last executing test programs:

1m24.192541794s ago: executing program 1 (id=1760):
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000540)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000440)={&(0x7f0000001fc0)={0xa0, 0x0, 0x10, 0x70bd2c, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x6, 0x5f}}}}, [@NL80211_ATTR_DURATION={0x8, 0x57, 0xffffffff}, @chandef_params=[@NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0xef}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xc}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x1}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0xbb0}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x3}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x4}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x2}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x1000}], @NL80211_ATTR_TX_NO_CCK_RATE={0x4}, @NL80211_ATTR_OFFCHANNEL_TX_OK={0x4}, @NL80211_ATTR_DURATION={0x8, 0x57, 0x7e2}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x28e}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x2}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x2e0}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x4}]]}, 0xa0}, 0x1, 0x0, 0x0, 0x24011}, 0x404c000)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000300)="d8000000180081064e81f782db4cb904021d0800fe067c05e8fe55a10a0005000140020003600e41b0000900ac0006fc1100000004000500014002000000035c3b61c1d67f6f94007174cf6efb8000a007a290457f0189b316277ce06bbace8017cbec4c2ee5", 0x66}], 0x1}, 0x20004804)
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4}, 0x4008885)
recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x80, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x64}, {&(0x7f0000000280)=""/85, 0x55}, {&(0x7f0000000fc0)=""/4096, 0x1000}, {&(0x7f0000000980)=""/73, 0x49}, {&(0x7f0000000200)=""/77, 0x4d}, {&(0x7f00000007c0)=""/141, 0x8d}, {&(0x7f00000001c0)=""/17, 0x11}], 0x7, &(0x7f0000000600)=""/191, 0xbf}, 0x5}], 0x1, 0x2000, &(0x7f0000003700)={0x77359400})

1m23.978083596s ago: executing program 1 (id=1765):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x18, 0x4, &(0x7f0000000140)=ANY=[@ANYBLOB="18090000002300810000000000000000850000007b00000095"], &(0x7f0000000000)='syzkaller\x00', 0x9, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8001}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000280)='kfree\x00', r0, 0x0, 0x1000000000000}, 0x18)
r1 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r1, 0x11b, 0x4, &(0x7f0000000100)={0x0, 0x204000, 0x1000}, 0x20)

1m23.748550207s ago: executing program 1 (id=1768):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000007000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000e00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='kfree\x00', r1, 0x0, 0xffffffffffffffff}, 0x18)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f00000002c0)=ANY=[@ANYBLOB="18080000000000000000000000000000851000000600000018020000", @ANYRES32, @ANYBLOB="00000000000000006600020000000000180000000000000000000000000000009500040000000000360a020000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b50a0000000000008500000006000000950000"], &(0x7f0000000040)='syzkaller\x00', 0x2}, 0x94)

1m23.340053281s ago: executing program 1 (id=1773):
mbind(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x0, 0x2)

1m20.046646123s ago: executing program 1 (id=1782):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0xffffffffffffff34, &(0x7f0000000080)={0x0, 0xb8}}, 0x0)
getsockname$packet(r1, &(0x7f0000000340)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000000)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3], 0x34}}, 0x0)
sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)=ANY=[@ANYBLOB="2000000014000100e3ffffff00000000020000ff", @ANYRES32=r3, @ANYBLOB="08000200ac1414aa"], 0x20}}, 0x0)
r4 = socket$inet(0x2, 0x3, 0x2)
setsockopt$inet_mreqsrc(r4, 0x0, 0x27, &(0x7f0000000040)={@multicast2, @local}, 0xc)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000700)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r5}, 0x10)
r6 = socket(0x10, 0x803, 0x4)
sendmsg$nl_route(r6, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={0x0, 0x1c}, 0x1, 0x0, 0x0, 0x20088814}, 0x0)
getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
bpf$MAP_CREATE_TAIL_CALL(0x0, 0x0, 0x50)
sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)=@delchain={0x24, 0x11, 0x1, 0x13, 0x0, {0x0, 0x0, 0x0, r7, {0x0, 0xfff1}}}, 0x24}}, 0x0)

1m19.320167802s ago: executing program 1 (id=1787):
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}, 0x1, 0x0, 0x0, 0x1}, 0x800)
setsockopt$TIPC_GROUP_JOIN(0xffffffffffffffff, 0x10f, 0x87, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x300000e, 0x20c44fb6edc09a38, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x15)

1m4.086397005s ago: executing program 32 (id=1787):
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}, 0x1, 0x0, 0x0, 0x1}, 0x800)
setsockopt$TIPC_GROUP_JOIN(0xffffffffffffffff, 0x10f, 0x87, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x300000e, 0x20c44fb6edc09a38, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x15)

5.417515296s ago: executing program 2 (id=2267):
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x21c0, 0x103)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f00000004c0)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000082"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r2 = dup(r1)
write$P9_RLERRORu(r2, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000800)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=0x0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085"], 0x0, 0x101, 0x0, 0x0, 0x41100, 0xc}, 0x94)
write$binfmt_elf64(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
creat(&(0x7f00000003c0)='./file0\x00', 0x36)

5.16631704s ago: executing program 0 (id=2269):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'ipvlan0\x00', <r3=>0x0})
sendmsg$ETHTOOL_MSG_DEBUG_SET(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000140)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000000fedbdf25080000001800028014000380100001800400030008000100050000000c00018008000100", @ANYRES32=r3], 0x38}, 0x1, 0x0, 0x0, 0x4000804}, 0x0)

5.057616698s ago: executing program 2 (id=2271):
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x20, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000040000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x18)
r2 = getpid()
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r3 = getpid()
ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, 0x0)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
socket$inet6_udp(0xa, 0x2, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x4100)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = syz_pidfd_open(r2, 0x0)
setns(r6, 0x24020000)
syz_clone(0xf5982500, 0x0, 0x0, 0x0, 0x0, 0x0)

4.938359841s ago: executing program 0 (id=2273):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000700)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x2c, 0x0, 0x301, 0x0, 0x25dfdbfb, {0x1c}, [@ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond0\x00'}]}]}, 0x2c}}, 0x40006)

4.722852047s ago: executing program 0 (id=2276):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x1c, &(0x7f00000004c0)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000082"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
creat(&(0x7f00000000c0)='./file0\x00', 0x48)
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r2 = dup(r1)
write$P9_RLERRORu(r2, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000180)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085"], 0x0, 0x101, 0x0, 0x0, 0x40f00, 0x59}, 0x94)
write$binfmt_elf64(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
r3 = open(&(0x7f0000000300)='./file0\x00', 0x145142, 0x102)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='kfree\x00', r5}, 0x18)
sendfile(r3, r3, 0x0, 0x800000009)

3.221236181s ago: executing program 0 (id=2281):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000002000000"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="180100001700000000000000ff000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a3200000000140000001100"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000006c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWSET={0x44, 0x9, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0xfffffffc}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x14}]}, @NFT_MSG_NEWSETELEM={0x40, 0xc, 0xa, 0x101, 0x0, 0x0, {0xa, 0x0, 0x6}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x14, 0x3, 0x0, 0x1, [{0x10, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_KEY={0xc, 0x1, 0x0, 0x1, [@NFTA_DATA_VALUE={0x6, 0x1, "d103"}]}]}]}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0xac}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)

2.777884506s ago: executing program 3 (id=2289):
r0 = openat2(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080)={0x41}, 0x18)
fsetxattr$system_posix_acl(r0, &(0x7f0000000340)='system.posix_acl_access\x00', 0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000110000000000000000850000007b00000095"], &(0x7f0000000040)='syzkaller\x00', 0x6, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x2}, 0x94)
r1 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r1, &(0x7f0000000840)={0x2, 0x0, @loopback}, 0x10)
sendmmsg(0xffffffffffffffff, &(0x7f00000074c0)=[{{&(0x7f0000000340)=@nl=@unspec, 0x80, &(0x7f00000001c0)=[{&(0x7f0000000500)="22029d3f34478dd7c6b4bd558580024dd4f3ed025977593fc8e4fc4340ed1a6612d271302e2b6f5f27b6da7bc441df1c08989d0e13e86549d437c61da3460c0ada77dbc3c34e7b469e25f86a8add71df58a707341eb74dc1f5224bee25a1be1747a7d899881e49f8975a6939695133329eb1ee253f4f1cd61236769fcd34f95086bae5b16ac2ac9540373774e91addd881875513b8c10535fa77b433bd88638abf49dbaa8d3f5f1dd85242968e6ecf19934150d008d609b3c0dab89c04c18eb4c43121", 0xc3}], 0x1, &(0x7f0000000600)=ANY=[@ANYBLOB="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"], 0x138}}, {{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000006300)}}], 0x3, 0x8044)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/notes', 0x900, 0x1a4)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB], 0x48)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000fd0f00000700"], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r7}, 0x10)
ioctl$AUTOFS_IOC_FAIL(r2, 0x4c80, 0xffffffffffffffb6)
sendmsg$rds(r1, &(0x7f0000000000)={&(0x7f0000000040)={0x2, 0x0, @private=0xa010100}, 0x10, 0x0, 0x0, &(0x7f00000003c0)=[@fadd={0x58, 0x114, 0x6, {{0x4, 0xffffff40}, &(0x7f0000000100)=0x1, 0x0, 0xd5b, 0x3, 0x4, 0x83e, 0x12, 0x101}}], 0x58}, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)

2.381487289s ago: executing program 2 (id=2290):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000180)={'vxcan1\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=@getchain={0x24, 0x11, 0x839, 0x70bd25, 0x0, {0x0, 0x0, 0x0, r2, {0x1}, {0xffff, 0xfff1}, {0x1}}}, 0x24}}, 0x0)
recvfrom(r1, 0x0, 0x0, 0x10100, 0x0, 0x0)

1.444083306s ago: executing program 3 (id=2293):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="0e000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r3=>0x0})
r4 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x6, 0x4, &(0x7f00000006c0)=ANY=[@ANYBLOB="18020000000000000000000000000000850000001700000095"], &(0x7f00000005c0)='GPL\x00'}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000000c0)={r4, r3, 0x25, 0x0, @void}, 0x10)
syz_emit_ethernet(0xfdef, &(0x7f0000000280)=ANY=[], 0x0)

1.344087635s ago: executing program 0 (id=2294):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000010"], 0x50)
syz_emit_ethernet(0x33, 0x0, 0x0)
r1 = socket(0x200000000000011, 0x2, 0x1)
bind$packet(r1, &(0x7f0000000080)={0x11, 0x800, 0x0, 0x1, 0x0, 0x6, @multicast}, 0x14)
setsockopt$packet_fanout(r1, 0x107, 0x12, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kmem_cache_free\x00', r3}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x0, &(0x7f0000000280)}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
sendmsg$inet(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000000040)}, {0x0}, {&(0x7f0000001d80)="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", 0x1d5}], 0x3}, 0x800)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
sendto$inet(r0, &(0x7f0000000580)="17", 0x59a, 0x10008095, 0x0, 0x0)

1.08188774s ago: executing program 4 (id=2296):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_RENAME(r0, &(0x7f0000000540)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000004c0)={&(0x7f0000000480)={0x1c, 0x5, 0x6, 0x401, 0x0, 0x0, {0x7, 0x0, 0x7}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x85}, 0x8000)

981.448024ms ago: executing program 4 (id=2297):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x8, 0x0, 0x0, 0x0, 0x51}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
unshare(0x2c020400)
r2 = msgget$private(0x0, 0x0)
msgsnd(r2, &(0x7f0000000480)=ANY=[@ANYRESDEC], 0x2000, 0x0)
msgrcv(r2, &(0x7f0000001080)={0x0, ""/1}, 0x2000, 0x2, 0x3000)

