NETDEV_CHANGE): rose9: link becomes ready
[  348.808055][ T9385] device hsr_slave_0 entered promiscuous mode
[  348.845187][ T9385] device hsr_slave_1 entered promiscuous mode
[  348.944508][ T9385] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  348.947523][ T9385] Cannot create hsr debugfs directory
[  349.559836][ T9508] device dummy0 entered promiscuous mode
[  349.562907][ T9508] bond0: (slave macvlan2): Enslaving as an active interface with an up link
[  350.448628][ T9517] binder: 9516:9517 got transaction to invalid handle, 1
[  350.450129][ T9517] binder: 9517:9516 cannot find target node
[  350.451287][ T9517] binder: 9516:9517 transaction call to 0:0 failed 62/29201/-22, size 88-24 line 3054
[  350.463383][ T4847] binder: undelivered TRANSACTION_ERROR: 29201
[  350.530395][   T47] Bluetooth: hci0: command 0x041b tx timeout
[  351.297564][ T9542] netlink: 24 bytes leftover after parsing attributes in process `syz.9.1268'.
[  351.482469][ T9552] binder: tried to use weak ref as strong ref
[  351.483822][ T9552] binder: 9549:9552 Acquire 1 refcount change on invalid ref 0 ret -22
[  351.501994][ T9552] binder: 9549:9552 got transaction to invalid handle, 1
[  351.507526][ T9552] binder: 9552:9549 cannot find target node
[  351.511054][ T9552] binder: 9549:9552 transaction call to 0:0 failed 65/29201/-22, size 88-24 line 3054
[  351.530088][ T4534] binder: undelivered TRANSACTION_ERROR: 29201
[  352.456242][ T9574] device syzkaller1 entered promiscuous mode
[  352.515610][    C1] af_packet: tpacket_rcv: packet too big, clamped from 60 to 4294967272. macoff=96
[  352.594813][   T47] Bluetooth: hci0: command 0x040f tx timeout
[  353.371417][ T9595] binder: tried to use weak ref as strong ref
[  353.372814][ T9595] binder: 9594:9595 Acquire 1 refcount change on invalid ref 0 ret -22
[  353.375548][ T9595] binder: 9594:9595 got transaction to invalid handle, 1
[  353.377083][ T9595] binder: 9595:9594 cannot find target node
[  353.378305][ T9595] binder: 9594:9595 transaction call to 0:0 failed 68/29201/-22, size 88-24 line 3054
[  353.390690][ T4344] binder: undelivered TRANSACTION_ERROR: 29201
[  354.332330][ T9626] binder: tried to use weak ref as strong ref
[  354.333606][ T9626] binder: 9625:9626 Acquire 1 refcount change on invalid ref 0 ret -22
[  354.339798][ T9626] binder: 9625:9626 got transaction to invalid handle, 1
[  354.341242][ T9626] binder: 9626:9625 cannot find target node
[  354.674716][   T47] Bluetooth: hci0: command 0x0419 tx timeout
[  354.815675][ T9644] netlink: 'syz.8.1297': attribute type 10 has an invalid length.
[  354.817975][ T9644] device syz_tun entered promiscuous mode
[  354.862863][ T9644] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[  356.346391][ T9687] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1303'.
