last executing test programs:

4m41.230984456s ago: executing program 3:
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x2, 0x0)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x7)
eventfd(0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000100)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x1, 0x4}]})
msgrcv(0x0, 0x0, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, 0x0, 0x42, 0x0)
ioctl$VHOST_SET_VRING_ADDR(0xffffffffffffffff, 0x4028af11, 0x0)
r1 = socket$l2tp(0x2, 0x2, 0x73)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000240)='wlan0\x00', 0x10)
bind$inet(r1, &(0x7f0000000080)={0x2, 0x0, @remote}, 0x10)
connect$inet(r1, &(0x7f0000000200)={0x2, 0x0, @local}, 0x10)
sendmmsg$inet(r1, &(0x7f0000000900)=[{{0x0, 0x0, 0x0}}], 0x40000cf, 0x0)

4m35.867739108s ago: executing program 3:
socket$inet6(0xa, 0x3, 0x8000000003c)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000000)={0xffffffffffffffff, 0x0, 0x25, 0x0, @void}, 0x10)
socket$igmp6(0xa, 0x3, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000380)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000002c0)={'veth0_to_hsr\x00', <r3=>0x0})
socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0xa)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000006280)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
r5 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)={{'fd', 0x3d, r5}, 0x2c, {'rootmode', 0x3d, 0x4000}})
read$FUSE(r5, &(0x7f0000006280)={0x2020}, 0x2020)
removexattr(&(0x7f0000000140)='./file0\x00', &(0x7f0000000240)=@random={'trusted.', '/dev/fuse\x00'})
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000940)={'syztnl0\x00', &(0x7f00000008c0)={'syztnl2\x00', <r6=>0x0, 0x4, 0x8, 0x5, 0x9, 0x4a, @ipv4={'\x00', '\xff\xff', @multicast1}, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x8000, 0x7800, 0x4, 0x4}})
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000002880)=[{{&(0x7f0000000040)={0x2, 0x4e24, @loopback}, 0x10, &(0x7f0000000280)=[{&(0x7f0000000080)="bc68e036ae704c7f57f675abbe549b060ddfcd07c45f5060a9c0fa35b2f07564aadf6f0b10f4f5c05de4951b88d0caceddff71959a98766b62efbb8ab659192a0959d8de885760fbe39aff6c455f162357989d83b12ebe5e8dd455d0d57e0b1e965c81cf14a9d850224d2fa5f4362d0585df9ccce06e6173c23b3a7cac7a5d6ef090075a44c4ebd76d5321d450", 0x8d}, {&(0x7f0000000140)="365ac333c842fb77f95691c14389ece8595873526e7eafe8131e1544c7619d78b9b1062da72846bd0918ddcc7b4a55b608e5aa39c401a396bd45a6bf8387763687ef77276050113f2236adf8cd9df18e5e275d3c921320d6a0e1460c2b313f7ca9d1c09909cf8d0ecf800c4b0dddba587156060f6fc7fe2a63b650ba827fac475cba89a409f41fcabb8b1c1aed174ef1f62d6784fa566cf4b5fa9062a58f208a95d46ff7", 0xa4}, {&(0x7f0000000200)="3a2a3d962cbf83f3b83e898ab8d27b8c7234d1a61b9bac1a6b9b084a3176c4e7dd924cfd8987887afa0822e83d2f394603ec5b9b785d4a9fda9437b36a5ebe3532f92b7dce28fa12a5527b89ceacf968700c74f945009382baf6ef7f1e7708c32eaa209f3da1616cd4aa4a5974e1f4dc5970bc83245335d2bfe7", 0x7a}], 0x3, &(0x7f0000000300)=[@ip_retopts={{0x48, 0x0, 0x7, {[@ssrr={0x89, 0x27, 0xc8, [@multicast1, @multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, @dev={0xac, 0x14, 0x14, 0xb}, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1, @remote, @local, @multicast1]}, @cipso={0x86, 0xb, 0x353db47a09f76b3c, [{0x0, 0x5, "91e65b"}]}, @timestamp_addr={0x44, 0x4, 0x95}]}}}, @ip_ttl={{0x14, 0x0, 0x2, 0x1ff}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r3, @remote, @empty}}}], 0x80}}, {{&(0x7f00000003c0)={0x2, 0x4e20, @remote}, 0x10, &(0x7f00000007c0)=[{&(0x7f0000000400)="6ff9d758b499cddc06", 0x9}, {&(0x7f0000000440)="df8f3dad1d8eeb96e51f52d05884f16ff7e72a82302b28b9bfed599539f56838f5526a8016671b0311e046c79fcd7dd2c6aa99105cdae7313bf53ed4d8b294e32572f86b8f6e1da8846fb0bf84352d9b34a48ec61544945c0261dc32e2e7d703c249ebfd51a5fb761dba6234de359b605ccb2dd2cdfbffef402a7a20d880ff8a39da40d02dfca4571fee8cd85f769088f49dedbce18a02003355274e10eeae3f056b9c76b043e339ba00671868f06ecbbf1a08658cb897ae337cd9a8330bce", 0xbf}, {&(0x7f0000000500)="fd5d4cffcf2c5a565ae355dab04312da95047de75cfbecee62f377d80333bbacd1b00a11a89990300c7611d3f3c0d57643fcafc05cbde6c7666359063eb3312c8044d60deb66b7dbf60a6e1adced60c0d54ad94fcd683fb7dfecd92812ff3f77f376900ee5812a16f3690400f4939caca3240395146260cc6aead094ed488d52c7b4fe7329d828685cc3cf2f1e889820035a111f8fa83d59dfa7688faf67c6723aba8699374c9a8beb95045e74493794ef0798fdc06611250594aba31d78f2a9c8b7595576faf86312b84f12c6027694", 0xd0}, {&(0x7f0000000600)="789c7fec56a2f6361dabc281201abbe5db9da853afdef6fb09571f4c7a65e17744c69d2faa7f869071b39c76e0", 0x2d}, {&(0x7f0000000640)="ee246c587ed64e", 0x7}, {&(0x7f0000000680)="2767125322b181d18f133e7fa36e58efb163ef4ebf94bbdf77a78e83f333c64d6775ed972abbd679872c5863ee91f772637940345d97b9be7ed35c322f35d962b81fcd34f6281a0ee84e48c2520bc819986d20765b095c830bc5058690a950d9a6f42206bac8729530e36762c5b92e18252fdad8dc0a89f5ec529bc5201744a3e31ad95b37aed6cbdd72f545637fe6effe18d6ce21e9fdb675c79029382c59fea64ef1f56be5af53f639f420248a6d97699ca114056fb300d14758eda5622975e4238cba25914187b1f03638eb6ae4f5ec756f0006274a2021ef9c16262b63b9e06710e630ff7a38", 0xe8}, {&(0x7f0000000780)="e1c1ddd20c19683877b68672bbe35892de5ebc2bd11068a4b2864107dd6596d3", 0x20}], 0x7, &(0x7f0000000980)=[@ip_ttl={{0x14, 0x0, 0x2, 0x1}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @dev={0xac, 0x14, 0x14, 0x1f}, @local}}}, @ip_ttl={{0x14, 0x0, 0x2, 0x40}}, @ip_ttl={{0x14, 0x0, 0x2, 0x100}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @remote, @remote}}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x8}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r6, @multicast2, @loopback}}}, @ip_retopts={{0x44, 0x0, 0x7, {[@rr={0x7, 0x13, 0xf4, [@local, @private=0xa010101, @initdev={0xac, 0x1e, 0x1, 0x0}, @rand_addr=0x64010100]}, @noop, @ssrr={0x89, 0x1f, 0x6b, [@initdev={0xac, 0x1e, 0x0, 0x0}, @empty, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1, @multicast2, @broadcast, @loopback]}]}}}], 0x108}}, {{&(0x7f0000000ac0)={0x2, 0x4e20, @remote}, 0x10, &(0x7f0000001e00)=[{&(0x7f0000000b00)="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", 0xff}, {&(0x7f0000000c00)="7ebb2669b5582a25ad229ff56a53d479f52c822cbb6d1c9cf4dac5e9b8931857b1c39673f6e39fe7368df88400035c6a2965961de86e09fc952da62495787324dc1fdf209470ab1486249422f774d5c590d98b5d66ca241a86d1ec4675d8b4cdaf4af41e2007bcaab5c236189787bbb4da2026799c13d9ba85b6f941fab8cc64f2522bebec0816e28497facf86e446221a0b8805b1f592a77a9a269b", 0x9c}, {&(0x7f0000000cc0)}, {&(0x7f0000000d00)="7adeab6eba8b1263080568a42516229fd1d7b4a48910237047c8cc00bfc7fa511e4e7289c7a467e7b25a736cd54bf63c74a510789bf2c816", 0x38}, {&(0x7f0000000d40)="f6f4bb1f276f1096e116f452c3cb4b02880b16c0924376478336bb3424da2b21a3b064a832f36ba1c803967603", 0x2d}, {&(0x7f0000000dc0)="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", 0xff4}], 0x6, &(0x7f0000001e80)}}, {{&(0x7f0000001ec0)={0x2, 0x4e20, @broadcast}, 0x10, &(0x7f0000001fc0)=[{&(0x7f0000001f00)="b0a5dacddb0927238e322773cf8a163a50ade06676a0872f346d8597646fa09226267d7c8bc1ae58c40d7c89d71b31837fdde1e4e00363d8d5cb9d096cab0451ae3cc3aaba426b58105f126386f0997f7399ef432ca2dc118e3749c4f12efe55564b255be7df560a26bd759c051035bdbb8057c2f9eaafface5c8a29c9e5ee0f2320e9c8329584e7557d7a9ecfd0255c0d079c43fb4d4d06e5bec9b52fd0f2c37646a21ec3080c16b7e38f9d983dcec0af20c4", 0xb3}], 0x1, &(0x7f0000002000)=[@ip_tos_int={{0x14, 0x0, 0x1, 0x6}}, @ip_ttl={{0x14, 0x0, 0x2, 0x80}}], 0x30}}, {{0x0, 0x0, &(0x7f0000002400)=[{&(0x7f0000002080)="b148e3c0608e5aa6a16d00f59aa4909718a6bc158a7b5e52eb0b2170013bb7455f40384793e641960adfa88a72c8e54e00ee4c607e77ea62ab7b7fddcbc32e146dbeb2f1c0439d7e66575ea10e739c7bd32f520227c2e0f1fd2bb85b9ccabcb23d179ba011316f8df1bfc5353b5dea10973f2b74560aff6fafec9d50e2f2e39d157c0df05e98dbe5b4b5bb", 0x8b}, {&(0x7f0000002140)="6f652bbbc32fdede745cef466ef79b63bea1b56f5cc76a8991e0206771ae98ea7ec67d762885b1c9620c8d64f7f3f5e92b4293219bb4b907a1f8fd5b228d0231cecbf8f42055d2c1a6a25cd8bcefec2eb289d85228a58f7d78724fc19bdf4b4e88a7663aa58ffad006f1a4ee6ecfd487852dac5287628803c3acb2102045e0bc429c264f314c62cb1edc04b2a19428c65c6547", 0x93}, {&(0x7f0000002200)="725bf00630856e4f7ba1e0ff3fc5bb168855add50b859a391d40b100da0c53c1df315e09053a710268db5c9db03871f5a8cc8af2a2b7f7997ad81160d253752baeaa86d04154525c1dd3de3f044b437c855e07e3923036c1873d6c49ea4defd04f24e60897d37bcf7756c26eb450ccbbd1c40e7b6ce3ea28c24bf8de05bde2eaad5b69350b48", 0x86}, {&(0x7f00000022c0)="d9d239ee3aa84f6a9543f93c3c4ba15729cace2464485b84a477e574560658701bdb139434a3fc3343d40ee95ad6c623fcca4d", 0x33}, {&(0x7f0000002300)="658934c3be960da8fd527663224a90f86975186e95765dc578c3029c768c44ec4a72565552085f8effcbff10fab9f6de0e95ec138fe9c677ee808f27e81a698423c55e9a340803ab4c8405948160ca2c76c325c204886648f955c50b744a78ad6d83bc70e9", 0x65}, {&(0x7f0000002380)="a2ac923e0b7029078e6800a60cfd72db62c45398d5193e7f3c93d763c6f512c33abaa8896d8b6c3836ad6e483a86918417b14793a66a302d66418dfe6e4375d3cb85f99c5fc6cb0e57bf0aac8d4c6760c3a3a64730d778f16ed9006c18dc5b54", 0x60}], 0x6, &(0x7f0000002480)=[@ip_tos_u8={{0x11, 0x0, 0x1, 0x4}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @loopback}}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x57}}, @ip_retopts={{0x24, 0x0, 0x7, {[@rr={0x7, 0xf, 0x75, [@private=0xa010100, @dev={0xac, 0x14, 0x14, 0x35}, @local]}, @lsrr={0x83, 0x3, 0xba}, @end]}}}, @ip_retopts={{0x34, 0x0, 0x7, {[@noop, @ssrr={0x89, 0xf, 0xa9, [@remote, @dev={0xac, 0x14, 0x14, 0x22}, @initdev={0xac, 0x1e, 0x1, 0x0}]}, @ssrr={0x89, 0x13, 0x5c, [@rand_addr=0x64010101, @broadcast, @loopback, @multicast2]}]}}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x3}}, @ip_ttl={{0x14, 0x0, 0x2, 0xcf1}}], 0xe0}}, {{&(0x7f0000002680)={0x2, 0x4e24, @loopback}, 0x10, &(0x7f00000027c0)=[{&(0x7f00000025c0)="c29efb8d858d5e17e05b9da2df77de0136d5589a71b77d9216db5b96132ef749b240f579d458033b521b2d109c00975e74d7e83b6d66788bf88ca0a6438bccf6191922f0431a689e5bea598960e52ccb6500d2adbf981e84826eb5335e8ebbb220c17a256fdbc435ea5e", 0x6a}, {&(0x7f0000002640)="7f9c3c58c692", 0x6}, {0x0}, {0x0}, {&(0x7f00000026c0)="ae0b59aad764a3d4b7dbfa4ecce4b80ee9e624310b9a772a85b42395e0d7e3d2be18fdfd23225607c79c24769007d044c9391106640922436a137f467675c38692479190fe0a226015cae3980a55771dbf33d92b32521bb8c5e2191b52fe1f6fdfe79a0dcef904ace69f281aa0e615a88b936dff02596f8f241b9cbcf63fcf65bf8c48047122ff7ffb0b681aa93d50d133e7a01577248fcedb2cc9c89147865a9bb734a5c0813e6360612b958ec1", 0xae}, {&(0x7f0000002780)="1a3bd9", 0x3}], 0x6}}], 0x6, 0x44)

4m30.73459951s ago: executing program 3:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x26e1, 0x0)
stat(&(0x7f00000003c0)='./file1\x00', &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, <r1=>0x0})
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000440)='./file1\x00', 0x2000008, &(0x7f00000005c0)={[{@nobh}, {@prjquota}, {@jqfmt_vfsv1}, {@auto_da_alloc_val}, {@noinit_itable}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x3}}, {@bsdgroups}, {@resgid={'resgid', 0x3d, r1}}]}, 0x3, 0x53b, &(0x7f0000000880)="$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")
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r2 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101601)
ioctl$USBDEVFS_CLEAR_HALT(r2, 0x80045515, &(0x7f0000000000)={0x1})
r3 = mq_open(0x0, 0x0, 0x0, 0x0)
unshare(0x2000400)
r4 = open(&(0x7f0000000180)='./bus\x00', 0x14337f, 0x0)
flock(r4, 0x5)
mq_getsetattr(r3, 0x0, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r5, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc)
connect$inet6(r5, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r5, 0x6, 0x1f, &(0x7f00000002c0), 0x4)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000000)="fdb6", 0x2, 0x0, 0x0, 0x0)
setsockopt$inet6_tcp_TLS_TX(r5, 0x11a, 0x2, &(0x7f00000000c0)=@ccm_128={{0x304}, "5db4ac1d239e5f36", "3e35827b692d5826c162621d1ee3063f", "b7adf22e", "0318e82f000100"}, 0x28)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={0xffffffffffffffff, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$batadv(&(0x7f0000000400), 0xffffffffffffffff)
r8 = socket$igmp(0x2, 0x3, 0x2)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r8, 0x8933, &(0x7f00000000c0)={'batadv0\x00', <r9=>0x0})
sendmsg$BATADV_CMD_GET_GATEWAYS(r6, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000740)={0x1c, r7, 0x73bf44d8d76863a9, 0x0, 0x0, {0x6}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r9}]}, 0x1c}}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(r0, &(0x7f0000000380)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x34, r7, 0x2, 0x70bd28, 0x25dfdbfb, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x7}, @BATADV_ATTR_ISOLATION_MASK={0x8, 0x2c, 0xffff}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5}, @BATADV_ATTR_GW_MODE={0x5, 0x33, 0x1}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000}, 0x4000080)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={0xffffffffffffffff, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r10 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r10, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[], 0x14c}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x5, 0x8, 0x10001, 0x9}, 0x48)

4m24.321898023s ago: executing program 3:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r0, 0x84, 0x81, &(0x7f00000002c0)="1a00000002000000", 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r0, 0x84, 0x17, &(0x7f0000000240)={0x0, 0x4}, 0x8)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r0, 0x84, 0x17, &(0x7f0000000200)=ANY=[@ANYRES32=0x0, @ANYBLOB="05"], 0x9)
sendto$inet6(r0, &(0x7f0000000100)="ea", 0x1, 0x0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
setsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r0, 0x84, 0x18, &(0x7f0000000340)={0x0, 0x5}, 0x8)

4m21.124024995s ago: executing program 3:
syz_init_net_socket$llc(0x1a, 0x1, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
openat$bsg(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r0 = socket$inet6(0xa, 0x3, 0x7)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000100)={@loopback, 0x800, 0x0, 0x2000000000903, 0x1}, 0x20)
setsockopt$inet6_int(r0, 0x29, 0x1000000000021, &(0x7f00000005c0)=0x7fff, 0x4)
connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x380000, @dev}, 0x1c)
sendmmsg$alg(r0, &(0x7f0000000400)=[{0x20000000, 0xff00, 0x0, 0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="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"], 0xf0, 0x20010041}], 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.bfq.io_serviced_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000080), 0x10010)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1000005, 0x10012, r1, 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)=ANY=[@ANYBLOB="600000000206050000000000000000feff00000014000300686173683a69702c706f72742c6970000900020073797a32000000000500040000000000050005000a0000000500010006000000140007800800064000000000080008"], 0x60}}, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)={<r4=>0xffffffffffffffff}, 0x13f, 0x3}}, 0x20)
write$RDMA_USER_CM_CMD_BIND(r2, &(0x7f0000000100)={0x14, 0x88, 0xfa00, {r4, 0x30, 0x0, @ib={0x1b, 0x4, 0x0, {"00000000000000000000000000000001"}}}}, 0x90)
r5 = syz_open_dev$usbfs(&(0x7f0000000100), 0x77, 0x313301)
socket$inet_sctp(0x2, 0x5, 0x84)
ioctl$USBDEVFS_FREE_STREAMS(r5, 0x802c550a, &(0x7f0000000000)=ANY=[@ANYBLOB="02002303100007"])
openat(0xffffffffffffffff, 0x0, 0x20002, 0x5)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x26e1, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
fcntl$lock(r6, 0x26, &(0x7f0000000080))
r7 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x1a, &(0x7f0000000040)={0x5, &(0x7f0000000200)=[{0x5, 0x81, 0x3, 0x80000000}, {0x9, 0x2, 0x8, 0x400}, {0x0, 0x9, 0x3, 0xa55}, {0xa3ec, 0x0, 0x6, 0x8}, {0x842, 0x6, 0x9, 0x3ff}]})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r7, 0xc0502100, &(0x7f0000000340)={<r8=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_SEND(r7, 0xc0182101, &(0x7f00000003c0)={r8})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r7, 0xc0502100, &(0x7f0000000480)={<r9=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r7, 0x40182103, &(0x7f0000000080)={r9, 0x3, r7, 0x5})

3m18.339284292s ago: executing program 4:
r0 = syz_mount_image$fuse(&(0x7f00000000c0), &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x1, 0x0, &(0x7f0000000400)="9c399b8f1985a7f11417866a1234e5ec7fa3bfdc7421af6ab0b24ff1009467be81c7e40853fa33ec2de9cac4f650209b67a15adb83a41f8c864c0d461f2f0322158372437388d3977a18acb92008d47c3982e4d0f9f3c8b1aa7787d6aa28bbf0e83388ed3ddff124bf94442a135253dd55")
mkdirat(r0, &(0x7f0000000080)='./file0\x00', 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000680)=@framed, &(0x7f0000000640)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
prlimit64(0x0, 0x8, &(0x7f0000000140)={0x0, 0x8c}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080))
r2 = getpid()
sched_setscheduler(r2, 0x0, &(0x7f0000000200))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
open(0x0, 0x0, 0x0)
sendmsg$NL80211_CMD_SET_INTERFACE(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r3, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0)
mmap$IORING_OFF_SQES(&(0x7f000050b000/0x1000)=nil, 0x1000, 0x1000006, 0x10, 0xffffffffffffffff, 0x10000000)
sched_setaffinity(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000001880)=[{&(0x7f0000001a80)=""/102400, 0x19000}], 0x1, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600707, 0x19)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)}, 0x0)
pipe2$9p(&(0x7f0000000240)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x0)
r6 = dup(r5)
write$FUSE_BMAP(r6, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_DIRENT(r6, &(0x7f0000000000)=ANY=[@ANYBLOB="58000000000000009fed2788c5532994414b47034801d524faf416638217", @ANYRES32], 0x58)
mount$9p_fd(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRES8=r4])
chdir(&(0x7f0000000100)='./file0\x00')

3m15.186606285s ago: executing program 4:
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f00000000c0)='./bus\x00', 0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="6e6f6e756d7461696c3d302c696f636861727365743d63703933322c636f6465706167653d3835372c6e6f6e756d7461696c3d302c73686f72746e616d653d6c6f7765722c696f636861727365743d6575632d6a702c757466383d302c646f733178666c6f7070792c726f6469722c726f6469722c003fc604f8ff7d2b25d49c2bd2ac7ab8337b339de1ab71d62b2a6d60505e1d35e457f71de2567bf294092274d5bdbfe577f4189dad762567e7da2ad7b21b2377e7837945228bf549b93ca2c899e28253186632e400252f53db8277d503b621abb159d96790ba64b2938b7c7a712e96753dd7c83feb96a43d03515b03a2085b396541b7241b0e860b"], 0x1, 0x217, &(0x7f0000000700)="$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")
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x0)
syz_mount_image$jfs(&(0x7f00000001c0), &(0x7f0000000000)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x8000, &(0x7f000001fc00)=ANY=[@ANYBLOB="75737271756f74612c6572726f72733d636f6e74696e75652c6e6f646973636172642c75737271756f74612c6572726f72733d72656d6f756e742d726f2c646973636172642c726573697a653d3078300000303030303030303030303030302c6e6f696e746567726974792c6572726f72733d636f6e74696e75652c6769643de87a9ff89424d906c75896a3b4f7e492d65e393da98543be1b04764bcad4d914f910e90a8a987e845137ac7679d7d022656e94f6d509c91388cd4bab43d7bf7bed", @ANYRESHEX=0x0, @ANYBLOB="d03b402c9d8d3be2c3caf90ffc7ace402d29a618bcb84d77cb69d3a2566ca903548b3ebca0f38f8e793e872f12bba0a6da0c2d6be3bd085d70c8e85a03dec0057f734aac285ef7ca0f6e7a7a6e9541a0954bd2fcff401598acf962c7caf85f3966bca46192f981ad868a625cb68b83823771e292e116ea6b4007d1e7a1fac1a2adeefe99b68d1091faa8d117fae128e75c815f908fd82d9e38058779977ce136fc7cbe7c1b30e0cfcf344c02106d3694e217cb8cd3", @ANYRESOCT, @ANYRES8=0x0, @ANYRESDEC=0x0, @ANYRES16=0x0, @ANYRESHEX=0x0, @ANYRES64, @ANYRES8=0x0, @ANYBLOB="4675ecdf9fe9e442b77fd29732cc90d7798b1bff7ba7ba51691a4d9f13975832b3e288bb632fa6069916bb9e10a7fb2fb0ee39e4b8c162aabae6e0be0d0eaf8f22aac317102dbf5714ea6098d47dc15c22bc940902ce509fd6009eb44b0e8cac31b1a8ac5cd94b88c7c440d65cd5c25f1d323a3d5ac3702ffde14139180885c7f133827fe01b6b44c5052614e763319eea43e1fe02a5f614e1801ce0dbf13f9fefdffdeb1ee5c17384e741e1b90f45d00e3a6d5294f9ce49b161f6110eda02c7fb42ee5e59bd097039b93fdd142bc1ba8630836b84c44bfbae7e2b944f34"], 0x1, 0x625a, &(0x7f0000007f00)="$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")
unlink(&(0x7f0000000100)='./file1\x00')
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
r1 = creat(&(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
stat(&(0x7f0000000500)='./file1\x00', &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, <r2=>0x0})
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000240)={0x0, <r4=>0x0}, &(0x7f0000000280)=0x5)
getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f0000000a80)={{{@in=@multicast2, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0}}, {{@in=@remote}, 0x0, @in6=@local}}, &(0x7f0000002f40)=0xffffffffffffff84)
lstat(&(0x7f0000000b80)='./file0\x00', &(0x7f0000000bc0)={0x0, 0x0, 0x0, 0x0, <r6=>0x0})
read$FUSE(r0, &(0x7f0000000f00)={0x2020, 0x0, 0x0, <r7=>0x0}, 0x2020)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000c40)={{0x1, 0x1, 0x18, r1, {<r8=>0xee01, 0xffffffffffffffff}}, '\x00'})
mount$9p_unix(&(0x7f0000000200)='./file1\x00', &(0x7f0000000280)='./bus\x00', &(0x7f00000002c0), 0x200000, &(0x7f0000000c80)={'trans=unix,', {[{@dfltuid={'dfltuid', 0x3d, r2}}, {@mmap}, {@nodevmap}, {@nodevmap}, {@fscache}, {@version_L}, {@privport}, {@version_u}, {@debug={'debug', 0x3d, 0x8}}], [{@euid_lt={'euid<', r4}}, {@uid_eq={'uid', 0x3d, r5}}, {@obj_user={'obj_user', 0x3d, '-+}+}('}}, {@fowner_eq={'fowner', 0x3d, r6}}, {@smackfsroot={'smackfsroot', 0x3d, 'memory.events\x00'}}, {@euid_gt={'euid>', r7}}, {@hash}, {@smackfshat={'smackfshat', 0x3d, '].'}}, {@subj_user={'subj_user', 0x3d, 'N'}}, {@euid_gt={'euid>', r8}}]}})
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1)
mkdirat(0xffffffffffffff9c, &(0x7f00000005c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
creat(&(0x7f0000000300)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
lsetxattr$security_evm(&(0x7f0000000180)='./file2\x00', &(0x7f0000000240), &(0x7f0000000940)=@v2={0x3, 0x3, 0x13, 0x7, 0xfd, "f3fda2a707a822b209c790bb626039b933f46bffd42af618d8e64e1ea93acd040c62766ccb021275c99b0babbe96f96edf944aa4fbcbf49a20cc2e550a2981846c4ee33a24f8d235de2a95b43ba4aba1663ee6d5d4f3530351023c23ce62e307d144d02facf04119a25f7c0a6bc83a59858c22332efc89528d80e876196b85f7b063a20925af92a0c21c8fd1a94fd7ea568fabba7db3b0d7a7441aeeda4a4bac491345b468b867f7e31e541e1949d75a4f3d3d1c899ab53cfcdc95ead3ed2111bbf4dcf6babedf7b6be96ece24533872933c1c8efb9114b3fbef991b95b1df5eefaa5b8e04e3309072d95b663c3b9ca7f535542584017b66b536c8ad53"}, 0x106, 0x0)
mkdir(&(0x7f0000000480)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x21)
write$binfmt_script(r0, &(0x7f0000009c80)={'#! ', '', [{0x20, '/dev/btrfs-control\x00'}], 0xa, "d61569654fffa43432a56b0aa9279d01f623bd2eaae38ea889153a245ddbee8b76a66932876571e0fb243ff3efe06197a7c88328b406e41bbd71dba3a9c1519ce90a2fa2b7802433bccd161d4948000000000000000000000000288e83e1769fd08e5aea464232e600f1edc8861ba59318f4fa6caebe489b61b7843b88c9cbc7443223a8e4650e9ab14f7a0dd7c339fa87518586cb0c1e49714301690d19d598f544f68e76d1f206b2"}, 0xc1)
creat(&(0x7f00000000c0)='./file0\x00', 0x0)

3m12.964260513s ago: executing program 4:
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
mprotect(&(0x7f00004a4000/0x800000)=nil, 0x800000, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x7)
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
r1 = eventfd(0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000100)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x1, 0x4}]})
syz_mount_image$minix(&(0x7f0000000180), &(0x7f00000001c0)='./file0\x00', 0x0, &(0x7f00000003c0)=ANY=[@ANYRES8=r1], 0x1, 0x150, &(0x7f0000000240)="$eJzs281KOlEYx/Hf+P7334tlbaKF0KI2Oan04q4uRXQSaSzJNkoQXUr3V1A3kOGgJxyFwNBDzvezen4+HHxmcfTZjABEVkEFOXKUHIb9TO4p79geCcCSDCR9DgBEU/zd9gQA7Hi7kjqSXj8e64onp/aDYf9y3I+lpvvP0l5i1HfSyoT3ixfpcHze+TfzfNb0szP7Rwfj7/+vNa1rQ5vKaUvbo37DnN/95TYERIujYjhPfBDTdcv3TkxOBrlkcirI5VCumJwOcrF+5zcW9QgA5hT74f7HQ/c/Ebr/AP6ubq9/U/N9756CgoLCFLZ/mQAsmvvQ7rjdXv+41a41vaZ3W74oV88qp6Xzqhts/u7k/g9gdXz/6dueBAAAAAAAAAAAAAAAzCuvHdsjAAAAAFiSZbxOZPsZAQAAAAAAAAAAAAAAAAAAgFXxFQAA//+KWyUw")
openat(0xffffffffffffff9c, 0x0, 0x42, 0x0)
ioctl$VHOST_SET_VRING_ADDR(0xffffffffffffffff, 0x4028af11, 0x0)
r2 = socket$l2tp(0x2, 0x2, 0x73)
setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000240)='wlan0\x00', 0x10)
bind$inet(r2, &(0x7f0000000080)={0x2, 0x0, @remote}, 0x10)
connect$inet(r2, &(0x7f0000000200)={0x2, 0x0, @local}, 0x10)
sendmmsg$inet(r2, &(0x7f0000000900)=[{{0x0, 0x0, 0x0}}], 0x40000cf, 0x0)
syz_usb_connect(0x0, 0x24, &(0x7f0000000040)=ANY=[@ANYBLOB="1201000003005740ed0b0011c3ec000000010902"], 0x0)
syz_open_dev$dri(0x0, 0x1, 0x0)
ioctl$DRM_IOCTL_AGP_UNBIND(r0, 0x40106437, &(0x7f0000000140)={0x0, 0x8})
syz_open_dev$sndctrl(&(0x7f0000001440), 0x0, 0x0)

3m10.120435738s ago: executing program 2:
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x0, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6)
getpid()
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
setrlimit(0x0, &(0x7f00000001c0)={0x7ff})
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'geneve0\x00'})
socket$inet6_dccp(0xa, 0x6, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000009c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000002c0)=@newtaction={0x18, 0x1e, 0x109, 0x0, 0x0, {}, [{0x4}]}, 0x18}, 0x1, 0x2b1e}, 0x0)

3m9.868510081s ago: executing program 1:
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = syz_open_dev$sg(&(0x7f00000003c0), 0x0, 0x802)
ioctl$SG_SET_RESERVED_SIZE(r0, 0x2275, &(0x7f0000000080)=0x2e9aa845)
writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000040)="aefdda9d240303005a90f57f07703aeff0f64eb9ee07962c220a2e11b44e65d76641cb010852f426072a", 0x2a}], 0x1)
ioctl$SG_SET_RESERVED_SIZE(r0, 0x2275, &(0x7f0000000000))

3m8.913557837s ago: executing program 1:
r0 = socket$l2tp(0x2, 0x2, 0x73)
bind$l2tp(r0, &(0x7f00000000c0), 0x10)
sendto$l2tp(r0, &(0x7f0000000040)="e5786a0d000000000000c83b", 0xc, 0x0, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000140)=0x1dc, 0x4)
recvfrom$l2tp(r0, 0x0, 0x400000000000000, 0x0, 0x0, 0x0)