954.83657ms ago: executing program 3 (id=2298):
mbind(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x4005, &(0x7f0000000c00)=0xb, 0x6, 0x2)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x18, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x40000000}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000002c0)={{r0}, &(0x7f0000000040), &(0x7f0000000280)='%pS    \x00'}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r2}, 0x10)
mbind(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x4005, &(0x7f0000000c00)=0xc, 0x6, 0x2)

908.821755ms ago: executing program 5 (id=2299):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r0}, 0x10)
openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x1)

787.75346ms ago: executing program 5 (id=2300):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x18, 0xb, &(0x7f00000005c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000730000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000340)='kfree\x00', r1, 0x0, 0x200000000}, 0x18)
r2 = syz_genetlink_get_family_id$fou(&(0x7f00000003c0), 0xffffffffffffffff)
sendmsg$FOU_CMD_ADD(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000880)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="0902000000000000000001"], 0x38}}, 0x0)

661.443134ms ago: executing program 4 (id=2301):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0x10, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000032500000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000850000000f000000bf91000000000000b7020000002000008500000084000000b70000000000000095"], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r1}, 0x10)
readahead(0xffffffffffffffff, 0x6, 0xfffffffffffffffa)

661.094526ms ago: executing program 3 (id=2302):
r0 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f0000000700)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x2c, r0, 0x301, 0x0, 0x25dfdbfb, {0x1c}, [@ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond0\x00'}]}]}, 0x2c}}, 0x40006)

618.221981ms ago: executing program 5 (id=2303):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000000100))
r1 = openat$qrtrtun(0xffffffffffffff9c, 0x0, 0x0)
read$qrtrtun(r1, 0x0, 0xeffd)
r2 = shmget$private(0x0, 0x8000, 0x10, &(0x7f0000ff5000/0x8000)=nil)
shmat(r2, &(0x7f0000ffc000/0x2000)=nil, 0x4000)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="0100000004000000080000000b"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000f4751f2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x14, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000680)='sys_exit\x00', r4, 0x0, 0x3}, 0x18)
symlink(&(0x7f0000001640)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/../file0\x00', &(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
symlinkat(&(0x7f0000002040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00')
unlink(&(0x7f0000000100)='./file0/file1\x00')

569.29018ms ago: executing program 4 (id=2304):
bpf$PROG_LOAD(0x5, &(0x7f00000009c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x24000000)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0x9c, 0xb, 0x0, 0xffffffffffffffff, 0x327}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
process_vm_readv(0x0, &(0x7f0000001140)=[{&(0x7f0000000000)=""/87, 0x62}, {&(0x7f0000001200)=""/4096, 0x100a}], 0x2, &(0x7f00000011c0)=[{0xfffffffffffffffc, 0x19000}], 0x1, 0x0)

502.89485ms ago: executing program 5 (id=2305):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000001e00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a40)={&(0x7f0000000980)='sys_enter\x00', r1}, 0x10)
signalfd4(0xffffffffffffffff, &(0x7f0000000240)={[0xffff]}, 0x8, 0x0)

502.430472ms ago: executing program 2 (id=2306):
epoll_pwait2(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000280)={[0x1]}, 0x47)

449.44769ms ago: executing program 3 (id=2307):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008001500b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x40f00}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000400)='virtio_transport_alloc_pkt\x00', r1}, 0x18)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r2, &(0x7f00000002c0)={0x28, 0x0, 0x2710, @local}, 0x10)

386.029972ms ago: executing program 4 (id=2308):
r0 = syz_open_dev$usbfs(&(0x7f0000000100), 0x205, 0x8401)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kfree\x00', r1}, 0x18)
r2 = fcntl$dupfd(r0, 0x0, r0)
ioctl$USBDEVFS_SUBMITURB(r2, 0x8038550a, &(0x7f0000000000)=@urb_type_control={0x2, {}, 0xfffffffb, 0x0, &(0x7f0000000080)={0x0, 0x12, 0x0, 0x0, 0x7995}, 0x8, 0x0, 0x4, 0x48000000, 0x0, 0x0, 0x0})

374.233056ms ago: executing program 2 (id=2309):
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x8, 0xc, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020097b1af8ff00000000bfa100000000000007010000b8ffffffb702000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000400)='mm_migrate_pages\x00', r0, 0x0, 0x5}, 0x18)
mbind(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x0, 0x2)

326.032938ms ago: executing program 5 (id=2310):
capset(&(0x7f0000000380)={0x20080522}, &(0x7f0000000040)={0x200000, 0x200003, 0x3, 0x0, 0x7, 0x400})
r0 = syz_open_dev$sg(&(0x7f0000001600), 0x0, 0x0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000340)=ANY=[])

324.885007ms ago: executing program 3 (id=2311):
socket$netlink(0x10, 0x3, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000005000000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000180)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xc1103000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$xdp(0x2c, 0x3, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x100, 0x0)
sendmsg$IPSET_CMD_CREATE(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="4c000000020681010000000000000000000000000500050002000000050001000700000005000400030000000900020073797a310000000011000300686173683a6e65742c6e"], 0x4c}, 0x1, 0x0, 0x0, 0x4040000}, 0x800)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000580)={0x44, 0x9, 0x6, 0x201, 0x0, 0x0, {0x3}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x1c, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @broadcast}}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @rand_addr=0x64010101}}]}]}, 0x44}, 0x1, 0x0, 0x0, 0xd24f4d5778621d46}, 0x4)

300.471339ms ago: executing program 0 (id=2312):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x50)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000001100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
setgid(0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000240)={0x0, 0xb, &(0x7f0000000280)={&(0x7f0000000100)=ANY=[@ANYBLOB="24000000190001002dbd7000000000000a0010000000000a003e000008001f"], 0x24}, 0x1, 0x0, 0x0, 0x80}, 0x4000050)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000080))
getuid()
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000040), &(0x7f00000000c0)=0xc)
r4 = socket$inet6(0xa, 0x1, 0x100)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x48241, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r6 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r6, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r5, &(0x7f00000005c0)=ANY=[@ANYBLOB="00000000bbbbbbbbbbbbaaaaaaaaaabb86dd400008004500007800000000002f9078ac1e0001e0000001000086dd00649078020000000400000001000000a1c0bd6a04135b3aee0077e1d0f4e301980893ce7f4378af9ab6e8b9734ceea785f920771363821d3fffadab77924ef66d25bfe40100000083a757b13835cb38d4eeecc61ccdbfb8a4c5c52c48994e7c"], 0x8e)
sendmsg$inet(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000700)=[{&(0x7f00000000c0)="5980a642beaf34ff0f0000121690ad0d2b", 0x11}], 0x1}, 0x2000c001)
r7 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$inet(r7, &(0x7f0000000540)={0x0, 0xc027, &(0x7f0000000340)=[{&(0x7f00000000c0)="97eb000014006bcd9e", 0xeb97}], 0x1, 0x0, 0x0, 0x1f000000}, 0x600)
getpid()

210.332988ms ago: executing program 4 (id=2313):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x1c, &(0x7f00000004c0)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000082"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
creat(&(0x7f00000000c0)='./file0\x00', 0x48)
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r2 = dup(r1)
write$P9_RLERRORu(r2, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000180)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085"], 0x0, 0x101, 0x0, 0x0, 0x40f00, 0x59}, 0x94)
write$binfmt_elf64(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
r3 = open(&(0x7f0000000300)='./file0\x00', 0x145142, 0x102)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendfile(r3, r3, 0x0, 0x800000009)

4.37316ms ago: executing program 2 (id=2314):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='cgroup.controllers\x00', 0x275a, 0x0)
fsetxattr(r0, &(0x7f0000000000)=@known='security.selinux\x00', &(0x7f0000000080)='@\x00', 0x3c8, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYRES32=0x0], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000500000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x18)
r3 = socket$kcm(0x2, 0x5, 0x84)
sendmsg$inet(r3, &(0x7f0000000180)={&(0x7f0000000080)={0x2, 0x4e24, @private=0xa010102}, 0x10, &(0x7f0000000100)}, 0x20008050)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
getsockopt$bt_BT_SNDMTU(r0, 0x112, 0xc, &(0x7f0000000200)=0xfffb, &(0x7f0000000340)=0x2)
close(r5)
recvmsg$unix(r4, 0x0, 0x0)
sendfile(r2, r2, 0x0, 0x40000f63c)
mq_timedsend(0xffffffffffffffff, 0x0, 0x600, 0x0, 0x0)
set_mempolicy(0x4003, &(0x7f00000001c0)=0x1a8, 0xe786)

0s ago: executing program 5 (id=2315):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000000100))
r1 = openat$qrtrtun(0xffffffffffffff9c, 0x0, 0x0)
read$qrtrtun(r1, 0x0, 0xeffd)
r2 = shmget$private(0x0, 0x8000, 0x10, &(0x7f0000ff5000/0x8000)=nil)
shmat(r2, &(0x7f0000ffc000/0x2000)=nil, 0x4000)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="0100000004000000080000000b"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000f4751f2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x14, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000680)='sys_exit\x00', r4, 0x0, 0x3}, 0x18)
symlink(&(0x7f0000001640)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/../file0\x00', &(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
symlinkat(&(0x7f0000002040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00')
unlink(&(0x7f0000000100)='./file0/file1\x00')

kernel console output (not intermixed with test programs):