[  356.710788][ T9694] binder: 9693:9694 ioctl 4018620d 0 returned -22
[  356.712556][ T9694] binder: tried to use weak ref as strong ref
[  356.713924][ T9694] binder: 9693:9694 Acquire 1 refcount change on invalid ref 0 ret -22
[  356.722102][ T9694] binder: 9693:9694 got transaction to invalid handle, 1
[  356.723711][ T9694] binder_debug: 2 callbacks suppressed
[  356.723721][ T9694] binder: 9694:9693 cannot find target node
[  356.726529][ T9694] binder: 9693:9694 transaction call to 0:0 failed 74/29201/-22, size 88-24 line 3054
[  356.728964][ T4383] binder: undelivered TRANSACTION_ERROR: 29201
[  356.739338][ T9385] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  356.876416][ T5448] device hsr_slave_0 left promiscuous mode
[  356.965605][ T5448] device hsr_slave_1 left promiscuous mode
[  357.414628][ T5448] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  357.418710][ T5448] batman_adv: batadv0: Removing interface: batadv_slave_0
[  357.423261][ T5448] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  357.432308][ T5448] batman_adv: batadv0: Removing interface: batadv_slave_1
[  357.438759][ T5448] device bridge_slave_1 left promiscuous mode
[  357.444802][ T5448] bridge0: port 2(bridge_slave_1) entered disabled state
[  357.504936][ T5448] device bridge_slave_0 left promiscuous mode
[  357.506569][ T5448] bridge0: port 1(bridge_slave_0) entered disabled state
[  357.755023][ T5448] device veth1_macvtap left promiscuous mode
[  357.756355][ T5448] device veth0_macvtap left promiscuous mode
[  357.757858][ T5448] device veth1_vlan left promiscuous mode
[  357.759101][ T5448] device veth0_vlan left promiscuous mode
[  359.679273][ T5448] team0 (unregistering): Port device team_slave_1 removed
[  359.846346][ T5448] team0 (unregistering): Port device team_slave_0 removed
[  360.045786][ T5448] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  360.275476][ T5448] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  362.833017][ T5448] bond0 (unregistering): Released all slaves
[  363.089475][ T9385] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  363.126569][ T9385] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  363.167019][ T9385] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  363.336451][ T9752] binder: 9751:9752 ioctl 4018620d 0 returned -22
[  363.347433][ T9752] binder: tried to use weak ref as strong ref
[  363.348801][ T9752] binder: 9751:9752 Acquire 1 refcount change on invalid ref 0 ret -22
[  363.371099][ T9385] 8021q: adding VLAN 0 to HW filter on device bond0
[  363.415134][ T9752] binder: 9751:9752 got transaction to invalid handle, 1
[  363.416750][ T9752] binder: 9752:9751 cannot find target node
[  363.417955][ T9752] binder: 9751:9752 transaction call to 0:0 failed 77/29201/-22, size 88-24 line 3054
[  363.436149][ T4534] binder: undelivered TRANSACTION_ERROR: 29201
[  363.459116][ T1613] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  363.461175][ T1613] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  363.516465][ T9385] 8021q: adding VLAN 0 to HW filter on device team0
[  363.537782][ T9314] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  363.540032][ T9314] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  363.543082][ T9314] bridge0: port 1(bridge_slave_0) entered blocking state
[  363.544693][ T9314] bridge0: port 1(bridge_slave_0) entered forwarding state
[  363.587561][ T9314] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  363.609689][ T9765] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  363.641349][ T9314] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  363.643986][ T9314] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  363.652949][ T9314] bridge0: port 2(bridge_slave_1) entered blocking state
[  363.654527][ T9314] bridge0: port 2(bridge_slave_1) entered forwarding state
[  363.664749][ T9314] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  363.676248][ T9314] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  363.700448][ T9314] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  363.710022][ T9314] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  363.717902][ T9314] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  363.732935][ T9314] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  363.741980][ T9314] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  363.750718][ T9314] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  363.772964][ T9385] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  363.780850][ T9385] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  363.792705][ T9314] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  363.796616][ T9314] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  363.800723][ T9314] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  364.568263][ T9803] xt_physdev: --physdev-out and --physdev-is-out only supported in the FORWARD and POSTROUTING chains with bridged traffic
[  364.609616][  T174] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  364.611535][  T174] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  364.624772][ T9385] 8021q: adding VLAN 0 to HW filter on device batadv0
[  364.689017][ T9814] netlink: 68 bytes leftover after parsing attributes in process `syz.6.1327'.
[  364.692160][ T9814] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1327'.
[  364.728183][ T9814] netlink: 'syz.6.1327': attribute type 12 has an invalid length.