3m8.169564244s ago: executing program 1:
syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x200002, &(0x7f0000000180)={[{@noblock_validity}, {@dioread_nolock}, {@noinit_itable}, {@test_dummy_encryption}, {@jqfmt_vfsv0}, {@usrjquota, 0x2e}], [], 0x2c}, 0x84, 0x452, &(0x7f0000000480)="$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")
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={0x0}, 0x10)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount(0x0, &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x24, &(0x7f0000000140)='usrjquota=')

3m7.175608419s ago: executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000001620000095"], &(0x7f0000000000)='syzkaller\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r1}, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x14, 0x24, 0x301, 0x0, 0x0, {0x1}}, 0x14}}, 0x0)
r2 = syz_open_dev$midi(&(0x7f0000000000), 0x1e5c, 0x202)
writev(r2, &(0x7f000000abc0)=[{&(0x7f0000009b40)="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", 0x1000}, {&(0x7f000000ab40)="9f", 0x1}], 0x2)
r3 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000090024206d041cc340000000000109022400010000a00009040000010301010009210008000122010009058103"], 0x0)
syz_usb_control_io$hid(r3, &(0x7f0000000180)={0x24, &(0x7f00000000c0)={0x0, 0x0, 0xe, {0xe, 0x0, "30977bac77ceb6cd23d1030d"}}, 0x0, 0x0, 0x0}, 0x0)
syz_usb_connect$cdc_ncm(0x2, 0x8e, &(0x7f00000001c0)={{0x12, 0x1, 0x201, 0x2, 0x0, 0x0, 0x8, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x7c, 0x2, 0x1, 0x9, 0x0, 0x5, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0xb, 0x24, 0x6, 0x0, 0x1, "5d39869fc593"}, {0x5, 0x24, 0x0, 0x9}, {0xd, 0x24, 0xf, 0x1, 0x3, 0x9, 0x0, 0x1f}, {0x6, 0x24, 0x1a, 0x2, 0x2}, [@obex={0x5, 0x24, 0x15, 0x101}, @call_mgmt={0x5, 0x24, 0x1, 0x2, 0x88}, @mbim={0xc, 0x24, 0x1b, 0x101, 0x7, 0x9, 0x7, 0x1, 0x20}, @acm={0x4, 0x24, 0x2, 0x4}]}, {{0x9, 0x5, 0x81, 0x3, 0x8, 0xff}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x7ff, 0x8, 0x7, 0x81}}, {{0x9, 0x5, 0x3, 0x2, 0x40, 0x38, 0x40, 0xe0}}}}}}}]}}, &(0x7f0000000400)={0xa, &(0x7f0000000000)={0xa, 0x6, 0x201, 0xc0, 0x7, 0x4, 0x8, 0xe4}, 0x55, &(0x7f0000000100)={0x5, 0xf, 0x55, 0x5, [@wireless={0xb, 0x10, 0x1, 0xc, 0x81, 0x8, 0xbe, 0x200, 0x1f}, @wireless={0xb, 0x10, 0x1, 0xc, 0x8, 0x3, 0x6, 0xfff, 0x80}, @ssp_cap={0x1c, 0x10, 0xa, 0xe1, 0x4, 0x1, 0xf00, 0x9, [0xc0, 0x0, 0xc0, 0xc0]}, @ss_container_id={0x14, 0x10, 0x4, 0xff, "731158f0c35dc8a4b81058023b5f40dc"}, @ss_cap={0xa, 0x10, 0x3, 0x2, 0x1, 0x6, 0x1f, 0x23b}]}, 0x5, [{0x4, &(0x7f0000000040)=@lang_id={0x4, 0x3, 0x3801}}, {0x4, &(0x7f0000000280)=@lang_id={0x4, 0x3, 0x3009}}, {0x12, &(0x7f00000002c0)=@string={0x12, 0x3, "2ac5115745e1ce0693094a7f56946244"}}, {0x4, &(0x7f0000000300)=@lang_id={0x4, 0x3, 0x140c}}, {0xc0, &(0x7f0000000340)=@string={0xc0, 0x3, "64d25a808e963d50422858d68638373f08566d45e00158809d8d96a567accf7dd90f73c2bccac0aa7dca5d599ac4964fd39d3d329d8136401a8c166006f1399d670248519e64239319687134fe10a5d5b14ac435271b5c01444ca38de3ef646ca4d6808a8b9f3c54b5d6835b77c040b69e9889a26b9a661126a257233d6e557b22a3cbb5fb1dd81642c2ddd6be2900a1312d82d052e2f05c2fbd9404e239725d766d1ae2127e78d36e9e11dcab3cc0ff6db67c8bec03291f0f6ce372949d"}}]})

3m6.782731927s ago: executing program 1:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
r1 = syz_io_uring_setup(0x110, &(0x7f0000000140), &(0x7f0000000240)=<r2=>0x0, &(0x7f0000000040)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_STATX={0x15, 0x6, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x100})
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000740)=@framed, &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000200)='sched_switch\x00', r4}, 0x10)
socket$inet6_udplite(0xa, 0x2, 0x88)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000800)=ANY=[@ANYBLOB="1800000000000000000000000000000085d2a5000000000018010020646c6c25000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70100f200000000850000007500000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x90)
prctl$PR_SET_NO_NEW_PRIVS(0x1d, 0x1)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000040)={0x1}, 0x4)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000300)={0xffffffffffffffff, 0x20, &(0x7f00000002c0)={&(0x7f0000000940)=""/4096, 0x1000, 0x0, &(0x7f0000000280)=""/63, 0x3f}}, 0x10)
r6 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_MFC_PROXY(r6, 0x0, 0xd2, &(0x7f0000000040)={@remote, @empty, 0x1, "4ef7289910e0843a8f13f2fe244b73fb24e0fe49951c925bca907f6a609d8f49"}, 0x3c)
ioctl$FS_IOC_GETFSLABEL(r5, 0x81009431, &(0x7f0000000700))
setsockopt$MRT_INIT(r6, 0x0, 0xc8, &(0x7f00000002c0), 0x4)
setsockopt$MRT_ADD_MFC_PROXY(r6, 0x0, 0xd2, &(0x7f0000000200)={@remote, @empty, 0x0, "e798888beab3af341dbec4427a73b0fbda814c5f5cd6f92215f46e0b091038f9"}, 0x3c)
setsockopt$MRT_FLUSH(r6, 0x0, 0xd4, &(0x7f0000000080)=0x9, 0x4)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={0xffffffffffffffff, 0x1800000000000060, 0xe40, 0x0, &(0x7f0000000040)="00be99618947593b2e8cfc0b088d", 0x0, 0xf000, 0xf2ffffff, 0x0, 0x0, 0x0, 0x0}, 0x48)
io_uring_enter(r1, 0x47f6, 0x3, 0x0, 0x0, 0x0)

3m6.771670445s ago: executing program 4:
syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x200002, &(0x7f0000000300)={[{@noblock_validity}, {@dioread_nolock}, {@noinit_itable}, {@test_dummy_encryption}, {@jqfmt_vfsv0}, {@usrjquota, 0x2e}], [{@obj_role={'obj_role', 0x3d, '{-$)%{'}}, {@fsname={'fsname', 0x3d, 'jqfmt=vfsv0'}}, {@fscontext={'fscontext', 0x3d, 'staff_u'}}], 0x2c}, 0x84, 0x452, &(0x7f0000000480)="$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")
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={0x0}, 0x10)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount(0x0, &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x20, &(0x7f0000000140)='usrjquota=')

3m5.580870048s ago: executing program 4:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000000c0)=0x400000bce)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
setsockopt$SO_TIMESTAMP(0xffffffffffffffff, 0x1, 0x23, &(0x7f0000000080), 0x4)
sched_setscheduler(0x0, 0x0, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r1, &(0x7f0000f5dfe4)={0xa, 0x4e20}, 0x1c)
sendto$inet6(r1, 0x0, 0x0, 0x4098884, &(0x7f0000000240)={0xa, 0x4e20, 0x0, @mcast2}, 0x1c)
setsockopt$sock_int(r1, 0x1, 0x2a, &(0x7f0000000000), 0x4)
openat$binderfs(0xffffffffffffff9c, &(0x7f00000004c0)='./binderfs/binder0\x00', 0x0, 0x0)
open$dir(&(0x7f0000000140)='./file0\x00', 0x80, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000600)='cpuacct.usage_percpu_sys\x00', 0x275a, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
preadv(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.numa_stat\x00', 0x275a, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000140)={0x20, 0x0, 0x0, 0x8000})
write$cgroup_int(r2, &(0x7f0000000040), 0xfea0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cpuset.effective_cpus\x00', 0x275a, 0x0)
write$cgroup_int(r3, &(0x7f0000000380), 0x101bf)
ioctl$EXT4_IOC_ALLOC_DA_BLKS(r3, 0x660c)
ioctl$EXT4_IOC_MOVE_EXT(r2, 0xc028660f, &(0x7f0000000300)={0x0, r3})
ioctl$FS_IOC_RESVSP(r3, 0x40305828, &(0x7f0000000540)={0x0, 0x0, 0x7, 0xffffffff})
ioctl$EXT4_IOC_MOVE_EXT(r3, 0xc028660f, &(0x7f0000000080)={0x0, r2})
recvmmsg(r1, 0x0, 0x0, 0x44000102, 0x0)

3m1.35581183s ago: executing program 2:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
r1 = fsopen(&(0x7f0000000080)='tmpfs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r1, 0x1, &(0x7f0000000000)='context', &(0x7f0000000100)='\xaf/\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r1, 0x1, 0x0, &(0x7f00000000c0)='ramfs\x00', 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe2, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000200)='ext4_sync_file_enter\x00', r3}, 0x10)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000820000009500000000000000de647a8d4a5fd63669e1b2befc4732a9cbefd0bc8b79bd0361c24de96ecb87413e666116ea329a50066839540a8edd5bc769dd2d93b5ef2350af91eaa50d2a0a650da2f14426012eeee0be79276f6ba906d27dc6634c71fce6223525"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r5}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='ext4_sync_file_enter\x00', r5}, 0x10)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.events\x00', 0x100002, 0x0)
write$cgroup_int(r6, &(0x7f0000000200), 0x43451)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xe, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000001c0)='sched_switch\x00', r7}, 0x10)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0xf)
socket$can_raw(0x1d, 0x3, 0x1)
socket$inet_tcp(0x2, 0x1, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='pids.current\x00', 0x275a, 0x0)
socket(0x840000000002, 0x3, 0xfa)
r8 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0)
ioctl$SNDCTL_SEQ_RESET(r8, 0x5100)
syz_usbip_server_init(0x5)

2m44.562397852s ago: executing program 2:
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000000)={'sit0\x00', &(0x7f00000002c0)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x34, 0x4, 0x0, 0x0, 0xd0, 0x0, 0x0, 0x0, 0x29, 0x0, @broadcast, @remote, {[@timestamp={0x44, 0x14, 0x0, 0x0, 0x9, [0x401, 0x4, 0x0, 0x4]}, @timestamp_prespec={0x44, 0x44, 0xc0, 0x3, 0x0, [{@private=0xa010100}, {@multicast1}, {@remote}, {@dev={0xac, 0x14, 0x14, 0x32}, 0x659}, {@broadcast}, {@empty}, {@multicast1, 0xffd200}, {@private=0xa010100}]}, @timestamp_prespec={0x44, 0x3c, 0x0, 0x3, 0x8, [{@dev}, {@remote}, {@multicast2}, {@private=0xa010101}, {@rand_addr=0x64010101}, {@broadcast}, {@multicast2}]}, @noop, @noop, @noop, @lsrr={0x83, 0xf, 0xde, [@private=0xa010102, @rand_addr=0x64010102, @multicast1]}, @rr={0x7, 0x13, 0x0, [@dev, @remote, @multicast1, @private=0xa010102]}]}}}}})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000240), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0xd000})
ioctl$KVM_NMI(r4, 0xae9a)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000000c0), 0x10)

2m44.561575353s ago: executing program 0:
r0 = syz_open_dev$sg(&(0x7f0000000440), 0x0, 0x8000)
r1 = accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0x0, @fixed}, &(0x7f00000000c0)=0xe, 0x80000)
setsockopt$bt_l2cap_L2CAP_OPTIONS(r1, 0x6, 0x1, &(0x7f0000000140)={0xdab, 0x5, 0x0, 0x0, 0x0, 0x20, 0xad}, 0xc)
writev(0xffffffffffffffff, &(0x7f0000000040)=[{&(0x7f0000000240)="58000000140091d427323b4725458db4560200000000ff81000e224e227f0000017b00092b1e58e6000001e809000000fff7ffef3ac7100003ffffffffffff00000000000003000000deff00000002000000", 0x52}], 0x1)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000100))
ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000040)=ANY=[@ANYRES64=r0])

2m37.862558145s ago: executing program 1:
r0 = syz_mount_image$hfsplus(&(0x7f0000000600), &(0x7f0000000280)='./file1\x00', 0x50, &(0x7f0000000d40)=ANY=[], 0x2, 0x639, &(0x7f0000000640)="$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")
setxattr$trusted_overlay_upper(&(0x7f0000000380)='./file1\x00', &(0x7f00000001c0), &(0x7f0000001280)=ANY=[], 0x835, 0x0)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_int(r1, 0x29, 0x3a, 0x0, 0x0)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000003c0)={0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, &(0x7f0000000340)=[{}, {}, {}, {}, {0x1}]}, 0x90)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
write$cgroup_int(r3, &(0x7f0000000200), 0xf000)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r2, 0x0)
fstat(r0, &(0x7f0000000540))
r4 = socket(0x22, 0x2, 0x2)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x0)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r4, 0x84, 0x2, 0x0, &(0x7f0000000180))
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000000)={{0x1, 0x1, 0x18}, './file0\x00'})
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
getpgid(0xffffffffffffffff)
sched_setaffinity(0x0, 0x0, 0x0)
openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0xfff, 0x7}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0xa, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r6, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r7 = socket$inet_udp(0x2, 0x2, 0x0)
r8 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000500)={'ipvlan1\x00', <r9=>0x0})
sendmsg$nl_route_sched(r8, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000004640)={&(0x7f0000000000)=@newqdisc={0x68, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r9, {}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x38, 0x2, {{0x0, 0x0, 0x0, 0x0, 0x4000000}, [@TCA_NETEM_LOSS={0x1c, 0x5, 0x0, 0x1, [@NETEM_LOSS_GI={0x18, 0x8, {0x0, 0x0, 0xe649}}]}]}}}]}, 0x68}}, 0x0)

2m37.859153952s ago: executing program 0:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
bind$inet6(r0, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
symlink(&(0x7f00000003c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00') (async)
readlinkat(0xffffffffffffff9c, &(0x7f0000000100)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xffffffffffffffff, 0xb4) (async)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000000)={0x0, 0x2}, 0x8) (async)
setsockopt$inet_sctp6_SCTP_MAX_BURST(r0, 0x84, 0x14, &(0x7f00000017c0), 0x4) (async)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) (async)
getresuid(&(0x7f00000000c0), 0x0, &(0x7f0000000140)) (async)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0105872, &(0x7f00000002c0)=ANY=[@ANYBLOB="0000002db21050919f29df3a77004c90020e0000000003000100000000000000000000000000000000000000000000000023e11a8b44f849147fde2467d73df50000000000000000000000000000000006000000000000000000000000000000000000000000000000000000000000000000e8ffffdf0000000000000000000000000000000000000000000000000000000000280000000000000000000000000000ebffff000000000000000000000000feff00"/192]) (async)
ioctl$PPPIOCSFLAGS(r1, 0x40047459, &(0x7f0000000080)=0x9000417) (async)
syz_mount_image$btrfs(&(0x7f00000051c0), &(0x7f0000005200)='./bus\x00', 0x1000008, &(0x7f0000000040), 0xff, 0x51c8, &(0x7f000000a400)="$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") (async)
r2 = epoll_create1(0x0)
r3 = openat$vcs(0xffffffffffffff9c, &(0x7f00000020c0), 0x0, 0x0)
inotify_add_watch(r3, &(0x7f00000001c0)='./file0\x00', 0x40000002) (async)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r3, &(0x7f0000002100)) (async)
sendmsg$NL802154_CMD_NEW_SEC_LEVEL(0xffffffffffffffff, &(0x7f0000000ec0)={0x0, 0x0, &(0x7f0000000e80)={&(0x7f0000000000)={0x38, 0x0, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_SEC_LEVEL={0x1c, 0x2d, 0x0, 0x1, [@NL802154_SECLEVEL_ATTR_DEV_OVERRIDE={0x5}, @NL802154_SECLEVEL_ATTR_LEVELS={0x5}, @NL802154_SECLEVEL_ATTR_FRAME={0x8, 0x2, 0x3}]}, @NL802154_ATTR_IFINDEX={0x8}]}, 0x38}}, 0x0) (async)
sendmsg$NL802154_CMD_GET_SEC_DEVKEY(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000004c0)={&(0x7f0000000380)={0x3c, 0x0, 0x800, 0x70bd2b, 0x25dfdbfd, {}, [@NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}, @NL802154_ATTR_IFINDEX={0x8}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4000004}, 0xbf19d950ffbbfa0f)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0) (async)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f0000000100), 0xfecc) (async)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r5, 0x0) (async)
read$FUSE(r3, &(0x7f0000002140)={0x2020}, 0x2020)
r6 = socket(0x2, 0x80805, 0x0) (async)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='io.stat\x00', 0x275a, 0x0) (async)
r7 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r7, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={<r8=>0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_STATUS(r6, 0x84, 0x9, &(0x7f00000003c0)={r8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, @in={{0x2, 0x0, @broadcast}}}}, &(0x7f0000000280)=0xb0) (async)
epoll_ctl$EPOLL_CTL_MOD(r2, 0x3, r3, &(0x7f0000000000))
sendto$inet6(r0, &(0x7f0000000580)="03", 0x1, 0x0, &(0x7f0000000100)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)

2m32.401434423s ago: executing program 0:
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "93a2f5", 0x14, 0x6, 0x0, @local, @local, {[], {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
recvmmsg(r0, &(0x7f0000000080)=[{{0x0, 0x0, 0x0}}], 0x40000000000012d, 0x2, 0x0)
r1 = syz_open_dev$media(&(0x7f0000000300), 0x0, 0x0)
ioctl$MEDIA_IOC_G_TOPOLOGY(r1, 0xc0487c04, &(0x7f0000000580)={0x0, 0x0, 0x0, 0x0, 0x3, 0x0, &(0x7f0000001500)=[{}, {}, {}], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
setsockopt$inet_int(r0, 0x0, 0x6, &(0x7f0000000180)=0x20000a, 0x4)
eventfd(0x1)
setsockopt$inet_int(r0, 0x0, 0x7, &(0x7f0000000140)=0x6, 0x4)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
syz_emit_ethernet(0x36, &(0x7f00000002c0)={@broadcast, @link_local, @void, {@ipv4={0x800, @udp={{0x6, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty, {[@timestamp={0x44, 0x4, 0xc6}]}}, {0x0, 0x4e20, 0x10, 0x0, @gue={{0x2}}}}}}}, 0x0)

2m28.452638883s ago: executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, 0x0, 0x0)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x1e, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000070018110000", @ANYRES32=r2], 0x0}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000000)='ext4_mballoc_alloc\x00', r3}, 0x10)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='ext4_mballoc_alloc\x00', r4}, 0x10)
mkdir(&(0x7f0000000080)='./file0\x00', 0x7)

2m24.407654307s ago: executing program 0:
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
mprotect(&(0x7f00004a4000/0x800000)=nil, 0x800000, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x7)
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
r1 = eventfd(0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000100)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x1, 0x4}]})
syz_mount_image$minix(&(0x7f0000000180), &(0x7f00000001c0)='./file0\x00', 0x0, &(0x7f00000003c0)=ANY=[@ANYRES8=r1], 0x1, 0x150, &(0x7f0000000240)="$eJzs281KOlEYx/Hf+P7334tlbaKF0KI2Oan04q4uRXQSaSzJNkoQXUr3V1A3kOGgJxyFwNBDzvezen4+HHxmcfTZjABEVkEFOXKUHIb9TO4p79geCcCSDCR9DgBEU/zd9gQA7Hi7kjqSXj8e64onp/aDYf9y3I+lpvvP0l5i1HfSyoT3ixfpcHze+TfzfNb0szP7Rwfj7/+vNa1rQ5vKaUvbo37DnN/95TYERIujYjhPfBDTdcv3TkxOBrlkcirI5VCumJwOcrF+5zcW9QgA5hT74f7HQ/c/Ebr/AP6ubq9/U/N9756CgoLCFLZ/mQAsmvvQ7rjdXv+41a41vaZ3W74oV88qp6Xzqhts/u7k/g9gdXz/6dueBAAAAAAAAAAAAAAAzCuvHdsjAAAAAFiSZbxOZPsZAQAAAAAAAAAAAAAAAAAAgFXxFQAA//+KWyUw")
openat(0xffffffffffffff9c, 0x0, 0x42, 0x0)
ioctl$VHOST_SET_VRING_ADDR(0xffffffffffffffff, 0x4028af11, 0x0)
r2 = socket$l2tp(0x2, 0x2, 0x73)
setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000240)='wlan0\x00', 0x10)
bind$inet(r2, &(0x7f0000000080)={0x2, 0x0, @remote}, 0x10)
connect$inet(r2, &(0x7f0000000200)={0x2, 0x0, @local}, 0x10)
sendmmsg$inet(r2, &(0x7f0000000900)=[{{0x0, 0x0, 0x0}}], 0x40000cf, 0x0)
syz_usb_connect(0x0, 0x24, &(0x7f0000000040)=ANY=[@ANYBLOB="1201000003005740ed0b0011c3ec000000010902"], 0x0)
syz_open_dev$dri(0x0, 0x1, 0x0)
ioctl$DRM_IOCTL_AGP_UNBIND(r0, 0x40106437, &(0x7f0000000140)={0x0, 0x8})
syz_open_dev$sndctrl(&(0x7f0000001440), 0x0, 0x0)

2m15.896622761s ago: executing program 1:
r0 = syz_mount_image$hfsplus(&(0x7f0000000600), &(0x7f0000000280)='./file1\x00', 0x50, &(0x7f0000000d40)=ANY=[], 0x2, 0x639, &(0x7f0000000640)="$eJzs3c9rHOf9B/D3rGRZ64CjfGM7/pZARAxpqaitHyiteqlbSlEhlJAeeha2jIXXTiopRQmlUX/Raw/5A9KDbj0VeikUDOm5veWqY6DQS07qacvMzq5Wtrxd2ZJWTl8vMzvPs8/MM5/nM8/s7K4RG+B/1vJMxh+myPLMW1tlfXdnobW7s3C/W05yPkkjGe+sUjxIik+Tm+ks+f/yybq74knH+Xht6Z3Pvtj9vFMbr5dq+8ag/YazXS+ZTjJWr4+rv1vd/s49bXdFb4Rlwq51EwejVs7p9gE/vbLfMtiFZ75ugbOg6Nw3e9r1lT1VXeaZrN8HdO6KnXv2c2171AEAAADAKXhxL3vZysVRxwEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADPk/r3/6tf/Z/sPZViOkX39/8nuu11+WwaMrKHjZMOBAAAAAAAAABO3mt72ctWLnbr7SKNJK9XlUvV4wt5PxtZzXquZysr2cxm1jOXZKqvo4mtlc3N9bkh9pw/dM/5IQNuPvuYAQAAAAAAAOBL6FdZ3v//fwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOAuKZKyzqpZL3fJUGuNJJpNMlNttJ//olp9nD0cdAAAAAJyCF/eyl61c7NbbRfWZ/0r1uX8y7+dBNrOWzbSymtvVdwGdT/2N3Z2F1u7Owv1yebzf7/7rSGFUPabz3cPhR75abdHMnaxVz1zPrbybVm6nUe1ZutqN5/C4flnGVHynNmRkt+t1OfLf1+uTNzbENlNVRs71MjJbx1Zm46XBmTh4draPeqS5NHrf/Fw6gZxfqNdF8sIPTy3nh2g/eh7qTLyWOhPzfbPvyuBMJF/98x9/crf14N7dOxszIxvSszjfbre75UfnxEJfJl750mei32yVicu9+nJ+kB9nJtN5O+tZy8+yks2sZjrfr0or9XwuH6cGZ+rmgdrb1WPzyZFM1OelM2uPFtPr1b4Xs5Yf5d3czmrerP7NZy7fzGIWs9R3hi8PcdU3jnbVX/taXSgH+LvBAz1lZV5fqvP6UXLgNXeqaut/Zj9LKXLcr43jX6kL5TF+Xa/PhkczMdeXiZcHz5c/VC8rG60H99bvrrw35PHeqNfldfTbUd4lHlPOl/8rT1ZVOzg7yraXD22bq9ou9doaj7Vd7rX9tyt1on4P93hP81XbK4e2LVRtV/vaDnu/BcCZd+HrFyaa/2z+vflJ8zfNu823Jr93/lvnX53Iub+d+/b47NgbjVeLP+WT/GL/8z8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPD0Nj748N5Kq7W6/kih3W5/9ISmpy2M5Sh7/fUvx3n07u8RHeNwjrcweZSN22cj5qMU/t1ut4+lw+0Bk/bYCu3amUjdiAojfmECTtyNzfvv3dj44MNvrHVvkYuLS7NLi28u3Liz1lqd7TyOOEjgROzf9EcdCQAAAAAAAAAAADCs0/hzglGPEQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHi+Lc9k/GGKzM1eny3ruzsLrXLplve3HE/SSFL8PCk+TW6ms2Sqr7viScf5eG3pnc++2P18v6/x7vaNQfsNZ7teMp1krF4fV3+3nrm/ojfCMmHXuomDUftPAAAA//8AixCz")
setxattr$trusted_overlay_upper(&(0x7f0000000380)='./file1\x00', &(0x7f00000001c0), &(0x7f0000001280)=ANY=[], 0x835, 0x0)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_int(r1, 0x29, 0x3a, 0x0, 0x0)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000003c0)={0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, &(0x7f0000000340)=[{}, {}, {}, {}, {0x1}]}, 0x90)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
write$cgroup_int(r3, &(0x7f0000000200), 0xf000)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r2, 0x0)
fstat(r0, &(0x7f0000000540))
r4 = socket(0x22, 0x2, 0x2)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x0)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r4, 0x84, 0x2, 0x0, &(0x7f0000000180))
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000000)={{0x1, 0x1, 0x18}, './file0\x00'})
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
getpgid(0xffffffffffffffff)
sched_setaffinity(0x0, 0x0, 0x0)
openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0xfff, 0x7}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0xa, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r6, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r7 = socket$inet_udp(0x2, 0x2, 0x0)
r8 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000500)={'ipvlan1\x00', <r9=>0x0})
sendmsg$nl_route_sched(r8, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000004640)={&(0x7f0000000000)=@newqdisc={0x68, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r9, {}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x38, 0x2, {{0x0, 0x0, 0x0, 0x0, 0x4000000}, [@TCA_NETEM_LOSS={0x1c, 0x5, 0x0, 0x1, [@NETEM_LOSS_GI={0x18, 0x8, {0x0, 0x0, 0xe649}}]}]}}}]}, 0x68}}, 0x0)

2m12.866216218s ago: executing program 0:
r0 = openat$rdma_cm(0xffffff9c, &(0x7f0000000080), 0x2, 0x0)
write$RDMA_USER_CM_CMD_GET_EVENT(r0, 0x0, 0x53)
r1 = socket(0x1d, 0x3, 0x1)
sendmsg$MPTCP_PM_CMD_SET_LIMITS(r1, &(0x7f00000002c0)={&(0x7f0000000080)={0x1d, 0x0, 0x2}, 0xc, &(0x7f0000000280)={0x0, 0x10}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES16=r1], 0x0, 0x2998}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f00000001c0)=ANY=[@ANYRES16=r3, @ANYRESDEC=r2], &(0x7f0000000240)='GPL\x00', 0x0, 0x8, 0x0, 0x0, 0x0, '\x00', 0x0, 0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_SCAN(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="cff9ff00", @ANYRES16=r6, @ANYBLOB="0107000000000000000020000000"], 0x14}}, 0x80)
r7 = getpid()
r8 = syz_pidfd_open(r7, 0x0)
r9 = socket$nl_audit(0x10, 0x3, 0x9)
r10 = pidfd_getfd(r8, r9, 0x0)
sendmsg$AUDIT_SET_FEATURE(r10, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x20, 0x3eb}, 0x20}}, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r11=>r3, {0x1}}, './file0\x00'})
write$P9_RWSTAT(r11, &(0x7f0000000180)={0x7, 0x7f, 0x2}, 0x7)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r4, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

2m2.467994771s ago: executing program 2:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000000c0)=0x400000bce)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
setsockopt$SO_TIMESTAMP(0xffffffffffffffff, 0x1, 0x23, 0x0, 0x0)
sched_setscheduler(0x0, 0x0, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r1, &(0x7f0000f5dfe4)={0xa, 0x4e20}, 0x1c)
sendto$inet6(r1, 0x0, 0x0, 0x4098884, &(0x7f0000000240)={0xa, 0x4e20, 0x0, @mcast2}, 0x1c)
setsockopt$sock_int(r1, 0x1, 0x2a, &(0x7f0000000000), 0x4)
openat$binderfs(0xffffffffffffff9c, &(0x7f00000004c0)='./binderfs/binder0\x00', 0x0, 0x0)
open$dir(&(0x7f0000000140)='./file0\x00', 0x80, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000600)='cpuacct.usage_percpu_sys\x00', 0x275a, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
preadv(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.numa_stat\x00', 0x275a, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000140)={0x20, 0x0, 0x0, 0x8000})
write$cgroup_int(r2, &(0x7f0000000040), 0xfea0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cpuset.effective_cpus\x00', 0x275a, 0x0)
write$cgroup_int(r3, &(0x7f0000000380), 0x101bf)
ioctl$EXT4_IOC_ALLOC_DA_BLKS(0xffffffffffffffff, 0x660c)
ioctl$EXT4_IOC_MOVE_EXT(r2, 0xc028660f, &(0x7f0000000300)={0x0, r3})
ioctl$FS_IOC_RESVSP(r3, 0x40305828, &(0x7f0000000540)={0x0, 0x0, 0x7, 0xffffffff})
ioctl$EXT4_IOC_MOVE_EXT(r3, 0xc028660f, &(0x7f0000000080)={0x0, r2})
recvmmsg(r1, &(0x7f0000008880), 0x45b, 0x44000102, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)

1m37.915492944s ago: executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0) (async)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'veth1_to_bridge\x00', <r2=>0x0})
ioctl$sock_inet6_SIOCADDRT(r1, 0x890b, &(0x7f0000000540)={@rand_addr=' \x01\x00', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @private1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4400046, r2})
r3 = socket$inet6_mptcp(0xa, 0x1, 0x106)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'veth1_to_bridge\x00', <r4=>0x0}) (async)
r5 = socket$inet6_mptcp(0xa, 0x1, 0x106)
ioctl$sock_inet6_SIOCADDRT(r5, 0x890b, &(0x7f0000000540)={@empty, @rand_addr=' \x01\x00', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, r4}) (async)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r7=>0x0}) (async)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r8, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000003c0)={0x2c, r9, 0x201, 0x0, 0x0, {{}, {@val={0x8, 0x3, r7}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_DURATION={0x8}]}, 0x2c}}, 0x0) (async)
r10 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r10, &(0x7f0000000400)={0x2, 0x4e23, @multicast1}, 0x10)
sendto$inet(r10, 0x0, 0x0, 0x200007fd, &(0x7f0000000000)={0x2, 0x24e23, @loopback}, 0x10) (async)
setsockopt$SO_TIMESTAMPING(r10, 0x1, 0x25, &(0x7f0000000040)=0x1b3a, 0x4) (async)
sendto$inet(r10, &(0x7f0000000080)='m', 0x1, 0x0, 0x0, 0x0) (async)
recvmsg(r10, &(0x7f0000001180)={0x0, 0x0, 0x0}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[@ANYRES8=r1], 0x1c}, 0x1, 0x0, 0x0, 0x20008000}, 0x4081)