x_wq": -EINTR
[  304.043168][ T9157] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  304.714980][ T9172] lo speed is unknown, defaulting to 1000
[  304.720564][ T9172] lo speed is unknown, defaulting to 1000
[  305.372870][ T9173] netlink: 'syz.2.1165': attribute type 4 has an invalid length.
[  305.372922][ T9173] netlink: 17 bytes leftover after parsing attributes in process `syz.2.1165'.
[  305.611402][ T9173] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1165'.
[  308.211160][ T9193] netlink: 48 bytes leftover after parsing attributes in process `syz.4.1174'.
[  309.044790][ T9200] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_rx_wq": -EINTR
[  309.359564][ T5924] hid-generic 0000:0000:0000.0008: unknown main item tag 0x1
[  309.359601][ T5924] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  309.359625][ T5924] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  309.359655][ T5924] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  309.359679][ T5924] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  309.359702][ T5924] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  309.359773][ T5924] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  309.359797][ T5924] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  309.359820][ T5924] hid-generic 0000:0000:0000.0008: unknown main item tag 0x2
[  309.359845][ T5924] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  309.362494][ T5924] hid-generic 0000:0000:0000.0008: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  309.559554][ T9211] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  309.579551][ T9211] tipc: Resetting bearer <eth:syzkaller0>
[  309.873985][ T9210] tipc: Disabling bearer <eth:syzkaller0>
[  310.318219][ T9222] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  310.331616][ T9223] vlan0: entered allmulticast mode
[  311.004551][ T9238] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_cmd_wq": -EINTR
[  311.271947][   T37] kauditd_printk_skb: 441 callbacks suppressed
[  311.271966][   T37] audit: type=1326 audit(1756681124.925:5637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9241 comm="syz.3.1188" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  311.272013][   T37] audit: type=1326 audit(1756681124.925:5638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9241 comm="syz.3.1188" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  311.272055][   T37] audit: type=1326 audit(1756681124.925:5639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9241 comm="syz.3.1188" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  311.272097][   T37] audit: type=1326 audit(1756681124.925:5640): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9241 comm="syz.3.1188" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  311.272137][   T37] audit: type=1326 audit(1756681124.925:5641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9241 comm="syz.3.1188" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  311.272178][   T37] audit: type=1326 audit(1756681124.925:5642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9241 comm="syz.3.1188" exe="/root/syz-executor" sig=0 arch=c000003e syscall=272 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  311.272220][   T37] audit: type=1326 audit(1756681124.925:5643): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9241 comm="syz.3.1188" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  311.272268][   T37] audit: type=1326 audit(1756681124.925:5644): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9241 comm="syz.3.1188" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  311.272309][   T37] audit: type=1326 audit(1756681124.935:5645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9241 comm="syz.3.1188" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  311.272349][   T37] audit: type=1326 audit(1756681124.935:5646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9241 comm="syz.3.1188" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  311.634867][ T7211] hid-generic 0000:0000:0000.0009: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  311.786998][ T9250] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1191'.
[  312.456580][ T9274] tipc: Started in network mode
[  312.456609][ T9274] tipc: Node identity 12fef584c93f, cluster identity 4711
[  312.456814][ T9274] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  312.489409][ T9268] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  312.507708][ T9268] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1198'.
[  312.507791][ T9268] bridge_slave_1: left allmulticast mode
[  312.507816][ T9268] bridge_slave_1: left promiscuous mode
[  312.508083][ T9268] bridge0: port 2(bridge_slave_1) entered disabled state
[  313.222501][ T9277] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_tx_wq": -EINTR
[  313.536272][ T5825] tipc: Node number set to 3686921604
[  313.558534][ T9268] bridge_slave_0: left allmulticast mode
[  313.558566][ T9268] bridge_slave_0: left promiscuous mode
[  313.558845][ T9268] bridge0: port 1(bridge_slave_0) entered disabled state
[  313.839571][ T9275] tipc: Resetting bearer <eth:syzkaller0>
[  313.924658][ T5924] hid-generic 0000:0000:0000.000A: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  313.972934][ T9273] tipc: Disabling bearer <eth:syzkaller0>
[  314.265653][ T9297] vlan2: entered allmulticast mode
[  315.620720][ T9321] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_rx_wq": -EINTR
[  316.049421][ T9339] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1220'.
[  316.200083][ T9343] tipc: Started in network mode
[  316.200112][ T9343] tipc: Node identity 8689af2f5c53, cluster identity 4711
[  316.200302][ T9343] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  316.200685][ T9335] syzkaller0: entered promiscuous mode
[  316.200709][ T9335] syzkaller0: entered allmulticast mode
[  316.416285][ T9343] tipc: Resetting bearer <eth:syzkaller0>
[  316.542322][ T9334] tipc: Resetting bearer <eth:syzkaller0>
[  316.860391][ T9334] tipc: Disabling bearer <eth:syzkaller0>
[  317.130811][ T5825] hid_parser_main: 104 callbacks suppressed
[  317.130832][ T5825] hid-generic 0000:0000:0000.000B: unknown main item tag 0x1
[  317.130860][ T5825] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[  317.130884][ T5825] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[  317.130907][ T5825] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[  317.130931][ T5825] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[  317.130954][ T5825] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[  317.131012][ T5825] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[  317.131036][ T5825] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[  317.131059][ T5825] hid-generic 0000:0000:0000.000B: unknown main item tag 0x2
[  317.131083][ T5825] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[  317.139388][ T5825] hid-generic 0000:0000:0000.000B: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  317.447825][ T1322] ieee802154 phy0 wpan0: encryption failed: -22
[  317.447902][ T1322] ieee802154 phy1 wpan1: encryption failed: -22
[  318.545137][ T9373] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_rx_wq": -EINTR
[  319.206698][ T9383] vlan0: entered allmulticast mode
[  319.294635][ T9389] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1235'.
[  321.719369][ T9436] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  321.723666][ T9436] syzkaller0: entered promiscuous mode
[  321.723693][ T9436] syzkaller0: entered allmulticast mode
[  321.762643][ T9436] tipc: Resetting bearer <eth:syzkaller0>
[  322.082122][ T9434] tipc: Resetting bearer <eth:syzkaller0>
[  323.395306][ T5924] tipc: Node number set to 2020841273
[  325.194286][ T9434] tipc: Disabling bearer <eth:syzkaller0>
[  325.784584][ T9481] bridge: RTM_NEWNEIGH with invalid ether address
[  326.630592][ T9509] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1279'.
[  338.450417][ T9518] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  338.463001][ T9522] syzkaller0: entered promiscuous mode
[  338.463030][ T9522] syzkaller0: entered allmulticast mode
[  338.578544][ T9519] lo speed is unknown, defaulting to 1000
[  338.592510][ T9519] lo speed is unknown, defaulting to 1000
[  338.742145][ T9528] tipc: Resetting bearer <eth:syzkaller0>
[  338.919330][ T9528] tipc: Disabling bearer <eth:syzkaller0>
[  339.324505][ T9542] lo speed is unknown, defaulting to 1000
[  339.340769][ T9542] lo speed is unknown, defaulting to 1000
[  339.505660][ T9566] netlink: 'syz.1.1297': attribute type 10 has an invalid length.
[  339.547808][ T9566] bond0: (slave lo): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond.
[  340.000492][ T9579] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  340.015514][ T9579] syzkaller0: entered promiscuous mode
[  340.015542][ T9579] syzkaller0: entered allmulticast mode
[  340.028753][ T9579] tipc: Resetting bearer <eth:syzkaller0>
[  340.055760][ T9578] tipc: Resetting bearer <eth:syzkaller0>
[  340.206656][ T9578] tipc: Disabling bearer <eth:syzkaller0>
[  341.904853][ T9600] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_tx_wq": -EINTR
[  342.434880][ T9582] lo speed is unknown, defaulting to 1000
[  342.520279][ T9582] lo speed is unknown, defaulting to 1000
[  342.839244][ T9618] netlink: 'syz.2.1316': attribute type 3 has an invalid length.
[  342.839266][ T9618] netlink: 'syz.2.1316': attribute type 1 has an invalid length.
[  342.839278][ T9618] netlink: 60387 bytes leftover after parsing attributes in process `syz.2.1316'.
[  343.702402][ T9633] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  344.455536][ T9637] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_cmd_wq": -EINTR
[  344.784898][ T9632] syzkaller0: entered promiscuous mode
[  344.784929][ T9632] syzkaller0: entered allmulticast mode
[  344.842651][ T9639] tipc: Resetting bearer <eth:syzkaller0>
[  345.042624][ T9631] tipc: Resetting bearer <eth:syzkaller0>
[  345.129376][ T9654] 9pnet: Could not find request transport: fd0x0000000000000003
[  345.213407][ T9631] tipc: Disabling bearer <eth:syzkaller0>
[  346.580492][ T9674] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_cmd_wq": -EINTR
[  347.083810][ T9686] 9pnet_fd: Insufficient options for proto=fd
[  347.246645][ T9692] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  347.419080][ T9694] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1344'.
[  347.507075][ T9700] syzkaller0: entered promiscuous mode
[  347.507104][ T9700] syzkaller0: entered allmulticast mode
[  348.983043][ T9717] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_cmd_wq": -EINTR
[  349.753432][ T9738] netlink: 'syz.2.1360': attribute type 7 has an invalid length.
[  349.753454][ T9738] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1360'.
[  349.841912][ T9741] netlink: 52 bytes leftover after parsing attributes in process `syz.3.1362'.
[  350.126645][   T37] kauditd_printk_skb: 27 callbacks suppressed
[  350.126666][   T37] audit: type=1326 audit(1756681163.805:5674): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9746 comm="syz.3.1363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  350.126780][   T37] audit: type=1326 audit(1756681163.805:5675): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9746 comm="syz.3.1363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  350.130892][   T37] audit: type=1326 audit(1756681163.805:5676): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9746 comm="syz.3.1363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  350.203177][   T37] audit: type=1326 audit(1756681163.885:5677): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9746 comm="syz.3.1363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  350.203325][   T37] audit: type=1326 audit(1756681163.885:5678): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9746 comm="syz.3.1363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  350.203479][   T37] audit: type=1326 audit(1756681163.885:5679): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9746 comm="syz.3.1363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  350.203626][   T37] audit: type=1326 audit(1756681163.885:5680): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9746 comm="syz.3.1363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  350.217772][   T37] audit: type=1326 audit(1756681163.885:5681): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9746 comm="syz.3.1363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  350.217824][   T37] audit: type=1326 audit(1756681163.885:5682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9746 comm="syz.3.1363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  350.217864][   T37] audit: type=1326 audit(1756681163.885:5683): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9746 comm="syz.3.1363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  351.485807][ T9768] netlink: 52 bytes leftover after parsing attributes in process `syz.2.1373'.
[  352.938240][ T9732] syz.4.1357: vmalloc error: size 2101248, failed to allocated page array size 4104, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  352.938667][ T9732] CPU: 0 UID: 0 PID: 9732 Comm: syz.4.1357 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  352.938688][ T9732] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  352.938707][ T9732] Call Trace:
[  352.938714][ T9732]  <TASK>
[  352.938722][ T9732]  dump_stack_lvl+0x189/0x250
[  352.938773][ T9732]  ? __pfx_dump_stack_lvl+0x10/0x10
[  352.938798][ T9732]  ? __pfx__printk+0x10/0x10