[  364.968726][ T9830] binder: 9829:9830 ioctl 4018620d 0 returned -22
[  364.989361][ T9830] binder: tried to use weak ref as strong ref
[  364.990695][ T9830] binder: 9829:9830 Acquire 1 refcount change on invalid ref 0 ret -22
[  365.015413][ T9830] binder: 9829:9830 got transaction to invalid handle, 1
[  365.021647][ T9830] binder: 9830:9829 cannot find target node
[  365.027962][ T9830] binder: 9829:9830 transaction call to 0:0 failed 80/29201/-22, size 88-24 line 3054
[  365.037533][   T22] binder: undelivered TRANSACTION_ERROR: 29201
[  365.302683][  T174] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  365.305379][  T174] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  365.346369][ T9305] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  365.348592][ T9305] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  365.350859][ T9305] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  365.355847][ T9305] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  365.367109][ T9385] device veth0_vlan entered promiscuous mode
[  365.384929][ T9385] device veth1_vlan entered promiscuous mode
[  365.424129][  T174] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  365.426399][  T174] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  365.428436][  T174] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  365.430644][  T174] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  365.481751][ T9385] device veth0_macvtap entered promiscuous mode
[  365.511671][ T9385] device veth1_macvtap entered promiscuous mode
[  365.585748][ T9385] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  365.588382][ T9385] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  365.590524][ T9385] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  365.592972][ T9385] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  365.607252][ T9385] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  365.610899][ T9385] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  365.618783][ T9385] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  365.623575][ T9385] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  365.632005][ T9385] batman_adv: batadv0: Interface activated: batadv_slave_0
[  365.636041][ T9305] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  365.641370][ T9305] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  365.645863][ T9305] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  365.650476][ T9305] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  365.658739][ T9385] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  365.661258][ T9385] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  365.663532][ T9385] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  365.667450][ T9385] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  365.669807][ T9385] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  365.676647][ T9385] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  365.681158][ T9385] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  365.686586][ T9385] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  365.692644][ T9385] batman_adv: batadv0: Interface activated: batadv_slave_1
[  365.697476][ T9301] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  365.700366][ T9301] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  365.713274][ T9385] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  365.717594][ T9385] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  365.720666][ T9385] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  365.723846][ T9385] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  365.828957][  T174] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  365.830941][  T174] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  365.838953][ T9305] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  365.867630][  T174] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  365.869749][  T174] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  365.875410][ T5448] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  367.283211][ T9899] binder: 9896:9899 ioctl c0306201 0 returned -14
[  367.295472][ T9899] binder: 9896:9899 got transaction to invalid handle, 1
[  367.297144][ T9899] binder: 9899:9896 cannot find target node
[  367.298587][ T9899] binder: 9896:9899 transaction call to 0:0 failed 84/29201/-22, size 88-24 line 3054
[  367.315594][ T3764] binder: undelivered TRANSACTION_ERROR: 29201
[  367.603160][ T9917] netlink: 16 bytes leftover after parsing attributes in process `syz.9.1349'.
[  367.679722][ T9917] netlink: 16 bytes leftover after parsing attributes in process `syz.9.1349'.
[  367.682819][ T9917] netlink: 16 bytes leftover after parsing attributes in process `syz.9.1349'.
[  368.690551][ T9937] binder: 9936:9937 ioctl c0306201 0 returned -14
[  368.706135][ T9937] binder: 9936:9937 got transaction to invalid handle, 1
[  368.707727][ T9937] binder: 9937:9936 cannot find target node
[  368.709074][ T9937] binder: 9936:9937 transaction call to 0:0 failed 88/29201/-22, size 88-24 line 3054
[  368.784220][ T3764] binder: undelivered TRANSACTION_ERROR: 29201
[  371.087575][ T9301] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  371.180845][   T47] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  371.185087][   T47] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  371.190408][   T47] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  371.765907][ T2060] ieee802154 phy0 wpan0: encryption failed: -22
[  371.769570][ T2060] ieee802154 phy1 wpan1: encryption failed: -22
[  371.930395][ T9991] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1366'.
[  371.946156][ T9976] A link change request failed with some changes committed already. Interface macvlan0 may have been left with an inconsistent configuration, please check.