1m25.653564192s ago: executing program 2:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000000c0)=0x400000bce)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
setsockopt$SO_TIMESTAMP(0xffffffffffffffff, 0x1, 0x23, 0x0, 0x0)
sched_setscheduler(0x0, 0x0, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r1, &(0x7f0000f5dfe4)={0xa, 0x4e20}, 0x1c)
sendto$inet6(r1, 0x0, 0x0, 0x4098884, &(0x7f0000000240)={0xa, 0x4e20, 0x0, @mcast2}, 0x1c)
setsockopt$sock_int(r1, 0x1, 0x2a, &(0x7f0000000000), 0x4)
openat$binderfs(0xffffffffffffff9c, &(0x7f00000004c0)='./binderfs/binder0\x00', 0x0, 0x0)
open$dir(&(0x7f0000000140)='./file0\x00', 0x80, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000600)='cpuacct.usage_percpu_sys\x00', 0x275a, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
preadv(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.numa_stat\x00', 0x275a, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000140)={0x20, 0x0, 0x0, 0x8000})
write$cgroup_int(r2, &(0x7f0000000040), 0xfea0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cpuset.effective_cpus\x00', 0x275a, 0x0)
write$cgroup_int(r3, &(0x7f0000000380), 0x101bf)
ioctl$EXT4_IOC_ALLOC_DA_BLKS(0xffffffffffffffff, 0x660c)
ioctl$EXT4_IOC_MOVE_EXT(r2, 0xc028660f, &(0x7f0000000300)={0x0, r3})
ioctl$FS_IOC_RESVSP(r3, 0x40305828, &(0x7f0000000540)={0x0, 0x0, 0x7, 0xffffffff})
ioctl$EXT4_IOC_MOVE_EXT(r3, 0xc028660f, &(0x7f0000000080)={0x0, r2})
recvmmsg(r1, &(0x7f0000008880), 0x45b, 0x44000102, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)

0s ago: executing program 3:
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'xfrm0\x00', <r1=>0x0})
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
write$cgroup_int(r3, &(0x7f0000000200), 0xf000)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r2, 0x0)
r4 = socket(0x28, 0x1, 0x0)
getsockopt$nfc_llcp(r4, 0x28, 0x7, 0xfffffffffffffffe, 0x20000002)
r5 = socket$packet(0x11, 0x3, 0x300)
sendto$packet(r5, &(0x7f0000000200)='V', 0x1, 0x24000041, &(0x7f0000000240)={0x6, 0x86dd, r1, 0x1, 0x0, 0x6, @broadcast}, 0x14)

kernel console output (not intermixed with test programs):