[  352.938818][ T9732]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  352.938838][ T9732]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  352.938859][ T9732]  ? cpuset_print_current_mems_allowed+0x2ee/0x360
[  352.938881][ T9732]  warn_alloc+0x22e/0x3b0
[  352.938916][ T9732]  ? __pfx_warn_alloc+0x10/0x10
[  352.938950][ T9732]  ? __get_vm_area_node+0x2bc/0x350
[  352.938973][ T9732]  ? hash_netiface_create+0x354/0xf90
[  352.939003][ T9732]  __vmalloc_node_range_noprof+0x67e/0x12f0
[  352.939052][ T9732]  ? __kasan_kmalloc+0x93/0xb0
[  352.939077][ T9732]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  352.939100][ T9732]  ? hash_netiface_create+0x354/0xf90
[  352.939128][ T9732]  ? __get_vm_area_node+0x2bc/0x350
[  352.939153][ T9732]  ? hash_netiface_create+0x354/0xf90
[  352.939179][ T9732]  __vmalloc_node_range_noprof+0x56a/0x12f0
[  352.939202][ T9732]  ? hash_netiface_create+0x354/0xf90
[  352.939258][ T9732]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  352.939289][ T9732]  ? rcu_is_watching+0x15/0xb0
[  352.939318][ T9732]  __kvmalloc_node_noprof+0x330/0x550
[  352.939343][ T9732]  ? hash_netiface_create+0x354/0xf90
[  352.939364][ T9732]  ? hash_netiface_create+0x354/0xf90
[  352.939387][ T9732]  ? hash_netiface_create+0x2fe/0xf90
[  352.939416][ T9732]  hash_netiface_create+0x354/0xf90
[  352.939450][ T9732]  ? __nla_parse+0x40/0x60
[  352.939475][ T9732]  ? __pfx_hash_netiface_create+0x10/0x10
[  352.939503][ T9732]  ip_set_create+0xa99/0x1940
[  352.939522][ T9732]  ? ip_set_create+0x4a7/0x1940
[  352.939550][ T9732]  ? __pfx_ip_set_create+0x10/0x10
[  352.939605][ T9732]  nfnetlink_rcv_msg+0xb69/0x1150
[  352.939624][ T9732]  ? __lock_acquire+0xab9/0xd20
[  352.939645][ T9732]  ? nfnetlink_rcv_msg+0x212/0x1150
[  352.939685][ T9732]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  352.939731][ T9732]  ? __pfx_migrate_enable+0x10/0x10
[  352.939762][ T9732]  ? __pfx_migrate_enable+0x10/0x10
[  352.939802][ T9732]  netlink_rcv_skb+0x205/0x470
[  352.939824][ T9732]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  352.939845][ T9732]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  352.939878][ T9732]  ? bpf_lsm_capable+0x9/0x20
[  352.939899][ T9732]  ? security_capable+0x7e/0x2e0
[  352.939930][ T9732]  nfnetlink_rcv+0x26a/0x2530
[  352.939952][ T9732]  ? __dev_queue_xmit+0x1d3d/0x3b70
[  352.939984][ T9732]  ? __dev_queue_xmit+0x26f/0x3b70
[  352.940015][ T9732]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  352.940034][ T9732]  ? __pfx___dev_queue_xmit+0x10/0x10
[  352.940066][ T9732]  ? ref_tracker_free+0x61e/0x7c0
[  352.940089][ T9732]  ? __asan_memcpy+0x40/0x70
[  352.940107][ T9732]  ? __pfx_ref_tracker_free+0x10/0x10
[  352.940126][ T9732]  ? __skb_clone+0x63/0x7a0
[  352.940152][ T9732]  ? __skb_clone+0x483/0x7a0
[  352.940187][ T9732]  ? skb_clone+0x246/0x3a0
[  352.940215][ T9732]  ? __netlink_deliver_tap+0x807/0x850
[  352.940235][ T9732]  ? netlink_deliver_tap+0x2e/0x1b0
[  352.940262][ T9732]  ? netlink_deliver_tap+0x2e/0x1b0
[  352.940291][ T9732]  netlink_unicast+0x843/0xa10
[  352.940318][ T9732]  ? __pfx_netlink_unicast+0x10/0x10
[  352.940339][ T9732]  ? netlink_sendmsg+0x642/0xb30
[  352.940366][ T9732]  ? skb_put+0x11b/0x210
[  352.940391][ T9732]  netlink_sendmsg+0x805/0xb30
[  352.940422][ T9732]  ? __pfx_netlink_sendmsg+0x10/0x10
[  352.940458][ T9732]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  352.940475][ T9732]  ? __pfx_netlink_sendmsg+0x10/0x10
[  352.940498][ T9732]  __sock_sendmsg+0x219/0x270
[  352.940519][ T9732]  ____sys_sendmsg+0x508/0x820
[  352.940549][ T9732]  ? __pfx_____sys_sendmsg+0x10/0x10
[  352.940582][ T9732]  ? import_iovec+0x74/0xa0
[  352.940606][ T9732]  ___sys_sendmsg+0x21f/0x2a0
[  352.940631][ T9732]  ? __pfx____sys_sendmsg+0x10/0x10
[  352.940694][ T9732]  ? __fget_files+0x2a/0x420
[  352.940715][ T9732]  ? __fget_files+0x3a6/0x420
[  352.940753][ T9732]  __x64_sys_sendmsg+0x1a1/0x260
[  352.940780][ T9732]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  352.940815][ T9732]  ? rcu_is_watching+0x15/0xb0
[  352.940849][ T9732]  ? do_syscall_64+0xbe/0x3b0
[  352.940875][ T9732]  do_syscall_64+0xfa/0x3b0
[  352.940896][ T9732]  ? lockdep_hardirqs_on+0x9c/0x150
[  352.940918][ T9732]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  352.940936][ T9732]  ? clear_bhb_loop+0x60/0xb0
[  352.940957][ T9732]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  352.940974][ T9732] RIP: 0033:0x7f09c5b5ebe9
[  352.940996][ T9732] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  352.941010][ T9732] RSP: 002b:00007f09c3dbe038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  352.941029][ T9732] RAX: ffffffffffffffda RBX: 00007f09c5d95fa0 RCX: 00007f09c5b5ebe9
[  352.941042][ T9732] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000003
[  352.941053][ T9732] RBP: 00007f09c5be1e19 R08: 0000000000000000 R09: 0000000000000000
[  352.941065][ T9732] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  352.941075][ T9732] R13: 00007f09c5d96038 R14: 00007f09c5d95fa0 R15: 00007ffe7bad6a58
[  352.941108][ T9732]  </TASK>
[  352.941119][ T9732] Mem-Info:
[  352.941131][ T9732] active_anon:251 inactive_anon:4803 isolated_anon:0
[  352.941131][ T9732]  active_file:13581 inactive_file:41536 isolated_file:0
[  352.941131][ T9732]  unevictable:768 dirty:41 writeback:11
[  352.941131][ T9732]  slab_reclaimable:11584 slab_unreclaimable:101472
[  352.941131][ T9732]  mapped:29458 shmem:1356 pagetables:1205
[  352.941131][ T9732]  sec_pagetables:0 bounce:0
[  352.941131][ T9732]  kernel_misc_reclaimable:0
[  352.941131][ T9732]  free:1283356 free_pcp:5727 free_cma:0
[  352.941181][ T9732] Node 0 active_anon:1004kB inactive_anon:19212kB active_file:54124kB inactive_file:166144kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:117832kB dirty:164kB writeback:44kB shmem:3888kB kernel_stack:12760kB pagetables:4644kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  352.941225][ T9732] Node 1 active_anon:0kB inactive_anon:0kB active_file:200kB inactive_file:0kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB kernel_stack:48kB pagetables:176kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  352.941264][ T9732] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  352.941321][ T9732] lowmem_reserve[]: 0 2512 2513 2513 2513
[  352.941354][ T9732] Node 0 DMA32 free:1215828kB boost:0kB min:3940kB low:6484kB high:9028kB reserved_highatomic:0KB free_highatomic:0KB active_anon:1000kB inactive_anon:19172kB active_file:53108kB inactive_file:166080kB unevictable:1536kB writepending:308kB present:3129332kB managed:2572324kB mlocked:0kB bounce:0kB free_pcp:22868kB local_pcp:6920kB free_cma:0kB
[  352.941410][ T9732] lowmem_reserve[]: 0 0 1 1 1
[  352.941441][ T9732] Node 0 Normal free:0kB boost:0kB min:0kB low:0kB high:0kB reserved_highatomic:0KB free_highatomic:0KB active_anon:4kB inactive_anon:40kB active_file:1016kB inactive_file:64kB unevictable:0kB writepending:0kB present:1048580kB managed:1132kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:0kB free_cma:0kB
[  352.941491][ T9732] lowmem_reserve[]: 0 0 0 0 0
[  352.941522][ T9732] Node 1 Normal free:3902236kB boost:0kB min:6364kB low:10472kB high:14580kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:200kB inactive_file:0kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:32kB local_pcp:0kB free_cma:0kB
[  352.941574][ T9732] lowmem_reserve[]: 0 0 0 0 0
[  352.941604][ T9732] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  352.952067][ T9732] Node 0 DMA32: 2*4kB (ME) 80*8kB (UME) 49*16kB (ME) 137*32kB (ME) 87*64kB (UME) 65*128kB (ME) 30*256kB (UME) 17*512kB (ME) 6*1024kB (UM) 5*2048kB (UM) 284*4096kB (M) = 1215736kB
[  352.952208][ T9732] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[  352.952297][ T9732] Node 1 Normal: 195*4kB (UE) 36*8kB (UME) 31*16kB (UME) 200*32kB (UME) 78*64kB (UME) 25*128kB (UME) 14*256kB (UM) 7*512kB (UME) 2*1024kB (UM) 1*2048kB (E) 946*4096kB (M) = 3902236kB
[  352.952448][ T9732] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  352.952464][ T9732] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  352.952478][ T9732] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  352.952493][ T9732] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  352.952507][ T9732] 55914 total pagecache pages
[  352.952518][ T9732] 779 pages in swap cache
[  352.952524][ T9732] Free swap  = 121816kB
[  352.952531][ T9732] Total swap = 124996kB
[  352.952538][ T9732] 2097051 pages RAM
[  352.952544][ T9732] 0 pages HighMem/MovableOnly
[  352.952551][ T9732] 422072 pages reserved
[  352.952557][ T9732] 0 pages cma reserved
[  353.466297][ T9794] netlink: 52 bytes leftover after parsing attributes in process `syz.3.1385'.
[  353.890966][ T9796] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  354.659326][ T9815] netlink: 52 bytes leftover after parsing attributes in process `syz.1.1396'.
[  355.395109][   T37] kauditd_printk_skb: 143 callbacks suppressed
[  355.395126][   T37] audit: type=1326 audit(1756681169.075:5827): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9825 comm="syz.3.1400" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  355.400578][   T37] audit: type=1326 audit(1756681169.075:5828): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9825 comm="syz.3.1400" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  355.411154][   T37] audit: type=1326 audit(1756681169.085:5829): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9825 comm="syz.3.1400" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  355.411893][   T37] audit: type=1326 audit(1756681169.085:5830): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9825 comm="syz.3.1400" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  355.417964][   T37] audit: type=1326 audit(1756681169.095:5831): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9825 comm="syz.3.1400" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  355.418259][   T37] audit: type=1326 audit(1756681169.095:5832): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9825 comm="syz.3.1400" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  355.420548][   T37] audit: type=1326 audit(1756681169.095:5833): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9825 comm="syz.3.1400" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  355.420942][   T37] audit: type=1326 audit(1756681169.095:5834): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9825 comm="syz.3.1400" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  355.421199][   T37] audit: type=1326 audit(1756681169.095:5835): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9825 comm="syz.3.1400" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  355.421461][   T37] audit: type=1326 audit(1756681169.095:5836): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9825 comm="syz.3.1400" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  356.584195][ T9844] netlink: 52 bytes leftover after parsing attributes in process `syz.2.1408'.
[  357.970526][ T9863] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_rx_wq": -EINTR
[  359.454218][ T9887] netlink: 52 bytes leftover after parsing attributes in process `syz.0.1422'.
[  359.627039][ T9892] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1424'.
[  360.820126][ T9911] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_tx_wq": -EINTR
[  361.277404][ T9927] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1435'.
[  361.313004][ T9926] netlink: 52 bytes leftover after parsing attributes in process `syz.0.1434'.
[  361.531740][   T37] kauditd_printk_skb: 155 callbacks suppressed
[  361.531757][   T37] audit: type=1326 audit(1756681175.195:5992): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9931 comm="syz.2.1439" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7689cebe9 code=0x7ffc0000
[  361.531804][   T37] audit: type=1326 audit(1756681175.195:5993): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9931 comm="syz.2.1439" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa7689cebe9 code=0x7ffc0000
[  361.531842][   T37] audit: type=1326 audit(1756681175.195:5994): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9931 comm="syz.2.1439" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7689cebe9 code=0x7ffc0000
[  361.531880][   T37] audit: type=1326 audit(1756681175.195:5995): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9931 comm="syz.2.1439" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7689cebe9 code=0x7ffc0000
[  361.531915][   T37] audit: type=1326 audit(1756681175.195:5996): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9931 comm="syz.2.1439" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa7689cebe9 code=0x7ffc0000
[  361.531954][   T37] audit: type=1326 audit(1756681175.195:5997): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9931 comm="syz.2.1439" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7689cebe9 code=0x7ffc0000
[  361.531995][   T37] audit: type=1326 audit(1756681175.195:5998): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9931 comm="syz.2.1439" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7689cebe9 code=0x7ffc0000
[  361.532043][   T37] audit: type=1326 audit(1756681175.195:5999): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9931 comm="syz.2.1439" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7fa7689cebe9 code=0x7ffc0000
[  361.532084][   T37] audit: type=1326 audit(1756681175.195:6000): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9931 comm="syz.2.1439" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7689cebe9 code=0x7ffc0000