[  371.976594][   T47] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  371.978630][   T47] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  371.980421][   T47] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  372.095122][ T9997] binder: 9996:9997 ioctl c0306201 0 returned -14
[  372.104755][ T9997] binder: 9996:9997 got transaction to invalid handle, 1
[  372.106308][ T9997] binder: 9997:9996 cannot find target node
[  372.107764][ T9997] binder: 9996:9997 transaction call to 0:0 failed 92/29201/-22, size 88-24 line 3054
[  372.110358][ T4344] binder: undelivered TRANSACTION_ERROR: 29201
[  373.309213][ T9301] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  374.228211][ T4299] Bluetooth: hci0: command 0x0409 tx timeout
[  375.319480][ T9301] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  375.350989][T10042] binder: 10041:10042 got transaction to invalid handle, 1
[  375.352542][T10042] binder: 10042:10041 cannot find target node
[  375.353806][T10042] binder: 10041:10042 transaction call to 0:0 failed 96/29201/-22, size 88-24 line 3054
[  375.366427][ T4346] binder: undelivered TRANSACTION_ERROR: 29201
[  375.467246][ T9301] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  375.550721][T10059] tipc: Enabling of bearer <eth:syzka‹E8¥> rejected, failed to enable media
[  375.618244][T10059] device syzkaller0 entered promiscuous mode
[  375.637039][T10067] netlink: 28 bytes leftover after parsing attributes in process `syz.6.1384'.
[  375.641384][ T9985] chnl_net:caif_netlink_parms(): no params data found
[  376.274637][ T4299] Bluetooth: hci0: command 0x041b tx timeout
[  377.812011][T10099] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci0/hci0:200/input3
[  378.354576][   T47] Bluetooth: hci0: command 0x040f tx timeout
[  380.434588][ T4299] Bluetooth: hci0: command 0x0419 tx timeout
[  387.819862][ T9985] bridge0: port 1(bridge_slave_0) entered blocking state
[  387.821379][ T9985] bridge0: port 1(bridge_slave_0) entered disabled state
[  387.823791][ T9985] device bridge_slave_0 entered promiscuous mode
[  387.848753][T10115] binder: 10111:10115 got transaction to invalid handle, 1
[  387.850337][T10115] binder: 10115:10111 cannot find target node
[  387.851600][T10115] binder: 10111:10115 transaction call to 0:0 failed 100/29201/-22, size 88-24 line 3054
[  387.892870][ T4534] binder: undelivered TRANSACTION_ERROR: 29201
[  387.914412][ T9985] bridge0: port 2(bridge_slave_1) entered blocking state
[  387.915950][ T9985] bridge0: port 2(bridge_slave_1) entered disabled state
[  387.918228][ T9985] device bridge_slave_1 entered promiscuous mode
[  388.110097][T10131] netlink: 8 bytes leftover after parsing attributes in process `syz.9.1397'.
[  388.118584][ T9985] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  388.149569][ T9985] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  388.246629][ T9985] team0: Port device team_slave_0 added
[  388.249790][ T9985] team0: Port device team_slave_1 added
[  388.288071][ T9985] batman_adv: batadv0: Adding interface: batadv_slave_0
[  388.289642][ T9985] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  388.306589][ T9985] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  388.313109][ T9985] batman_adv: batadv0: Adding interface: batadv_slave_1
[  388.322005][ T9985] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  388.332646][ T9985] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  388.436456][ T9985] device hsr_slave_0 entered promiscuous mode
[  388.446849][ T9985] device hsr_slave_1 entered promiscuous mode
[  388.484603][ T9985] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  388.486132][ T9985] Cannot create hsr debugfs directory
[  388.493536][T10148] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  388.496705][T10148] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  388.500684][T10148] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  388.509840][T10148] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  389.396411][T10188] binder: 10187:10188 got transaction to invalid handle, 1
[  389.399067][T10188] binder: 10188:10187 cannot find target node
[  389.401399][T10188] binder: 10187:10188 transaction call to 0:0 failed 104/29201/-22, size 88-24 line 3054
[  389.416225][ T4383] binder: undelivered TRANSACTION_ERROR: 29201
[  389.472228][T10191] netlink: 12 bytes leftover after parsing attributes in process `syz.8.1407'.