assign_work+0x364/0x3d0
[  593.122133][    C0]  worker_thread+0x86d/0xd50
[  593.122175][    C0]  ? __kthread_parkme+0x169/0x1d0
[  593.122207][    C0]  ? __pfx_worker_thread+0x10/0x10
[  593.122233][    C0]  kthread+0x2f0/0x390
[  593.122261][    C0]  ? __pfx_worker_thread+0x10/0x10
[  593.122287][    C0]  ? __pfx_kthread+0x10/0x10
[  593.122316][    C0]  ret_from_fork+0x4b/0x80
[  593.122348][    C0]  ? __pfx_kthread+0x10/0x10
[  593.122377][    C0]  ret_from_fork_asm+0x1a/0x30
[  593.122423][    C0]  </TASK>
[  593.122432][    C0] DEBUG: waiting rtnl_mutex for 13741 jiffies.
[  593.122446][    C0] task:syz-executor.4  state:D stack:24992 pid:7991  tgid:7991  ppid:1      flags:0x00000006
[  593.122484][    C0] Call Trace:
[  593.122493][    C0]  <TASK>
[  593.122508][    C0]  __schedule+0x17e8/0x4a20
[  593.122557][    C0]  ? __pfx___schedule+0x10/0x10
[  593.122587][    C0]  ? __pfx_lock_release+0x10/0x10
[  593.122616][    C0]  ? __mutex_trylock_common+0x92/0x2e0
[  593.122658][    C0]  ? schedule+0x90/0x320
[  593.122683][    C0]  schedule+0x14b/0x320
[  593.122711][    C0]  schedule_preempt_disabled+0x13/0x30
[  593.122736][    C0]  __mutex_lock+0x6a4/0xd70
[  593.122768][    C0]  ? __mutex_lock+0x527/0xd70
[  593.122798][    C0]  ? rtnetlink_rcv_msg+0x839/0x1170
[  593.122825][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  593.122902][    C0]  ? rtnl_lock+0xe7/0x130
[  593.122933][    C0]  rtnetlink_rcv_msg+0x839/0x1170
[  593.122963][    C0]  ? rtnetlink_rcv_msg+0x208/0x1170
[  593.122992][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  593.123016][    C0]  ? is_bpf_text_address+0x285/0x2a0
[  593.123052][    C0]  ? __pfx_validate_chain+0x10/0x10
[  593.123083][    C0]  ? __pfx_validate_chain+0x10/0x10
[  593.123114][    C0]  ? arch_stack_walk+0x16d/0x1b0
[  593.123148][    C0]  ? mark_lock+0x9a/0x360
[  593.123174][    C0]  ? __pfx_validate_chain+0x10/0x10
[  593.123207][    C0]  ? __lock_acquire+0x1359/0x2000
[  593.123251][    C0]  ? mark_lock+0x9a/0x360
[  593.123283][    C0]  ? __lock_acquire+0x1359/0x2000
[  593.123332][    C0]  netlink_rcv_skb+0x1e3/0x430
[  593.123366][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  593.123395][    C0]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  593.123446][    C0]  ? netlink_deliver_tap+0x2e/0x1b0
[  593.123475][    C0]  netlink_unicast+0x7f0/0x990
[  593.123510][    C0]  ? __pfx_netlink_unicast+0x10/0x10
[  593.123532][    C0]  ? __virt_addr_valid+0x183/0x520
[  593.123565][    C0]  ? __check_object_size+0x49c/0x900
[  593.123593][    C0]  ? bpf_lsm_netlink_send+0x9/0x10
[  593.123624][    C0]  netlink_sendmsg+0x8e4/0xcb0
[  593.123665][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  593.123695][    C0]  ? aa_sock_msg_perm+0x91/0x160
[  593.123720][    C0]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  593.123747][    C0]  ? security_socket_sendmsg+0x87/0xb0
[  593.123777][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  593.123802][    C0]  __sock_sendmsg+0x221/0x270
[  593.123832][    C0]  __sys_sendto+0x3a4/0x4f0
[  593.123868][    C0]  ? __pfx___sys_sendto+0x10/0x10
[  593.123925][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  593.123955][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  593.123984][    C0]  ? exc_page_fault+0x590/0x8c0
[  593.124016][    C0]  __x64_sys_sendto+0xde/0x100
[  593.124050][    C0]  do_syscall_64+0xf3/0x230
[  593.124072][    C0]  ? clear_bhb_loop+0x35/0x90
[  593.124099][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  593.124123][    C0] RIP: 0033:0x7f1ba8c7ed9c
[  593.124142][    C0] RSP: 002b:00007ffc19b63030 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  593.124167][    C0] RAX: ffffffffffffffda RBX: 00007f1ba98e4620 RCX: 00007f1ba8c7ed9c
[  593.124185][    C0] RDX: 0000000000000028 RSI: 00007f1ba98e4670 RDI: 0000000000000003
[  593.124200][    C0] RBP: 0000000000000000 R08: 00007ffc19b63084 R09: 000000000000000c
[  593.124216][    C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  593.124232][    C0] R13: 0000000000000000 R14: 00007f1ba98e4670 R15: 0000000000000000
[  593.124265][    C0]  </TASK>
[  593.124275][    C0] DEBUG: waiting rtnl_mutex for 12792 jiffies.
[  593.124288][    C0] task:syz-executor.0  state:D stack:24672 pid:7996  tgid:7996  ppid:5682   flags:0x00000006
[  593.124325][    C0] Call Trace:
[  593.124334][    C0]  <TASK>
[  593.124354][    C0]  __schedule+0x17e8/0x4a20
[  593.124402][    C0]  ? __pfx___schedule+0x10/0x10
[  593.124431][    C0]  ? __pfx_lock_release+0x10/0x10
[  593.124459][    C0]  ? __mutex_trylock_common+0x92/0x2e0
[  593.124501][    C0]  ? schedule+0x90/0x320
[  593.124525][    C0]  schedule+0x14b/0x320
[  593.124553][    C0]  schedule_preempt_disabled+0x13/0x30
[  593.124578][    C0]  __mutex_lock+0x6a4/0xd70
[  593.124611][    C0]  ? __mutex_lock+0x527/0xd70
[  593.124641][    C0]  ? raw_release+0x1b8/0x8a0
[  593.124666][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  593.124702][    C0]  ? do_raw_spin_unlock+0x13c/0x8b0
[  593.124730][    C0]  ? rtnl_lock+0xe7/0x130
[  593.124759][    C0]  raw_release+0x1b8/0x8a0
[  593.124793][    C0]  sock_close+0xbc/0x240
[  593.124816][    C0]  ? __pfx_sock_close+0x10/0x10
[  593.124843][    C0]  __fput+0x24a/0x8a0
[  593.124886][    C0]  task_work_run+0x24f/0x310
[  593.124923][    C0]  ? __pfx_task_work_run+0x10/0x10
[  593.124958][    C0]  ? syscall_exit_to_user_mode+0xa3/0x370
[  593.124993][    C0]  syscall_exit_to_user_mode+0x168/0x370
[  593.125028][    C0]  do_syscall_64+0x100/0x230
[  593.125050][    C0]  ? clear_bhb_loop+0x35/0x90
[  593.125078][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  593.125101][    C0] RIP: 0033:0x7f870b67d0a9
[  593.125119][    C0] RSP: 002b:00007ffec24f1108 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  593.125143][    C0] RAX: 0000000000000000 RBX: 0000000000071917 RCX: 00007f870b67d0a9
[  593.125159][    C0] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[  593.125174][    C0] RBP: ffffffffffffffff R08: 0000000000000001 R09: 0000001400000000
[  593.125191][    C0] R10: 00007f870b600000 R11: 0000000000000246 R12: 00007f870b7b3f80
[  593.125208][    C0] R13: 00007f870b7b3f8c R14: 0000000000000032 R15: 00007f870b7b5980
[  593.125242][    C0]  </TASK>
[  593.125252][    C0] DEBUG: waiting rtnl_mutex for 12027 jiffies.
[  593.125264][    C0] task:syz-executor.1  state:D stack:24992 pid:8000  tgid:8000  ppid:1      flags:0x00000006
[  593.125303][    C0] Call Trace:
[  593.125313][    C0]  <TASK>
[  593.125327][    C0]  __schedule+0x17e8/0x4a20
[  593.125381][    C0]  ? __pfx___schedule+0x10/0x10
[  593.125411][    C0]  ? __pfx_lock_release+0x10/0x10
[  593.125439][    C0]  ? __mutex_trylock_common+0x92/0x2e0
[  593.125482][    C0]  ? schedule+0x90/0x320
[  593.125506][    C0]  schedule+0x14b/0x320
[  593.125534][    C0]  schedule_preempt_disabled+0x13/0x30
[  593.125559][    C0]  __mutex_lock+0x6a4/0xd70
[  593.125591][    C0]  ? __mutex_lock+0x527/0xd70
[  593.125622][    C0]  ? rtnetlink_rcv_msg+0x839/0x1170
[  593.125649][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  593.125690][    C0]  ? rtnl_lock+0xe7/0x130
[  593.125719][    C0]  rtnetlink_rcv_msg+0x839/0x1170
[  593.125749][    C0]  ? rtnetlink_rcv_msg+0x208/0x1170
[  593.125778][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  593.125801][    C0]  ? is_bpf_text_address+0x285/0x2a0
[  593.125838][    C0]  ? __pfx_validate_chain+0x10/0x10
[  593.125869][    C0]  ? __pfx_validate_chain+0x10/0x10
[  593.125901][    C0]  ? arch_stack_walk+0x16d/0x1b0
[  593.125934][    C0]  ? mark_lock+0x9a/0x360
[  593.125961][    C0]  ? __pfx_validate_chain+0x10/0x10
[  593.125994][    C0]  ? __lock_acquire+0x1359/0x2000
[  593.126038][    C0]  ? mark_lock+0x9a/0x360
[  593.126070][    C0]  ? __lock_acquire+0x1359/0x2000
[  593.126118][    C0]  netlink_rcv_skb+0x1e3/0x430
[  593.126146][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  593.126174][    C0]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  593.126226][    C0]  ? netlink_deliver_tap+0x2e/0x1b0
[  593.126255][    C0]  netlink_unicast+0x7f0/0x990
[  593.126289][    C0]  ? __pfx_netlink_unicast+0x10/0x10
[  593.126311][    C0]  ? __virt_addr_valid+0x183/0x520
[  593.126349][    C0]  ? __check_object_size+0x49c/0x900
[  593.126377][    C0]  ? bpf_lsm_netlink_send+0x9/0x10
[  593.126408][    C0]  netlink_sendmsg+0x8e4/0xcb0
[  593.126447][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  593.126478][    C0]  ? aa_sock_msg_perm+0x91/0x160
[  593.126502][    C0]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  593.126529][    C0]  ? security_socket_sendmsg+0x87/0xb0
[  593.126559][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  593.126584][    C0]  __sock_sendmsg+0x221/0x270
[  593.126614][    C0]  __sys_sendto+0x3a4/0x4f0
[  593.126649][    C0]  ? __pfx___sys_sendto+0x10/0x10
[  593.126706][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  593.126737][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  593.126765][    C0]  ? exc_page_fault+0x590/0x8c0
[  593.126798][    C0]  __x64_sys_sendto+0xde/0x100
[  593.126832][    C0]  do_syscall_64+0xf3/0x230
[  593.126854][    C0]  ? clear_bhb_loop+0x35/0x90
[  593.126881][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  593.126905][    C0] RIP: 0033:0x7fb783a7ed9c
[  593.126923][    C0] RSP: 002b:00007ffd29566b80 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  593.126947][    C0] RAX: ffffffffffffffda RBX: 00007fb7846e4620 RCX: 00007fb783a7ed9c
[  593.126965][    C0] RDX: 0000000000000028 RSI: 00007fb7846e4670 RDI: 0000000000000003
[  593.126981][    C0] RBP: 0000000000000000 R08: 00007ffd29566bd4 R09: 000000000000000c
[  593.126996][    C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  593.127011][    C0] R13: 0000000000000000 R14: 00007fb7846e4670 R15: 0000000000000000
[  593.127044][    C0]  </TASK>
[  593.127054][    C0] DEBUG: waiting rtnl_mutex for 12007 jiffies.
[  593.127067][    C0] task:syz-executor.3  state:D stack:24992 pid:8002  tgid:8002  ppid:1      flags:0x00000006
[  593.127103][    C0] Call Trace:
[  593.127113][    C0]  <TASK>
[  593.127127][    C0]  __schedule+0x17e8/0x4a20
[  593.127176][    C0]  ? __pfx___schedule+0x10/0x10
[  593.127206][    C0]  ? __pfx_lock_release+0x10/0x10
[  593.127234][    C0]  ? __mutex_trylock_common+0x92/0x2e0
[  593.127276][    C0]  ? schedule+0x90/0x320
[  593.127301][    C0]  schedule+0x14b/0x320
[  593.127329][    C0]  schedule_preempt_disabled+0x13/0x30
[  593.127359][    C0]  __mutex_lock+0x6a4/0xd70
[  593.127392][    C0]  ? __mutex_lock+0x527/0xd70
[  593.127422][    C0]  ? rtnetlink_rcv_msg+0x839/0x1170
[  593.127449][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  593.127490][    C0]  ? rtnl_lock+0xe7/0x130
[  593.127519][    C0]  rtnetlink_rcv_msg+0x839/0x1170
[  593.127550][    C0]  ? rtnetlink_rcv_msg+0x208/0x1170
[  593.127578][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  593.127602][    C0]  ? is_bpf_text_address+0x285/0x2a0
[  593.127639][    C0]  ? __pfx_validate_chain+0x10/0x10
[  593.127670][    C0]  ? __pfx_validate_chain+0x10/0x10
[  593.127701][    C0]  ? arch_stack_walk+0x16d/0x1b0
[  593.127735][    C0]  ? mark_lock+0x9a/0x360
[  593.127761][    C0]  ? __pfx_validate_chain+0x10/0x10
[  593.127794][    C0]  ? __lock_acquire+0x1359/0x2000
[  593.127838][    C0]  ? mark_lock+0x9a/0x360
[  593.127870][    C0]  ? __lock_acquire+0x1359/0x2000
[  593.127919][    C0]  netlink_rcv_skb+0x1e3/0x430
[  593.127946][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  593.127974][    C0]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  593.128026][    C0]  ? netlink_deliver_tap+0x2e/0x1b0
[  593.128055][    C0]  netlink_unicast+0x7f0/0x990
[  593.128088][    C0]  ? __pfx_netlink_unicast+0x10/0x10
[  593.128110][    C0]  ? __virt_addr_valid+0x183/0x520
[  593.128142][    C0]  ? __check_object_size+0x49c/0x900
[  593.128171][    C0]  ? bpf_lsm_netlink_send+0x9/0x10
[  593.128201][    C0]  netlink_sendmsg+0x8e4/0xcb0
[  593.128241][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  593.128271][    C0]  ? aa_sock_msg_perm+0x91/0x160
[  593.128296][    C0]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  593.128323][    C0]  ? security_socket_sendmsg+0x87/0xb0
[  593.128358][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  593.128383][    C0]  __sock_sendmsg+0x221/0x270
[  593.128413][    C0]  __sys_sendto+0x3a4/0x4f0
[  593.128448][    C0]  ? __pfx___sys_sendto+0x10/0x10
[  593.128505][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  593.128536][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  593.128565][    C0]  ? exc_page_fault+0x590/0x8c0
[  593.128597][    C0]  __x64_sys_sendto+0xde/0x100
[  593.128630][    C0]  do_syscall_64+0xf3/0x230
[  593.128652][    C0]  ? clear_bhb_loop+0x35/0x90
[  593.128680][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  593.128704][    C0] RIP: 0033:0x7fe8e547ed9c
[  593.128722][    C0] RSP: 002b:00007ffedf810a20 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  593.128746][    C0] RAX: ffffffffffffffda RBX: 00007fe8e60e4620 RCX: 00007fe8e547ed9c
[  593.128764][    C0] RDX: 0000000000000028 RSI: 00007fe8e60e4670 RDI: 0000000000000003
[  593.128780][    C0] RBP: 0000000000000000 R08: 00007ffedf810a74 R09: 000000000000000c
[  593.128795][    C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  593.128810][    C0] R13: 0000000000000000 R14: 00007fe8e60e4670 R15: 0000000000000000
[  593.128843][    C0]  </TASK>
[  593.128853][    C0] DEBUG: waiting rtnl_mutex for 12007 jiffies.
[  593.128866][    C0] task:syz-executor.2  state:D stack:19488 pid:5126  tgid:5126  ppid:1      flags:0x00004006
[  593.128901][    C0] Call Trace:
[  593.128910][    C0]  <TASK>
[  593.128925][    C0]  __schedule+0x17e8/0x4a20
[  593.128974][    C0]  ? __pfx___schedule+0x10/0x10
[  593.129003][    C0]  ? __pfx_lock_release+0x10/0x10
[  593.129031][    C0]  ? __mutex_trylock_common+0x92/0x2e0
[  593.129074][    C0]  ? schedule+0x90/0x320
[  593.129098][    C0]  schedule+0x14b/0x320
[  593.129126][    C0]  schedule_preempt_disabled+0x13/0x30
[  593.129151][    C0]  __mutex_lock+0x6a4/0xd70
[  593.129183][    C0]  ? __mutex_lock+0x527/0xd70
[  593.129213][    C0]  ? tun_chr_close+0x3e/0x1b0
[  593.129257][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  593.129299][    C0]  ? rtnl_lock+0xe7/0x130
[  593.129328][    C0]  tun_chr_close+0x3e/0x1b0
[  593.129360][    C0]  ? __pfx_tun_chr_close+0x10/0x10
[  593.129388][    C0]  __fput+0x24a/0x8a0
[  593.129431][    C0]  task_work_run+0x24f/0x310
[  593.129468][    C0]  ? __pfx_task_work_run+0x10/0x10
[  593.129502][    C0]  ? do_exit+0xa22/0x28e0
[  593.129529][    C0]  ? kmem_cache_free+0x145/0x350
[  593.129563][    C0]  do_exit+0xa27/0x28e0
[  593.129602][    C0]  ? __pfx_do_exit+0x10/0x10
[  593.129631][    C0]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  593.129660][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  593.129691][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  593.129717][    C0]  ? _raw_spin_lock_irq+0xdf/0x120
[  593.129747][    C0]  do_group_exit+0x207/0x2c0
[  593.129776][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  593.129800][    C0]  ? lockdep_hardirqs_on+0x99/0x150
[  593.129833][    C0]  get_signal+0x16a1/0x1740
[  593.129873][    C0]  ? __pfx_get_signal+0x10/0x10
[  593.129897][    C0]  ? __pfx_hrtimer_nanosleep+0x10/0x10
[  593.129930][    C0]  arch_do_signal_or_restart+0x96/0x830
[  593.129961][    C0]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  593.129987][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  593.130028][    C0]  ? syscall_exit_to_user_mode+0xa3/0x370
[  593.130062][    C0]  syscall_exit_to_user_mode+0xc9/0x370
[  593.130096][    C0]  do_syscall_64+0x100/0x230
[  593.130119][    C0]  ? clear_bhb_loop+0x35/0x90
[  593.130146][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  593.130170][    C0] RIP: 0033:0x7fe0b84a84b5
[  593.130188][    C0] RSP: 002b:00007ffe88946990 EFLAGS: 00000293 ORIG_RAX: 00000000000000e6
[  593.130212][    C0] RAX: 0000000000000000 RBX: 00000000000001b8 RCX: 00007fe0b84a84b5
[  593.130228][    C0] RDX: 00007ffe889469d0 RSI: 0000000000000000 RDI: 0000000000000000
[  593.130244][    C0] RBP: 00007ffe88946a4c R08: 0000000000000000 R09: 7fffffffffffffff
[  593.130261][    C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000030
[  593.130276][    C0] R13: 000000000006b797 R14: 0000000000069135 R15: 0000000000000003
[  593.130309][    C0]  </TASK>
[  593.130319][    C0] DEBUG: waiting rtnl_mutex for 11379 jiffies.
[  593.130331][    C0] task:syz-executor.4  state:D stack:26000 pid:7967  tgid:7966  ppid:6329   flags:0x00004006
[  593.130375][    C0] Call Trace:
[  593.130384][    C0]  <TASK>
[  593.130398][    C0]  __schedule+0x17e8/0x4a20
[  593.130448][    C0]  ? __pfx___schedule+0x10/0x10
[  593.130477][    C0]  ? __pfx_lock_release+0x10/0x10
[  593.130513][    C0]  ? __mutex_trylock_common+0x92/0x2e0
[  593.130555][    C0]  ? schedule+0x90/0x320
[  593.130580][    C0]  schedule+0x14b/0x320
[  593.130608][    C0]  schedule_preempt_disabled+0x13/0x30
[  593.130633][    C0]  __mutex_lock+0x6a4/0xd70
[  593.130665][    C0]  ? __mutex_lock+0x527/0xd70
[  593.130696][    C0]  ? tun_chr_close+0x3e/0x1b0
[  593.130725][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  593.130766][    C0]  ? rtnl_lock+0xe7/0x130
[  593.130796][    C0]  tun_chr_close+0x3e/0x1b0
[  593.130822][    C0]  ? __pfx_tun_chr_close+0x10/0x10
[  593.130851][    C0]  __fput+0x24a/0x8a0
[  593.130894][    C0]  task_work_run+0x24f/0x310
[  593.130931][    C0]  ? __pfx_task_work_run+0x10/0x10
[  593.130965][    C0]  ? do_exit+0xa22/0x28e0
[  593.130992][    C0]  ? kmem_cache_free+0x145/0x350
[  593.131026][    C0]  do_exit+0xa27/0x28e0
[  593.131064][    C0]  ? __pfx_do_exit+0x10/0x10
[  593.131092][    C0]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  593.131121][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  593.131152][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  593.131178][    C0]  ? _raw_spin_lock_irq+0xdf/0x120
[  593.131208][    C0]  do_group_exit+0x207/0x2c0
[  593.131236][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  593.131261][    C0]  ? lockdep_hardirqs_on+0x99/0x150
[  593.131293][    C0]  get_signal+0x16a1/0x1740
[  593.131330][    C0]  ? __pfx_vfs_read+0x10/0x10
[  593.131358][    C0]  ? __pfx_get_signal+0x10/0x10
[  593.131381][    C0]  ? __fget_files+0x29/0x470
[  593.131417][    C0]  arch_do_signal_or_restart+0x96/0x830
[  593.131447][    C0]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  593.131472][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  593.131514][    C0]  ? syscall_exit_to_user_mode+0xa3/0x370
[  593.131548][    C0]  syscall_exit_to_user_mode+0xc9/0x370
[  593.131582][    C0]  do_syscall_64+0x100/0x230
[  593.131604][    C0]  ? clear_bhb_loop+0x35/0x90
[  593.131632][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  593.131655][    C0] RIP: 0033:0x7f1c4d87d0a9
[  593.131673][    C0] RSP: 002b:00007f1c4e59c0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  593.131697][    C0] RAX: 0000000000018ff8 RBX: 00007f1c4d9b3f80 RCX: 00007f1c4d87d0a9
[  593.131714][    C0] RDX: 0000000000018ff8 RSI: 0000000020019680 RDI: 0000000000000003
[  593.131730][    C0] RBP: 00007f1c4d8ec074 R08: 0000000000000000 R09: 0000000000000000
[  593.131745][    C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  593.131760][    C0] R13: 000000000000000b R14: 00007f1c4d9b3f80 R15: 00007fff6aa7f648
[  593.131793][    C0]  </TASK>
[  593.131803][    C0] DEBUG: waiting rtnl_mutex for 9233 jiffies.
[  593.131816][    C0] task:syz-executor.0  state:D stack:24992 pid:8008  tgid:8008  ppid:1      flags:0x00000006
[  593.131852][    C0] Call Trace:
[  593.131861][    C0]  <TASK>
[  593.131875][    C0]  __schedule+0x17e8/0x4a20
[  593.131925][    C0]  ? __pfx___schedule+0x10/0x10
[  593.131954][    C0]  ? __pfx_lock_release+0x10/0x10
[  593.131981][    C0]  ? __mutex_trylock_common+0x92/0x2e0
[  593.132023][    C0]  ? schedule+0x90/0x320
[  593.132048][    C0]  schedule+0x14b/0x320
[  593.132076][    C0]  schedule_preempt_disabled+0x13/0x30
[  593.132101][    C0]  __mutex_lock+0x6a4/0xd70
[  593.132133][    C0]  ? __mutex_lock+0x527/0xd70
[  593.132163][    C0]  ? rtnetlink_rcv_msg+0x839/0x1170
[  593.132190][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  593.132231][    C0]  ? rtnl_lock+0xe7/0x130
[  593.132260][    C0]  rtnetlink_rcv_msg+0x839/0x1170
[  593.132290][    C0]  ? rtnetlink_rcv_msg+0x208/0x1170
[  593.132319][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  593.132348][    C0]  ? is_bpf_text_address+0x285/0x2a0
[  593.132385][    C0]  ? __pfx_validate_chain+0x10/0x10
[  593.132416][    C0]  ? __pfx_validate_chain+0x10/0x10
[  593.132448][    C0]  ? arch_stack_walk+0x16d/0x1b0
[  593.132481][    C0]  ? mark_lock+0x9a/0x360
[  593.132508][    C0]  ? __pfx_validate_chain+0x10/0x10
[  593.132541][    C0]  ? __lock_acquire+0x1359/0x2000
[  593.132584][    C0]  ? mark_lock+0x9a/0x360
[  593.132617][    C0]  ? __lock_acquire+0x1359/0x2000
[  593.132666][    C0]  netlink_rcv_skb+0x1e3/0x430
[  593.132694][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  593.132722][    C0]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  593.132774][    C0]  ? netlink_deliver_tap+0x2e/0x1b0
[  593.132803][    C0]  netlink_unicast+0x7f0/0x990
[  593.132837][    C0]  ? __pfx_netlink_unicast+0x10/0x10
[  593.132860][    C0]  ? __virt_addr_valid+0x183/0x520
[  593.132924][    C0]  ? __check_object_size+0x49c/0x900
[  593.132953][    C0]  ? bpf_lsm_netlink_send+0x9/0x10
[  593.132983][    C0]  netlink_sendmsg+0x8e4/0xcb0
[  593.133024][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  593.133052][    C0]  ? aa_sock_msg_perm+0x91/0x160
[  593.133076][    C0]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  593.133103][    C0]  ? security_socket_sendmsg+0x87/0xb0
[  593.133132][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  593.133157][    C0]  __sock_sendmsg+0x221/0x270
[  593.133187][    C0]  __sys_sendto+0x3a4/0x4f0
[  593.133222][    C0]  ? __pfx___sys_sendto+0x10/0x10
[  593.133279][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  593.133309][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  593.133342][    C0]  ? exc_page_fault+0x590/0x8c0
[  593.133375][    C0]  __x64_sys_sendto+0xde/0x100
[  593.133409][    C0]  do_syscall_64+0xf3/0x230
[  593.133431][    C0]  ? clear_bhb_loop+0x35/0x90
[  593.133458][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  593.133482][    C0] RIP: 0033:0x7f761127ed9c
[  593.133501][    C0] RSP: 002b:00007ffea89e5b40 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  593.133525][    C0] RAX: ffffffffffffffda RBX: 00007f7611ee4620 RCX: 00007f761127ed9c
[  593.133543][    C0] RDX: 0000000000000028 RSI: 00007f7611ee4670 RDI: 0000000000000003
[  593.133558][    C0] RBP: 0000000000000000 R08: 00007ffea89e5b94 R09: 000000000000000c
[  593.133574][    C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  593.133589][    C0] R13: 0000000000000000 R14: 00007f7611ee4670 R15: 0000000000000000
[  593.133623][    C0]  </TASK>
[  593.133635][    C0] 
[  593.133635][    C0] Showing all locks held in the system:
[  593.133647][    C0] 3 locks held by kworker/0:0/8:
[  593.133665][    C0] 1 lock held by khungtaskd/30:
[  593.133682][    C0] 5 locks held by kworker/u9:0/54:
[  593.133696][    C0]  #0: ffff88802b0bf148 ((wq_completion)hci6){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  593.133762][    C0]  #1: ffffc90000be7d00 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  593.133826][    C0]  #2: ffff888062d98d88 (&hdev->req_lock){+.+.}-{3:3}, at: hci_cmd_sync_work+0x1ec/0x400
[  593.133886][    C0]  #3: ffff888062d98078 (&hdev->lock){+.+.}-{3:3}, at: hci_abort_conn_sync+0x1ea/0xde0
[  593.133950][    C0]  #4: ffffffff8f7653c8 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_conn_failed+0x185/0x340
[  593.134009][    C0] 3 locks held by kworker/1:2/58:
[  593.134023][    C0]  #0: ffff888015080948 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  593.134085][    C0]  #1: ffffc9000133fd00 ((linkwatch_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  593.134146][    C0]  #2: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: linkwatch_event+0xe/0x60
[  593.134211][    C0] 5 locks held by kworker/u8:4/63:
[  593.134224][    C0]  #0: ffff888015edd948 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  593.134286][    C0]  #1: ffffc900015e7d00 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  593.134352][    C0]  #2: ffffffff8f5eb450 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0x16a/0xcc0
[  593.134416][    C0]  #3: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: default_device_exit_batch+0xe9/0xa90
[  593.134478][    C0]  #4: ffffffff8e33ab78 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x451/0x830
[  593.134571][    C0] 3 locks held by kworker/u8:7/2856:
[  593.134586][    C0]  #0: ffff888029bca148 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  593.134647][    C0]  #1: ffffc90009cf7d00 ((work_completion)(&(&net->ipv6.addr_chk_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  593.134710][    C0]  #2: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_verify_work+0x19/0x30
[  593.134777][    C0] 3 locks held by kworker/u9:1/4490:
[  593.134792][    C0]  #0: ffff88805d729148 ((wq_completion)hci8){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  593.134853][    C0]  #1: ffffc9000d607d00 ((work_completion)(&hdev->power_on)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  593.134916][    C0]  #2: ffff88807e438d88 (&hdev->req_lock){+.+.}-{3:3}, at: hci_power_on+0x1bf/0x6b0
[  593.134980][    C0] 2 locks held by getty/4845:
[  593.134994][    C0]  #0: ffff88802a60e0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  593.135058][    C0]  #1: ffffc900031332f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6b5/0x1e10
[  593.135119][    C0] 3 locks held by kworker/u9:2/5117:
[  593.135134][    C0] 1 lock held by syz-executor.1/5118:
[  593.135148][    C0]  #0: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: tun_chr_close+0x3e/0x1b0
[  593.135212][    C0] 1 lock held by syz-executor.2/5126:
[  593.135226][    C0]  #0: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: tun_chr_close+0x3e/0x1b0
[  593.135290][    C0] 3 locks held by kworker/u9:4/5127:
[  593.135304][    C0] 5 locks held by kworker/u9:6/5130:
[  593.135318][    C0]  #0: ffff88801ec49148 ((wq_completion)hci3){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  593.135385][    C0]  #1: ffffc90003787d00 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  593.135448][    C0]  #2: ffff88806177cd88 (&hdev->req_lock){+.+.}-{3:3}, at: hci_cmd_sync_work+0x1ec/0x400
[  593.135506][    C0]  #3: ffff88806177c078 (&hdev->lock){+.+.}-{3:3}, at: hci_abort_conn_sync+0x1ea/0xde0
[  593.135570][    C0]  #4: ffffffff8f7653c8 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_conn_failed+0x185/0x340
[  593.135630][    C0] 3 locks held by kworker/1:4/5161:
[  593.135644][    C0]  #0: ffff888015080948 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  593.135705][    C0]  #1: ffffc90003e2fd00 (deferred_process_work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  593.135767][    C0]  #2: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: switchdev_deferred_process_work+0xe/0x20
[  593.135828][    C0] 5 locks held by kworker/u8:10/5210:
[  593.135846][    C0] 7 locks held by syz-executor.3/7689:
[  593.135860][    C0]  #0: ffff88802a018420 (sb_writers#8){.+.+}-{0:0}, at: vfs_write+0x227/0xc90
[  593.135925][    C0]  #1: ffff88807f8ca888 (&of->mutex){+.+.}-{3:3}, at: kernfs_fop_write_iter+0x1eb/0x500
[  593.135987][    C0]  #2: ffff888022dcf788 (kn->active#50){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x20f/0x500
[  593.136055][    C0]  #3: ffffffff8ef04068 (nsim_bus_dev_list_lock){+.+.}-{3:3}, at: del_device_store+0xfc/0x480
[  593.136108][    C0]  #4: ffff88802bebd0e8 (&dev->mutex){....}-{3:3}, at: device_release_driver_internal+0xce/0x7c0
[  593.136162][    C0]  #5: ffff88802bebe250 (&devlink->lock_key#2){+.+.}-{3:3}, at: nsim_drv_remove+0x50/0x160
[  593.136232][    C0]  #6: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: nsim_destroy+0x71/0x5c0
[  593.136294][    C0] 1 lock held by syz-executor.3/7926:
[  593.136308][    C0]  #0: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x839/0x1170
[  593.136375][    C0] 1 lock held by syz-executor.4/7967:
[  593.136389][    C0]  #0: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: tun_chr_close+0x3e/0x1b0
[  593.136453][    C0] 1 lock held by syz-executor.4/7991:
[  593.136467][    C0]  #0: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x839/0x1170
[  593.136528][    C0] 2 locks held by syz-executor.0/7996:
[  593.136542][    C0]  #0: ffff88807d72f408 (&sb->s_type->i_mutex_key#10){+.+.}-{3:3}, at: sock_close+0x90/0x240
[  593.136609][    C0]  #1: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: raw_release+0x1b8/0x8a0
[  593.136667][    C0] 1 lock held by syz-executor.1/8000:
[  593.136681][    C0]  #0: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x839/0x1170
[  593.136742][    C0] 1 lock held by syz-executor.3/8002:
[  593.136757][    C0]  #0: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x839/0x1170
[  593.136818][    C0] 1 lock held by syz-executor.0/8008:
[  593.136832][    C0]  #0: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x839/0x1170
[  593.136894][    C0] 4 locks held by kworker/u9:3/8022:
[  593.136909][    C0] 3 locks held by syz-executor.2/8026:
[  593.136923][    C0]  #0: ffffc90000007c00 (net/core/rtnetlink.c:82){+.-.}-{0:0}, at: call_timer_fn+0xc0/0x650
[  593.136981][    C0]  #1: ffffffff8e3357a0 (rcu_read_lock){....}-{1:2}, at: report_rtnl_holders+0x20/0x2d0
[  593.137040][    C0]  #2: ffffffff8e3357a0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0
[  593.137103][    C0] 
[  593.137110][    C0] =============================================
[  593.137110][    C0] 
[  593.152969][ T8019] Bluetooth: hci10: Opcode 0x0c03 failed: -4
[  593.635495][ T5127] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1
[  594.162982][    C0] DEBUG: holding rtnl_mutex for 19064 jiffies.
[  594.163011][    C0] task:kworker/u8:4    state:D stack:20880 pid:63    tgid:63    ppid:2      flags:0x00004000
[  594.163058][    C0] Workqueue: netns cleanup_net
[  594.163095][    C0] Call Trace:
[  594.163106][    C0]  <TASK>
[  594.163124][    C0]  __schedule+0x17e8/0x4a20
[  594.163177][    C0]  ? __pfx___schedule+0x10/0x10
[  594.163208][    C0]  ? __pfx_lock_release+0x10/0x10
[  594.163241][    C0]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  594.163274][    C0]  ? kthread_data+0x52/0xd0
[  594.163304][    C0]  ? wq_worker_sleeping+0x66/0x240
[  594.163333][    C0]  ? schedule+0x90/0x320
[  594.163358][    C0]  schedule+0x14b/0x320
[  594.163387][    C0]  synchronize_rcu_expedited+0x684/0x830
[  594.163423][    C0]  ? __pfx_synchronize_rcu_expedited+0x10/0x10
[  594.163473][    C0]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[  594.163505][    C0]  ? __pfx___might_resched+0x10/0x10
[  594.163531][    C0]  ? __pfx_autoremove_wake_function+0x10/0x10
[  594.163573][    C0]  synchronize_rcu+0x11b/0x360
[  594.163605][    C0]  ? __pfx_synchronize_rcu+0x10/0x10
[  594.163634][    C0]  ? lockdep_unlock+0x16a/0x300
[  594.163659][    C0]  ? __pfx_lockdep_unlock+0x10/0x10
[  594.163696][    C0]  lockdep_unregister_key+0x4b7/0x540
[  594.163728][    C0]  ? __pfx_lockdep_unregister_key+0x10/0x10
[  594.163760][    C0]  ? rcu_is_watching+0x15/0xb0
[  594.163790][    C0]  ? qdisc_reset+0x3bf/0x5b0
[  594.163824][    C0]  __qdisc_destroy+0x165/0x410
[  594.163856][    C0]  dev_shutdown+0x357/0x440
[  594.163889][    C0]  unregister_netdevice_many_notify+0x977/0x16b0
[  594.163928][    C0]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[  594.163957][    C0]  ? unregister_netdevice_queue+0x26b/0x370
[  594.163992][    C0]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[  594.164027][    C0]  ? batadv_softif_destroy_netlink+0x1e0/0x270
[  594.164064][    C0]  default_device_exit_batch+0xa0f/0xa90
[  594.164102][    C0]  ? __pfx___might_resched+0x10/0x10
[  594.164128][    C0]  ? __pfx_default_device_exit_batch+0x10/0x10
[  594.164165][    C0]  ? cfg802154_pernet_exit+0xc3/0xe0
[  594.164195][    C0]  ? __pfx_default_device_exit_batch+0x10/0x10
[  594.164233][    C0]  cleanup_net+0x89d/0xcc0
[  594.164268][    C0]  ? __pfx_cleanup_net+0x10/0x10
[  594.164310][    C0]  ? process_scheduled_works+0x945/0x1830
[  594.164335][    C0]  process_scheduled_works+0xa2c/0x1830
[  594.164393][    C0]  ? __pfx_process_scheduled_works+0x10/0x10
[  594.164429][    C0]  ? assign_work+0x364/0x3d0