[  361.532124][   T37] audit: type=1326 audit(1756681175.195:6001): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9931 comm="syz.2.1439" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7689cebe9 code=0x7ffc0000
[  362.697382][ T9960] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1450'.
[  362.987660][ T9967] netlink: 52 bytes leftover after parsing attributes in process `syz.1.1451'.
[  363.910191][ T9984] lo speed is unknown, defaulting to 1000
[  363.915568][ T9984] lo speed is unknown, defaulting to 1000
[  364.886995][ T9985] netlink: 'syz.2.1456': attribute type 4 has an invalid length.
[  364.887015][ T9985] netlink: 17 bytes leftover after parsing attributes in process `syz.2.1456'.
[  367.129265][ T9992] netlink: 96 bytes leftover after parsing attributes in process `syz.4.1458'.
[  367.680692][T10002] netlink: 52 bytes leftover after parsing attributes in process `syz.1.1463'.
[  367.730486][   T37] kauditd_printk_skb: 84 callbacks suppressed
[  367.730502][   T37] audit: type=1326 audit(1756681181.405:6086): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10004 comm="syz.3.1465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  367.771531][   T37] audit: type=1326 audit(1756681181.445:6087): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10004 comm="syz.3.1465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  367.771583][   T37] audit: type=1326 audit(1756681181.445:6088): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10004 comm="syz.3.1465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  367.775317][   T37] audit: type=1326 audit(1756681181.455:6089): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10004 comm="syz.3.1465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  367.775363][   T37] audit: type=1326 audit(1756681181.455:6090): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10004 comm="syz.3.1465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  367.779037][   T37] audit: type=1326 audit(1756681181.455:6091): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10004 comm="syz.3.1465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  367.782921][   T37] audit: type=1326 audit(1756681181.455:6092): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10004 comm="syz.3.1465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  367.788354][   T37] audit: type=1326 audit(1756681181.465:6093): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10004 comm="syz.3.1465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  367.788398][   T37] audit: type=1326 audit(1756681181.465:6094): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10004 comm="syz.3.1465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  367.788433][   T37] audit: type=1326 audit(1756681181.465:6095): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10004 comm="syz.3.1465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  368.605123][T10016] lo speed is unknown, defaulting to 1000
[  368.610923][T10016] lo speed is unknown, defaulting to 1000
[  368.738978][T10025] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1472'.
[  368.739013][T10025] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1472'.
[  368.948634][T10029] random: crng reseeded on system resumption
[  369.611614][T10041] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1478'.
[  369.733552][T10041] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1478'.
[  369.799031][T10038] lo speed is unknown, defaulting to 1000
[  369.847761][T10038] lo speed is unknown, defaulting to 1000
[  369.979922][T10048] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1481'.
[  370.418807][T10059] netlink: 52 bytes leftover after parsing attributes in process `syz.0.1483'.
[  370.568753][T10068] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  370.568786][T10068] batman_adv: batadv0: Removing interface: batadv_slave_0
[  370.604092][T10068] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  370.604125][T10068] batman_adv: batadv0: Removing interface: batadv_slave_1
[  370.996400][T10079] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1490'.
[  371.142653][T10064] syzkaller0: entered promiscuous mode
[  371.142672][T10064] syzkaller0: entered allmulticast mode
[  371.205625][T10079] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1490'.
[  372.502873][T10138] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1509'.
[  372.507519][T10138] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1509'.
[  372.539362][T10141] syzkaller0: entered promiscuous mode
[  372.539390][T10141] syzkaller0: entered allmulticast mode
[  373.836202][T10178] lo speed is unknown, defaulting to 1000
[  374.001530][T10178] lo speed is unknown, defaulting to 1000
[  374.514592][T10179] netlink: 'syz.3.1517': attribute type 4 has an invalid length.
[  374.514644][T10179] netlink: 17 bytes leftover after parsing attributes in process `syz.3.1517'.
[  374.730977][T10179] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1517'.
[  378.401726][   T37] kauditd_printk_skb: 60 callbacks suppressed
[  378.401744][   T37] audit: type=1326 audit(1756681191.175:6156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10209 comm="syz.1.1527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea221bebe9 code=0x7ffc0000
[  378.401794][   T37] audit: type=1326 audit(1756681191.175:6157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10209 comm="syz.1.1527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea221bebe9 code=0x7ffc0000
[  378.770452][ T1322] ieee802154 phy0 wpan0: encryption failed: -22
[  378.770530][ T1322] ieee802154 phy1 wpan1: encryption failed: -22
[  378.939069][T10226] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1532'.
[  379.355027][T10232] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1532'.
[  379.743763][T10244] netlink: 'syz.2.1535': attribute type 4 has an invalid length.
[  379.743815][T10244] netlink: 17 bytes leftover after parsing attributes in process `syz.2.1535'.
[  379.900191][T10245] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1535'.
[  380.501136][T10243] lo speed is unknown, defaulting to 1000
[  380.506727][T10243] lo speed is unknown, defaulting to 1000
[  382.585631][T10271] syzkaller0: entered promiscuous mode
[  382.585659][T10271] syzkaller0: entered allmulticast mode
[  382.661894][   T37] audit: type=1326 audit(1756681196.315:6158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10275 comm="syz.1.1546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea221bebe9 code=0x7ffc0000
[  382.662268][   T37] audit: type=1326 audit(1756681196.345:6159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10275 comm="syz.1.1546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fea221bebe9 code=0x7ffc0000
[  382.662780][   T37] audit: type=1326 audit(1756681196.345:6160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10275 comm="syz.1.1546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea221bebe9 code=0x7ffc0000
[  382.663112][   T37] audit: type=1326 audit(1756681196.345:6161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10275 comm="syz.1.1546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea221bebe9 code=0x7ffc0000
[  382.665283][   T37] audit: type=1326 audit(1756681196.345:6162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10275 comm="syz.1.1546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fea221bebe9 code=0x7ffc0000
[  382.676937][   T37] audit: type=1326 audit(1756681196.355:6163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10275 comm="syz.1.1546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea221bebe9 code=0x7ffc0000
[  382.692471][   T37] audit: type=1326 audit(1756681196.355:6164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10275 comm="syz.1.1546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fea221bebe9 code=0x7ffc0000
[  382.693172][   T37] audit: type=1326 audit(1756681196.375:6165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10275 comm="syz.1.1546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea221bebe9 code=0x7ffc0000
[  382.904236][T10284] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1548'.
[  382.904270][T10284] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1548'.
[  384.229010][    T9] hid_parser_main: 28 callbacks suppressed
[  384.229047][    T9] hid-generic 0000:0000:0000.000C: unknown main item tag 0x1
[  384.229076][    T9] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[  384.229100][    T9] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[  384.229125][    T9] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[  384.229149][    T9] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[  384.229172][    T9] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[  384.229920][    T9] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[  384.229949][    T9] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[  384.229972][    T9] hid-generic 0000:0000:0000.000C: unknown main item tag 0x2
[  384.229996][    T9] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[  384.242493][    T9] hid-generic 0000:0000:0000.000C: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  384.661394][   T37] kauditd_printk_skb: 13 callbacks suppressed
[  384.661411][   T37] audit: type=1326 audit(1756681198.335:6179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10337 comm="syz.4.1569" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09c5b5ebe9 code=0x7ffc0000
[  384.692058][   T37] audit: type=1326 audit(1756681198.375:6180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10337 comm="syz.4.1569" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f09c5b5ebe9 code=0x7ffc0000
[  384.692505][   T37] audit: type=1326 audit(1756681198.375:6181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10337 comm="syz.4.1569" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09c5b5ebe9 code=0x7ffc0000
[  384.692912][   T37] audit: type=1326 audit(1756681198.375:6182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10337 comm="syz.4.1569" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09c5b5ebe9 code=0x7ffc0000
[  384.694058][   T37] audit: type=1326 audit(1756681198.375:6183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10337 comm="syz.4.1569" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f09c5b5ebe9 code=0x7ffc0000
[  384.694106][   T37] audit: type=1326 audit(1756681198.375:6184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10337 comm="syz.4.1569" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09c5b5ebe9 code=0x7ffc0000
[  384.694147][   T37] audit: type=1326 audit(1756681198.375:6185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10337 comm="syz.4.1569" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09c5b5ebe9 code=0x7ffc0000
[  384.694188][   T37] audit: type=1326 audit(1756681198.375:6186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10337 comm="syz.4.1569" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f09c5b5ebe9 code=0x7ffc0000
[  384.695250][   T37] audit: type=1326 audit(1756681198.375:6187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10337 comm="syz.4.1569" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09c5b5ebe9 code=0x7ffc0000
[  384.696629][   T37] audit: type=1326 audit(1756681198.375:6188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10337 comm="syz.4.1569" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09c5b5ebe9 code=0x7ffc0000
[  384.783339][T10342] netlink: 'syz.3.1571': attribute type 3 has an invalid length.
[  384.783358][T10342] netlink: 61211 bytes leftover after parsing attributes in process `syz.3.1571'.
[  386.092289][T10383] netlink: 'syz.2.1585': attribute type 3 has an invalid length.
[  386.092310][T10383] netlink: 61211 bytes leftover after parsing attributes in process `syz.2.1585'.
[  387.592360][T10426] netlink: 'syz.1.1600': attribute type 3 has an invalid length.
[  387.592383][T10426] netlink: 61211 bytes leftover after parsing attributes in process `syz.1.1600'.
[  388.575853][T10465] netlink: 'syz.1.1614': attribute type 3 has an invalid length.
[  388.575874][T10465] netlink: 'syz.1.1614': attribute type 1 has an invalid length.
[  388.575886][T10465] netlink: 60387 bytes leftover after parsing attributes in process `syz.1.1614'.
[  389.376675][T10417] warn_alloc: 3 callbacks suppressed
[  389.376693][T10417] syz.0.1597: vmalloc error: size 2101248, failed to allocated page array size 4104, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  389.376863][T10417] CPU: 0 UID: 0 PID: 10417 Comm: syz.0.1597 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  389.376882][T10417] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  389.376897][T10417] Call Trace:
[  389.376904][T10417]  <TASK>
[  389.376912][T10417]  dump_stack_lvl+0x189/0x250
[  389.376942][T10417]  ? __pfx_rcu_read_unlock_special+0x10/0x10
[  389.376965][T10417]  ? __pfx_dump_stack_lvl+0x10/0x10
[  389.376988][T10417]  ? __pfx__printk+0x10/0x10
[  389.377008][T10417]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  389.377028][T10417]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  389.377053][T10417]  warn_alloc+0x22e/0x3b0
[  389.377096][T10417]  ? __pfx_warn_alloc+0x10/0x10
[  389.377132][T10417]  ? __get_vm_area_node+0x2bc/0x350
[  389.377156][T10417]  ? hash_netiface_create+0x354/0xf90
[  389.377188][T10417]  __vmalloc_node_range_noprof+0x67e/0x12f0
[  389.377238][T10417]  ? __kasan_kmalloc+0x93/0xb0
[  389.377263][T10417]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  389.377286][T10417]  ? hash_netiface_create+0x354/0xf90