[  390.246732][T10231] binder: 10229:10231 got transaction to invalid handle, 1
[  390.248297][T10231] binder: 10231:10229 cannot find target node
[  390.250689][T10231] binder: 10229:10231 transaction call to 0:0 failed 108/29201/-22, size 88-24 line 3054
[  390.253238][ T4383] binder: undelivered TRANSACTION_ERROR: 29201
[  391.093642][T10271] netlink: 'syz.0.1429': attribute type 3 has an invalid length.
[  391.164652][   T27] audit: type=1107 audit(391.120:534): pid=10273 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='Àïï'
[  391.265868][T10277] binder: 10276:10277 got transaction to invalid handle, 1
[  391.271933][T10277] binder: 10277:10276 cannot find target node
[  391.511992][T10289] sctp: [Deprecated]: syz.9.1436 (pid 10289) Use of int in max_burst socket option.
[  391.511992][T10289] Use struct sctp_assoc_value instead
[  391.680598][T10302] netlink: 8 bytes leftover after parsing attributes in process `syz.9.1439'.
[  392.346607][T10319] binder: 10318:10319 got transaction to invalid handle, 1
[  392.717540][T10336] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1449'.
[  392.766091][T10339] xt_TPROXY: Can be used only with -p tcp or -p udp
[  393.130050][T10355] binder: 10353:10355 tried to acquire reference to desc 0, got 1 instead
[  393.138044][T10355] binder: 10353:10355 ioctl c0306201 0 returned -14
[  393.604456][ T9301] device hsr_slave_0 left promiscuous mode
[  393.666880][ T9301] device hsr_slave_1 left promiscuous mode
[  393.755004][ T9301] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  393.761433][ T9301] batman_adv: batadv0: Removing interface: batadv_slave_0
[  393.777109][ T9301] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  393.781987][ T9301] batman_adv: batadv0: Removing interface: batadv_slave_1
[  393.798036][ T9301] device bridge_slave_1 left promiscuous mode
[  393.799599][ T9301] bridge0: port 2(bridge_slave_1) entered disabled state
[  393.857830][ T9301] device bridge_slave_0 left promiscuous mode
[  393.859464][ T9301] bridge0: port 1(bridge_slave_0) entered disabled state
[  394.004721][ T9301] device veth1_macvtap left promiscuous mode
[  394.006251][ T9301] device veth0_macvtap left promiscuous mode
[  394.007714][ T9301] device veth1_vlan left promiscuous mode
[  394.009115][ T9301] device veth0_vlan left promiscuous mode
[  394.341656][T10378] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  394.617068][T10381] binder: 10380:10381 tried to acquire reference to desc 0, got 1 instead
[  394.619575][T10381] binder: 10380:10381 ioctl c0306201 0 returned -14
[  396.488189][ T9301] team0 (unregistering): Port device team_slave_1 removed
[  396.648141][ T9301] team0 (unregistering): Port device team_slave_0 removed
[  396.690520][T10418] binder: 10417:10418 tried to acquire reference to desc 0, got 1 instead
[  396.692917][T10418] binder: 10417:10418 ioctl c0306201 0 returned -14
[  396.845517][ T9301] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  397.085251][ T9301] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  399.396085][ T4299] Bluetooth: hci1: command 0x0406 tx timeout
[  399.398614][   T47] Bluetooth: hci4: command 0x0406 tx timeout
[  400.846406][ T9301] bond0 (unregistering): Released all slaves
[  401.142691][T10453] binder: 10452:10453 tried to acquire reference to desc 0, got 1 instead
[  401.236455][ T9985] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  401.276296][ T9985] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  401.447914][ T9985] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  401.702908][ T9985] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  402.681724][ T9985] 8021q: adding VLAN 0 to HW filter on device bond0
[  402.705971][ T5587] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  402.708212][ T5587] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  402.716375][ T9985] 8021q: adding VLAN 0 to HW filter on device team0
[  402.746696][ T5587] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  402.749038][ T5587] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  402.751184][ T5587] bridge0: port 1(bridge_slave_0) entered blocking state
[  402.752580][ T5587] bridge0: port 1(bridge_slave_0) entered forwarding state
[  402.782656][ T5587] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  402.785655][ T5587] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  402.792552][ T5587] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  402.805389][ T5587] bridge0: port 2(bridge_slave_1) entered blocking state
[  402.806938][ T5587] bridge0: port 2(bridge_slave_1) entered forwarding state
[  402.834260][T10489] binder: 10488:10489 tried to acquire reference to desc 0, got 1 instead