[  594.164461][    C0]  worker_thread+0x86d/0xd50
[  594.164504][    C0]  ? __kthread_parkme+0x169/0x1d0
[  594.164535][    C0]  ? __pfx_worker_thread+0x10/0x10
[  594.164562][    C0]  kthread+0x2f0/0x390
[  594.164591][    C0]  ? __pfx_worker_thread+0x10/0x10
[  594.164617][    C0]  ? __pfx_kthread+0x10/0x10
[  594.164647][    C0]  ret_from_fork+0x4b/0x80
[  594.164675][    C0]  ? __pfx_kthread+0x10/0x10
[  594.164705][    C0]  ret_from_fork_asm+0x1a/0x30
[  594.164752][    C0]  </TASK>
[  594.164762][    C0] DEBUG: waiting rtnl_mutex for 19064 jiffies.
[  594.164775][    C0] task:syz-executor.3  state:D stack:24992 pid:7926  tgid:7926  ppid:1      flags:0x00000006
[  594.164816][    C0] Call Trace:
[  594.164826][    C0]  <TASK>
[  594.164841][    C0]  __schedule+0x17e8/0x4a20
[  594.164891][    C0]  ? __pfx___schedule+0x10/0x10
[  594.164920][    C0]  ? __pfx_lock_release+0x10/0x10
[  594.164949][    C0]  ? __mutex_trylock_common+0x92/0x2e0
[  594.164993][    C0]  ? schedule+0x90/0x320
[  594.165018][    C0]  schedule+0x14b/0x320
[  594.165047][    C0]  schedule_preempt_disabled+0x13/0x30
[  594.165073][    C0]  __mutex_lock+0x6a4/0xd70
[  594.165107][    C0]  ? __mutex_lock+0x527/0xd70
[  594.165137][    C0]  ? rtnetlink_rcv_msg+0x839/0x1170
[  594.165165][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  594.165206][    C0]  ? rtnl_lock+0xe7/0x130
[  594.165241][    C0]  rtnetlink_rcv_msg+0x839/0x1170
[  594.165272][    C0]  ? rtnetlink_rcv_msg+0x208/0x1170
[  594.165301][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  594.165325][    C0]  ? is_bpf_text_address+0x285/0x2a0
[  594.165363][    C0]  ? __pfx_validate_chain+0x10/0x10
[  594.165394][    C0]  ? __pfx_validate_chain+0x10/0x10
[  594.165426][    C0]  ? arch_stack_walk+0x16d/0x1b0
[  594.165460][    C0]  ? mark_lock+0x9a/0x360
[  594.165487][    C0]  ? __pfx_validate_chain+0x10/0x10
[  594.165521][    C0]  ? __lock_acquire+0x1359/0x2000
[  594.165564][    C0]  ? mark_lock+0x9a/0x360
[  594.165597][    C0]  ? __lock_acquire+0x1359/0x2000
[  594.165647][    C0]  netlink_rcv_skb+0x1e3/0x430
[  594.165676][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  594.165705][    C0]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  594.165757][    C0]  ? netlink_deliver_tap+0x2e/0x1b0
[  594.165787][    C0]  netlink_unicast+0x7f0/0x990
[  594.165822][    C0]  ? __pfx_netlink_unicast+0x10/0x10
[  594.165844][    C0]  ? __virt_addr_valid+0x183/0x520
[  594.165878][    C0]  ? __check_object_size+0x49c/0x900
[  594.165907][    C0]  ? bpf_lsm_netlink_send+0x9/0x10
[  594.165938][    C0]  netlink_sendmsg+0x8e4/0xcb0
[  594.165979][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  594.166010][    C0]  ? aa_sock_msg_perm+0x91/0x160
[  594.166036][    C0]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  594.166064][    C0]  ? security_socket_sendmsg+0x87/0xb0
[  594.166094][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  594.166120][    C0]  __sock_sendmsg+0x221/0x270
[  594.166151][    C0]  __sys_sendto+0x3a4/0x4f0
[  594.166186][    C0]  ? __pfx___sys_sendto+0x10/0x10
[  594.166249][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  594.166280][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  594.166309][    C0]  ? exc_page_fault+0x590/0x8c0
[  594.166342][    C0]  __x64_sys_sendto+0xde/0x100
[  594.166376][    C0]  do_syscall_64+0xf3/0x230
[  594.166399][    C0]  ? clear_bhb_loop+0x35/0x90
[  594.166428][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  594.166453][    C0] RIP: 0033:0x7f52d2a7ed9c
[  594.166473][    C0] RSP: 002b:00007ffedf56b290 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  594.166500][    C0] RAX: ffffffffffffffda RBX: 00007f52d36e4620 RCX: 00007f52d2a7ed9c
[  594.166518][    C0] RDX: 0000000000000028 RSI: 00007f52d36e4670 RDI: 0000000000000003
[  594.166535][    C0] RBP: 0000000000000000 R08: 00007ffedf56b2e4 R09: 000000000000000c
[  594.166551][    C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  594.166567][    C0] R13: 0000000000000000 R14: 00007f52d36e4670 R15: 0000000000000000
[  594.166601][    C0]  </TASK>
[  594.166611][    C0] DEBUG: waiting rtnl_mutex for 18984 jiffies.
[  594.166625][    C0] task:kworker/1:2     state:D stack:22200 pid:58    tgid:58    ppid:2      flags:0x00004000
[  594.166665][    C0] Workqueue: events linkwatch_event
[  594.166694][    C0] Call Trace:
[  594.166704][    C0]  <TASK>
[  594.166719][    C0]  __schedule+0x17e8/0x4a20
[  594.166769][    C0]  ? __pfx___schedule+0x10/0x10
[  594.166797][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  594.166825][    C0]  ? __pfx_lock_release+0x10/0x10
[  594.166854][    C0]  ? kick_pool+0x1bd/0x620
[  594.166886][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  594.166911][    C0]  ? lockdep_hardirqs_on+0x99/0x150
[  594.166942][    C0]  ? schedule+0x90/0x320
[  594.166966][    C0]  schedule+0x14b/0x320
[  594.166995][    C0]  schedule_preempt_disabled+0x13/0x30
[  594.167020][    C0]  __mutex_lock+0x6a4/0xd70
[  594.167053][    C0]  ? __mutex_lock+0x527/0xd70
[  594.167083][    C0]  ? linkwatch_event+0xe/0x60
[  594.167113][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  594.167150][    C0]  ? process_scheduled_works+0x945/0x1830
[  594.167176][    C0]  ? rtnl_lock+0xe7/0x130
[  594.167205][    C0]  ? process_scheduled_works+0x945/0x1830
[  594.167234][    C0]  linkwatch_event+0xe/0x60
[  594.167261][    C0]  process_scheduled_works+0xa2c/0x1830
[  594.167318][    C0]  ? __pfx_process_scheduled_works+0x10/0x10
[  594.167354][    C0]  ? assign_work+0x364/0x3d0
[  594.167385][    C0]  worker_thread+0x86d/0xd50
[  594.167421][    C0]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  594.167452][    C0]  ? __kthread_parkme+0x169/0x1d0
[  594.167483][    C0]  ? __pfx_worker_thread+0x10/0x10
[  594.167510][    C0]  kthread+0x2f0/0x390
[  594.167538][    C0]  ? __pfx_worker_thread+0x10/0x10
[  594.167564][    C0]  ? __pfx_kthread+0x10/0x10
[  594.167594][    C0]  ret_from_fork+0x4b/0x80
[  594.167620][    C0]  ? __pfx_kthread+0x10/0x10
[  594.167649][    C0]  ret_from_fork_asm+0x1a/0x30
[  594.167694][    C0]  </TASK>
[  594.167704][    C0] DEBUG: waiting rtnl_mutex for 18968 jiffies.
[  594.167718][    C0] task:kworker/u8:7    state:D stack:20920 pid:2856  tgid:2856  ppid:2      flags:0x00004000
[  594.167756][    C0] Workqueue: ipv6_addrconf addrconf_verify_work
[  594.167790][    C0] Call Trace:
[  594.167799][    C0]  <TASK>
[  594.167814][    C0]  __schedule+0x17e8/0x4a20
[  594.167863][    C0]  ? __pfx___schedule+0x10/0x10
[  594.167893][    C0]  ? __pfx_lock_release+0x10/0x10
[  594.167922][    C0]  ? __mutex_trylock_common+0x92/0x2e0
[  594.167954][    C0]  ? kthread_data+0x52/0xd0
[  594.167979][    C0]  ? schedule+0x90/0x320
[  594.168004][    C0]  ? wq_worker_sleeping+0x66/0x240
[  594.168033][    C0]  ? schedule+0x90/0x320
[  594.168057][    C0]  schedule+0x14b/0x320
[  594.168086][    C0]  schedule_preempt_disabled+0x13/0x30
[  594.168111][    C0]  __mutex_lock+0x6a4/0xd70
[  594.168144][    C0]  ? __mutex_lock+0x527/0xd70
[  594.168174][    C0]  ? addrconf_verify_work+0x19/0x30
[  594.168207][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  594.168239][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  594.168270][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  594.168303][    C0]  ? process_scheduled_works+0x945/0x1830
[  594.168329][    C0]  ? rtnl_lock+0xe7/0x130
[  594.168357][    C0]  ? process_scheduled_works+0x945/0x1830
[  594.168382][    C0]  addrconf_verify_work+0x19/0x30
[  594.168413][    C0]  process_scheduled_works+0xa2c/0x1830
[  594.168469][    C0]  ? __pfx_process_scheduled_works+0x10/0x10
[  594.168505][    C0]  ? assign_work+0x364/0x3d0
[  594.168537][    C0]  worker_thread+0x86d/0xd50
[  594.168579][    C0]  ? __kthread_parkme+0x169/0x1d0
[  594.168610][    C0]  ? __pfx_worker_thread+0x10/0x10
[  594.168637][    C0]  kthread+0x2f0/0x390
[  594.168666][    C0]  ? __pfx_worker_thread+0x10/0x10
[  594.168691][    C0]  ? __pfx_kthread+0x10/0x10
[  594.168721][    C0]  ret_from_fork+0x4b/0x80
[  594.168748][    C0]  ? __pfx_kthread+0x10/0x10
[  594.168777][    C0]  ret_from_fork_asm+0x1a/0x30
[  594.168823][    C0]  </TASK>
[  594.168833][    C0] DEBUG: waiting rtnl_mutex for 18940 jiffies.
[  594.168846][    C0] task:syz-executor.3  state:D stack:21024 pid:7689  tgid:7689  ppid:1      flags:0x00004006
[  594.168883][    C0] Call Trace:
[  594.168892][    C0]  <TASK>
[  594.168907][    C0]  __schedule+0x17e8/0x4a20
[  594.168956][    C0]  ? __pfx___schedule+0x10/0x10
[  594.168985][    C0]  ? __pfx_lock_release+0x10/0x10
[  594.169014][    C0]  ? __mutex_trylock_common+0x92/0x2e0
[  594.169057][    C0]  ? schedule+0x90/0x320
[  594.169082][    C0]  schedule+0x14b/0x320
[  594.169110][    C0]  schedule_preempt_disabled+0x13/0x30
[  594.169136][    C0]  __mutex_lock+0x6a4/0xd70
[  594.169163][    C0]  ? do_raw_spin_unlock+0x13c/0x8b0
[  594.169189][    C0]  ? __mutex_lock+0x527/0xd70
[  594.169225][    C0]  ? nsim_destroy+0x71/0x5c0
[  594.169253][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  594.169285][    C0]  ? __pfx_mntput_no_expire+0x10/0x10
[  594.169313][    C0]  ? rtnl_lock+0xe7/0x130
[  594.169343][    C0]  nsim_destroy+0x71/0x5c0
[  594.169376][    C0]  __nsim_dev_port_del+0x14b/0x1b0
[  594.169409][    C0]  nsim_dev_reload_destroy+0x28a/0x490
[  594.169444][    C0]  ? __pfx_nsim_bus_remove+0x10/0x10
[  594.169467][    C0]  nsim_drv_remove+0x58/0x160
[  594.169499][    C0]  device_release_driver_internal+0x4a9/0x7c0
[  594.169534][    C0]  bus_remove_device+0x34f/0x420
[  594.169570][    C0]  device_del+0x57a/0x9b0
[  594.169602][    C0]  ? __pfx_device_del+0x10/0x10
[  594.169634][    C0]  device_unregister+0x20/0xc0
[  594.169657][    C0]  del_device_store+0x363/0x480
[  594.169686][    C0]  ? __pfx_del_device_store+0x10/0x10
[  594.169717][    C0]  ? sysfs_kf_write+0x182/0x2a0
[  594.169745][    C0]  ? bus_attr_store+0x4f/0xa0
[  594.169775][    C0]  ? __pfx_sysfs_kf_write+0x10/0x10
[  594.169803][    C0]  kernfs_fop_write_iter+0x3a1/0x500
[  594.169837][    C0]  vfs_write+0xa72/0xc90
[  594.169866][    C0]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  594.169895][    C0]  ? __pfx_vfs_write+0x10/0x10
[  594.169943][    C0]  ksys_write+0x1a0/0x2c0
[  594.169973][    C0]  ? __pfx_ksys_write+0x10/0x10
[  594.169998][    C0]  ? do_syscall_64+0x100/0x230
[  594.170024][    C0]  ? do_syscall_64+0xb6/0x230
[  594.170049][    C0]  do_syscall_64+0xf3/0x230
[  594.170070][    C0]  ? clear_bhb_loop+0x35/0x90
[  594.170098][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  594.170122][    C0] RIP: 0033:0x7f73e287bdef
[  594.170141][    C0] RSP: 002b:00007ffc30877830 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  594.170165][    C0] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00007f73e287bdef
[  594.170183][    C0] RDX: 0000000000000001 RSI: 00007ffc30877880 RDI: 0000000000000005
[  594.170199][    C0] RBP: 00007f73e28da33a R08: 0000000000000000 R09: 00007ffc30877687
[  594.170221][    C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  594.170236][    C0] R13: 00007ffc30877880 R14: 00007f73e34e4620 R15: 0000000000000003
[  594.170270][    C0]  </TASK>
[  594.170280][    C0] DEBUG: waiting rtnl_mutex for 18562 jiffies.
[  594.170293][    C0] task:syz-executor.1  state:D stack:19616 pid:5118  tgid:5118  ppid:1      flags:0x00004002
[  594.170331][    C0] Call Trace:
[  594.170341][    C0]  <TASK>
[  594.170356][    C0]  __schedule+0x17e8/0x4a20
[  594.170405][    C0]  ? __pfx___schedule+0x10/0x10
[  594.170435][    C0]  ? __pfx_lock_release+0x10/0x10
[  594.170464][    C0]  ? __mutex_trylock_common+0x92/0x2e0
[  594.170507][    C0]  ? schedule+0x90/0x320
[  594.170531][    C0]  schedule+0x14b/0x320
[  594.170560][    C0]  schedule_preempt_disabled+0x13/0x30
[  594.170585][    C0]  __mutex_lock+0x6a4/0xd70
[  594.170617][    C0]  ? __mutex_lock+0x527/0xd70
[  594.170648][    C0]  ? tun_chr_close+0x3e/0x1b0
[  594.170678][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  594.170721][    C0]  ? rtnl_lock+0xe7/0x130
[  594.170750][    C0]  tun_chr_close+0x3e/0x1b0
[  594.170778][    C0]  ? __pfx_tun_chr_close+0x10/0x10
[  594.170806][    C0]  __fput+0x24a/0x8a0
[  594.170850][    C0]  task_work_run+0x24f/0x310
[  594.170888][    C0]  ? __pfx_task_work_run+0x10/0x10
[  594.170923][    C0]  ? do_exit+0xa22/0x28e0
[  594.170950][    C0]  ? kmem_cache_free+0x145/0x350
[  594.170984][    C0]  do_exit+0xa27/0x28e0
[  594.171023][    C0]  ? __pfx_do_exit+0x10/0x10
[  594.171054][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  594.171085][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  594.171118][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  594.171143][    C0]  ? lockdep_hardirqs_on+0x99/0x150
[  594.171176][    C0]  do_group_exit+0x207/0x2c0
[  594.171217][    C0]  __x64_sys_exit_group+0x3f/0x40
[  594.171248][    C0]  do_syscall_64+0xf3/0x230
[  594.171270][    C0]  ? clear_bhb_loop+0x35/0x90
[  594.171298][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  594.171322][    C0] RIP: 0033:0x7f2c9047d0a9
[  594.171340][    C0] RSP: 002b:00007ffe1ca69468 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[  594.171364][    C0] RAX: ffffffffffffffda RBX: 00007f2c904d96eb RCX: 00007f2c9047d0a9
[  594.171383][    C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001
[  594.171398][    C0] RBP: 0000000000000075 R08: 00007ffe1ca67205 R09: 00007ffe1ca6a720
[  594.171415][    C0] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe1ca6a720
[  594.171431][    C0] R13: 00007f2c904d96c6 R14: 000055558c5f3430 R15: 0000000000000006
[  594.171465][    C0]  </TASK>
[  594.171475][    C0] DEBUG: waiting rtnl_mutex for 16395 jiffies.
[  594.171488][    C0] task:kworker/1:4     state:D stack:23664 pid:5161  tgid:5161  ppid:2      flags:0x00004000
[  594.171528][    C0] Workqueue: events switchdev_deferred_process_work
[  594.171556][    C0] Call Trace:
[  594.171566][    C0]  <TASK>
[  594.171581][    C0]  __schedule+0x17e8/0x4a20
[  594.171630][    C0]  ? __pfx___schedule+0x10/0x10
[  594.171658][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  594.171685][    C0]  ? __pfx_lock_release+0x10/0x10
[  594.171714][    C0]  ? kick_pool+0x45c/0x620
[  594.171747][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  594.171771][    C0]  ? lockdep_hardirqs_on+0x99/0x150
[  594.171802][    C0]  ? schedule+0x90/0x320
[  594.171827][    C0]  schedule+0x14b/0x320
[  594.171855][    C0]  schedule_preempt_disabled+0x13/0x30
[  594.171881][    C0]  __mutex_lock+0x6a4/0xd70
[  594.171914][    C0]  ? __mutex_lock+0x527/0xd70
[  594.171944][    C0]  ? switchdev_deferred_process_work+0xe/0x20
[  594.171971][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  594.172009][    C0]  ? process_scheduled_works+0x945/0x1830
[  594.172035][    C0]  ? rtnl_lock+0xe7/0x130
[  594.172063][    C0]  ? process_scheduled_works+0x945/0x1830
[  594.172089][    C0]  switchdev_deferred_process_work+0xe/0x20
[  594.172113][    C0]  process_scheduled_works+0xa2c/0x1830
[  594.172170][    C0]  ? __pfx_process_scheduled_works+0x10/0x10
[  594.172206][    C0]  ? assign_work+0x364/0x3d0
[  594.172243][    C0]  worker_thread+0x86d/0xd50
[  594.172285][    C0]  ? __kthread_parkme+0x169/0x1d0
[  594.172317][    C0]  ? __pfx_worker_thread+0x10/0x10
[  594.172344][    C0]  kthread+0x2f0/0x390
[  594.172372][    C0]  ? __pfx_worker_thread+0x10/0x10
[  594.172398][    C0]  ? __pfx_kthread+0x10/0x10
[  594.172428][    C0]  ret_from_fork+0x4b/0x80
[  594.172455][    C0]  ? __pfx_kthread+0x10/0x10
[  594.172484][    C0]  ret_from_fork_asm+0x1a/0x30
[  594.172529][    C0]  </TASK>
[  594.172539][    C0] DEBUG: waiting rtnl_mutex for 13846 jiffies.
[  594.172552][    C0] task:syz-executor.4  state:D stack:24992 pid:7991  tgid:7991  ppid:1      flags:0x00000006
[  594.172590][    C0] Call Trace:
[  594.172599][    C0]  <TASK>
[  594.172614][    C0]  __schedule+0x17e8/0x4a20
[  594.172664][    C0]  ? __pfx___schedule+0x10/0x10
[  594.172694][    C0]  ? __pfx_lock_release+0x10/0x10
[  594.172722][    C0]  ? __mutex_trylock_common+0x92/0x2e0
[  594.172765][    C0]  ? schedule+0x90/0x320
[  594.172790][    C0]  schedule+0x14b/0x320
[  594.172819][    C0]  schedule_preempt_disabled+0x13/0x30
[  594.172845][    C0]  __mutex_lock+0x6a4/0xd70
[  594.172914][    C0]  ? __mutex_lock+0x527/0xd70
[  594.172945][    C0]  ? rtnetlink_rcv_msg+0x839/0x1170
[  594.172972][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  594.173013][    C0]  ? rtnl_lock+0xe7/0x130
[  594.173043][    C0]  rtnetlink_rcv_msg+0x839/0x1170
[  594.173073][    C0]  ? rtnetlink_rcv_msg+0x208/0x1170
[  594.173103][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  594.173127][    C0]  ? is_bpf_text_address+0x285/0x2a0
[  594.173164][    C0]  ? __pfx_validate_chain+0x10/0x10
[  594.173196][    C0]  ? __pfx_validate_chain+0x10/0x10
[  594.173233][    C0]  ? arch_stack_walk+0x16d/0x1b0
[  594.173266][    C0]  ? mark_lock+0x9a/0x360
[  594.173293][    C0]  ? __pfx_validate_chain+0x10/0x10
[  594.173327][    C0]  ? __lock_acquire+0x1359/0x2000
[  594.173371][    C0]  ? mark_lock+0x9a/0x360
[  594.173404][    C0]  ? __lock_acquire+0x1359/0x2000
[  594.173453][    C0]  netlink_rcv_skb+0x1e3/0x430
[  594.173481][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  594.173510][    C0]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  594.173562][    C0]  ? netlink_deliver_tap+0x2e/0x1b0
[  594.173592][    C0]  netlink_unicast+0x7f0/0x990
[  594.173626][    C0]  ? __pfx_netlink_unicast+0x10/0x10
[  594.173649][    C0]  ? __virt_addr_valid+0x183/0x520
[  594.173682][    C0]  ? __check_object_size+0x49c/0x900
[  594.173711][    C0]  ? bpf_lsm_netlink_send+0x9/0x10
[  594.173741][    C0]  netlink_sendmsg+0x8e4/0xcb0
[  594.173782][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  594.173813][    C0]  ? aa_sock_msg_perm+0x91/0x160
[  594.173838][    C0]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  594.173865][    C0]  ? security_socket_sendmsg+0x87/0xb0
[  594.173895][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  594.173921][    C0]  __sock_sendmsg+0x221/0x270
[  594.173951][    C0]  __sys_sendto+0x3a4/0x4f0
[  594.173986][    C0]  ? __pfx___sys_sendto+0x10/0x10
[  594.174043][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  594.174074][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  594.174103][    C0]  ? exc_page_fault+0x590/0x8c0
[  594.174135][    C0]  __x64_sys_sendto+0xde/0x100
[  594.174169][    C0]  do_syscall_64+0xf3/0x230
[  594.174192][    C0]  ? clear_bhb_loop+0x35/0x90
[  594.174225][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  594.174250][    C0] RIP: 0033:0x7f1ba8c7ed9c
[  594.174269][    C0] RSP: 002b:00007ffc19b63030 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  594.174294][    C0] RAX: ffffffffffffffda RBX: 00007f1ba98e4620 RCX: 00007f1ba8c7ed9c
[  594.174312][    C0] RDX: 0000000000000028 RSI: 00007f1ba98e4670 RDI: 0000000000000003
[  594.174329][    C0] RBP: 0000000000000000 R08: 00007ffc19b63084 R09: 000000000000000c
[  594.174345][    C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  594.174360][    C0] R13: 0000000000000000 R14: 00007f1ba98e4670 R15: 0000000000000000
[  594.174394][    C0]  </TASK>
[  594.174404][    C0] DEBUG: waiting rtnl_mutex for 12897 jiffies.
[  594.174417][    C0] task:syz-executor.0  state:D stack:24672 pid:7996  tgid:7996  ppid:5682   flags:0x00000006
[  594.174456][    C0] Call Trace:
[  594.174466][    C0]  <TASK>
[  594.174481][    C0]  __schedule+0x17e8/0x4a20
[  594.174531][    C0]  ? __pfx___schedule+0x10/0x10
[  594.174560][    C0]  ? __pfx_lock_release+0x10/0x10
[  594.174589][    C0]  ? __mutex_trylock_common+0x92/0x2e0
[  594.174632][    C0]  ? schedule+0x90/0x320
[  594.174657][    C0]  schedule+0x14b/0x320
[  594.174685][    C0]  schedule_preempt_disabled+0x13/0x30
[  594.174710][    C0]  __mutex_lock+0x6a4/0xd70
[  594.174743][    C0]  ? __mutex_lock+0x527/0xd70
[  594.174773][    C0]  ? raw_release+0x1b8/0x8a0
[  594.174798][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  594.174835][    C0]  ? do_raw_spin_unlock+0x13c/0x8b0
[  594.174862][    C0]  ? rtnl_lock+0xe7/0x130
[  594.174892][    C0]  raw_release+0x1b8/0x8a0
[  594.174926][    C0]  sock_close+0xbc/0x240
[  594.174949][    C0]  ? __pfx_sock_close+0x10/0x10
[  594.174975][    C0]  __fput+0x24a/0x8a0
[  594.175019][    C0]  task_work_run+0x24f/0x310
[  594.175056][    C0]  ? __pfx_task_work_run+0x10/0x10
[  594.175092][    C0]  ? syscall_exit_to_user_mode+0xa3/0x370
[  594.175127][    C0]  syscall_exit_to_user_mode+0x168/0x370
[  594.175162][    C0]  do_syscall_64+0x100/0x230
[  594.175185][    C0]  ? clear_bhb_loop+0x35/0x90
[  594.175218][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  594.175242][    C0] RIP: 0033:0x7f870b67d0a9
[  594.175260][    C0] RSP: 002b:00007ffec24f1108 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  594.175285][    C0] RAX: 0000000000000000 RBX: 0000000000071917 RCX: 00007f870b67d0a9
[  594.175302][    C0] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[  594.175317][    C0] RBP: ffffffffffffffff R08: 0000000000000001 R09: 0000001400000000
[  594.175334][    C0] R10: 00007f870b600000 R11: 0000000000000246 R12: 00007f870b7b3f80
[  594.175352][    C0] R13: 00007f870b7b3f8c R14: 0000000000000032 R15: 00007f870b7b5980
[  594.175386][    C0]  </TASK>
[  594.175396][    C0] DEBUG: waiting rtnl_mutex for 12132 jiffies.
[  594.175409][    C0] task:syz-executor.1  state:D stack:24992 pid:8000  tgid:8000  ppid:1      flags:0x00000006
[  594.175448][    C0] Call Trace:
[  594.175458][    C0]  <TASK>
[  594.175473][    C0]  __schedule+0x17e8/0x4a20
[  594.175522][    C0]  ? __pfx___schedule+0x10/0x10
[  594.175552][    C0]  ? __pfx_lock_release+0x10/0x10
[  594.175580][    C0]  ? __mutex_trylock_common+0x92/0x2e0
[  594.175624][    C0]  ? schedule+0x90/0x320
[  594.175648][    C0]  schedule+0x14b/0x320
[  594.175677][    C0]  schedule_preempt_disabled+0x13/0x30
[  594.175703][    C0]  __mutex_lock+0x6a4/0xd70
[  594.175736][    C0]  ? __mutex_lock+0x527/0xd70
[  594.175766][    C0]  ? rtnetlink_rcv_msg+0x839/0x1170
[  594.175794][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  594.175835][    C0]  ? rtnl_lock+0xe7/0x130
[  594.175865][    C0]  rtnetlink_rcv_msg+0x839/0x1170
[  594.175895][    C0]  ? rtnetlink_rcv_msg+0x208/0x1170
[  594.175925][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  594.175949][    C0]  ? is_bpf_text_address+0x285/0x2a0
[  594.175985][    C0]  ? __pfx_validate_chain+0x10/0x10
[  594.176016][    C0]  ? __pfx_validate_chain+0x10/0x10
[  594.176048][    C0]  ? arch_stack_walk+0x16d/0x1b0
[  594.176081][    C0]  ? mark_lock+0x9a/0x360
[  594.176108][    C0]  ? __pfx_validate_chain+0x10/0x10
[  594.176142][    C0]  ? __lock_acquire+0x1359/0x2000
[  594.176186][    C0]  ? mark_lock+0x9a/0x360
[  594.176224][    C0]  ? __lock_acquire+0x1359/0x2000
[  594.176273][    C0]  netlink_rcv_skb+0x1e3/0x430
[  594.176301][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  594.176330][    C0]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  594.176382][    C0]  ? netlink_deliver_tap+0x2e/0x1b0
[  594.176411][    C0]  netlink_unicast+0x7f0/0x990
[  594.176446][    C0]  ? __pfx_netlink_unicast+0x10/0x10
[  594.176468][    C0]  ? __virt_addr_valid+0x183/0x520
[  594.176501][    C0]  ? __check_object_size+0x49c/0x900
[  594.176530][    C0]  ? bpf_lsm_netlink_send+0x9/0x10
[  594.176560][    C0]  netlink_sendmsg+0x8e4/0xcb0
[  594.176600][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  594.176631][    C0]  ? aa_sock_msg_perm+0x91/0x160
[  594.176656][    C0]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  594.176684][    C0]  ? security_socket_sendmsg+0x87/0xb0
[  594.176714][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  594.176739][    C0]  __sock_sendmsg+0x221/0x270
[  594.176769][    C0]  __sys_sendto+0x3a4/0x4f0
[  594.176805][    C0]  ? __pfx___sys_sendto+0x10/0x10
[  594.176862][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  594.176893][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  594.176922][    C0]  ? exc_page_fault+0x590/0x8c0
[  594.176955][    C0]  __x64_sys_sendto+0xde/0x100
[  594.176988][    C0]  do_syscall_64+0xf3/0x230
[  594.177011][    C0]  ? clear_bhb_loop+0x35/0x90
[  594.177038][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  594.177063][    C0] RIP: 0033:0x7fb783a7ed9c
[  594.177081][    C0] RSP: 002b:00007ffd29566b80 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  594.177105][    C0] RAX: ffffffffffffffda RBX: 00007fb7846e4620 RCX: 00007fb783a7ed9c
[  594.177123][    C0] RDX: 0000000000000028 RSI: 00007fb7846e4670 RDI: 0000000000000003
[  594.177140][    C0] RBP: 0000000000000000 R08: 00007ffd29566bd4 R09: 000000000000000c
[  594.177156][    C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  594.177171][    C0] R13: 0000000000000000 R14: 00007fb7846e4670 R15: 0000000000000000
[  594.177205][    C0]  </TASK>
[  594.177220][    C0] DEBUG: waiting rtnl_mutex for 12112 jiffies.
[  594.177234][    C0] task:syz-executor.3  state:D stack:24992 pid:8002  tgid:8002  ppid:1      flags:0x00000006
[  594.177272][    C0] Call Trace:
[  594.177281][    C0]  <TASK>
[  594.177297][    C0]  __schedule+0x17e8/0x4a20
[  594.177347][    C0]  ? __pfx___schedule+0x10/0x10
[  594.177377][    C0]  ? __pfx_lock_release+0x10/0x10
[  594.177406][    C0]  ? __mutex_trylock_common+0x92/0x2e0
[  594.177448][    C0]  ? schedule+0x90/0x320
[  594.177474][    C0]  schedule+0x14b/0x320
[  594.177502][    C0]  schedule_preempt_disabled+0x13/0x30
[  594.177528][    C0]  __mutex_lock+0x6a4/0xd70
[  594.177561][    C0]  ? __mutex_lock+0x527/0xd70
[  594.177591][    C0]  ? rtnetlink_rcv_msg+0x839/0x1170
[  594.177619][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  594.177660][    C0]  ? rtnl_lock+0xe7/0x130
[  594.177690][    C0]  rtnetlink_rcv_msg+0x839/0x1170
[  594.177720][    C0]  ? rtnetlink_rcv_msg+0x208/0x1170
[  594.177750][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  594.177774][    C0]  ? is_bpf_text_address+0x285/0x2a0
[  594.177811][    C0]  ? __pfx_validate_chain+0x10/0x10
[  594.177843][    C0]  ? __pfx_validate_chain+0x10/0x10
[  594.177875][    C0]  ? arch_stack_walk+0x16d/0x1b0
[  594.177908][    C0]  ? mark_lock+0x9a/0x360
[  594.177935][    C0]  ? __pfx_validate_chain+0x10/0x10
[  594.177983][    C0]  ? __lock_acquire+0x1359/0x2000
[  594.178027][    C0]  ? mark_lock+0x9a/0x360
[  594.178059][    C0]  ? __lock_acquire+0x1359/0x2000
[  594.178109][    C0]  netlink_rcv_skb+0x1e3/0x430
[  594.178137][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  594.178166][    C0]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  594.178223][    C0]  ? netlink_deliver_tap+0x2e/0x1b0
[  594.178253][    C0]  netlink_unicast+0x7f0/0x990
[  594.178287][    C0]  ? __pfx_netlink_unicast+0x10/0x10
[  594.178310][    C0]  ? __virt_addr_valid+0x183/0x520
[  594.178342][    C0]  ? __check_object_size+0x49c/0x900
[  594.178371][    C0]  ? bpf_lsm_netlink_send+0x9/0x10
[  594.178401][    C0]  netlink_sendmsg+0x8e4/0xcb0
[  594.178442][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  594.178472][    C0]  ? aa_sock_msg_perm+0x91/0x160
[  594.178497][    C0]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  594.178525][    C0]  ? security_socket_sendmsg+0x87/0xb0
[  594.178554][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  594.178580][    C0]  __sock_sendmsg+0x221/0x270
[  594.178610][    C0]  __sys_sendto+0x3a4/0x4f0
[  594.178646][    C0]  ? __pfx___sys_sendto+0x10/0x10
[  594.178704][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  594.178735][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  594.178764][    C0]  ? exc_page_fault+0x590/0x8c0
[  594.178797][    C0]  __x64_sys_sendto+0xde/0x100
[  594.178831][    C0]  do_syscall_64+0xf3/0x230
[  594.178854][    C0]  ? clear_bhb_loop+0x35/0x90
[  594.178882][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  594.178906][    C0] RIP: 0033:0x7fe8e547ed9c
[  594.178925][    C0] RSP: 002b:00007ffedf810a20 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  594.178950][    C0] RAX: ffffffffffffffda RBX: 00007fe8e60e4620 RCX: 00007fe8e547ed9c
[  594.178967][    C0] RDX: 0000000000000028 RSI: 00007fe8e60e4670 RDI: 0000000000000003
[  594.178983][    C0] RBP: 0000000000000000 R08: 00007ffedf810a74 R09: 000000000000000c
[  594.179000][    C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  594.179015][    C0] R13: 0000000000000000 R14: 00007fe8e60e4670 R15: 0000000000000000
[  594.179049][    C0]  </TASK>
[  594.179059][    C0] DEBUG: waiting rtnl_mutex for 12112 jiffies.
[  594.179072][    C0] task:syz-executor.2  state:D stack:19488 pid:5126  tgid:5126  ppid:1      flags:0x00004006
[  594.179110][    C0] Call Trace:
[  594.179119][    C0]  <TASK>
[  594.179134][    C0]  __schedule+0x17e8/0x4a20
[  594.179183][    C0]  ? __pfx___schedule+0x10/0x10
[  594.179218][    C0]  ? __pfx_lock_release+0x10/0x10
[  594.179247][    C0]  ? __mutex_trylock_common+0x92/0x2e0
[  594.179290][    C0]  ? schedule+0x90/0x320
[  594.179315][    C0]  schedule+0x14b/0x320
[  594.179343][    C0]  schedule_preempt_disabled+0x13/0x30
[  594.179369][    C0]  __mutex_lock+0x6a4/0xd70
[  594.179402][    C0]  ? __mutex_lock+0x527/0xd70
[  594.179432][    C0]  ? tun_chr_close+0x3e/0x1b0
[  594.179462][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  594.179504][    C0]  ? rtnl_lock+0xe7/0x130
[  594.179533][    C0]  tun_chr_close+0x3e/0x1b0
[  594.179560][    C0]  ? __pfx_tun_chr_close+0x10/0x10
[  594.179589][    C0]  __fput+0x24a/0x8a0
[  594.179632][    C0]  task_work_run+0x24f/0x310
[  594.179670][    C0]  ? __pfx_task_work_run+0x10/0x10
[  594.179703][    C0]  ? do_exit+0xa22/0x28e0
[  594.179731][    C0]  ? kmem_cache_free+0x145/0x350
[  594.179764][    C0]  do_exit+0xa27/0x28e0
[  594.179804][    C0]  ? __pfx_do_exit+0x10/0x10
[  594.179833][    C0]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  594.179862][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  594.179893][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  594.179919][    C0]  ? _raw_spin_lock_irq+0xdf/0x120
[  594.179950][    C0]  do_group_exit+0x207/0x2c0
[  594.179978][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  594.180003][    C0]  ? lockdep_hardirqs_on+0x99/0x150
[  594.180036][    C0]  get_signal+0x16a1/0x1740
[  594.180076][    C0]  ? __pfx_get_signal+0x10/0x10
[  594.180101][    C0]  ? __pfx_hrtimer_nanosleep+0x10/0x10
[  594.180134][    C0]  arch_do_signal_or_restart+0x96/0x830
[  594.180166][    C0]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  594.180192][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  594.180239][    C0]  ? syscall_exit_to_user_mode+0xa3/0x370
[  594.180273][    C0]  syscall_exit_to_user_mode+0xc9/0x370
[  594.180309][    C0]  do_syscall_64+0x100/0x230
[  594.180331][    C0]  ? clear_bhb_loop+0x35/0x90
[  594.180359][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  594.180383][    C0] RIP: 0033:0x7fe0b84a84b5
[  594.180401][    C0] RSP: 002b:00007ffe88946990 EFLAGS: 00000293 ORIG_RAX: 00000000000000e6
[  594.180426][    C0] RAX: 0000000000000000 RBX: 00000000000001b8 RCX: 00007fe0b84a84b5
[  594.180442][    C0] RDX: 00007ffe889469d0 RSI: 0000000000000000 RDI: 0000000000000000
[  594.180458][    C0] RBP: 00007ffe88946a4c R08: 0000000000000000 R09: 7fffffffffffffff
[  594.180475][    C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000030
[  594.180491][    C0] R13: 000000000006b797 R14: 0000000000069135 R15: 0000000000000003
[  594.180524][    C0]  </TASK>
[  594.180535][    C0] DEBUG: waiting rtnl_mutex for 11484 jiffies.
[  594.180547][    C0] task:syz-executor.4  state:D stack:26000 pid:7967  tgid:7966  ppid:6329   flags:0x00004006
[  594.180587][    C0] Call Trace:
[  594.180597][    C0]  <TASK>
[  594.180612][    C0]  __schedule+0x17e8/0x4a20
[  594.180661][    C0]  ? __pfx___schedule+0x10/0x10
[  594.180702][    C0]  ? __pfx_lock_release+0x10/0x10
[  594.180731][    C0]  ? __mutex_trylock_common+0x92/0x2e0
[  594.180774][    C0]  ? schedule+0x90/0x320
[  594.180799][    C0]  schedule+0x14b/0x320
[  594.180828][    C0]  schedule_preempt_disabled+0x13/0x30
[  594.180853][    C0]  __mutex_lock+0x6a4/0xd70
[  594.180886][    C0]  ? __mutex_lock+0x527/0xd70
[  594.180916][    C0]  ? tun_chr_close+0x3e/0x1b0
[  594.180946][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  594.180987][    C0]  ? rtnl_lock+0xe7/0x130
[  594.181017][    C0]  tun_chr_close+0x3e/0x1b0
[  594.181043][    C0]  ? __pfx_tun_chr_close+0x10/0x10
[  594.181072][    C0]  __fput+0x24a/0x8a0
[  594.181115][    C0]  task_work_run+0x24f/0x310
[  594.181153][    C0]  ? __pfx_task_work_run+0x10/0x10