[  389.377314][T10417]  ? __get_vm_area_node+0x2bc/0x350
[  389.377339][T10417]  ? hash_netiface_create+0x354/0xf90
[  389.377365][T10417]  __vmalloc_node_range_noprof+0x56a/0x12f0
[  389.377389][T10417]  ? hash_netiface_create+0x354/0xf90
[  389.377447][T10417]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  389.377478][T10417]  ? rcu_is_watching+0x15/0xb0
[  389.377507][T10417]  __kvmalloc_node_noprof+0x330/0x550
[  389.377532][T10417]  ? hash_netiface_create+0x354/0xf90
[  389.377555][T10417]  ? hash_netiface_create+0x354/0xf90
[  389.377579][T10417]  ? hash_netiface_create+0x2fe/0xf90
[  389.377609][T10417]  hash_netiface_create+0x354/0xf90
[  389.377644][T10417]  ? __nla_parse+0x40/0x60
[  389.377667][T10417]  ? __pfx_hash_netiface_create+0x10/0x10
[  389.377695][T10417]  ip_set_create+0xa99/0x1940
[  389.377714][T10417]  ? ip_set_create+0x4a7/0x1940
[  389.377745][T10417]  ? __pfx_ip_set_create+0x10/0x10
[  389.377801][T10417]  nfnetlink_rcv_msg+0xb69/0x1150
[  389.377821][T10417]  ? __lock_acquire+0xab9/0xd20
[  389.377841][T10417]  ? nfnetlink_rcv_msg+0x212/0x1150
[  389.377881][T10417]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  389.377929][T10417]  ? __pfx_migrate_enable+0x10/0x10
[  389.377951][T10417]  ? __pfx_migrate_enable+0x10/0x10
[  389.377991][T10417]  netlink_rcv_skb+0x205/0x470
[  389.378014][T10417]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  389.378035][T10417]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  389.378069][T10417]  ? bpf_lsm_capable+0x9/0x20
[  389.378098][T10417]  ? security_capable+0x7e/0x2e0
[  389.378130][T10417]  nfnetlink_rcv+0x26a/0x2530
[  389.378153][T10417]  ? __dev_queue_xmit+0x1d3d/0x3b70
[  389.378181][T10417]  ? __dev_queue_xmit+0x26f/0x3b70
[  389.378214][T10417]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  389.378233][T10417]  ? __pfx___dev_queue_xmit+0x10/0x10
[  389.378265][T10417]  ? ref_tracker_free+0x61e/0x7c0
[  389.378289][T10417]  ? __asan_memcpy+0x40/0x70
[  389.378308][T10417]  ? __pfx_ref_tracker_free+0x10/0x10
[  389.378327][T10417]  ? __skb_clone+0x63/0x7a0
[  389.378357][T10417]  ? __skb_clone+0x483/0x7a0
[  389.378388][T10417]  ? skb_clone+0x246/0x3a0
[  389.378416][T10417]  ? __netlink_deliver_tap+0x807/0x850
[  389.378437][T10417]  ? netlink_deliver_tap+0x2e/0x1b0
[  389.378465][T10417]  ? netlink_deliver_tap+0x2e/0x1b0
[  389.378496][T10417]  netlink_unicast+0x843/0xa10
[  389.378526][T10417]  ? __pfx_netlink_unicast+0x10/0x10
[  389.378547][T10417]  ? netlink_sendmsg+0x642/0xb30
[  389.378567][T10417]  ? skb_put+0x11b/0x210
[  389.378593][T10417]  netlink_sendmsg+0x805/0xb30
[  389.378625][T10417]  ? __pfx_netlink_sendmsg+0x10/0x10
[  389.378656][T10417]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  389.378674][T10417]  ? __pfx_netlink_sendmsg+0x10/0x10
[  389.378697][T10417]  __sock_sendmsg+0x219/0x270
[  389.378721][T10417]  ____sys_sendmsg+0x508/0x820
[  389.378751][T10417]  ? __pfx_____sys_sendmsg+0x10/0x10
[  389.378786][T10417]  ? import_iovec+0x74/0xa0
[  389.378810][T10417]  ___sys_sendmsg+0x21f/0x2a0
[  389.378836][T10417]  ? __pfx____sys_sendmsg+0x10/0x10
[  389.378902][T10417]  ? __fget_files+0x2a/0x420
[  389.378924][T10417]  ? __fget_files+0x3a6/0x420
[  389.378959][T10417]  __x64_sys_sendmsg+0x1a1/0x260
[  389.378986][T10417]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  389.379023][T10417]  ? rcu_is_watching+0x15/0xb0
[  389.379053][T10417]  ? do_syscall_64+0xbe/0x3b0
[  389.379082][T10417]  do_syscall_64+0xfa/0x3b0
[  389.379108][T10417]  ? lockdep_hardirqs_on+0x9c/0x150
[  389.379129][T10417]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  389.379148][T10417]  ? clear_bhb_loop+0x60/0xb0
[  389.379170][T10417]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  389.379192][T10417] RIP: 0033:0x7f4dd1c5ebe9
[  389.379209][T10417] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  389.379224][T10417] RSP: 002b:00007f4dcfec6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  389.379243][T10417] RAX: ffffffffffffffda RBX: 00007f4dd1e95fa0 RCX: 00007f4dd1c5ebe9
[  389.379257][T10417] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000003
[  389.379268][T10417] RBP: 00007f4dd1ce1e19 R08: 0000000000000000 R09: 0000000000000000
[  389.379280][T10417] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  389.379291][T10417] R13: 00007f4dd1e96038 R14: 00007f4dd1e95fa0 R15: 00007fff4d9ac508
[  389.379323][T10417]  </TASK>
[  389.379333][T10417] Mem-Info:
[  389.379345][T10417] active_anon:350 inactive_anon:4290 isolated_anon:0
[  389.379345][T10417]  active_file:13613 inactive_file:41534 isolated_file:0
[  389.379345][T10417]  unevictable:768 dirty:33 writeback:0
[  389.379345][T10417]  slab_reclaimable:11834 slab_unreclaimable:100507
[  389.379345][T10417]  mapped:29461 shmem:1458 pagetables:1296
[  389.379345][T10417]  sec_pagetables:0 bounce:0
[  389.379345][T10417]  kernel_misc_reclaimable:0
[  389.379345][T10417]  free:1285791 free_pcp:3949 free_cma:0
[  389.379395][T10417] Node 0 active_anon:1400kB inactive_anon:17160kB active_file:54252kB inactive_file:166136kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:117844kB dirty:132kB writeback:0kB shmem:4296kB kernel_stack:13116kB pagetables:5008kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  389.379438][T10417] Node 1 active_anon:0kB inactive_anon:0kB active_file:200kB inactive_file:0kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB kernel_stack:48kB pagetables:176kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  389.379476][T10417] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  389.379532][T10417] lowmem_reserve[]: 0 2512 2513 2513 2513
[  389.379565][T10417] Node 0 DMA32 free:1225536kB boost:0kB min:3940kB low:6484kB high:9028kB reserved_highatomic:0KB free_highatomic:0KB active_anon:1396kB inactive_anon:17120kB active_file:53236kB inactive_file:166072kB unevictable:1536kB writepending:132kB present:3129332kB managed:2572324kB mlocked:0kB bounce:0kB free_pcp:15756kB local_pcp:7968kB free_cma:0kB
[  389.379620][T10417] lowmem_reserve[]: 0 0 1 1 1
[  389.379650][T10417] Node 0 Normal free:0kB boost:0kB min:0kB low:0kB high:0kB reserved_highatomic:0KB free_highatomic:0KB active_anon:4kB inactive_anon:40kB active_file:1016kB inactive_file:64kB unevictable:0kB writepending:0kB present:1048580kB managed:1132kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:0kB free_cma:0kB
[  389.379700][T10417] lowmem_reserve[]: 0 0 0 0 0
[  389.379731][T10417] Node 1 Normal free:3902268kB boost:0kB min:6364kB low:10472kB high:14580kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:200kB inactive_file:0kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:32kB local_pcp:0kB free_cma:0kB
[  389.379785][T10417] lowmem_reserve[]: 0 0 0 0 0
[  389.379815][T10417] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  389.379923][T10417] Node 0 DMA32: 7*4kB (UE) 6*8kB (UME) 37*16kB (UME) 181*32kB (UME) 136*64kB (UME) 71*128kB (ME) 30*256kB (UME) 19*512kB (UME) 18*1024kB (UM) 5*2048kB (UM) 282*4096kB (UM) = 1225404kB
[  389.380069][T10417] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[  389.380166][T10417] Node 1 Normal: 195*4kB (UE) 36*8kB (UME) 31*16kB (UME) 201*32kB (UME) 78*64kB (UME) 25*128kB (UME) 14*256kB (UM) 7*512kB (UME) 2*1024kB (UM) 1*2048kB (E) 946*4096kB (M) = 3902268kB
[  389.380311][T10417] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  389.380327][T10417] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  389.380342][T10417] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  389.380357][T10417] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  389.380372][T10417] 55267 total pagecache pages
[  389.380383][T10417] 0 pages in swap cache
[  389.380389][T10417] Free swap  = 124996kB
[  389.380397][T10417] Total swap = 124996kB
[  389.380404][T10417] 2097051 pages RAM
[  389.380411][T10417] 0 pages HighMem/MovableOnly
[  389.380417][T10417] 422072 pages reserved
[  389.380424][T10417] 0 pages cma reserved
[  390.432500][T10503] netlink: 'syz.4.1628': attribute type 3 has an invalid length.
[  390.432521][T10503] netlink: 'syz.4.1628': attribute type 1 has an invalid length.
[  390.432533][T10503] netlink: 60387 bytes leftover after parsing attributes in process `syz.4.1628'.
[  392.394502][   T37] kauditd_printk_skb: 185 callbacks suppressed
[  392.394522][   T37] audit: type=1326 audit(1756681206.005:6374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10533 comm="syz.1.1641" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea221bebe9 code=0x7ffc0000
[  392.394577][   T37] audit: type=1326 audit(1756681206.015:6375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10533 comm="syz.1.1641" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea221bebe9 code=0x7ffc0000
[  392.394615][   T37] audit: type=1326 audit(1756681206.015:6376): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10533 comm="syz.1.1641" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fea221bebe9 code=0x7ffc0000
[  392.394653][   T37] audit: type=1326 audit(1756681206.015:6377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10533 comm="syz.1.1641" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea221bebe9 code=0x7ffc0000
[  392.394690][   T37] audit: type=1326 audit(1756681206.015:6378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10533 comm="syz.1.1641" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea221bebe9 code=0x7ffc0000
[  392.394727][   T37] audit: type=1326 audit(1756681206.015:6379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10533 comm="syz.1.1641" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fea221bebe9 code=0x7ffc0000
[  392.394766][   T37] audit: type=1326 audit(1756681206.025:6380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10533 comm="syz.1.1641" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea221bebe9 code=0x7ffc0000
[  392.394802][   T37] audit: type=1326 audit(1756681206.025:6381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10533 comm="syz.1.1641" exe="/root/syz-executor" sig=0 arch=c000003e syscall=29 compat=0 ip=0x7fea221bebe9 code=0x7ffc0000
[  392.394840][   T37] audit: type=1326 audit(1756681206.025:6382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10533 comm="syz.1.1641" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea221bebe9 code=0x7ffc0000
[  393.120827][T10537] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_cmd_wq": -EINTR
[  393.213624][T10539] tty tty29: ldisc open failed (-12), clearing slot 28
[  395.417871][T10575] netlink: 'syz.3.1652': attribute type 3 has an invalid length.
[  395.417893][T10575] netlink: 'syz.3.1652': attribute type 1 has an invalid length.
[  395.417905][T10575] netlink: 60387 bytes leftover after parsing attributes in process `syz.3.1652'.
[  395.868209][T10581] sd 0:0:1:0: device reset
[  396.584466][T10583] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_cmd_wq": -EINTR
[  397.405701][T10602] netlink: 'syz.2.1664': attribute type 3 has an invalid length.
[  397.405721][T10602] netlink: 'syz.2.1664': attribute type 1 has an invalid length.
[  397.405732][T10602] netlink: 60387 bytes leftover after parsing attributes in process `syz.2.1664'.
[  398.963170][T10617] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_rx_wq": -EINTR
[  399.767389][ T7211] hid_parser_main: 28 callbacks suppressed
[  399.767411][ T7211] hid-generic 0000:0000:0000.000D: unknown main item tag 0x1
[  399.767438][ T7211] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  399.767460][ T7211] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  399.767483][ T7211] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  399.767505][ T7211] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  399.767527][ T7211] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  399.767580][ T7211] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  399.767669][ T7211] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  399.767692][ T7211] hid-generic 0000:0000:0000.000D: unknown main item tag 0x2
[  399.767714][ T7211] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  399.873687][ T7211] hid-generic 0000:0000:0000.000D: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  400.096006][T10644] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1677'.
[  400.699802][   T37] audit: type=1326 audit(1756681214.375:6383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10657 comm="syz.3.1683" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  400.724962][   T37] audit: type=1326 audit(1756681214.375:6384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10657 comm="syz.3.1683" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  400.753503][   T37] audit: type=1326 audit(1756681214.435:6385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10657 comm="syz.3.1683" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  400.753552][   T37] audit: type=1326 audit(1756681214.435:6386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10657 comm="syz.3.1683" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  400.753590][   T37] audit: type=1326 audit(1756681214.435:6387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10657 comm="syz.3.1683" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  400.753630][   T37] audit: type=1326 audit(1756681214.435:6388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10657 comm="syz.3.1683" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  400.754384][   T37] audit: type=1326 audit(1756681214.435:6389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10657 comm="syz.3.1683" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  400.754534][   T37] audit: type=1326 audit(1756681214.435:6390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10657 comm="syz.3.1683" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  400.754962][   T37] audit: type=1326 audit(1756681214.435:6391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10657 comm="syz.3.1683" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  400.757530][   T37] audit: type=1326 audit(1756681214.435:6392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10657 comm="syz.3.1683" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  401.675110][ T7117] hid-generic 0000:0000:0000.000E: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  401.962610][T10683] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1692'.