[  402.858186][ T5587] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  402.865995][ T5587] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  402.874976][ T5587] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  402.880176][ T5587] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  402.883030][ T5587] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  402.890147][ T5587] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  402.895305][ T5587] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  402.898379][ T5587] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  402.920798][ T9985] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  402.929396][ T9985] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  402.931697][ T5587] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  402.935410][ T5587] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  402.938083][ T5587] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  403.757993][ T9985] 8021q: adding VLAN 0 to HW filter on device batadv0
[  403.763041][ T5587] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  403.774611][ T5587] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  404.728897][T10534] batman_adv: batadv0: Adding interface: dummy0
[  404.730409][T10534] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  404.768534][T10534] batman_adv: batadv0: Interface activated: dummy0
[  404.776929][T10540] binder: 10537:10540 tried to acquire reference to desc 0, got 1 instead
[  404.791931][T10534] x_tables: duplicate underflow at hook 2
[  404.834708][T10534] batadv0: mtu less than device minimum
[  404.840826][T10534] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  404.846380][T10534] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  404.851473][T10534] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  404.856666][T10534] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  404.861781][T10534] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  404.866882][T10534] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  404.872061][T10534] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  404.877192][T10534] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  404.882323][T10534] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  405.233577][ T5052] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  405.240361][ T5052] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  405.250889][T10556] 
[  405.251663][T10556] =============================
[  405.252720][T10556] WARNING: suspicious RCU usage
[  405.253816][T10556] 6.1.119-syzkaller #0 Not tainted
[  405.255164][T10556] -----------------------------
[  405.256167][T10556] net/mac80211/sta_info.c:361 suspicious rcu_dereference_protected() usage!
[  405.257960][T10556] 
[  405.257960][T10556] other info that might help us debug this:
[  405.257960][T10556] 
[  405.260315][T10556] 
[  405.260315][T10556] rcu_scheduler_active = 2, debug_locks = 1
[  405.261928][T10556] 3 locks held by syz.9.1523/10556:
[  405.262988][T10556]  #0: ffff80001810e290 (cb_lock){++++}-{3:3}, at: genl_rcv+0x28/0x50
[  405.264843][T10556]  #1: ffff0000f5d987c8 (&rdev->wiphy.mtx){+.+.}-{3:3}, at: nl80211_pre_doit+0x484/0x764
[  405.266882][T10556]  #2: ffff0000d2a74d40 (&wdev->mtx){+.+.}-{3:3}, at: nl80211_new_station+0x1434/0x1c64
[  405.268947][T10556] 
[  405.268947][T10556] stack backtrace:
[  405.270234][T10556] CPU: 0 PID: 10556 Comm: syz.9.1523 Not tainted 6.1.119-syzkaller #0
[  405.271889][T10556] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  405.273886][T10556] Call trace:
[  405.274650][T10556]  dump_backtrace+0x1c8/0x1f4
[  405.275815][T10556]  show_stack+0x2c/0x3c
[  405.276854][T10556]  dump_stack_lvl+0x108/0x170
[  405.277910][T10556]  dump_stack+0x1c/0x58
[  405.278827][T10556]  lockdep_rcu_suspicious+0x260/0x464
[  405.280019][T10556]  sta_remove_link+0x38c/0x474
[  405.281071][T10556]  sta_info_free+0x68/0x2ec
[  405.282094][T10556]  ieee80211_add_station+0x308/0x4e4
[  405.283335][T10556]  rdev_add_station+0x158/0x3e0
[  405.284418][T10556]  nl80211_new_station+0x1500/0x1c64
[  405.285536][T10556]  genl_rcv_msg+0x948/0xc2c
[  405.286615][T10556]  netlink_rcv_skb+0x20c/0x3b8
[  405.287687][T10556]  genl_rcv+0x38/0x50
[  405.288560][T10556]  netlink_unicast+0x65c/0x898
[  405.289583][T10556]  netlink_sendmsg+0x834/0xb18
[  405.290603][T10556]  ____sys_sendmsg+0x55c/0x848
[  405.291613][T10556]  __sys_sendmsg+0x26c/0x33c
[  405.292674][T10556]  __arm64_sys_sendmsg+0x80/0x94
[  405.293731][T10556]  invoke_syscall+0x98/0x2bc
[  405.294690][T10556]  el0_svc_common+0x138/0x258
[  405.295751][T10556]  do_el0_svc+0x58/0x13c
[  405.296699][T10556]  el0_svc+0x58/0x168
[  405.297535][T10556]  el0t_64_sync_handler+0x84/0xf0
[  405.298674][T10556]  el0t_64_sync+0x18c/0x190