[  594.181187][    C0]  ? do_exit+0xa22/0x28e0
[  594.181220][    C0]  ? kmem_cache_free+0x145/0x350
[  594.181254][    C0]  do_exit+0xa27/0x28e0
[  594.181294][    C0]  ? __pfx_do_exit+0x10/0x10
[  594.181324][    C0]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  594.181353][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  594.181398][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  594.181425][    C0]  ? _raw_spin_lock_irq+0xdf/0x120
[  594.181455][    C0]  do_group_exit+0x207/0x2c0
[  594.181484][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  594.181509][    C0]  ? lockdep_hardirqs_on+0x99/0x150
[  594.181542][    C0]  get_signal+0x16a1/0x1740
[  594.181579][    C0]  ? __pfx_vfs_read+0x10/0x10
[  594.181603][    C0]  ? __pfx_get_signal+0x10/0x10
[  594.181627][    C0]  ? __fget_files+0x29/0x470
[  594.181662][    C0]  arch_do_signal_or_restart+0x96/0x830
[  594.181693][    C0]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  594.181719][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  594.181761][    C0]  ? syscall_exit_to_user_mode+0xa3/0x370
[  594.181795][    C0]  syscall_exit_to_user_mode+0xc9/0x370
[  594.181830][    C0]  do_syscall_64+0x100/0x230
[  594.181853][    C0]  ? clear_bhb_loop+0x35/0x90
[  594.181880][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  594.181904][    C0] RIP: 0033:0x7f1c4d87d0a9
[  594.181923][    C0] RSP: 002b:00007f1c4e59c0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  594.181947][    C0] RAX: 0000000000018ff8 RBX: 00007f1c4d9b3f80 RCX: 00007f1c4d87d0a9
[  594.181964][    C0] RDX: 0000000000018ff8 RSI: 0000000020019680 RDI: 0000000000000003
[  594.181980][    C0] RBP: 00007f1c4d8ec074 R08: 0000000000000000 R09: 0000000000000000
[  594.181996][    C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  594.182011][    C0] R13: 000000000000000b R14: 00007f1c4d9b3f80 R15: 00007fff6aa7f648
[  594.182046][    C0]  </TASK>
[  594.182056][    C0] DEBUG: waiting rtnl_mutex for 9338 jiffies.
[  594.182069][    C0] task:syz-executor.0  state:D stack:24992 pid:8008  tgid:8008  ppid:1      flags:0x00000006
[  594.182107][    C0] Call Trace:
[  594.182117][    C0]  <TASK>
[  594.182131][    C0]  __schedule+0x17e8/0x4a20
[  594.182180][    C0]  ? __pfx___schedule+0x10/0x10
[  594.182215][    C0]  ? __pfx_lock_release+0x10/0x10
[  594.182244][    C0]  ? __mutex_trylock_common+0x92/0x2e0
[  594.182286][    C0]  ? schedule+0x90/0x320
[  594.182311][    C0]  schedule+0x14b/0x320
[  594.182339][    C0]  schedule_preempt_disabled+0x13/0x30
[  594.182365][    C0]  __mutex_lock+0x6a4/0xd70
[  594.182397][    C0]  ? __mutex_lock+0x527/0xd70
[  594.182428][    C0]  ? rtnetlink_rcv_msg+0x839/0x1170
[  594.182455][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  594.182496][    C0]  ? rtnl_lock+0xe7/0x130
[  594.182526][    C0]  rtnetlink_rcv_msg+0x839/0x1170
[  594.182556][    C0]  ? rtnetlink_rcv_msg+0x208/0x1170
[  594.182585][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  594.182609][    C0]  ? is_bpf_text_address+0x285/0x2a0
[  594.182647][    C0]  ? __pfx_validate_chain+0x10/0x10
[  594.182678][    C0]  ? __pfx_validate_chain+0x10/0x10
[  594.182710][    C0]  ? arch_stack_walk+0x16d/0x1b0
[  594.182743][    C0]  ? mark_lock+0x9a/0x360
[  594.182770][    C0]  ? __pfx_validate_chain+0x10/0x10
[  594.182804][    C0]  ? __lock_acquire+0x1359/0x2000
[  594.182848][    C0]  ? mark_lock+0x9a/0x360
[  594.182912][    C0]  ? __lock_acquire+0x1359/0x2000
[  594.182961][    C0]  netlink_rcv_skb+0x1e3/0x430
[  594.182989][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  594.183018][    C0]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  594.183070][    C0]  ? netlink_deliver_tap+0x2e/0x1b0
[  594.183100][    C0]  netlink_unicast+0x7f0/0x990
[  594.183134][    C0]  ? __pfx_netlink_unicast+0x10/0x10
[  594.183157][    C0]  ? __virt_addr_valid+0x183/0x520
[  594.183190][    C0]  ? __check_object_size+0x49c/0x900
[  594.183224][    C0]  ? bpf_lsm_netlink_send+0x9/0x10
[  594.183255][    C0]  netlink_sendmsg+0x8e4/0xcb0
[  594.183295][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  594.183326][    C0]  ? aa_sock_msg_perm+0x91/0x160
[  594.183351][    C0]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  594.183379][    C0]  ? security_socket_sendmsg+0x87/0xb0
[  594.183408][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  594.183434][    C0]  __sock_sendmsg+0x221/0x270
[  594.183464][    C0]  __sys_sendto+0x3a4/0x4f0
[  594.183499][    C0]  ? __pfx___sys_sendto+0x10/0x10
[  594.183556][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  594.183587][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  594.183616][    C0]  ? exc_page_fault+0x590/0x8c0
[  594.183648][    C0]  __x64_sys_sendto+0xde/0x100
[  594.183682][    C0]  do_syscall_64+0xf3/0x230
[  594.183704][    C0]  ? clear_bhb_loop+0x35/0x90
[  594.183733][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  594.183756][    C0] RIP: 0033:0x7f761127ed9c
[  594.183775][    C0] RSP: 002b:00007ffea89e5b40 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  594.183800][    C0] RAX: ffffffffffffffda RBX: 00007f7611ee4620 RCX: 00007f761127ed9c
[  594.183817][    C0] RDX: 0000000000000028 RSI: 00007f7611ee4670 RDI: 0000000000000003
[  594.183834][    C0] RBP: 0000000000000000 R08: 00007ffea89e5b94 R09: 000000000000000c
[  594.183850][    C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  594.183865][    C0] R13: 0000000000000000 R14: 00007f7611ee4670 R15: 0000000000000000
[  594.183899][    C0]  </TASK>
[  594.183911][    C0] 
[  594.183911][    C0] Showing all locks held in the system:
[  594.183924][    C0] 6 locks held by kworker/0:0/8:
[  594.183939][    C0]  #0: ffff888015080948 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  594.184007][    C0]  #1: ffffc900000d7d00 (drain_vmap_work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  594.184071][    C0]  #2: ffffffff8e42bdc8 (vmap_purge_lock){+.+.}-{3:3}, at: drain_vmap_area_work+0x17/0x40
[  594.184134][    C0]  #3: ffffc90000007c00 (net/core/rtnetlink.c:82){+.-.}-{0:0}, at: call_timer_fn+0xc0/0x650
[  594.184193][    C0]  #4: ffffffff8e3357a0 (rcu_read_lock){....}-{1:2}, at: report_rtnl_holders+0x20/0x2d0
[  594.184259][    C0]  #5: ffffffff8e3357a0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0
[  594.184329][    C0] 1 lock held by khungtaskd/30:
[  594.184347][    C0] 5 locks held by kworker/u9:0/54:
[  594.184361][    C0]  #0: ffff88802b0bf148 ((wq_completion)hci6){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  594.184425][    C0]  #1: ffffc90000be7d00 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  594.184490][    C0]  #2: ffff888062d98d88 (&hdev->req_lock){+.+.}-{3:3}, at: hci_cmd_sync_work+0x1ec/0x400
[  594.184552][    C0]  #3: ffff888062d98078 (&hdev->lock){+.+.}-{3:3}, at: hci_abort_conn_sync+0x1ea/0xde0
[  594.184617][    C0]  #4: ffffffff8f7653c8 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_conn_failed+0x185/0x340
[  594.184678][    C0] 3 locks held by kworker/1:2/58:
[  594.184692][    C0]  #0: ffff888015080948 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  594.184756][    C0]  #1: ffffc9000133fd00 ((linkwatch_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  594.184820][    C0]  #2: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: linkwatch_event+0xe/0x60
[  594.184886][    C0] 5 locks held by kworker/u8:4/63:
[  594.184900][    C0]  #0: ffff888015edd948 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  594.184963][    C0]  #1: ffffc900015e7d00 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  594.185027][    C0]  #2: ffffffff8f5eb450 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0x16a/0xcc0
[  594.185091][    C0]  #3: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: default_device_exit_batch+0xe9/0xa90
[  594.185156][    C0]  #4: ffffffff8e33ab78 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x451/0x830
[  594.185259][    C0] 3 locks held by kworker/u8:7/2856:
[  594.185273][    C0]  #0: ffff888029bca148 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  594.185337][    C0]  #1: ffffc90009cf7d00 ((work_completion)(&(&net->ipv6.addr_chk_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  594.185402][    C0]  #2: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_verify_work+0x19/0x30
[  594.185473][    C0] 3 locks held by kworker/u9:1/4490:
[  594.185487][    C0]  #0: ffff88805d729148 ((wq_completion)hci8){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  594.185551][    C0]  #1: ffffc9000d607d00 ((work_completion)(&hdev->power_on)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  594.185615][    C0]  #2: ffff88807e438d88 (&hdev->req_lock){+.+.}-{3:3}, at: hci_power_on+0x1bf/0x6b0
[  594.185682][    C0] 2 locks held by getty/4845:
[  594.185696][    C0]  #0: ffff88802a60e0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  594.185762][    C0]  #1: ffffc900031332f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6b5/0x1e10
[  594.185826][    C0] 1 lock held by syz-executor.1/5118:
[  594.185841][    C0]  #0: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: tun_chr_close+0x3e/0x1b0
[  594.185907][    C0] 1 lock held by syz-executor.2/5126:
[  594.185921][    C0]  #0: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: tun_chr_close+0x3e/0x1b0
[  594.185986][    C0] 5 locks held by kworker/u9:6/5130:
[  594.186000][    C0]  #0: ffff88801ec49148 ((wq_completion)hci3){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  594.186064][    C0]  #1: ffffc90003787d00 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  594.186128][    C0]  #2: ffff88806177cd88 (&hdev->req_lock){+.+.}-{3:3}, at: hci_cmd_sync_work+0x1ec/0x400
[  594.186189][    C0]  #3: ffff88806177c078 (&hdev->lock){+.+.}-{3:3}, at: hci_abort_conn_sync+0x1ea/0xde0
[  594.186260][    C0]  #4: ffffffff8f7653c8 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_conn_failed+0x185/0x340
[  594.186322][    C0] 3 locks held by kworker/1:4/5161:
[  594.186336][    C0]  #0: ffff888015080948 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  594.186400][    C0]  #1: ffffc90003e2fd00 (deferred_process_work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  594.186464][    C0]  #2: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: switchdev_deferred_process_work+0xe/0x20
[  594.186527][    C0] 5 locks held by kworker/u8:10/5210:
[  594.186545][    C0] 7 locks held by syz-executor.3/7689:
[  594.186559][    C0]  #0: ffff88802a018420 (sb_writers#8){.+.+}-{0:0}, at: vfs_write+0x227/0xc90
[  594.186626][    C0]  #1: ffff88807f8ca888 (&of->mutex){+.+.}-{3:3}, at: kernfs_fop_write_iter+0x1eb/0x500
[  594.186690][    C0]  #2: ffff888022dcf788 (kn->active#50){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x20f/0x500
[  594.186761][    C0]  #3: ffffffff8ef04068 (nsim_bus_dev_list_lock){+.+.}-{3:3}, at: del_device_store+0xfc/0x480
[  594.186825][    C0]  #4: ffff88802bebd0e8 (&dev->mutex){....}-{3:3}, at: device_release_driver_internal+0xce/0x7c0
[  594.186887][    C0]  #5: ffff88802bebe250 (&devlink->lock_key#2){+.+.}-{3:3}, at: nsim_drv_remove+0x50/0x160
[  594.186959][    C0]  #6: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: nsim_destroy+0x71/0x5c0
[  594.187022][    C0] 1 lock held by syz-executor.3/7926:
[  594.187037][    C0]  #0: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x839/0x1170
[  594.187117][    C0] 1 lock held by syz-executor.4/7967:
[  594.187131][    C0]  #0: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: tun_chr_close+0x3e/0x1b0
[  594.187197][    C0] 1 lock held by syz-executor.4/7991:
[  594.187217][    C0]  #0: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x839/0x1170
[  594.187280][    C0] 2 locks held by syz-executor.0/7996:
[  594.187294][    C0]  #0: ffff88807d72f408 (&sb->s_type->i_mutex_key#10){+.+.}-{3:3}, at: sock_close+0x90/0x240
[  594.187363][    C0]  #1: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: raw_release+0x1b8/0x8a0
[  594.187424][    C0] 1 lock held by syz-executor.1/8000:
[  594.187439][    C0]  #0: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x839/0x1170
[  594.187502][    C0] 1 lock held by syz-executor.3/8002:
[  594.187516][    C0]  #0: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x839/0x1170
[  594.187579][    C0] 1 lock held by syz-executor.0/8008:
[  594.187593][    C0]  #0: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x839/0x1170
[  594.187657][    C0] 1 lock held by syz-executor.1/8018:
[  594.187671][    C0]  #0: ffff88804c7a0d88 (&hdev->req_lock){+.+.}-{3:3}, at: hci_dev_open+0x1f4/0x300
[  594.187739][    C0] 5 locks held by kworker/u9:3/8022:
[  594.187755][    C0] 2 locks held by syz-executor.2/8027:
[  594.187770][    C0] 
[  594.187777][    C0] =============================================
[  594.187777][    C0] 
[  594.993007][ T5117] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9
[  595.246239][ T8031] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1
[  595.247798][ T8031] Bluetooth: hci4: command tx timeout
[  595.248311][ T8031] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  595.249645][ T8031] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9
[  595.255200][ T8031] Bluetooth: hci10: unexpected cc 0x1003 length: 249 > 9
[  595.256569][ T8031] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  595.258003][ T8031] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4
[  595.258731][ T8033] Bluetooth: hci10: unexpected cc 0x1001 length: 249 > 9
[  595.258926][ T8033] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  595.263179][    C0] DEBUG: holding rtnl_mutex for 19174 jiffies.
[  595.263199][    C0] task:kworker/u8:4    state:D stack:20880 pid:63    tgid:63    ppid:2      flags:0x00004000
[  595.263244][    C0] Workqueue: netns cleanup_net
[  595.263279][    C0] Call Trace:
[  595.263290][    C0]  <TASK>
[  595.263306][    C0]  __schedule+0x17e8/0x4a20
[  595.263359][    C0]  ? __pfx___schedule+0x10/0x10
[  595.263389][    C0]  ? __pfx_lock_release+0x10/0x10
[  595.263416][    C0]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  595.263450][    C0]  ? kthread_data+0x52/0xd0
[  595.263479][    C0]  ? wq_worker_sleeping+0x66/0x240
[  595.263508][    C0]  ? schedule+0x90/0x320
[  595.263533][    C0]  schedule+0x14b/0x320
[  595.263562][    C0]  synchronize_rcu_expedited+0x684/0x830
[  595.263599][    C0]  ? __pfx_synchronize_rcu_expedited+0x10/0x10
[  595.263648][    C0]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[  595.263680][    C0]  ? __pfx___might_resched+0x10/0x10
[  595.263707][    C0]  ? __pfx_autoremove_wake_function+0x10/0x10
[  595.263749][    C0]  synchronize_rcu+0x11b/0x360
[  595.263779][    C0]  ? __pfx_synchronize_rcu+0x10/0x10
[  595.263808][    C0]  ? lockdep_unlock+0x16a/0x300
[  595.263833][    C0]  ? __pfx_lockdep_unlock+0x10/0x10
[  595.263869][    C0]  lockdep_unregister_key+0x4b7/0x540
[  595.263902][    C0]  ? __pfx_lockdep_unregister_key+0x10/0x10
[  595.263934][    C0]  ? rcu_is_watching+0x15/0xb0
[  595.263964][    C0]  ? qdisc_reset+0x3bf/0x5b0
[  595.263997][    C0]  __qdisc_destroy+0x165/0x410
[  595.264028][    C0]  dev_shutdown+0x357/0x440
[  595.264061][    C0]  unregister_netdevice_many_notify+0x977/0x16b0
[  595.264105][    C0]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[  595.264135][    C0]  ? unregister_netdevice_queue+0x26b/0x370
[  595.264169][    C0]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[  595.264203][    C0]  ? batadv_softif_destroy_netlink+0x1e0/0x270
[  595.264239][    C0]  default_device_exit_batch+0xa0f/0xa90
[  595.264277][    C0]  ? __pfx___might_resched+0x10/0x10
[  595.264303][    C0]  ? __pfx_default_device_exit_batch+0x10/0x10
[  595.264339][    C0]  ? cfg802154_pernet_exit+0xc3/0xe0
[  595.264368][    C0]  ? __pfx_default_device_exit_batch+0x10/0x10
[  595.264398][    C0]  cleanup_net+0x89d/0xcc0
[  595.264432][    C0]  ? __pfx_cleanup_net+0x10/0x10
[  595.264473][    C0]  ? process_scheduled_works+0x945/0x1830
[  595.264498][    C0]  process_scheduled_works+0xa2c/0x1830
[  595.264553][    C0]  ? __pfx_process_scheduled_works+0x10/0x10
[  595.264590][    C0]  ? assign_work+0x364/0x3d0
[  595.264621][    C0]  worker_thread+0x86d/0xd50
[  595.264663][    C0]  ? __kthread_parkme+0x169/0x1d0
[  595.264694][    C0]  ? __pfx_worker_thread+0x10/0x10
[  595.264721][    C0]  kthread+0x2f0/0x390
[  595.264749][    C0]  ? __pfx_worker_thread+0x10/0x10
[  595.264774][    C0]  ? __pfx_kthread+0x10/0x10
[  595.264804][    C0]  ret_from_fork+0x4b/0x80
[  595.264831][    C0]  ? __pfx_kthread+0x10/0x10
[  595.264860][    C0]  ret_from_fork_asm+0x1a/0x30
[  595.264906][    C0]  </TASK>
[  595.264916][    C0] DEBUG: waiting rtnl_mutex for 19174 jiffies.
[  595.264929][    C0] task:syz-executor.3  state:D stack:24992 pid:7926  tgid:7926  ppid:1      flags:0x00000006
[  595.264969][    C0] Call Trace:
[  595.264979][    C0]  <TASK>
[  595.264993][    C0]  __schedule+0x17e8/0x4a20
[  595.265043][    C0]  ? __pfx___schedule+0x10/0x10
[  595.265072][    C0]  ? __pfx_lock_release+0x10/0x10
[  595.265105][    C0]  ? __mutex_trylock_common+0x92/0x2e0
[  595.265148][    C0]  ? schedule+0x90/0x320
[  595.265172][    C0]  schedule+0x14b/0x320
[  595.265200][    C0]  schedule_preempt_disabled+0x13/0x30
[  595.265225][    C0]  __mutex_lock+0x6a4/0xd70
[  595.265258][    C0]  ? __mutex_lock+0x527/0xd70
[  595.265288][    C0]  ? rtnetlink_rcv_msg+0x839/0x1170
[  595.265316][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  595.265356][    C0]  ? rtnl_lock+0xe7/0x130
[  595.265385][    C0]  rtnetlink_rcv_msg+0x839/0x1170
[  595.265416][    C0]  ? rtnetlink_rcv_msg+0x208/0x1170
[  595.265445][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  595.265468][    C0]  ? is_bpf_text_address+0x285/0x2a0
[  595.265506][    C0]  ? __pfx_validate_chain+0x10/0x10
[  595.265537][    C0]  ? __pfx_validate_chain+0x10/0x10
[  595.265569][    C0]  ? arch_stack_walk+0x16d/0x1b0
[  595.265602][    C0]  ? mark_lock+0x9a/0x360
[  595.265628][    C0]  ? __pfx_validate_chain+0x10/0x10
[  595.265662][    C0]  ? __lock_acquire+0x1359/0x2000
[  595.265705][    C0]  ? mark_lock+0x9a/0x360
[  595.265738][    C0]  ? __lock_acquire+0x1359/0x2000
[  595.265787][    C0]  netlink_rcv_skb+0x1e3/0x430
[  595.265815][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  595.265841][    C0]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  595.265892][    C0]  ? netlink_deliver_tap+0x2e/0x1b0
[  595.265921][    C0]  netlink_unicast+0x7f0/0x990
[  595.265955][    C0]  ? __pfx_netlink_unicast+0x10/0x10
[  595.265978][    C0]  ? __virt_addr_valid+0x183/0x520
[  595.266011][    C0]  ? __check_object_size+0x49c/0x900
[  595.266040][    C0]  ? bpf_lsm_netlink_send+0x9/0x10
[  595.266071][    C0]  netlink_sendmsg+0x8e4/0xcb0
[  595.266116][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  595.266147][    C0]  ? aa_sock_msg_perm+0x91/0x160
[  595.266172][    C0]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  595.266200][    C0]  ? security_socket_sendmsg+0x87/0xb0
[  595.266231][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  595.266256][    C0]  __sock_sendmsg+0x221/0x270
[  595.266287][    C0]  __sys_sendto+0x3a4/0x4f0
[  595.266323][    C0]  ? __pfx___sys_sendto+0x10/0x10
[  595.266380][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  595.266410][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  595.266439][    C0]  ? exc_page_fault+0x590/0x8c0
[  595.266472][    C0]  __x64_sys_sendto+0xde/0x100
[  595.266506][    C0]  do_syscall_64+0xf3/0x230
[  595.266528][    C0]  ? clear_bhb_loop+0x35/0x90
[  595.266557][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  595.266582][    C0] RIP: 0033:0x7f52d2a7ed9c
[  595.266601][    C0] RSP: 002b:00007ffedf56b290 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  595.266627][    C0] RAX: ffffffffffffffda RBX: 00007f52d36e4620 RCX: 00007f52d2a7ed9c
[  595.266645][    C0] RDX: 0000000000000028 RSI: 00007f52d36e4670 RDI: 0000000000000003
[  595.266662][    C0] RBP: 0000000000000000 R08: 00007ffedf56b2e4 R09: 000000000000000c
[  595.266678][    C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  595.266693][    C0] R13: 0000000000000000 R14: 00007f52d36e4670 R15: 0000000000000000
[  595.266726][    C0]  </TASK>
[  595.266736][    C0] DEBUG: waiting rtnl_mutex for 19094 jiffies.
[  595.266750][    C0] task:kworker/1:2     state:D stack:22200 pid:58    tgid:58    ppid:2      flags:0x00004000
[  595.266789][    C0] Workqueue: events linkwatch_event
[  595.266817][    C0] Call Trace:
[  595.266827][    C0]  <TASK>
[  595.266840][    C0]  __schedule+0x17e8/0x4a20
[  595.266889][    C0]  ? __pfx___schedule+0x10/0x10
[  595.266916][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  595.266943][    C0]  ? __pfx_lock_release+0x10/0x10
[  595.266971][    C0]  ? kick_pool+0x1bd/0x620
[  595.267004][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  595.267028][    C0]  ? lockdep_hardirqs_on+0x99/0x150
[  595.267059][    C0]  ? schedule+0x90/0x320
[  595.267088][    C0]  schedule+0x14b/0x320
[  595.267117][    C0]  schedule_preempt_disabled+0x13/0x30
[  595.267142][    C0]  __mutex_lock+0x6a4/0xd70
[  595.267174][    C0]  ? __mutex_lock+0x527/0xd70
[  595.267204][    C0]  ? linkwatch_event+0xe/0x60
[  595.267233][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  595.267270][    C0]  ? process_scheduled_works+0x945/0x1830
[  595.267296][    C0]  ? rtnl_lock+0xe7/0x130
[  595.267323][    C0]  ? process_scheduled_works+0x945/0x1830
[  595.267348][    C0]  linkwatch_event+0xe/0x60
[  595.267374][    C0]  process_scheduled_works+0xa2c/0x1830
[  595.267430][    C0]  ? __pfx_process_scheduled_works+0x10/0x10
[  595.267465][    C0]  ? assign_work+0x364/0x3d0
[  595.267497][    C0]  worker_thread+0x86d/0xd50
[  595.267532][    C0]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  595.267562][    C0]  ? __kthread_parkme+0x169/0x1d0
[  595.267593][    C0]  ? __pfx_worker_thread+0x10/0x10
[  595.267620][    C0]  kthread+0x2f0/0x390
[  595.267647][    C0]  ? __pfx_worker_thread+0x10/0x10
[  595.267673][    C0]  ? __pfx_kthread+0x10/0x10
[  595.267703][    C0]  ret_from_fork+0x4b/0x80
[  595.267729][    C0]  ? __pfx_kthread+0x10/0x10
[  595.267757][    C0]  ret_from_fork_asm+0x1a/0x30
[  595.267802][    C0]  </TASK>
[  595.267812][    C0] DEBUG: waiting rtnl_mutex for 19078 jiffies.
[  595.267824][    C0] task:kworker/u8:7    state:D stack:20920 pid:2856  tgid:2856  ppid:2      flags:0x00004000
[  595.267861][    C0] Workqueue: ipv6_addrconf addrconf_verify_work
[  595.267893][    C0] Call Trace:
[  595.267901][    C0]  <TASK>
[  595.267916][    C0]  __schedule+0x17e8/0x4a20
[  595.267965][    C0]  ? __pfx___schedule+0x10/0x10
[  595.267994][    C0]  ? __pfx_lock_release+0x10/0x10
[  595.268022][    C0]  ? __mutex_trylock_common+0x92/0x2e0
[  595.268054][    C0]  ? kthread_data+0x52/0xd0
[  595.268080][    C0]  ? schedule+0x90/0x320
[  595.268110][    C0]  ? wq_worker_sleeping+0x66/0x240
[  595.268138][    C0]  ? schedule+0x90/0x320
[  595.268163][    C0]  schedule+0x14b/0x320
[  595.268191][    C0]  schedule_preempt_disabled+0x13/0x30
[  595.268216][    C0]  __mutex_lock+0x6a4/0xd70
[  595.268248][    C0]  ? __mutex_lock+0x527/0xd70
[  595.268278][    C0]  ? addrconf_verify_work+0x19/0x30
[  595.268310][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  595.268336][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  595.268367][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  595.268400][    C0]  ? process_scheduled_works+0x945/0x1830
[  595.268425][    C0]  ? rtnl_lock+0xe7/0x130
[  595.268453][    C0]  ? process_scheduled_works+0x945/0x1830
[  595.268477][    C0]  addrconf_verify_work+0x19/0x30
[  595.268507][    C0]  process_scheduled_works+0xa2c/0x1830
[  595.268561][    C0]  ? __pfx_process_scheduled_works+0x10/0x10
[  595.268596][    C0]  ? assign_work+0x364/0x3d0
[  595.268627][    C0]  worker_thread+0x86d/0xd50
[  595.268669][    C0]  ? __kthread_parkme+0x169/0x1d0
[  595.268700][    C0]  ? __pfx_worker_thread+0x10/0x10
[  595.268727][    C0]  kthread+0x2f0/0x390
[  595.268755][    C0]  ? __pfx_worker_thread+0x10/0x10
[  595.268780][    C0]  ? __pfx_kthread+0x10/0x10
[  595.268810][    C0]  ret_from_fork+0x4b/0x80
[  595.268835][    C0]  ? __pfx_kthread+0x10/0x10
[  595.268863][    C0]  ret_from_fork_asm+0x1a/0x30
[  595.268908][    C0]  </TASK>
[  595.268917][    C0] DEBUG: waiting rtnl_mutex for 19050 jiffies.
[  595.268930][    C0] task:syz-executor.3  state:D stack:21024 pid:7689  tgid:7689  ppid:1      flags:0x00004006
[  595.268967][    C0] Call Trace:
[  595.268975][    C0]  <TASK>
[  595.268990][    C0]  __schedule+0x17e8/0x4a20
[  595.269039][    C0]  ? __pfx___schedule+0x10/0x10
[  595.269069][    C0]  ? __pfx_lock_release+0x10/0x10
[  595.269101][    C0]  ? __mutex_trylock_common+0x92/0x2e0
[  595.269144][    C0]  ? schedule+0x90/0x320
[  595.269168][    C0]  schedule+0x14b/0x320
[  595.269196][    C0]  schedule_preempt_disabled+0x13/0x30
[  595.269222][    C0]  __mutex_lock+0x6a4/0xd70
[  595.269249][    C0]  ? do_raw_spin_unlock+0x13c/0x8b0
[  595.269275][    C0]  ? __mutex_lock+0x527/0xd70
[  595.269305][    C0]  ? nsim_destroy+0x71/0x5c0
[  595.269333][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  595.269365][    C0]  ? __pfx_mntput_no_expire+0x10/0x10
[  595.269393][    C0]  ? rtnl_lock+0xe7/0x130
[  595.269421][    C0]  nsim_destroy+0x71/0x5c0
[  595.269454][    C0]  __nsim_dev_port_del+0x14b/0x1b0
[  595.269487][    C0]  nsim_dev_reload_destroy+0x28a/0x490
[  595.269521][    C0]  ? __pfx_nsim_bus_remove+0x10/0x10
[  595.269545][    C0]  nsim_drv_remove+0x58/0x160
[  595.269575][    C0]  device_release_driver_internal+0x4a9/0x7c0
[  595.269611][    C0]  bus_remove_device+0x34f/0x420
[  595.269646][    C0]  device_del+0x57a/0x9b0
[  595.269678][    C0]  ? __pfx_device_del+0x10/0x10
[  595.269710][    C0]  device_unregister+0x20/0xc0
[  595.269732][    C0]  del_device_store+0x363/0x480
[  595.269761][    C0]  ? __pfx_del_device_store+0x10/0x10
[  595.269790][    C0]  ? sysfs_kf_write+0x182/0x2a0
[  595.269818][    C0]  ? bus_attr_store+0x4f/0xa0
[  595.269848][    C0]  ? __pfx_sysfs_kf_write+0x10/0x10
[  595.269875][    C0]  kernfs_fop_write_iter+0x3a1/0x500
[  595.269909][    C0]  vfs_write+0xa72/0xc90
[  595.269937][    C0]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  595.269965][    C0]  ? __pfx_vfs_write+0x10/0x10
[  595.270012][    C0]  ksys_write+0x1a0/0x2c0
[  595.270042][    C0]  ? __pfx_ksys_write+0x10/0x10
[  595.270067][    C0]  ? do_syscall_64+0x100/0x230
[  595.270097][    C0]  ? do_syscall_64+0xb6/0x230
[  595.270122][    C0]  do_syscall_64+0xf3/0x230
[  595.270144][    C0]  ? clear_bhb_loop+0x35/0x90
[  595.270171][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  595.270195][    C0] RIP: 0033:0x7f73e287bdef
[  595.270213][    C0] RSP: 002b:00007ffc30877830 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  595.270237][    C0] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00007f73e287bdef
[  595.270254][    C0] RDX: 0000000000000001 RSI: 00007ffc30877880 RDI: 0000000000000005
[  595.270270][    C0] RBP: 00007f73e28da33a R08: 0000000000000000 R09: 00007ffc30877687
[  595.270286][    C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  595.270301][    C0] R13: 00007ffc30877880 R14: 00007f73e34e4620 R15: 0000000000000003
[  595.270335][    C0]  </TASK>
[  595.270345][    C0] DEBUG: waiting rtnl_mutex for 18672 jiffies.
[  595.270357][    C0] task:syz-executor.1  state:D stack:19616 pid:5118  tgid:5118  ppid:1      flags:0x00004002
[  595.270393][    C0] Call Trace:
[  595.270403][    C0]  <TASK>
[  595.270417][    C0]  __schedule+0x17e8/0x4a20
[  595.270466][    C0]  ? __pfx___schedule+0x10/0x10
[  595.270496][    C0]  ? __pfx_lock_release+0x10/0x10
[  595.270524][    C0]  ? __mutex_trylock_common+0x92/0x2e0
[  595.270567][    C0]  ? schedule+0x90/0x320
[  595.270591][    C0]  schedule+0x14b/0x320
[  595.270619][    C0]  schedule_preempt_disabled+0x13/0x30
[  595.270644][    C0]  __mutex_lock+0x6a4/0xd70
[  595.270677][    C0]  ? __mutex_lock+0x527/0xd70
[  595.270707][    C0]  ? tun_chr_close+0x3e/0x1b0
[  595.270737][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  595.270779][    C0]  ? rtnl_lock+0xe7/0x130
[  595.270808][    C0]  tun_chr_close+0x3e/0x1b0
[  595.270834][    C0]  ? __pfx_tun_chr_close+0x10/0x10
[  595.270863][    C0]  __fput+0x24a/0x8a0
[  595.270906][    C0]  task_work_run+0x24f/0x310
[  595.270944][    C0]  ? __pfx_task_work_run+0x10/0x10
[  595.270977][    C0]  ? do_exit+0xa22/0x28e0
[  595.271004][    C0]  ? kmem_cache_free+0x145/0x350
[  595.271038][    C0]  do_exit+0xa27/0x28e0
[  595.271077][    C0]  ? __pfx_do_exit+0x10/0x10
[  595.271112][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  595.271142][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  595.271176][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  595.271200][    C0]  ? lockdep_hardirqs_on+0x99/0x150
[  595.271233][    C0]  do_group_exit+0x207/0x2c0
[  595.271269][    C0]  __x64_sys_exit_group+0x3f/0x40
[  595.271299][    C0]  do_syscall_64+0xf3/0x230
[  595.271320][    C0]  ? clear_bhb_loop+0x35/0x90
[  595.271348][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  595.271372][    C0] RIP: 0033:0x7f2c9047d0a9
[  595.271390][    C0] RSP: 002b:00007ffe1ca69468 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[  595.271413][    C0] RAX: ffffffffffffffda RBX: 00007f2c904d96eb RCX: 00007f2c9047d0a9
[  595.271431][    C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001
[  595.271446][    C0] RBP: 0000000000000075 R08: 00007ffe1ca67205 R09: 00007ffe1ca6a720
[  595.271463][    C0] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe1ca6a720
[  595.271479][    C0] R13: 00007f2c904d96c6 R14: 000055558c5f3430 R15: 0000000000000006
[  595.271513][    C0]  </TASK>
[  595.271523][    C0] DEBUG: waiting rtnl_mutex for 16505 jiffies.
[  595.271535][    C0] task:kworker/1:4     state:D stack:23664 pid:5161  tgid:5161  ppid:2      flags:0x00004000
[  595.271574][    C0] Workqueue: events switchdev_deferred_process_work
[  595.271600][    C0] Call Trace:
[  595.271609][    C0]  <TASK>
[  595.271624][    C0]  __schedule+0x17e8/0x4a20
[  595.271673][    C0]  ? __pfx___schedule+0x10/0x10
[  595.271700][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  595.271728][    C0]  ? __pfx_lock_release+0x10/0x10
[  595.271757][    C0]  ? kick_pool+0x45c/0x620
[  595.271789][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  595.271813][    C0]  ? lockdep_hardirqs_on+0x99/0x150
[  595.271843][    C0]  ? schedule+0x90/0x320
[  595.271868][    C0]  schedule+0x14b/0x320
[  595.271896][    C0]  schedule_preempt_disabled+0x13/0x30
[  595.271921][    C0]  __mutex_lock+0x6a4/0xd70
[  595.271954][    C0]  ? __mutex_lock+0x527/0xd70
[  595.271984][    C0]  ? switchdev_deferred_process_work+0xe/0x20
[  595.272011][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  595.272049][    C0]  ? process_scheduled_works+0x945/0x1830
[  595.272074][    C0]  ? rtnl_lock+0xe7/0x130
[  595.272107][    C0]  ? process_scheduled_works+0x945/0x1830
[  595.272132][    C0]  switchdev_deferred_process_work+0xe/0x20
[  595.272156][    C0]  process_scheduled_works+0xa2c/0x1830
[  595.272228][    C0]  ? __pfx_process_scheduled_works+0x10/0x10
[  595.272264][    C0]  ? assign_work+0x364/0x3d0
[  595.272296][    C0]  worker_thread+0x86d/0xd50
[  595.272338][    C0]  ? __kthread_parkme+0x169/0x1d0
[  595.272368][    C0]  ? __pfx_worker_thread+0x10/0x10
[  595.272395][    C0]  kthread+0x2f0/0x390
[  595.272423][    C0]  ? __pfx_worker_thread+0x10/0x10
[  595.272449][    C0]  ? __pfx_kthread+0x10/0x10
[  595.272479][    C0]  ret_from_fork+0x4b/0x80
[  595.272505][    C0]  ? __pfx_kthread+0x10/0x10
[  595.272534][    C0]  ret_from_fork_asm+0x1a/0x30
[  595.272579][    C0]  </TASK>
[  595.272589][    C0] DEBUG: waiting rtnl_mutex for 13956 jiffies.
[  595.272602][    C0] task:syz-executor.4  state:D stack:24992 pid:7991  tgid:7991  ppid:1      flags:0x00000006
[  595.272641][    C0] Call Trace:
[  595.272650][    C0]  <TASK>
[  595.272664][    C0]  __schedule+0x17e8/0x4a20
[  595.272714][    C0]  ? __pfx___schedule+0x10/0x10
[  595.272743][    C0]  ? __pfx_lock_release+0x10/0x10
[  595.272772][    C0]  ? __mutex_trylock_common+0x92/0x2e0
[  595.272815][    C0]  ? schedule+0x90/0x320
[  595.272838][    C0]  schedule+0x14b/0x320
[  595.272900][    C0]  schedule_preempt_disabled+0x13/0x30
[  595.272927][    C0]  __mutex_lock+0x6a4/0xd70
[  595.272959][    C0]  ? __mutex_lock+0x527/0xd70
[  595.272989][    C0]  ? rtnetlink_rcv_msg+0x839/0x1170
[  595.273016][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  595.273057][    C0]  ? rtnl_lock+0xe7/0x130
[  595.273091][    C0]  rtnetlink_rcv_msg+0x839/0x1170
[  595.273121][    C0]  ? rtnetlink_rcv_msg+0x208/0x1170