[  402.924186][T10702] lo speed is unknown, defaulting to 1000
[  402.929447][T10702] lo speed is unknown, defaulting to 1000
[  403.710107][T10703] netlink: 'syz.2.1698': attribute type 4 has an invalid length.
[  403.710159][T10703] netlink: 17 bytes leftover after parsing attributes in process `syz.2.1698'.
[  403.734057][T10703] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1698'.
[  405.705584][ T7211] hid_parser_main: 66 callbacks suppressed
[  405.705605][ T7211] hid-generic 0000:0000:0000.000F: unknown main item tag 0x1
[  405.705634][ T7211] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  405.705659][ T7211] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  405.705683][ T7211] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  405.705707][ T7211] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  405.705730][ T7211] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  405.705789][ T7211] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  405.705813][ T7211] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  405.705838][ T7211] hid-generic 0000:0000:0000.000F: unknown main item tag 0x2
[  405.705862][ T7211] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  405.737186][ T7211] hid-generic 0000:0000:0000.000F: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  406.096358][T10723] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1705'.
[  409.491145][   T37] kauditd_printk_skb: 4 callbacks suppressed
[  409.491162][   T37] audit: type=1326 audit(1756681223.165:6397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10779 comm="syz.4.1727" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09c5b5ebe9 code=0x7ffc0000
[  409.491207][   T37] audit: type=1326 audit(1756681223.165:6398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10779 comm="syz.4.1727" exe="/root/syz-executor" sig=0 arch=c000003e syscall=31 compat=0 ip=0x7f09c5b5ebe9 code=0x7ffc0000
[  409.491246][   T37] audit: type=1326 audit(1756681223.165:6399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10779 comm="syz.4.1727" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09c5b5ebe9 code=0x7ffc0000
[  409.504229][   T37] audit: type=1326 audit(1756681223.165:6400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10779 comm="syz.4.1727" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7f09c5b5ebe9 code=0x7ffc0000
[  409.504278][   T37] audit: type=1326 audit(1756681223.185:6401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10779 comm="syz.4.1727" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09c5b5ebe9 code=0x7ffc0000
[  409.504317][   T37] audit: type=1326 audit(1756681223.185:6402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10779 comm="syz.4.1727" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f09c5b5ebe9 code=0x7ffc0000
[  409.504356][   T37] audit: type=1326 audit(1756681223.185:6403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10779 comm="syz.4.1727" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09c5b5ebe9 code=0x7ffc0000
[  409.504394][   T37] audit: type=1326 audit(1756681223.185:6404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10779 comm="syz.4.1727" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7f09c5b60a7c code=0x7ffc0000
[  409.504431][   T37] audit: type=1326 audit(1756681223.185:6405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10779 comm="syz.4.1727" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7f09c5b609b4 code=0x7ffc0000
[  409.504469][   T37] audit: type=1326 audit(1756681223.185:6406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10779 comm="syz.4.1727" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7f09c5b609b4 code=0x7ffc0000
[  409.908192][    T9] hid-generic 0000:0000:0000.0010: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  411.436112][T10816] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1740'.
[  411.555683][    T9] hid_parser_main: 66 callbacks suppressed
[  411.555707][    T9] hid-generic 0000:0000:0000.0011: unknown main item tag 0x1
[  411.555749][    T9] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  411.555773][    T9] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  411.555802][    T9] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  411.555825][    T9] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  411.555849][    T9] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  411.555911][    T9] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  411.555935][    T9] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  411.555959][    T9] hid-generic 0000:0000:0000.0011: unknown main item tag 0x2
[  411.555984][    T9] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  411.567783][    T9] hid-generic 0000:0000:0000.0011: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  412.143324][T10842] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1753'.
[  412.276826][ T7211] kernel write not supported for file /sg0 (pid: 7211 comm: kworker/1:7)
[  413.046864][T10848] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_cmd_wq": -EINTR
[  413.073965][ T7211] hid-generic 0000:0000:0000.0012: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  413.668926][T10866] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1761'.
[  413.700508][T10869] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1764'.
[  413.725057][T10869] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1764'.
[  413.743047][ T7211] hid-generic 0000:0000:0000.0013: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  414.592794][T10892] lo speed is unknown, defaulting to 1000
[  414.654847][T10892] lo speed is unknown, defaulting to 1000
[  415.195431][T10893] netlink: 'syz.0.1770': attribute type 4 has an invalid length.
[  415.195451][T10893] netlink: 17 bytes leftover after parsing attributes in process `syz.0.1770'.
[  415.363763][T10893] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1770'.
[  416.815538][T10900] netlink: 'syz.4.1775': attribute type 3 has an invalid length.
[  416.815561][T10900] netlink: 'syz.4.1775': attribute type 1 has an invalid length.
[  416.815573][T10900] netlink: 60387 bytes leftover after parsing attributes in process `syz.4.1775'.
[  417.682165][T10915] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1782'.
[  417.980139][T10925] capability: warning: `syz.3.1784' uses deprecated v2 capabilities in a way that may be insecure
[  418.057880][T10915] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1782'.
[  418.478625][   T37] kauditd_printk_skb: 66 callbacks suppressed
[  418.478642][   T37] audit: type=1326 audit(1756681232.155:6473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10934 comm="syz.3.1788" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  418.481316][   T37] audit: type=1326 audit(1756681232.155:6474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10934 comm="syz.3.1788" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  418.542486][   T37] audit: type=1326 audit(1756681232.215:6475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10934 comm="syz.3.1788" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  418.542829][   T37] audit: type=1326 audit(1756681232.215:6476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10934 comm="syz.3.1788" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  418.543106][   T37] audit: type=1326 audit(1756681232.215:6477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10934 comm="syz.3.1788" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  418.544108][   T37] audit: type=1326 audit(1756681232.215:6478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10934 comm="syz.3.1788" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  418.545194][   T37] audit: type=1326 audit(1756681232.215:6479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10934 comm="syz.3.1788" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  418.545484][   T37] audit: type=1326 audit(1756681232.215:6480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10934 comm="syz.3.1788" exe="/root/syz-executor" sig=0 arch=c000003e syscall=223 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  418.545726][   T37] audit: type=1326 audit(1756681232.215:6481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10934 comm="syz.3.1788" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  418.546522][   T37] audit: type=1326 audit(1756681232.215:6482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10934 comm="syz.3.1788" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  419.737768][T10942] lo speed is unknown, defaulting to 1000
[  419.801056][T10942] lo speed is unknown, defaulting to 1000
[  420.673266][T10943] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1790'.
[  422.631254][T10947] netlink: 'syz.2.1791': attribute type 3 has an invalid length.
[  422.631276][T10947] netlink: 'syz.2.1791': attribute type 1 has an invalid length.
[  422.631288][T10947] netlink: 60387 bytes leftover after parsing attributes in process `syz.2.1791'.
[  423.347363][T10962] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1797'.
[  423.506622][T10962] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1797'.
[  423.541789][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[  423.768724][ T5924] hid_parser_main: 104 callbacks suppressed
[  423.768746][ T5924] hid-generic 0000:0000:0000.0014: unknown main item tag 0x1
[  423.768774][ T5924] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[  423.768798][ T5924] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[  423.768822][ T5924] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[  423.768847][ T5924] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[  423.768871][ T5924] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[  423.768932][ T5924] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[  423.768956][ T5924] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[  423.768980][ T5924] hid-generic 0000:0000:0000.0014: unknown main item tag 0x2
[  423.769003][ T5924] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[  423.860630][ T5924] hid-generic 0000:0000:0000.0014: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  424.348542][T10980] lo speed is unknown, defaulting to 1000
[  424.353964][T10980] lo speed is unknown, defaulting to 1000
[  425.031325][T10981] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1804'.
[  428.064476][T10931] warn_alloc: 3 callbacks suppressed
[  428.064497][T10931] syz.1.1787: vmalloc error: size 2101248, failed to allocated page array size 4104, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  428.064734][T10931] CPU: 0 UID: 0 PID: 10931 Comm: syz.1.1787 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  428.064788][T10931] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  428.064816][T10931] Call Trace:
[  428.064824][T10931]  <TASK>
[  428.064832][T10931]  dump_stack_lvl+0x189/0x250
[  428.064867][T10931]  ? __pfx_dump_stack_lvl+0x10/0x10
[  428.064892][T10931]  ? __pfx__printk+0x10/0x10
[  428.064912][T10931]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  428.064932][T10931]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  428.064954][T10931]  ? cpuset_print_current_mems_allowed+0x2ee/0x360
[  428.064976][T10931]  warn_alloc+0x22e/0x3b0
[  428.065012][T10931]  ? __pfx_warn_alloc+0x10/0x10
[  428.065047][T10931]  ? __get_vm_area_node+0x2bc/0x350
[  428.065072][T10931]  ? hash_netiface_create+0x354/0xf90
[  428.065104][T10931]  __vmalloc_node_range_noprof+0x67e/0x12f0
[  428.065153][T10931]  ? __kasan_kmalloc+0x93/0xb0
[  428.065179][T10931]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  428.065202][T10931]  ? hash_netiface_create+0x354/0xf90
[  428.065231][T10931]  ? __get_vm_area_node+0x2bc/0x350
[  428.065255][T10931]  ? hash_netiface_create+0x354/0xf90
[  428.065282][T10931]  __vmalloc_node_range_noprof+0x56a/0x12f0
[  428.065307][T10931]  ? hash_netiface_create+0x354/0xf90
[  428.065364][T10931]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  428.065396][T10931]  ? rcu_is_watching+0x15/0xb0
[  428.065425][T10931]  __kvmalloc_node_noprof+0x330/0x550
[  428.065450][T10931]  ? hash_netiface_create+0x354/0xf90
[  428.065473][T10931]  ? hash_netiface_create+0x354/0xf90
[  428.065497][T10931]  ? hash_netiface_create+0x2fe/0xf90
[  428.065527][T10931]  hash_netiface_create+0x354/0xf90
[  428.065562][T10931]  ? __nla_parse+0x40/0x60
[  428.065588][T10931]  ? __pfx_hash_netiface_create+0x10/0x10
[  428.065616][T10931]  ip_set_create+0xa99/0x1940
[  428.065635][T10931]  ? ip_set_create+0x4a7/0x1940
[  428.065689][T10931]  ? __pfx_ip_set_create+0x10/0x10
[  428.065748][T10931]  nfnetlink_rcv_msg+0xb69/0x1150
[  428.065767][T10931]  ? __lock_acquire+0xab9/0xd20
[  428.065789][T10931]  ? nfnetlink_rcv_msg+0x212/0x1150