[  405.769741][ T4486] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  405.772202][ T4486] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  405.795868][ T9985] device veth0_vlan entered promiscuous mode
[  405.798628][ T4486] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  405.800961][ T4486] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  405.811881][ T9985] device veth1_vlan entered promiscuous mode
[  405.886034][ T5052] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  405.888359][ T5052] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  405.890394][ T5052] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  405.892639][ T5052] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  405.899412][ T9985] device veth0_macvtap entered promiscuous mode
[  405.904083][ T9985] device veth1_macvtap entered promiscuous mode
[  405.932699][ T9985] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  405.940351][ T9985] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  405.942549][ T9985] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  405.950146][ T9985] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  405.952502][ T9985] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  405.960762][ T9985] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  405.963032][ T9985] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  405.966623][ T9985] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  405.970146][ T9985] batman_adv: batadv0: Interface activated: batadv_slave_0
[  405.972638][ T5052] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  405.975512][ T5052] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  405.977564][ T5052] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  405.979650][ T5052] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  405.987531][ T9985] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  405.989814][ T9985] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  405.992063][ T9985] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  406.000322][ T9985] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  406.002595][ T9985] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  406.005238][ T9985] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  406.007401][ T9985] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  406.009650][ T9985] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  406.013107][ T9985] batman_adv: batadv0: Interface activated: batadv_slave_1
[  406.022227][ T5052] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  406.024961][ T5052] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  406.030121][ T9985] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  406.032060][ T9985] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  406.033895][ T9985] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  406.043776][ T9985] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  406.113039][ T5052] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  406.115123][ T5052] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  406.119822][ T1613] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  406.158741][ T1613] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  406.161684][ T1613] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  406.170248][ T1613] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  409.267414][ T1613] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  410.248754][ T1613] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  410.338477][ T1613] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  410.446259][ T1613] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  412.829365][ T1613] device hsr_slave_0 left promiscuous mode
[  412.876264][ T1613] device hsr_slave_1 left promiscuous mode
[  412.954856][ T1613] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  412.956559][ T1613] batman_adv: batadv0: Removing interface: batadv_slave_0
[  412.961167][ T1613] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  412.962709][ T1613] batman_adv: batadv0: Removing interface: batadv_slave_1
[  412.970359][ T1613] device bridge_slave_1 left promiscuous mode
[  412.971747][ T1613] bridge0: port 2(bridge_slave_1) entered disabled state
[  413.026002][ T1613] device bridge_slave_0 left promiscuous mode
[  413.027510][ T1613] bridge0: port 1(bridge_slave_0) entered disabled state
[  413.174727][ T1613] device veth1_macvtap left promiscuous mode
[  413.176017][ T1613] device veth0_macvtap left promiscuous mode
[  413.177524][ T1613] device veth1_vlan left promiscuous mode
[  413.178833][ T1613] device veth0_vlan left promiscuous mode
[  415.099739][ T1613] team0 (unregistering): Port device team_slave_1 removed