[  595.273150][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  595.273175][    C0]  ? is_bpf_text_address+0x285/0x2a0
[  595.273212][    C0]  ? __pfx_validate_chain+0x10/0x10
[  595.273243][    C0]  ? __pfx_validate_chain+0x10/0x10
[  595.273274][    C0]  ? arch_stack_walk+0x16d/0x1b0
[  595.273307][    C0]  ? mark_lock+0x9a/0x360
[  595.273334][    C0]  ? __pfx_validate_chain+0x10/0x10
[  595.273367][    C0]  ? __lock_acquire+0x1359/0x2000
[  595.273410][    C0]  ? mark_lock+0x9a/0x360
[  595.273443][    C0]  ? __lock_acquire+0x1359/0x2000
[  595.273492][    C0]  netlink_rcv_skb+0x1e3/0x430
[  595.273520][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  595.273548][    C0]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  595.273600][    C0]  ? netlink_deliver_tap+0x2e/0x1b0
[  595.273629][    C0]  netlink_unicast+0x7f0/0x990
[  595.273664][    C0]  ? __pfx_netlink_unicast+0x10/0x10
[  595.273686][    C0]  ? __virt_addr_valid+0x183/0x520
[  595.273719][    C0]  ? __check_object_size+0x49c/0x900
[  595.273747][    C0]  ? bpf_lsm_netlink_send+0x9/0x10
[  595.273779][    C0]  netlink_sendmsg+0x8e4/0xcb0
[  595.273819][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  595.273848][    C0]  ? aa_sock_msg_perm+0x91/0x160
[  595.273874][    C0]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  595.273901][    C0]  ? security_socket_sendmsg+0x87/0xb0
[  595.273931][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  595.273956][    C0]  __sock_sendmsg+0x221/0x270
[  595.273987][    C0]  __sys_sendto+0x3a4/0x4f0
[  595.274022][    C0]  ? __pfx___sys_sendto+0x10/0x10
[  595.274079][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  595.274114][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  595.274143][    C0]  ? exc_page_fault+0x590/0x8c0
[  595.274175][    C0]  __x64_sys_sendto+0xde/0x100
[  595.274209][    C0]  do_syscall_64+0xf3/0x230
[  595.274231][    C0]  ? clear_bhb_loop+0x35/0x90
[  595.274258][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  595.274282][    C0] RIP: 0033:0x7f1ba8c7ed9c
[  595.274301][    C0] RSP: 002b:00007ffc19b63030 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  595.274326][    C0] RAX: ffffffffffffffda RBX: 00007f1ba98e4620 RCX: 00007f1ba8c7ed9c
[  595.274344][    C0] RDX: 0000000000000028 RSI: 00007f1ba98e4670 RDI: 0000000000000003
[  595.274360][    C0] RBP: 0000000000000000 R08: 00007ffc19b63084 R09: 000000000000000c
[  595.274375][    C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  595.274391][    C0] R13: 0000000000000000 R14: 00007f1ba98e4670 R15: 0000000000000000
[  595.274424][    C0]  </TASK>
[  595.274434][    C0] DEBUG: waiting rtnl_mutex for 13007 jiffies.
[  595.274446][    C0] task:syz-executor.0  state:D stack:24672 pid:7996  tgid:7996  ppid:5682   flags:0x00000006
[  595.274484][    C0] Call Trace:
[  595.274493][    C0]  <TASK>
[  595.274508][    C0]  __schedule+0x17e8/0x4a20
[  595.274557][    C0]  ? __pfx___schedule+0x10/0x10
[  595.274586][    C0]  ? __pfx_lock_release+0x10/0x10
[  595.274614][    C0]  ? __mutex_trylock_common+0x92/0x2e0
[  595.274657][    C0]  ? schedule+0x90/0x320
[  595.274681][    C0]  schedule+0x14b/0x320
[  595.274709][    C0]  schedule_preempt_disabled+0x13/0x30
[  595.274735][    C0]  __mutex_lock+0x6a4/0xd70
[  595.274767][    C0]  ? __mutex_lock+0x527/0xd70
[  595.274797][    C0]  ? raw_release+0x1b8/0x8a0
[  595.274821][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  595.274857][    C0]  ? do_raw_spin_unlock+0x13c/0x8b0
[  595.274885][    C0]  ? rtnl_lock+0xe7/0x130
[  595.274915][    C0]  raw_release+0x1b8/0x8a0
[  595.274948][    C0]  sock_close+0xbc/0x240
[  595.274972][    C0]  ? __pfx_sock_close+0x10/0x10
[  595.274998][    C0]  __fput+0x24a/0x8a0
[  595.275040][    C0]  task_work_run+0x24f/0x310
[  595.275078][    C0]  ? __pfx_task_work_run+0x10/0x10
[  595.275118][    C0]  ? syscall_exit_to_user_mode+0xa3/0x370
[  595.275153][    C0]  syscall_exit_to_user_mode+0x168/0x370
[  595.275187][    C0]  do_syscall_64+0x100/0x230
[  595.275209][    C0]  ? clear_bhb_loop+0x35/0x90
[  595.275237][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  595.275260][    C0] RIP: 0033:0x7f870b67d0a9
[  595.275278][    C0] RSP: 002b:00007ffec24f1108 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  595.275302][    C0] RAX: 0000000000000000 RBX: 0000000000071917 RCX: 00007f870b67d0a9
[  595.275319][    C0] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[  595.275334][    C0] RBP: ffffffffffffffff R08: 0000000000000001 R09: 0000001400000000
[  595.275351][    C0] R10: 00007f870b600000 R11: 0000000000000246 R12: 00007f870b7b3f80
[  595.275367][    C0] R13: 00007f870b7b3f8c R14: 0000000000000032 R15: 00007f870b7b5980
[  595.275401][    C0]  </TASK>
[  595.275411][    C0] DEBUG: waiting rtnl_mutex for 12242 jiffies.
[  595.275424][    C0] task:syz-executor.1  state:D stack:24992 pid:8000  tgid:8000  ppid:1      flags:0x00000006
[  595.275463][    C0] Call Trace:
[  595.275472][    C0]  <TASK>
[  595.275487][    C0]  __schedule+0x17e8/0x4a20
[  595.275536][    C0]  ? __pfx___schedule+0x10/0x10
[  595.275565][    C0]  ? __pfx_lock_release+0x10/0x10
[  595.275594][    C0]  ? __mutex_trylock_common+0x92/0x2e0
[  595.275636][    C0]  ? schedule+0x90/0x320
[  595.275661][    C0]  schedule+0x14b/0x320
[  595.275689][    C0]  schedule_preempt_disabled+0x13/0x30
[  595.275713][    C0]  __mutex_lock+0x6a4/0xd70
[  595.275745][    C0]  ? __mutex_lock+0x527/0xd70
[  595.275776][    C0]  ? rtnetlink_rcv_msg+0x839/0x1170
[  595.275803][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  595.275843][    C0]  ? rtnl_lock+0xe7/0x130
[  595.275873][    C0]  rtnetlink_rcv_msg+0x839/0x1170
[  595.275903][    C0]  ? rtnetlink_rcv_msg+0x208/0x1170
[  595.275932][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  595.275956][    C0]  ? is_bpf_text_address+0x285/0x2a0
[  595.275993][    C0]  ? __pfx_validate_chain+0x10/0x10
[  595.276024][    C0]  ? __pfx_validate_chain+0x10/0x10
[  595.276055][    C0]  ? arch_stack_walk+0x16d/0x1b0
[  595.276093][    C0]  ? mark_lock+0x9a/0x360
[  595.276120][    C0]  ? __pfx_validate_chain+0x10/0x10
[  595.276153][    C0]  ? __lock_acquire+0x1359/0x2000
[  595.276196][    C0]  ? mark_lock+0x9a/0x360
[  595.276229][    C0]  ? __lock_acquire+0x1359/0x2000
[  595.276278][    C0]  netlink_rcv_skb+0x1e3/0x430
[  595.276305][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  595.276333][    C0]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  595.276385][    C0]  ? netlink_deliver_tap+0x2e/0x1b0
[  595.276414][    C0]  netlink_unicast+0x7f0/0x990
[  595.276448][    C0]  ? __pfx_netlink_unicast+0x10/0x10
[  595.276470][    C0]  ? __virt_addr_valid+0x183/0x520
[  595.276503][    C0]  ? __check_object_size+0x49c/0x900
[  595.276531][    C0]  ? bpf_lsm_netlink_send+0x9/0x10
[  595.276562][    C0]  netlink_sendmsg+0x8e4/0xcb0
[  595.276602][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  595.276632][    C0]  ? aa_sock_msg_perm+0x91/0x160
[  595.276657][    C0]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  595.276684][    C0]  ? security_socket_sendmsg+0x87/0xb0
[  595.276714][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  595.276739][    C0]  __sock_sendmsg+0x221/0x270
[  595.276769][    C0]  __sys_sendto+0x3a4/0x4f0
[  595.276804][    C0]  ? __pfx___sys_sendto+0x10/0x10
[  595.276861][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  595.276892][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  595.276920][    C0]  ? exc_page_fault+0x590/0x8c0
[  595.276952][    C0]  __x64_sys_sendto+0xde/0x100
[  595.276986][    C0]  do_syscall_64+0xf3/0x230
[  595.277008][    C0]  ? clear_bhb_loop+0x35/0x90
[  595.277036][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  595.277060][    C0] RIP: 0033:0x7fb783a7ed9c
[  595.277078][    C0] RSP: 002b:00007ffd29566b80 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  595.277107][    C0] RAX: ffffffffffffffda RBX: 00007fb7846e4620 RCX: 00007fb783a7ed9c
[  595.277125][    C0] RDX: 0000000000000028 RSI: 00007fb7846e4670 RDI: 0000000000000003
[  595.277140][    C0] RBP: 0000000000000000 R08: 00007ffd29566bd4 R09: 000000000000000c
[  595.277156][    C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  595.277171][    C0] R13: 0000000000000000 R14: 00007fb7846e4670 R15: 0000000000000000
[  595.277205][    C0]  </TASK>
[  595.277214][    C0] DEBUG: waiting rtnl_mutex for 12222 jiffies.
[  595.277227][    C0] task:syz-executor.3  state:D stack:24992 pid:8002  tgid:8002  ppid:1      flags:0x00000006
[  595.277264][    C0] Call Trace:
[  595.277273][    C0]  <TASK>
[  595.277288][    C0]  __schedule+0x17e8/0x4a20
[  595.277337][    C0]  ? __pfx___schedule+0x10/0x10
[  595.277367][    C0]  ? __pfx_lock_release+0x10/0x10
[  595.277395][    C0]  ? __mutex_trylock_common+0x92/0x2e0
[  595.277438][    C0]  ? schedule+0x90/0x320
[  595.277462][    C0]  schedule+0x14b/0x320
[  595.277491][    C0]  schedule_preempt_disabled+0x13/0x30
[  595.277516][    C0]  __mutex_lock+0x6a4/0xd70
[  595.277549][    C0]  ? __mutex_lock+0x527/0xd70
[  595.277578][    C0]  ? rtnetlink_rcv_msg+0x839/0x1170
[  595.277606][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  595.277646][    C0]  ? rtnl_lock+0xe7/0x130
[  595.277675][    C0]  rtnetlink_rcv_msg+0x839/0x1170
[  595.277705][    C0]  ? rtnetlink_rcv_msg+0x208/0x1170
[  595.277734][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  595.277758][    C0]  ? is_bpf_text_address+0x285/0x2a0
[  595.277795][    C0]  ? __pfx_validate_chain+0x10/0x10
[  595.277840][    C0]  ? __pfx_validate_chain+0x10/0x10
[  595.277872][    C0]  ? arch_stack_walk+0x16d/0x1b0
[  595.277905][    C0]  ? mark_lock+0x9a/0x360
[  595.277931][    C0]  ? __pfx_validate_chain+0x10/0x10
[  595.277965][    C0]  ? __lock_acquire+0x1359/0x2000
[  595.278008][    C0]  ? mark_lock+0x9a/0x360
[  595.278040][    C0]  ? __lock_acquire+0x1359/0x2000
[  595.278093][    C0]  netlink_rcv_skb+0x1e3/0x430
[  595.278121][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  595.278149][    C0]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  595.278200][    C0]  ? netlink_deliver_tap+0x2e/0x1b0
[  595.278229][    C0]  netlink_unicast+0x7f0/0x990
[  595.278263][    C0]  ? __pfx_netlink_unicast+0x10/0x10
[  595.278285][    C0]  ? __virt_addr_valid+0x183/0x520
[  595.278316][    C0]  ? __check_object_size+0x49c/0x900
[  595.278345][    C0]  ? bpf_lsm_netlink_send+0x9/0x10
[  595.278375][    C0]  netlink_sendmsg+0x8e4/0xcb0
[  595.278415][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  595.278444][    C0]  ? aa_sock_msg_perm+0x91/0x160
[  595.278470][    C0]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  595.278497][    C0]  ? security_socket_sendmsg+0x87/0xb0
[  595.278527][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  595.278552][    C0]  __sock_sendmsg+0x221/0x270
[  595.278582][    C0]  __sys_sendto+0x3a4/0x4f0
[  595.278616][    C0]  ? __pfx___sys_sendto+0x10/0x10
[  595.278674][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  595.278704][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  595.278733][    C0]  ? exc_page_fault+0x590/0x8c0
[  595.278765][    C0]  __x64_sys_sendto+0xde/0x100
[  595.278798][    C0]  do_syscall_64+0xf3/0x230
[  595.278820][    C0]  ? clear_bhb_loop+0x35/0x90
[  595.278847][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  595.278871][    C0] RIP: 0033:0x7fe8e547ed9c
[  595.278890][    C0] RSP: 002b:00007ffedf810a20 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  595.278914][    C0] RAX: ffffffffffffffda RBX: 00007fe8e60e4620 RCX: 00007fe8e547ed9c
[  595.278932][    C0] RDX: 0000000000000028 RSI: 00007fe8e60e4670 RDI: 0000000000000003
[  595.278948][    C0] RBP: 0000000000000000 R08: 00007ffedf810a74 R09: 000000000000000c
[  595.278964][    C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  595.278979][    C0] R13: 0000000000000000 R14: 00007fe8e60e4670 R15: 0000000000000000
[  595.279012][    C0]  </TASK>
[  595.279022][    C0] DEBUG: waiting rtnl_mutex for 12222 jiffies.
[  595.279035][    C0] task:syz-executor.2  state:D stack:19488 pid:5126  tgid:5126  ppid:1      flags:0x00004006
[  595.279072][    C0] Call Trace:
[  595.279086][    C0]  <TASK>
[  595.279101][    C0]  __schedule+0x17e8/0x4a20
[  595.279150][    C0]  ? __pfx___schedule+0x10/0x10
[  595.279179][    C0]  ? __pfx_lock_release+0x10/0x10
[  595.279207][    C0]  ? __mutex_trylock_common+0x92/0x2e0
[  595.279250][    C0]  ? schedule+0x90/0x320
[  595.279274][    C0]  schedule+0x14b/0x320
[  595.279302][    C0]  schedule_preempt_disabled+0x13/0x30
[  595.279327][    C0]  __mutex_lock+0x6a4/0xd70
[  595.279360][    C0]  ? __mutex_lock+0x527/0xd70
[  595.279390][    C0]  ? tun_chr_close+0x3e/0x1b0
[  595.279420][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  595.279461][    C0]  ? rtnl_lock+0xe7/0x130
[  595.279491][    C0]  tun_chr_close+0x3e/0x1b0
[  595.279517][    C0]  ? __pfx_tun_chr_close+0x10/0x10
[  595.279546][    C0]  __fput+0x24a/0x8a0
[  595.279588][    C0]  task_work_run+0x24f/0x310
[  595.279626][    C0]  ? __pfx_task_work_run+0x10/0x10
[  595.279659][    C0]  ? do_exit+0xa22/0x28e0
[  595.279686][    C0]  ? kmem_cache_free+0x145/0x350
[  595.279720][    C0]  do_exit+0xa27/0x28e0
[  595.279759][    C0]  ? __pfx_do_exit+0x10/0x10
[  595.279789][    C0]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  595.279818][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  595.279847][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  595.279873][    C0]  ? _raw_spin_lock_irq+0xdf/0x120
[  595.279904][    C0]  do_group_exit+0x207/0x2c0
[  595.279932][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  595.279957][    C0]  ? lockdep_hardirqs_on+0x99/0x150
[  595.279990][    C0]  get_signal+0x16a1/0x1740
[  595.280030][    C0]  ? __pfx_get_signal+0x10/0x10
[  595.280053][    C0]  ? __pfx_hrtimer_nanosleep+0x10/0x10
[  595.280094][    C0]  arch_do_signal_or_restart+0x96/0x830
[  595.280126][    C0]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  595.280151][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  595.280193][    C0]  ? syscall_exit_to_user_mode+0xa3/0x370
[  595.280227][    C0]  syscall_exit_to_user_mode+0xc9/0x370
[  595.280261][    C0]  do_syscall_64+0x100/0x230
[  595.280284][    C0]  ? clear_bhb_loop+0x35/0x90
[  595.280311][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  595.280335][    C0] RIP: 0033:0x7fe0b84a84b5
[  595.280353][    C0] RSP: 002b:00007ffe88946990 EFLAGS: 00000293 ORIG_RAX: 00000000000000e6
[  595.280377][    C0] RAX: 0000000000000000 RBX: 00000000000001b8 RCX: 00007fe0b84a84b5
[  595.280394][    C0] RDX: 00007ffe889469d0 RSI: 0000000000000000 RDI: 0000000000000000
[  595.280410][    C0] RBP: 00007ffe88946a4c R08: 0000000000000000 R09: 7fffffffffffffff
[  595.280426][    C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000030
[  595.280442][    C0] R13: 000000000006b797 R14: 0000000000069135 R15: 0000000000000003
[  595.280474][    C0]  </TASK>
[  595.280484][    C0] DEBUG: waiting rtnl_mutex for 11594 jiffies.
[  595.280497][    C0] task:syz-executor.4  state:D stack:26000 pid:7967  tgid:7966  ppid:6329   flags:0x00004006
[  595.280536][    C0] Call Trace:
[  595.280545][    C0]  <TASK>
[  595.280559][    C0]  __schedule+0x17e8/0x4a20
[  595.280608][    C0]  ? __pfx___schedule+0x10/0x10
[  595.280638][    C0]  ? __pfx_lock_release+0x10/0x10
[  595.280666][    C0]  ? __mutex_trylock_common+0x92/0x2e0
[  595.280709][    C0]  ? schedule+0x90/0x320
[  595.280733][    C0]  schedule+0x14b/0x320
[  595.280762][    C0]  schedule_preempt_disabled+0x13/0x30
[  595.280787][    C0]  __mutex_lock+0x6a4/0xd70
[  595.280820][    C0]  ? __mutex_lock+0x527/0xd70
[  595.280849][    C0]  ? tun_chr_close+0x3e/0x1b0
[  595.280879][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  595.280920][    C0]  ? rtnl_lock+0xe7/0x130
[  595.280950][    C0]  tun_chr_close+0x3e/0x1b0
[  595.280976][    C0]  ? __pfx_tun_chr_close+0x10/0x10
[  595.281005][    C0]  __fput+0x24a/0x8a0
[  595.281047][    C0]  task_work_run+0x24f/0x310
[  595.281089][    C0]  ? __pfx_task_work_run+0x10/0x10
[  595.281124][    C0]  ? do_exit+0xa22/0x28e0
[  595.281150][    C0]  ? kmem_cache_free+0x145/0x350
[  595.281184][    C0]  do_exit+0xa27/0x28e0
[  595.281223][    C0]  ? __pfx_do_exit+0x10/0x10
[  595.281252][    C0]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  595.281281][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  595.281312][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  595.281339][    C0]  ? _raw_spin_lock_irq+0xdf/0x120
[  595.281369][    C0]  do_group_exit+0x207/0x2c0
[  595.281397][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  595.281422][    C0]  ? lockdep_hardirqs_on+0x99/0x150
[  595.281455][    C0]  get_signal+0x16a1/0x1740
[  595.281491][    C0]  ? __pfx_vfs_read+0x10/0x10
[  595.281515][    C0]  ? __pfx_get_signal+0x10/0x10
[  595.281538][    C0]  ? __fget_files+0x29/0x470
[  595.281572][    C0]  arch_do_signal_or_restart+0x96/0x830
[  595.281602][    C0]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  595.281628][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  595.281669][    C0]  ? syscall_exit_to_user_mode+0xa3/0x370
[  595.281704][    C0]  syscall_exit_to_user_mode+0xc9/0x370
[  595.281738][    C0]  do_syscall_64+0x100/0x230
[  595.281761][    C0]  ? clear_bhb_loop+0x35/0x90
[  595.281789][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  595.281812][    C0] RIP: 0033:0x7f1c4d87d0a9
[  595.281830][    C0] RSP: 002b:00007f1c4e59c0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  595.281853][    C0] RAX: 0000000000018ff8 RBX: 00007f1c4d9b3f80 RCX: 00007f1c4d87d0a9
[  595.281870][    C0] RDX: 0000000000018ff8 RSI: 0000000020019680 RDI: 0000000000000003
[  595.281885][    C0] RBP: 00007f1c4d8ec074 R08: 0000000000000000 R09: 0000000000000000
[  595.281901][    C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  595.281916][    C0] R13: 000000000000000b R14: 00007f1c4d9b3f80 R15: 00007fff6aa7f648
[  595.281950][    C0]  </TASK>
[  595.281959][    C0] DEBUG: waiting rtnl_mutex for 9448 jiffies.
[  595.281972][    C0] task:syz-executor.0  state:D stack:24992 pid:8008  tgid:8008  ppid:1      flags:0x00000006
[  595.282010][    C0] Call Trace:
[  595.282019][    C0]  <TASK>
[  595.282033][    C0]  __schedule+0x17e8/0x4a20
[  595.282088][    C0]  ? __pfx___schedule+0x10/0x10
[  595.282118][    C0]  ? __pfx_lock_release+0x10/0x10
[  595.282146][    C0]  ? __mutex_trylock_common+0x92/0x2e0
[  595.282188][    C0]  ? schedule+0x90/0x320
[  595.282212][    C0]  schedule+0x14b/0x320
[  595.282241][    C0]  schedule_preempt_disabled+0x13/0x30
[  595.282266][    C0]  __mutex_lock+0x6a4/0xd70
[  595.282299][    C0]  ? __mutex_lock+0x527/0xd70
[  595.282329][    C0]  ? rtnetlink_rcv_msg+0x839/0x1170
[  595.282356][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  595.282397][    C0]  ? rtnl_lock+0xe7/0x130
[  595.282426][    C0]  rtnetlink_rcv_msg+0x839/0x1170
[  595.282456][    C0]  ? rtnetlink_rcv_msg+0x208/0x1170
[  595.282485][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  595.282509][    C0]  ? is_bpf_text_address+0x285/0x2a0
[  595.282545][    C0]  ? __pfx_validate_chain+0x10/0x10
[  595.282576][    C0]  ? __pfx_validate_chain+0x10/0x10
[  595.282608][    C0]  ? arch_stack_walk+0x16d/0x1b0
[  595.282640][    C0]  ? mark_lock+0x9a/0x360
[  595.282667][    C0]  ? __pfx_validate_chain+0x10/0x10
[  595.282701][    C0]  ? __lock_acquire+0x1359/0x2000
[  595.282744][    C0]  ? mark_lock+0x9a/0x360
[  595.282777][    C0]  ? __lock_acquire+0x1359/0x2000
[  595.282826][    C0]  netlink_rcv_skb+0x1e3/0x430
[  595.282852][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  595.282913][    C0]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  595.282965][    C0]  ? netlink_deliver_tap+0x2e/0x1b0
[  595.282994][    C0]  netlink_unicast+0x7f0/0x990
[  595.283028][    C0]  ? __pfx_netlink_unicast+0x10/0x10
[  595.283050][    C0]  ? __virt_addr_valid+0x183/0x520
[  595.283088][    C0]  ? __check_object_size+0x49c/0x900
[  595.283116][    C0]  ? bpf_lsm_netlink_send+0x9/0x10
[  595.283146][    C0]  netlink_sendmsg+0x8e4/0xcb0
[  595.283187][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  595.283217][    C0]  ? aa_sock_msg_perm+0x91/0x160
[  595.283241][    C0]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  595.283268][    C0]  ? security_socket_sendmsg+0x87/0xb0
[  595.283297][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  595.283323][    C0]  __sock_sendmsg+0x221/0x270
[  595.283352][    C0]  __sys_sendto+0x3a4/0x4f0
[  595.283387][    C0]  ? __pfx___sys_sendto+0x10/0x10
[  595.283444][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  595.283475][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  595.283503][    C0]  ? exc_page_fault+0x590/0x8c0
[  595.283536][    C0]  __x64_sys_sendto+0xde/0x100
[  595.283570][    C0]  do_syscall_64+0xf3/0x230
[  595.283592][    C0]  ? clear_bhb_loop+0x35/0x90
[  595.283620][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  595.283643][    C0] RIP: 0033:0x7f761127ed9c
[  595.283661][    C0] RSP: 002b:00007ffea89e5b40 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  595.283686][    C0] RAX: ffffffffffffffda RBX: 00007f7611ee4620 RCX: 00007f761127ed9c
[  595.283703][    C0] RDX: 0000000000000028 RSI: 00007f7611ee4670 RDI: 0000000000000003
[  595.283720][    C0] RBP: 0000000000000000 R08: 00007ffea89e5b94 R09: 000000000000000c
[  595.283736][    C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  595.283751][    C0] R13: 0000000000000000 R14: 00007f7611ee4670 R15: 0000000000000000
[  595.283784][    C0]  </TASK>
[  595.283796][    C0] 
[  595.283796][    C0] Showing all locks held in the system:
[  595.283808][    C0] 3 locks held by kworker/0:0/8:
[  595.283827][    C0] 1 lock held by khungtaskd/30:
[  595.283844][    C0] 5 locks held by kworker/u9:0/54:
[  595.283858][    C0]  #0: ffff88802b0bf148 ((wq_completion)hci6){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  595.283924][    C0]  #1: ffffc90000be7d00 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  595.283989][    C0]  #2: ffff888062d98d88 (&hdev->req_lock){+.+.}-{3:3}, at: hci_cmd_sync_work+0x1ec/0x400
[  595.284048][    C0]  #3: ffff888062d98078 (&hdev->lock){+.+.}-{3:3}, at: hci_abort_conn_sync+0x1ea/0xde0
[  595.284117][    C0]  #4: ffffffff8f7653c8 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_conn_failed+0x185/0x340
[  595.284177][    C0] 3 locks held by kworker/1:2/58:
[  595.284191][    C0]  #0: ffff888015080948 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  595.284253][    C0]  #1: ffffc9000133fd00 ((linkwatch_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  595.284315][    C0]  #2: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: linkwatch_event+0xe/0x60
[  595.284379][    C0] 5 locks held by kworker/u8:4/63:
[  595.284393][    C0]  #0: ffff888015edd948 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  595.284455][    C0]  #1: ffffc900015e7d00 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  595.284516][    C0]  #2: ffffffff8f5eb450 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0x16a/0xcc0
[  595.284578][    C0]  #3: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: default_device_exit_batch+0xe9/0xa90
[  595.284641][    C0]  #4: ffffffff8e33ab78 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x451/0x830
[  595.284735][    C0] 3 locks held by kworker/u8:7/2856:
[  595.284749][    C0]  #0: ffff888029bca148 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  595.284811][    C0]  #1: ffffc90009cf7d00 ((work_completion)(&(&net->ipv6.addr_chk_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  595.284874][    C0]  #2: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_verify_work+0x19/0x30
[  595.284942][    C0] 3 locks held by kworker/u9:1/4490:
[  595.284956][    C0]  #0: ffff88805d729148 ((wq_completion)hci8){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  595.285017][    C0]  #1: ffffc9000d607d00 ((work_completion)(&hdev->power_on)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  595.285079][    C0]  #2: ffff88807e438d88 (&hdev->req_lock){+.+.}-{3:3}, at: hci_power_on+0x1bf/0x6b0
[  595.285148][    C0] 2 locks held by getty/4845:
[  595.285162][    C0]  #0: ffff88802a60e0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  595.285225][    C0]  #1: ffffc900031332f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6b5/0x1e10
[  595.285288][    C0] 3 locks held by kworker/u9:2/5117:
[  595.285302][    C0]  #0: ffff88801ef8a948 ((wq_completion)hci7){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  595.285363][    C0]  #1: ffffc900036d7d00 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  595.285426][    C0]  #2: ffff88807c018d88 (&hdev->req_lock){+.+.}-{3:3}, at: hci_cmd_sync_work+0x1ec/0x400
[  595.285484][    C0] 1 lock held by syz-executor.1/5118:
[  595.285498][    C0]  #0: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: tun_chr_close+0x3e/0x1b0
[  595.285562][    C0] 1 lock held by syz-executor.2/5126:
[  595.285576][    C0]  #0: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: tun_chr_close+0x3e/0x1b0
[  595.285639][    C0] 3 locks held by kworker/u9:4/5127:
[  595.285653][    C0]  #0: ffff88805e0b7148 ((wq_completion)hci10#3){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  595.285722][    C0]  #1: ffffc90003757d00 ((work_completion)(&hdev->power_on)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  595.285784][    C0]  #2: ffff88804739cd88 (&hdev->req_lock){+.+.}-{3:3}, at: hci_power_on+0x1bf/0x6b0
[  595.285846][    C0] 5 locks held by kworker/u9:6/5130:
[  595.285860][    C0]  #0: ffff88801ec49148 ((wq_completion)hci3){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  595.285922][    C0]  #1: ffffc90003787d00 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  595.285984][    C0]  #2: ffff88806177cd88 (&hdev->req_lock){+.+.}-{3:3}, at: hci_cmd_sync_work+0x1ec/0x400
[  595.286043][    C0]  #3: ffff88806177c078 (&hdev->lock){+.+.}-{3:3}, at: hci_abort_conn_sync+0x1ea/0xde0
[  595.286111][    C0]  #4: ffffffff8f7653c8 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_conn_failed+0x185/0x340
[  595.286170][    C0] 3 locks held by kworker/1:4/5161:
[  595.286184][    C0]  #0: ffff888015080948 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  595.286246][    C0]  #1: ffffc90003e2fd00 (deferred_process_work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  595.286307][    C0]  #2: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: switchdev_deferred_process_work+0xe/0x20
[  595.286368][    C0] 5 locks held by kworker/u8:10/5210:
[  595.286386][    C0] 7 locks held by syz-executor.3/7689:
[  595.286400][    C0]  #0: ffff88802a018420 (sb_writers#8){.+.+}-{0:0}, at: vfs_write+0x227/0xc90
[  595.286464][    C0]  #1: ffff88807f8ca888 (&of->mutex){+.+.}-{3:3}, at: kernfs_fop_write_iter+0x1eb/0x500
[  595.286525][    C0]  #2: ffff888022dcf788 (kn->active#50){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x20f/0x500
[  595.286593][    C0]  #3: ffffffff8ef04068 (nsim_bus_dev_list_lock){+.+.}-{3:3}, at: del_device_store+0xfc/0x480
[  595.286653][    C0]  #4: ffff88802bebd0e8 (&dev->mutex){....}-{3:3}, at: device_release_driver_internal+0xce/0x7c0
[  595.286714][    C0]  #5: ffff88802bebe250 (&devlink->lock_key#2){+.+.}-{3:3}, at: nsim_drv_remove+0x50/0x160
[  595.286785][    C0]  #6: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: nsim_destroy+0x71/0x5c0
[  595.286846][    C0] 1 lock held by syz-executor.3/7926:
[  595.286860][    C0]  #0: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x839/0x1170
[  595.286921][    C0] 1 lock held by syz-executor.4/7967:
[  595.286935][    C0]  #0: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: tun_chr_close+0x3e/0x1b0
[  595.286999][    C0] 1 lock held by syz-executor.4/7991:
[  595.287013][    C0]  #0: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x839/0x1170
[  595.287074][    C0] 2 locks held by syz-executor.0/7996:
[  595.287093][    C0]  #0: ffff88807d72f408 (&sb->s_type->i_mutex_key#10){+.+.}-{3:3}, at: sock_close+0x90/0x240
[  595.287160][    C0]  #1: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: raw_release+0x1b8/0x8a0
[  595.287218][    C0] 1 lock held by syz-executor.1/8000:
[  595.287232][    C0]  #0: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x839/0x1170
[  595.287293][    C0] 1 lock held by syz-executor.3/8002:
[  595.287307][    C0]  #0: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x839/0x1170
[  595.287367][    C0] 1 lock held by syz-executor.0/8008:
[  595.287381][    C0]  #0: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x839/0x1170
[  595.287443][    C0] 1 lock held by syz-executor.1/8018:
[  595.287457][    C0]  #0: ffff88804c7a0d88 (&hdev->req_lock){+.+.}-{3:3}, at: hci_dev_open+0x1f4/0x300
[  595.287523][    C0] 4 locks held by kworker/u9:3/8022:
[  595.287538][    C0] 3 locks held by kworker/u9:5/8023:
[  595.287552][    C0]  #0: ffff888020384948 ((wq_completion)hci1){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  595.287613][    C0]  #1: ffffc900141b7d00 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  595.287676][    C0]  #2: ffff88806062cd88 (&hdev->req_lock){+.+.}-{3:3}, at: hci_cmd_sync_work+0x1ec/0x400
[  595.287735][    C0] 3 locks held by kworker/u9:7/8025:
[  595.287749][    C0]  #0: ffff88805e0b6948 ((wq_completion)hci2#4){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  595.287817][    C0]  #1: ffffc900140efd00 ((work_completion)(&hdev->power_on)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  595.287878][    C0]  #2: ffff888047398d88 (&hdev->req_lock){+.+.}-{3:3}, at: hci_power_on+0x1bf/0x6b0
[  595.287940][    C0] 3 locks held by syz-executor.3/8032:
[  595.287955][    C0]  #0: ffffc90000007c00 (net/core/rtnetlink.c:82){+.-.}-{0:0}, at: call_timer_fn+0xc0/0x650
[  595.288011][    C0]  #1: ffffffff8e3357a0 (rcu_read_lock){....}-{1:2}, at: report_rtnl_holders+0x20/0x2d0
[  595.288071][    C0]  #2: ffffffff8e3357a0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0
[  595.288140][    C0] 
[  595.288147][    C0] =============================================
[  595.288147][    C0] 
[  595.296272][ T8031] Bluetooth: hci9: unexpected cc 0x0c25 length: 249 > 3
[  595.296886][ T8031] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2
[  595.298679][ T8031] Bluetooth: hci10: unexpected cc 0x0c23 length: 249 > 4
[  595.298802][ T8031] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  595.332928][   T30] task:kworker/1:2     state:D stack:22200 pid:58    tgid:58    ppid:2      flags:0x00004000
[  595.332979][   T30] Workqueue: events linkwatch_event
[  595.333010][   T30] Call Trace:
[  595.333020][   T30]  <TASK>
[  595.333035][   T30]  __schedule+0x17e8/0x4a20
[  595.333090][   T30]  ? __pfx___schedule+0x10/0x10
[  595.333116][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  595.333143][   T30]  ? __pfx_lock_release+0x10/0x10
[  595.333169][   T30]  ? kick_pool+0x1bd/0x620
[  595.333200][   T30]  ? _raw_spin_unlock_irq+0x23/0x50
[  595.333223][   T30]  ? lockdep_hardirqs_on+0x99/0x150
[  595.333252][   T30]  ? schedule+0x90/0x320
[  595.333275][   T30]  schedule+0x14b/0x320
[  595.333302][   T30]  schedule_preempt_disabled+0x13/0x30
[  595.333325][   T30]  __mutex_lock+0x6a4/0xd70
[  595.333355][   T30]  ? __mutex_lock+0x527/0xd70
[  595.333383][   T30]  ? linkwatch_event+0xe/0x60
[  595.333410][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  595.333445][   T30]  ? process_scheduled_works+0x945/0x1830
[  595.333469][   T30]  ? rtnl_lock+0xe7/0x130
[  595.333495][   T30]  ? process_scheduled_works+0x945/0x1830
[  595.333518][   T30]  linkwatch_event+0xe/0x60
[  595.333543][   T30]  process_scheduled_works+0xa2c/0x1830
[  595.333595][   T30]  ? __pfx_process_scheduled_works+0x10/0x10
[  595.333629][   T30]  ? assign_work+0x364/0x3d0
[  595.333658][   T30]  worker_thread+0x86d/0xd50
[  595.333691][   T30]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  595.333719][   T30]  ? __kthread_parkme+0x169/0x1d0
[  595.333749][   T30]  ? __pfx_worker_thread+0x10/0x10
[  595.333773][   T30]  kthread+0x2f0/0x390
[  595.333799][   T30]  ? __pfx_worker_thread+0x10/0x10
[  595.333822][   T30]  ? __pfx_kthread+0x10/0x10
[  595.333849][   T30]  ret_from_fork+0x4b/0x80
[  595.333873][   T30]  ? __pfx_kthread+0x10/0x10
[  595.333900][   T30]  ret_from_fork_asm+0x1a/0x30
[  595.333941][   T30]  </TASK>
[  595.334041][   T30] INFO: task kworker/u8:7:2856 blocked for more than 190 seconds.
[  595.334058][   T30]       Not tainted 6.10.0-rc4-next-20240621-syzkaller #0
[  595.334086][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  595.334096][   T30] task:kworker/u8:7    state:D stack:20920 pid:2856  tgid:2856  ppid:2      flags:0x00004000
[  595.334134][   T30] Workqueue: ipv6_addrconf addrconf_verify_work
[  595.334163][   T30] Call Trace:
[  595.334172][   T30]  <TASK>
[  595.334186][   T30]  __schedule+0x17e8/0x4a20
[  595.334233][   T30]  ? __pfx___schedule+0x10/0x10
[  595.334260][   T30]  ? __pfx_lock_release+0x10/0x10
[  595.334286][   T30]  ? __mutex_trylock_common+0x92/0x2e0
[  595.334316][   T30]  ? kthread_data+0x52/0xd0
[  595.334339][   T30]  ? schedule+0x90/0x320
[  595.334362][   T30]  ? wq_worker_sleeping+0x66/0x240
[  595.334389][   T30]  ? schedule+0x90/0x320
[  595.334411][   T30]  schedule+0x14b/0x320
[  595.334438][   T30]  schedule_preempt_disabled+0x13/0x30
[  595.334461][   T30]  __mutex_lock+0x6a4/0xd70
[  595.334491][   T30]  ? __mutex_lock+0x527/0xd70
[  595.334519][   T30]  ? addrconf_verify_work+0x19/0x30
[  595.334548][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  595.334572][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  595.334601][   T30]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  595.334632][   T30]  ? process_scheduled_works+0x945/0x1830
[  595.334655][   T30]  ? rtnl_lock+0xe7/0x130
[  595.334680][   T30]  ? process_scheduled_works+0x945/0x1830
[  595.334703][   T30]  addrconf_verify_work+0x19/0x30
[  595.334731][   T30]  process_scheduled_works+0xa2c/0x1830
[  595.334784][   T30]  ? __pfx_process_scheduled_works+0x10/0x10
[  595.334818][   T30]  ? assign_work+0x364/0x3d0
[  595.334847][   T30]  worker_thread+0x86d/0xd50
[  595.334886][   T30]  ? __kthread_parkme+0x169/0x1d0
[  595.334915][   T30]  ? __pfx_worker_thread+0x10/0x10
[  595.334939][   T30]  kthread+0x2f0/0x390
[  595.334965][   T30]  ? __pfx_worker_thread+0x10/0x10
[  595.334988][   T30]  ? __pfx_kthread+0x10/0x10
[  595.335015][   T30]  ret_from_fork+0x4b/0x80
[  595.335039][   T30]  ? __pfx_kthread+0x10/0x10
[  595.335066][   T30]  ret_from_fork_asm+0x1a/0x30
[  595.335111][   T30]  </TASK>
[  595.335133][   T30] INFO: task syz-executor.1:5118 blocked for more than 170 seconds.
[  595.335147][   T30]       Not tainted 6.10.0-rc4-next-20240621-syzkaller #0
[  595.335160][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  595.335170][   T30] task:syz-executor.1  state:D stack:19616 pid:5118  tgid:5118  ppid:1      flags:0x00004002
[  595.335205][   T30] Call Trace:
[  595.335214][   T30]  <TASK>
[  595.335228][   T30]  __schedule+0x17e8/0x4a20
[  595.335274][   T30]  ? __pfx___schedule+0x10/0x10
[  595.335301][   T30]  ? __pfx_lock_release+0x10/0x10
[  595.335327][   T30]  ? __mutex_trylock_common+0x92/0x2e0
[  595.335366][   T30]  ? schedule+0x90/0x320
[  595.335388][   T30]  schedule+0x14b/0x320
[  595.335415][   T30]  schedule_preempt_disabled+0x13/0x30
[  595.335438][   T30]  __mutex_lock+0x6a4/0xd70
[  595.335468][   T30]  ? __mutex_lock+0x527/0xd70
[  595.335496][   T30]  ? tun_chr_close+0x3e/0x1b0
[  595.335524][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  595.335562][   T30]  ? rtnl_lock+0xe7/0x130
[  595.335588][   T30]  tun_chr_close+0x3e/0x1b0
[  595.335613][   T30]  ? __pfx_tun_chr_close+0x10/0x10
[  595.335638][   T30]  __fput+0x24a/0x8a0
[  595.335679][   T30]  task_work_run+0x24f/0x310
[  595.335713][   T30]  ? __pfx_task_work_run+0x10/0x10
[  595.335744][   T30]  ? do_exit+0xa22/0x28e0
[  595.335768][   T30]  ? kmem_cache_free+0x145/0x350
[  595.335800][   T30]  do_exit+0xa27/0x28e0
[  595.335835][   T30]  ? __pfx_do_exit+0x10/0x10
[  595.335862][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  595.335891][   T30]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  595.335922][   T30]  ? _raw_spin_unlock_irq+0x23/0x50
[  595.335944][   T30]  ? lockdep_hardirqs_on+0x99/0x150
[  595.335974][   T30]  do_group_exit+0x207/0x2c0
[  595.336007][   T30]  __x64_sys_exit_group+0x3f/0x40
[  595.336034][   T30]  do_syscall_64+0xf3/0x230
[  595.336055][   T30]  ? clear_bhb_loop+0x35/0x90
[  595.336086][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  595.336108][   T30] RIP: 0033:0x7f2c9047d0a9
[  595.336126][   T30] RSP: 002b:00007ffe1ca69468 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[  595.336148][   T30] RAX: ffffffffffffffda RBX: 00007f2c904d96eb RCX: 00007f2c9047d0a9
[  595.336165][   T30] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001
[  595.336179][   T30] RBP: 0000000000000075 R08: 00007ffe1ca67205 R09: 00007ffe1ca6a720
[  595.336194][   T30] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe1ca6a720
[  595.336209][   T30] R13: 00007f2c904d96c6 R14: 000055558c5f3430 R15: 0000000000000006
[  595.336241][   T30]  </TASK>
[  595.336256][   T30] INFO: task kworker/1:4:5161 blocked for more than 148 seconds.
[  595.336270][   T30]       Not tainted 6.10.0-rc4-next-20240621-syzkaller #0
[  595.336283][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  595.336293][   T30] task:kworker/1:4     state:D stack:23664 pid:5161  tgid:5161  ppid:2      flags:0x00004000
[  595.336328][   T30] Workqueue: events switchdev_deferred_process_work
[  595.336353][   T30] Call Trace:
[  595.336361][   T30]  <TASK>
[  595.336375][   T30]  __schedule+0x17e8/0x4a20
[  595.336421][   T30]  ? __pfx___schedule+0x10/0x10
[  595.336446][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  595.336471][   T30]  ? __pfx_lock_release+0x10/0x10
[  595.336497][   T30]  ? kick_pool+0x45c/0x620
[  595.336526][   T30]  ? _raw_spin_unlock_irq+0x23/0x50
[  595.336548][   T30]  ? lockdep_hardirqs_on+0x99/0x150
[  595.336576][   T30]  ? schedule+0x90/0x320
[  595.336599][   T30]  schedule+0x14b/0x320
[  595.336625][   T30]  schedule_preempt_disabled+0x13/0x30
[  595.336647][   T30]  __mutex_lock+0x6a4/0xd70
[  595.336677][   T30]  ? __mutex_lock+0x527/0xd70
[  595.336704][   T30]  ? switchdev_deferred_process_work+0xe/0x20
[  595.336729][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  595.336764][   T30]  ? process_scheduled_works+0x945/0x1830
[  595.336787][   T30]  ? rtnl_lock+0xe7/0x130
[  595.336812][   T30]  ? process_scheduled_works+0x945/0x1830
[  595.336835][   T30]  switchdev_deferred_process_work+0xe/0x20
[  595.336857][   T30]  process_scheduled_works+0xa2c/0x1830
[  595.336910][   T30]  ? __pfx_process_scheduled_works+0x10/0x10
[  595.336943][   T30]  ? assign_work+0x364/0x3d0
[  595.336972][   T30]  worker_thread+0x86d/0xd50
[  595.337011][   T30]  ? __kthread_parkme+0x169/0x1d0
[  595.337040][   T30]  ? __pfx_worker_thread+0x10/0x10
[  595.337064][   T30]  kthread+0x2f0/0x390
[  595.337094][   T30]  ? __pfx_worker_thread+0x10/0x10
[  595.337118][   T30]  ? __pfx_kthread+0x10/0x10
[  595.337144][   T30]  ret_from_fork+0x4b/0x80
[  595.337169][   T30]  ? __pfx_kthread+0x10/0x10
[  595.337195][   T30]  ret_from_fork_asm+0x1a/0x30
[  595.337236][   T30]  </TASK>
[  595.337253][   T30] INFO: task syz-executor.3:7689 blocked for more than 170 seconds.
[  595.337267][   T30]       Not tainted 6.10.0-rc4-next-20240621-syzkaller #0
[  595.337280][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  595.337290][   T30] task:syz-executor.3  state:D stack:21024 pid:7689  tgid:7689  ppid:1      flags:0x00004006
[  595.337325][   T30] Call Trace:
[  595.337334][   T30]  <TASK>
[  595.337348][   T30]  __schedule+0x17e8/0x4a20
[  595.337394][   T30]  ? __pfx___schedule+0x10/0x10
[  595.337421][   T30]  ? __pfx_lock_release+0x10/0x10
[  595.337447][   T30]  ? __mutex_trylock_common+0x92/0x2e0
[  595.337486][   T30]  ? schedule+0x90/0x320
[  595.337508][   T30]  schedule+0x14b/0x320
[  595.337535][   T30]  schedule_preempt_disabled+0x13/0x30
[  595.337558][   T30]  __mutex_lock+0x6a4/0xd70
[  595.337583][   T30]  ? do_raw_spin_unlock+0x13c/0x8b0
[  595.337607][   T30]  ? __mutex_lock+0x527/0xd70
[  595.337635][   T30]  ? nsim_destroy+0x71/0x5c0
[  595.337660][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  595.337690][   T30]  ? __pfx_mntput_no_expire+0x10/0x10
[  595.337715][   T30]  ? rtnl_lock+0xe7/0x130
[  595.337742][   T30]  nsim_destroy+0x71/0x5c0
[  595.337772][   T30]  __nsim_dev_port_del+0x14b/0x1b0
[  595.337802][   T30]  nsim_dev_reload_destroy+0x28a/0x490
[  595.337849][   T30]  ? __pfx_nsim_bus_remove+0x10/0x10
[  595.337871][   T30]  nsim_drv_remove+0x58/0x160
[  595.337899][   T30]  device_release_driver_internal+0x4a9/0x7c0
[  595.337932][   T30]  bus_remove_device+0x34f/0x420
[  595.337965][   T30]  device_del+0x57a/0x9b0
[  595.337994][   T30]  ? __pfx_device_del+0x10/0x10
[  595.338025][   T30]  device_unregister+0x20/0xc0
[  595.338046][   T30]  del_device_store+0x363/0x480
[  595.338073][   T30]  ? __pfx_del_device_store+0x10/0x10
[  595.338106][   T30]  ? sysfs_kf_write+0x182/0x2a0
[  595.338131][   T30]  ? bus_attr_store+0x4f/0xa0
[  595.338159][   T30]  ? __pfx_sysfs_kf_write+0x10/0x10
[  595.338183][   T30]  kernfs_fop_write_iter+0x3a1/0x500
[  595.338215][   T30]  vfs_write+0xa72/0xc90
[  595.338242][   T30]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  595.338268][   T30]  ? __pfx_vfs_write+0x10/0x10
[  595.338313][   T30]  ksys_write+0x1a0/0x2c0
[  595.338341][   T30]  ? __pfx_ksys_write+0x10/0x10
[  595.338364][   T30]  ? do_syscall_64+0x100/0x230
[  595.338388][   T30]  ? do_syscall_64+0xb6/0x230
[  595.338411][   T30]  do_syscall_64+0xf3/0x230
[  595.338431][   T30]  ? clear_bhb_loop+0x35/0x90
[  595.338457][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  595.338479][   T30] RIP: 0033:0x7f73e287bdef
[  595.338496][   T30] RSP: 002b:00007ffc30877830 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  595.338518][   T30] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00007f73e287bdef
[  595.338534][   T30] RDX: 0000000000000001 RSI: 00007ffc30877880 RDI: 0000000000000005
[  595.338548][   T30] RBP: 00007f73e28da33a R08: 0000000000000000 R09: 00007ffc30877687
[  595.338564][   T30] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  595.338578][   T30] R13: 00007ffc30877880 R14: 00007f73e34e4620 R15: 0000000000000003
[  595.338610][   T30]  </TASK>
[  595.338622][   T30] INFO: task syz-executor.3:7926 blocked for more than 190 seconds.
[  595.338637][   T30]       Not tainted 6.10.0-rc4-next-20240621-syzkaller #0
[  595.338649][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  595.338660][   T30] task:syz-executor.3  state:D stack:24992 pid:7926  tgid:7926  ppid:1      flags:0x00000006
[  595.338695][   T30] Call Trace:
[  595.338704][   T30]  <TASK>
[  595.338717][   T30]  __schedule+0x17e8/0x4a20
[  595.338763][   T30]  ? __pfx___schedule+0x10/0x10
[  595.338791][   T30]  ? __pfx_lock_release+0x10/0x10
[  595.338817][   T30]  ? __mutex_trylock_common+0x92/0x2e0
[  595.338855][   T30]  ? schedule+0x90/0x320
[  595.338878][   T30]  schedule+0x14b/0x320
[  595.338904][   T30]  schedule_preempt_disabled+0x13/0x30
[  595.338927][   T30]  __mutex_lock+0x6a4/0xd70
[  595.338957][   T30]  ? __mutex_lock+0x527/0xd70
[  595.338985][   T30]  ? rtnetlink_rcv_msg+0x839/0x1170
[  595.339009][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  595.339047][   T30]  ? rtnl_lock+0xe7/0x130
[  595.339074][   T30]  rtnetlink_rcv_msg+0x839/0x1170
[  595.339107][   T30]  ? rtnetlink_rcv_msg+0x208/0x1170
[  595.339133][   T30]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  595.339156][   T30]  ? is_bpf_text_address+0x285/0x2a0
[  595.339190][   T30]  ? __pfx_validate_chain+0x10/0x10
[  595.339218][   T30]  ? __pfx_validate_chain+0x10/0x10
[  595.339246][   T30]  ? arch_stack_walk+0x16d/0x1b0
[  595.339278][   T30]  ? mark_lock+0x9a/0x360
[  595.339302][   T30]  ? __pfx_validate_chain+0x10/0x10
[  595.339332][   T30]  ? __lock_acquire+0x1359/0x2000
[  595.339373][   T30]  ? mark_lock+0x9a/0x360
[  595.339403][   T30]  ? __lock_acquire+0x1359/0x2000
[  595.339449][   T30]  netlink_rcv_skb+0x1e3/0x430
[  595.339475][   T30]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  595.339502][   T30]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  595.339550][   T30]  ? netlink_deliver_tap+0x2e/0x1b0
[  595.339577][   T30]  netlink_unicast+0x7f0/0x990
[  595.339609][   T30]  ? __pfx_netlink_unicast+0x10/0x10
[  595.339630][   T30]  ? __virt_addr_valid+0x183/0x520
[  595.339661][   T30]  ? __check_object_size+0x49c/0x900
[  595.339686][   T30]  ? bpf_lsm_netlink_send+0x9/0x10
[  595.339715][   T30]  netlink_sendmsg+0x8e4/0xcb0
[  595.339753][   T30]  ? __pfx_netlink_sendmsg+0x10/0x10
[  595.339781][   T30]  ? aa_sock_msg_perm+0x91/0x160
[  595.339804][   T30]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  595.339828][   T30]  ? security_socket_sendmsg+0x87/0xb0
[  595.339857][   T30]  ? __pfx_netlink_sendmsg+0x10/0x10
[  595.339880][   T30]  __sock_sendmsg+0x221/0x270
[  595.339908][   T30]  __sys_sendto+0x3a4/0x4f0
[  595.339941][   T30]  ? __pfx___sys_sendto+0x10/0x10
[  595.339994][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  595.340023][   T30]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  595.340049][   T30]  ? exc_page_fault+0x590/0x8c0
[  595.340082][   T30]  __x64_sys_sendto+0xde/0x100
[  595.340113][   T30]  do_syscall_64+0xf3/0x230
[  595.340134][   T30]  ? clear_bhb_loop+0x35/0x90
[  595.340160][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  595.340181][   T30] RIP: 0033:0x7f52d2a7ed9c
[  595.340198][   T30] RSP: 002b:00007ffedf56b290 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  595.340220][   T30] RAX: ffffffffffffffda RBX: 00007f52d36e4620 RCX: 00007f52d2a7ed9c
[  595.340237][   T30] RDX: 0000000000000028 RSI: 00007f52d36e4670 RDI: 0000000000000003
[  595.340251][   T30] RBP: 0000000000000000 R08: 00007ffedf56b2e4 R09: 000000000000000c
[  595.340266][   T30] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  595.340280][   T30] R13: 0000000000000000 R14: 00007f52d36e4670 R15: 0000000000000000
[  595.340311][   T30]  </TASK>
[  595.340330][   T30] 
[  595.340330][   T30] Showing all locks held in the system:
[  595.340341][   T30] 3 locks held by kworker/0:0/8:
[  595.340358][   T30] 1 lock held by khungtaskd/30:
[  595.340371][   T30]  #0: ffffffff8e3357a0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0
[  595.340436][   T30] 5 locks held by kworker/u9:0/54:
[  595.340449][   T30]  #0: ffff88802b0bf148 ((wq_completion)hci6){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  595.340507][   T30]  #1: ffffc90000be7d00 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  595.340565][   T30]  #2: ffff888062d98d88 (&hdev->req_lock){+.+.}-{3:3}, at: hci_cmd_sync_work+0x1ec/0x400
[  595.340620][   T30]  #3: ffff888062d98078 (&hdev->lock){+.+.}-{3:3}, at: hci_abort_conn_sync+0x1ea/0xde0
[  595.340679][   T30]  #4: ffffffff8f7653c8 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_conn_failed+0x185/0x340
[  595.340734][   T30] 3 locks held by kworker/1:2/58:
[  595.340746][   T30]  #0: ffff888015080948 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  595.340804][   T30]  #1: ffffc9000133fd00 ((linkwatch_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  595.340860][   T30]  #2: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: linkwatch_event+0xe/0x60
[  595.340920][   T30] 5 locks held by kworker/u8:4/63:
[  595.340933][   T30]  #0: ffff888015edd948 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  595.340990][   T30]  #1: ffffc900015e7d00 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  595.341046][   T30]  #2: ffffffff8f5eb450 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0x16a/0xcc0
[  595.341109][   T30]  #3: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: default_device_exit_batch+0xe9/0xa90
[  595.341166][   T30]  #4: ffffffff8e33ab78 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x451/0x830
[  595.341250][   T30] 3 locks held by kworker/u8:7/2856:
[  595.341264][   T30]  #0: ffff888029bca148 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  595.341321][   T30]  #1: ffffc90009cf7d00 ((work_completion)(&(&net->ipv6.addr_chk_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  595.341379][   T30]  #2: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_verify_work+0x19/0x30
[  595.341442][   T30] 3 locks held by kworker/u9:1/4490:
[  595.341455][   T30]  #0: ffff88805d729148 ((wq_completion)hci8){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  595.341512][   T30]  #1: ffffc9000d607d00 ((work_completion)(&hdev->power_on)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  595.341569][   T30]  #2: ffff88807e438d88 (&hdev->req_lock){+.+.}-{3:3}, at: hci_power_on+0x1bf/0x6b0
[  595.341628][   T30] 2 locks held by getty/4845:
[  595.341640][   T30]  #0: ffff88802a60e0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  595.341698][   T30]  #1: ffffc900031332f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6b5/0x1e10
[  595.341755][   T30] 3 locks held by kworker/u9:2/5117:
[  595.341768][   T30]  #0: ffff88801ef8a948 ((wq_completion)hci7){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  595.341825][   T30]  #1: ffffc900036d7d00 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  595.341881][   T30]  #2: ffff88807c018d88 (&hdev->req_lock){+.+.}-{3:3}, at: hci_cmd_sync_work+0x1ec/0x400
[  595.341935][   T30] 1 lock held by syz-executor.1/5118:
[  595.341948][   T30]  #0: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: tun_chr_close+0x3e/0x1b0
[  595.342006][   T30] 1 lock held by syz-executor.2/5126:
[  595.342019][   T30]  #0: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: tun_chr_close+0x3e/0x1b0
[  595.342084][   T30] 3 locks held by kworker/u9:4/5127:
[  595.342097][   T30]  #0: ffff88805e0b7148 ((wq_completion)hci10#3){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  595.342160][   T30]  #1: ffffc90003757d00 ((work_completion)(&hdev->power_on)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  595.342218][   T30]  #2: ffff88804739cd88 (&hdev->req_lock){+.+.}-{3:3}, at: hci_power_on+0x1bf/0x6b0
[  595.342275][   T30] 5 locks held by kworker/u9:6/5130:
[  595.342288][   T30]  #0: ffff88801ec49148 ((wq_completion)hci3){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  595.342344][   T30]  #1: ffffc90003787d00 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  595.342402][   T30]  #2: ffff88806177cd88 (&hdev->req_lock){+.+.}-{3:3}, at: hci_cmd_sync_work+0x1ec/0x400
[  595.342456][   T30]  #3: ffff88806177c078 (&hdev->lock){+.+.}-{3:3}, at: hci_abort_conn_sync+0x1ea/0xde0
[  595.342514][   T30]  #4: ffffffff8f7653c8 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_conn_failed+0x185/0x340
[  595.342570][   T30] 3 locks held by kworker/1:4/5161:
[  595.342583][   T30]  #0: ffff888015080948 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  595.342640][   T30]  #1: ffffc90003e2fd00 (deferred_process_work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  595.342697][   T30]  #2: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: switchdev_deferred_process_work+0xe/0x20
[  595.342753][   T30] 5 locks held by kworker/u8:10/5210:
[  595.342769][   T30] 7 locks held by syz-executor.3/7689:
[  595.342782][   T30]  #0: ffff88802a018420 (sb_writers#8){.+.+}-{0:0}, at: vfs_write+0x227/0xc90
[  595.342841][   T30]  #1: ffff88807f8ca888 (&of->mutex
[  595.383216][ T8034] Bluetooth: hci10: unexpected cc 0x0c25 length: 249 > 3
[  595.383922][ T8034] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  595.385649][ T8034] Bluetooth: hci10: unexpected cc 0x0c38 length: 249 > 2
[  595.385772][ T8034] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  595.429585][   T30] ){+.+.}-{3:3}, at: kernfs_fop_write_iter+0x1eb/0x500
[  595.429635][   T30]  #2: ffff888022dcf788 (kn->active#50){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x20f/0x500
[  595.429701][   T30]  #3: ffffffff8ef04068 (nsim_bus_dev_list_lock){+.+.}-{3:3}, at: del_device_store+0xfc/0x480
[  595.429759][   T30]  #4: ffff88802bebd0e8 (&dev->mutex){....}-{3:3}, at: device_release_driver_internal+0xce/0x7c0
[  595.429815][   T30]  #5: ffff88802bebe250 (&devlink->lock_key#2){+.+.}-{3:3}, at: nsim_drv_remove+0x50/0x160
[  595.429880][   T30]  #6: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: nsim_destroy+0x71/0x5c0
[  595.429939][   T30] 1 lock held by syz-executor.3/7926:
[  595.429953][   T30]  #0: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x839/0x1170
[  595.430011][   T30] 1 lock held by syz-executor.4/7967:
[  595.430024][   T30]  #0: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: tun_chr_close+0x3e/0x1b0
[  595.430089][   T30] 1 lock held by syz-executor.4/7991:
[  595.430102][   T30]  #0: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x839/0x1170
[  595.430159][   T30] 2 locks held by syz-executor.0/7996:
[  595.430172][   T30]  #0: ffff88807d72f408 (&sb->s_type->i_mutex_key#10){+.+.}-{3:3}, at: sock_close+0x90/0x240
[  595.430234][   T30]  #1: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: raw_release+0x1b8/0x8a0
[  595.430289][   T30] 1 lock held by syz-executor.1/8000:
[  595.430302][   T30]  #0: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x839/0x1170
[  595.430358][   T30] 1 lock held by syz-executor.3/8002:
[  595.430372][   T30]  #0: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x839/0x1170
[  595.430428][   T30] 1 lock held by syz-executor.0/8008:
[  595.430441][   T30]  #0: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x839/0x1170
[  595.430498][   T30] 1 lock held by syz-executor.1/8018:
[  595.430510][   T30]  #0: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x839/0x1170
[  595.430567][   T30] 5 locks held by kworker/u9:3/8022:
[  595.430580][   T30] 3 locks held by kworker/u9:5/8023:
[  595.430593][   T30]  #0: ffff888020384948 ((wq_completion)hci1){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  595.430652][   T30]  #1: ffffc900141b7d00 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  595.430710][   T30]  #2: ffff88806062cd88 (&hdev->req_lock){+.+.}-{3:3}, at: hci_cmd_sync_work+0x1ec/0x400
[  595.430766][   T30] 4 locks held by kworker/u9:7/8025:
[  595.430778][   T30]  #0: ffff88805e0b2148 ((wq_completion)hci10#4){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  595.430841][   T30]  #1: ffffc900140efd00 ((work_completion)(&hdev->rx_work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  595.430898][   T30]  #2: ffff88804739c078 (&hdev->lock){+.+.}-{3:3}, at: hci_remote_features_evt+0x97/0xaf0
[  595.430956][   T30]  #3: ffffffff8f7653c8 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_remote_features_evt+0x4c3/0xaf0
[  595.431014][   T30] 1 lock held by syz-executor.2/8027:
[  595.431027][   T30]  #0: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x839/0x1170
[  595.431089][   T30] 1 lock held by syz-executor.0/8028:
[  595.431102][   T30]  #0: ffffffff8f5f7d08 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x839/0x1170
[  595.431158][   T30] 4 locks held by kworker/u9:9/8033:
[  595.431171][   T30]  #0: ffff888024f69948 ((wq_completion)hci9#2){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  595.431234][   T30]  #1: ffffc90013fcfd00 ((work_completion)(&hdev->rx_work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  595.431291][   T30]  #2: ffff88804c7a0078 (&hdev->lock){+.+.}-{3:3}, at: hci_remote_features_evt+0x97/0xaf0
[  595.431349][   T30]  #3: ffffffff8f7653c8 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_remote_features_evt+0x4c3/0xaf0
[  595.431409][   T30] 
[  595.431417][   T30] =============================================
[  595.431417][   T30] 
[  595.431427][   T30] NMI backtrace for cpu 0
[  595.431438][   T30] CPU: 0 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.10.0-rc4-next-20240621-syzkaller #0
[  595.431460][   T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  595.431473][   T30] Call Trace:
[  595.431482][   T30]  <TASK>
[  595.431492][   T30]  dump_stack_lvl+0x241/0x360
[  595.431516][   T30]  ? __pfx_dump_stack_lvl+0x10/0x10
[  595.431536][   T30]  ? __pfx__printk+0x10/0x10
[  595.431565][   T30]  ? __pfx_vprintk_emit+0x10/0x10
[  595.431592][   T30]  nmi_cpu_backtrace+0x49c/0x4d0
[  595.431620][   T30]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  595.431641][   T30]  ? _printk+0xd5/0x120
[  595.431666][   T30]  ? __pfx__printk+0x10/0x10
[  595.431691][   T30]  ? __wake_up_klogd+0x109/0x140
[  595.431713][   T30]  ? __pfx__printk+0x10/0x10
[  595.431740][   T30]  ? __rcu_read_unlock+0xa1/0x110
[  595.431765][   T30]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  595.431788][   T30]  nmi_trigger_cpumask_backtrace+0x198/0x320
[  595.431815][   T30]  watchdog+0xfee/0x1030
[  595.431843][   T30]  ? watchdog+0x1ea/0x1030
[  595.431874][   T30]  ? __pfx_watchdog+0x10/0x10
[  595.431899][   T30]  kthread+0x2f0/0x390
[  595.431924][   T30]  ? __pfx_watchdog+0x10/0x10
[  595.431949][   T30]  ? __pfx_kthread+0x10/0x10
[  595.431975][   T30]  ret_from_fork+0x4b/0x80
[  595.431998][   T30]  ? __pfx_kthread+0x10/0x10
[  595.432023][   T30]  ret_from_fork_asm+0x1a/0x30
[  595.432063][   T30]  </TASK>
[  595.432076][   T30] Sending NMI from CPU 0 to CPUs 1:
[  595.432103][    C1] NMI backtrace for cpu 1
[  595.432114][    C1] CPU: 1 UID: 0 PID: 8022 Comm: kworker/u9:3 Not tainted 6.10.0-rc4-next-20240621-syzkaller #0
[  595.432133][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  595.432144][    C1] Workqueue: hci8 hci_rx_work
[  595.432163][    C1] RIP: 0010:lock_release+0x604/0x9f0
[  595.432183][    C1] Code: 4c 89 f3 48 c1 eb 03 42 80 3c 3b 00 74 08 4c 89 f7 e8 f0 58 8a 00 48 c7 84 24 90 00 00 00 00 00 00 00 9c 8f 84 24 90 00 00 00 <42> 80 3c 3b 00 74 08 4c 89 f7 e8 dd 57 8a 00 f6 84 24 91 00 00 00
[  595.432197][    C1] RSP: 0018:ffffc90000a18b40 EFLAGS: 00000046
[  595.432210][    C1] RAX: 0000000000000001 RBX: 1ffff9200014317a RCX: ffffc90000a18b03
[  595.432222][    C1] RDX: 0000000000000004 RSI: ffffffff8bcada20 RDI: ffffffff8c206c80
[  595.432233][    C1] RBP: ffffc90000a18c80 R08: ffffffff8faeddef R09: 1ffffffff1f5dbbd
[  595.432245][    C1] R10: dffffc0000000000 R11: fffffbfff1f5dbbe R12: 1ffff92000143174
[  595.432257][    C1] R13: 0000000000000046 R14: ffffc90000a18bd0 R15: dffffc0000000000
[  595.432269][    C1] FS:  0000000000000000(0000) GS:ffff8880b9500000(0000) knlGS:0000000000000000
[  595.432282][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  595.432293][    C1] CR2: 00007ff283cf30a5 CR3: 000000000e132000 CR4: 00000000003506f0
[  595.432307][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  595.432317][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  595.432328][    C1] Call Trace:
[  595.432334][    C1]  <NMI>
[  595.432341][    C1]  ? nmi_cpu_backtrace+0x3c2/0x4d0
[  595.432359][    C1]  ? __pfx_lock_acquire+0x10/0x10
[  595.432378][    C1]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  595.432395][    C1]  ? nmi_handle+0x2a/0x5a0
[  595.432416][    C1]  ? nmi_cpu_backtrace_handler+0xc/0x20
[  595.432433][    C1]  ? nmi_handle+0x14f/0x5a0
[  595.432447][    C1]  ? nmi_handle+0x2a/0x5a0
[  595.432461][    C1]  ? lock_release+0x604/0x9f0
[  595.432479][    C1]  ? default_do_nmi+0x63/0x160
[  595.432497][    C1]  ? exc_nmi+0x123/0x1f0
[  595.432513][    C1]  ? end_repeat_nmi+0xf/0x53
[  595.432537][    C1]  ? lock_release+0x604/0x9f0
[  595.432554][    C1]  ? lock_release+0x604/0x9f0
[  595.432573][    C1]  ? lock_release+0x604/0x9f0
[  595.432591][    C1]  </NMI>
[  595.432596][    C1]  <IRQ>
[  595.432604][    C1]  ? advance_sched+0xa02/0xca0
[  595.432624][    C1]  ? advance_sched+0xa02/0xca0
[  595.432641][    C1]  ? __netif_schedule+0xc4/0x310
[  595.432661][    C1]  ? __pfx_lock_release+0x10/0x10
[  595.432682][    C1]  ? do_raw_spin_unlock+0x13c/0x8b0
[  595.432698][    C1]  ? taprio_set_budgets+0x32c/0x370
[  595.432717][    C1]  ? advance_sched+0xa02/0xca0
[  595.432735][    C1]  ? advance_sched+0xa02/0xca0
[  595.432754][    C1]  advance_sched+0xb32/0xca0
[  595.432779][    C1]  ? __pfx_advance_sched+0x10/0x10
[  595.432798][    C1]  __hrtimer_run_queues+0x59b/0xd50
[  595.432821][    C1]  ? ktime_get_update_offsets_now+0x3c/0x250
[  595.432849][    C1]  ? __pfx___hrtimer_run_queues+0x10/0x10
[  595.432870][    C1]  hrtimer_interrupt+0x396/0x990
[  595.432897][    C1]  __sysvec_apic_timer_interrupt+0x110/0x3f0
[  595.432920][    C1]  sysvec_apic_timer_interrupt+0xa1/0xc0
[  595.432940][    C1]  </IRQ>
[  595.432946][    C1]  <TASK>
[  595.432952][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  595.432970][    C1] RIP: 0010:console_flush_all+0x9f7/0xf50
[  595.432987][    C1] Code: 20 00 90 0f 0b 90 e9 f3 f9 ff ff e8 33 27 20 00 e8 be 15 1a 0a 4d 85 f6 74 c0 e8 24 27 20 00 fb 49 bd 00 00 00 00 00 fc ff df <43> 80 3c 2f 00 48 8b 5c 24 30 74 08 48 89 df e8 25 8e 86 00 4c 8b
[  595.433000][    C1] RSP: 0018:ffffc900141c7340 EFLAGS: 00000246
[  595.433013][    C1] RAX: ffffffff817353ac RBX: 0000000000000000 RCX: 0000000000040000
[  595.433024][    C1] RDX: ffffc90012115000 RSI: 000000000003ffff RDI: 0000000000040000
[  595.433035][    C1] RBP: ffffc900141c74d0 R08: ffffffff81735353 R09: 1ffffffff25fc8e8
[  595.433047][    C1] R10: dffffc0000000000 R11: fffffbfff25fc8e9 R12: ffffffff8eb2c0a0
[  595.433059][    C1] R13: dffffc0000000000 R14: 0000000000000200 R15: 1ffffffff1d6581f
[  595.433075][    C1]  ? console_flush_all+0x993/0xf50
[  595.433090][    C1]  ? console_flush_all+0x9ec/0xf50
[  595.433112][    C1]  ? console_flush_all+0x147/0xf50
[  595.433131][    C1]  ? __pfx_console_flush_all+0x10/0x10
[  595.433156][    C1]  console_unlock+0x13b/0x4d0
[  595.433174][    C1]  ? __pfx_console_unlock+0x10/0x10
[  595.433189][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  595.433210][    C1]  ? do_raw_spin_unlock+0x13c/0x8b0
[  595.433229][    C1]  vprintk_emit+0x7a1/0x900
[  595.433243][    C1]  ? __lock_acquire+0x1359/0x2000
[  595.433263][    C1]  ? __pfx_vprintk_emit+0x10/0x10
[  595.433286][    C1]  _printk+0xd5/0x120
[  595.433308][    C1]  ? __pfx__printk+0x10/0x10
[  595.433329][    C1]  ? hci_event_packet+0x56c/0x1540
[  595.433350][    C1]  bt_warn+0x127/0x180
[  595.433371][    C1]  ? __pfx_bt_warn+0x10/0x10
[  595.433388][    C1]  ? __mutex_unlock_slowpath+0x21d/0x750
[  595.433409][    C1]  ? __copy_skb_header+0x437/0x5b0
[  595.433425][    C1]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  595.433447][    C1]  hci_cmd_complete_evt+0x3ef/0x8b0
[  595.433470][    C1]  hci_event_packet+0xa55/0x1540
[  595.433490][    C1]  ? __pfx_hci_cmd_complete_evt+0x10/0x10
[  595.433511][    C1]  ? __pfx_hci_event_packet+0x10/0x10
[  595.433527][    C1]  ? do_raw_spin_unlock+0x13c/0x8b0
[  595.433547][    C1]  ? hci_send_to_monitor+0xd8/0x7f0
[  595.433567][    C1]  ? kcov_remote_start+0x9e/0x7e0
[  595.433588][    C1]  hci_rx_work+0x3e8/0xca0
[  595.433609][    C1]  ? process_scheduled_works+0x945/0x1830
[  595.433627][    C1]  process_scheduled_works+0xa2c/0x1830
[  595.433657][    C1]  ? __pfx_process_scheduled_works+0x10/0x10
[  595.433679][    C1]  ? assign_work+0x364/0x3d0
[  595.433698][    C1]  worker_thread+0x86d/0xd50
[  595.433723][    C1]  ? __kthread_parkme+0x169/0x1d0
[  595.433742][    C1]  ? __pfx_worker_thread+0x10/0x10
[  595.433759][    C1]  kthread+0x2f0/0x390
[  595.433778][    C1]  ? __pfx_worker_thread+0x10/0x10
[  595.433796][    C1]  ? __pfx_kthread+0x10/0x10
[  595.433819][    C1]  ret_from_fork+0x4b/0x80
[  595.433837][    C1]  ? __pfx_kthread+0x10/0x10
[  595.433856][    C1]  ret_from_fork_asm+0x1a/0x30
[  595.433882][    C1]  </TASK>
[  595.442949][   T30] Kernel panic - not syncing: hung_task: blocked tasks
[  595.442965][   T30] CPU: 0 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.10.0-rc4-next-20240621-syzkaller #0
[  595.442988][   T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  595.443000][   T30] Call Trace:
[  595.443009][   T30]  <TASK>
[  595.443018][   T30]  dump_stack_lvl+0x241/0x360
[  595.443045][   T30]  ? __pfx_dump_stack_lvl+0x10/0x10
[  595.443069][   T30]  ? __pfx__printk+0x10/0x10
[  595.443102][   T30]  ? vscnprintf+0x5d/0x90
[  595.443126][   T30]  panic+0x349/0x870
[  595.443153][   T30]  ? nmi_trigger_cpumask_backtrace+0x244/0x320
[  595.443177][   T30]  ? __pfx_panic+0x10/0x10
[  595.443199][   T30]  ? tick_nohz_tick_stopped+0x82/0xb0
[  595.443222][   T30]  ? __irq_work_queue_local+0x137/0x410
[  595.443249][   T30]  ? preempt_schedule_thunk+0x1a/0x30
[  595.443271][   T30]  ? nmi_trigger_cpumask_backtrace+0x244/0x320
[  595.443293][   T30]  ? nmi_trigger_cpumask_backtrace+0x2d4/0x320
[  595.443319][   T30]  ? nmi_trigger_cpumask_backtrace+0x2d9/0x320
[  595.443344][   T30]  watchdog+0x102d/0x1030
[  595.443372][   T30]  ? watchdog+0x1ea/0x1030
[  595.443402][   T30]  ? __pfx_watchdog+0x10/0x10
[  595.443427][   T30]  kthread+0x2f0/0x390
[  595.443452][   T30]  ? __pfx_watchdog+0x10/0x10
[  595.443476][   T30]  ? __pfx_kthread+0x10/0x10
[  595.443502][   T30]  ret_from_fork+0x4b/0x80
[  595.443525][   T30]  ? __pfx_kthread+0x10/0x10
[  595.443550][   T30]  ret_from_fork_asm+0x1a/0x30
[  595.443588][   T30]  </TASK>
[  596.549269][   T30] Shutting down cpus with NMI
[  596.549497][   T30] Kernel Offset: disabled