[  428.065828][T10931]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  428.065877][T10931]  ? __pfx_migrate_enable+0x10/0x10
[  428.065899][T10931]  ? __pfx_migrate_enable+0x10/0x10
[  428.065939][T10931]  netlink_rcv_skb+0x205/0x470
[  428.065962][T10931]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  428.065983][T10931]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  428.066018][T10931]  ? bpf_lsm_capable+0x9/0x20
[  428.066040][T10931]  ? security_capable+0x7e/0x2e0
[  428.066072][T10931]  nfnetlink_rcv+0x26a/0x2530
[  428.066095][T10931]  ? __dev_queue_xmit+0x1d3d/0x3b70
[  428.066123][T10931]  ? __dev_queue_xmit+0x26f/0x3b70
[  428.066157][T10931]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  428.066176][T10931]  ? __pfx___dev_queue_xmit+0x10/0x10
[  428.066210][T10931]  ? ref_tracker_free+0x61e/0x7c0
[  428.066233][T10931]  ? __asan_memcpy+0x40/0x70
[  428.066251][T10931]  ? __pfx_ref_tracker_free+0x10/0x10
[  428.066272][T10931]  ? __skb_clone+0x63/0x7a0
[  428.066303][T10931]  ? __skb_clone+0x483/0x7a0
[  428.066334][T10931]  ? skb_clone+0x246/0x3a0
[  428.066363][T10931]  ? __netlink_deliver_tap+0x807/0x850
[  428.066385][T10931]  ? netlink_deliver_tap+0x2e/0x1b0
[  428.066414][T10931]  ? netlink_deliver_tap+0x2e/0x1b0
[  428.066444][T10931]  netlink_unicast+0x843/0xa10
[  428.066474][T10931]  ? __pfx_netlink_unicast+0x10/0x10
[  428.066496][T10931]  ? netlink_sendmsg+0x642/0xb30
[  428.066515][T10931]  ? skb_put+0x11b/0x210
[  428.066542][T10931]  netlink_sendmsg+0x805/0xb30
[  428.066574][T10931]  ? __pfx_netlink_sendmsg+0x10/0x10
[  428.066605][T10931]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  428.066623][T10931]  ? __pfx_netlink_sendmsg+0x10/0x10
[  428.066646][T10931]  __sock_sendmsg+0x219/0x270
[  428.066670][T10931]  ____sys_sendmsg+0x508/0x820
[  428.066707][T10931]  ? __pfx_____sys_sendmsg+0x10/0x10
[  428.066742][T10931]  ? import_iovec+0x74/0xa0
[  428.066766][T10931]  ___sys_sendmsg+0x21f/0x2a0
[  428.066794][T10931]  ? __pfx____sys_sendmsg+0x10/0x10
[  428.066860][T10931]  ? __fget_files+0x2a/0x420
[  428.066883][T10931]  ? __fget_files+0x3a6/0x420
[  428.066919][T10931]  __x64_sys_sendmsg+0x1a1/0x260
[  428.066946][T10931]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  428.066983][T10931]  ? rcu_is_watching+0x15/0xb0
[  428.067014][T10931]  ? do_syscall_64+0xbe/0x3b0
[  428.067042][T10931]  do_syscall_64+0xfa/0x3b0
[  428.067064][T10931]  ? lockdep_hardirqs_on+0x9c/0x150
[  428.067086][T10931]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  428.067104][T10931]  ? clear_bhb_loop+0x60/0xb0
[  428.067127][T10931]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  428.067145][T10931] RIP: 0033:0x7fea221bebe9
[  428.067163][T10931] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  428.067178][T10931] RSP: 002b:00007fea20426038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  428.067197][T10931] RAX: ffffffffffffffda RBX: 00007fea223f5fa0 RCX: 00007fea221bebe9
[  428.067211][T10931] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000003
[  428.067223][T10931] RBP: 00007fea22241e19 R08: 0000000000000000 R09: 0000000000000000
[  428.067236][T10931] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  428.067246][T10931] R13: 00007fea223f6038 R14: 00007fea223f5fa0 R15: 00007ffcceb68658
[  428.067279][T10931]  </TASK>
[  428.067286][T10931] Mem-Info:
[  428.067296][T10931] active_anon:3125 inactive_anon:6266 isolated_anon:0
[  428.067296][T10931]  active_file:13627 inactive_file:41885 isolated_file:0
[  428.067296][T10931]  unevictable:768 dirty:98 writeback:0
[  428.067296][T10931]  slab_reclaimable:11785 slab_unreclaimable:101207
[  428.067296][T10931]  mapped:31385 shmem:6196 pagetables:1305
[  428.067296][T10931]  sec_pagetables:0 bounce:0
[  428.067296][T10931]  kernel_misc_reclaimable:0
[  428.067296][T10931]  free:1278820 free_pcp:5668 free_cma:0
[  428.067347][T10931] Node 0 active_anon:12500kB inactive_anon:25064kB active_file:54308kB inactive_file:167540kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:125540kB dirty:392kB writeback:0kB shmem:23248kB kernel_stack:12972kB pagetables:5044kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  428.067391][T10931] Node 1 active_anon:0kB inactive_anon:0kB active_file:200kB inactive_file:0kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB kernel_stack:48kB pagetables:176kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  428.067432][T10931] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  428.067484][T10931] lowmem_reserve[]: 0 2512 2513 2513 2513
[  428.067516][T10931] Node 0 DMA32 free:1197660kB boost:0kB min:3940kB low:6484kB high:9028kB reserved_highatomic:0KB free_highatomic:0KB active_anon:12496kB inactive_anon:25024kB active_file:53292kB inactive_file:167476kB unevictable:1536kB writepending:392kB present:3129332kB managed:2572324kB mlocked:0kB bounce:0kB free_pcp:22632kB local_pcp:4932kB free_cma:0kB
[  428.067572][T10931] lowmem_reserve[]: 0 0 1 1 1
[  428.067603][T10931] Node 0 Normal free:0kB boost:0kB min:0kB low:0kB high:0kB reserved_highatomic:0KB free_highatomic:0KB active_anon:4kB inactive_anon:40kB active_file:1016kB inactive_file:64kB unevictable:0kB writepending:0kB present:1048580kB managed:1132kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:0kB free_cma:0kB
[  428.067655][T10931] lowmem_reserve[]: 0 0 0 0 0
[  428.067690][T10931] Node 1 Normal free:3902260kB boost:0kB min:6364kB low:10472kB high:14580kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:200kB inactive_file:0kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:32kB local_pcp:0kB free_cma:0kB
[  428.067743][T10931] lowmem_reserve[]: 0 0 0 0 0
[  428.067774][T10931] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  428.067883][T10931] Node 0 DMA32: 3*4kB (ME) 12*8kB (UE) 2*16kB (UM) 6*32kB (ME) 4*64kB (UE) 26*128kB (ME) 75*256kB (UME) 32*512kB (UME) 9*1024kB (UM) 5*2048kB (UM) 278*4096kB (M) = 1197644kB
[  428.068030][T10931] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[  428.068124][T10931] Node 1 Normal: 193*4kB (UE) 36*8kB (UME) 31*16kB (UME) 201*32kB (UME) 78*64kB (UME) 25*128kB (UME) 14*256kB (UM) 7*512kB (UME) 2*1024kB (UM) 1*2048kB (E) 946*4096kB (M) = 3902260kB
[  428.068272][T10931] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  428.068288][T10931] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  428.068304][T10931] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  428.068319][T10931] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  428.068335][T10931] 60020 total pagecache pages
[  428.068342][T10931] 0 pages in swap cache
[  428.068349][T10931] Free swap  = 124996kB
[  428.068356][T10931] Total swap = 124996kB
[  428.068363][T10931] 2097051 pages RAM
[  428.068370][T10931] 0 pages HighMem/MovableOnly
[  428.068377][T10931] 422072 pages reserved
[  428.068383][T10931] 0 pages cma reserved
[  428.421717][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[  428.541721][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[  429.606723][T10998] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1811'.
[  429.769921][T10998] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1811'.
[  429.772933][T11003] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1813'.
[  429.772957][T11003] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1813'.
[  429.772971][T11003] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1813'.
[  429.987095][ T5924] hid_parser_main: 28 callbacks suppressed
[  429.987125][ T5924] hid-generic 0000:0000:0000.0015: unknown main item tag 0x1
[  429.987153][ T5924] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  429.987177][ T5924] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  429.987201][ T5924] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  429.987224][ T5924] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  429.987247][ T5924] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  429.987385][ T5924] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  429.987408][ T5924] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  429.987431][ T5924] hid-generic 0000:0000:0000.0015: unknown main item tag 0x2
[  429.987454][ T5924] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  430.085926][ T5924] hid-generic 0000:0000:0000.0015: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  430.102310][T11009] IPv6: Can't replace route, no match found
[  430.730865][T11017] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1816'.
[  431.583000][T11016] lo speed is unknown, defaulting to 1000
[  431.588370][T11016] lo speed is unknown, defaulting to 1000
[  433.593512][T11033] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1825'.
[  433.817336][T11040] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1825'.
[  435.074419][ T5154] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  435.097636][ T5154] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  435.112789][ T5154] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  435.126996][ T5154] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  435.129539][ T5154] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  435.384083][T11072] lo speed is unknown, defaulting to 1000
[  435.422566][T11072] lo speed is unknown, defaulting to 1000
[  435.661867][T11082] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1842'.
[  435.993173][T11072] chnl_net:caif_netlink_parms(): no params data found
[  436.037690][T11099] vxcan2: entered promiscuous mode
[  436.037718][T11099] vxcan2: entered allmulticast mode
[  436.432021][T11107] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  436.817945][T11131] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1854'.
[  436.829356][T11104] lo speed is unknown, defaulting to 1000
[  436.901837][T11104] lo speed is unknown, defaulting to 1000
[  437.175747][ T5154] Bluetooth: hci5: command tx timeout
[  437.604701][T11072] bridge0: port 1(bridge_slave_0) entered blocking state
[  437.604858][T11072] bridge0: port 1(bridge_slave_0) entered disabled state
[  437.605090][T11072] bridge_slave_0: entered allmulticast mode
[  437.646054][T11072] bridge_slave_0: entered promiscuous mode
[  437.694014][T11072] bridge0: port 2(bridge_slave_1) entered blocking state
[  437.694155][T11072] bridge0: port 2(bridge_slave_1) entered disabled state
[  437.694406][T11072] bridge_slave_1: entered allmulticast mode
[  437.707695][T11072] bridge_slave_1: entered promiscuous mode
[  438.212251][   T37] kauditd_printk_skb: 191 callbacks suppressed
[  438.212268][   T37] audit: type=1326 audit(1756681251.885:6674): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11158 comm="syz.3.1864" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  438.212417][   T37] audit: type=1326 audit(1756681251.895:6675): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11158 comm="syz.3.1864" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  438.284186][   T37] audit: type=1326 audit(1756681251.965:6676): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11158 comm="syz.3.1864" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  438.284239][   T37] audit: type=1326 audit(1756681251.965:6677): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11158 comm="syz.3.1864" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  438.299929][   T37] audit: type=1326 audit(1756681251.965:6678): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11158 comm="syz.3.1864" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  438.299981][   T37] audit: type=1326 audit(1756681251.975:6679): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11158 comm="syz.3.1864" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  438.300019][   T37] audit: type=1326 audit(1756681251.975:6680): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11158 comm="syz.3.1864" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  438.301074][   T37] audit: type=1326 audit(1756681251.975:6681): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11158 comm="syz.3.1864" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  438.301118][   T37] audit: type=1326 audit(1756681251.975:6682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11158 comm="syz.3.1864" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  438.301156][   T37] audit: type=1326 audit(1756681251.975:6683): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11158 comm="syz.3.1864" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  438.558452][T11163] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  438.567082][T11072] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  438.795547][T11072] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  439.327807][ T5154] Bluetooth: hci5: command tx timeout
[  440.054082][T11187] mmap: syz.4.1868 (11187) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  440.536844][ T1322] ieee802154 phy0 wpan0: encryption failed: -22
[  440.536920][ T1322] ieee802154 phy1 wpan1: encryption failed: -22
[  440.666043][T11185] lo speed is unknown, defaulting to 1000
[  440.752169][T11185] lo speed is unknown, defaulting to 1000
[  441.286499][T11199] serio: Serial port ptm0
[  441.342768][ T5154] Bluetooth: hci5: command tx timeout
[  441.411203][   T12] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  441.511885][T11072] team0: Port device team_slave_0 added
[  441.523711][T11072] team0: Port device team_slave_1 added
[  441.670526][   T12] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  442.030433][T11072] batman_adv: batadv0: Adding interface: batadv_slave_0
[  442.030454][T11072] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  442.030485][T11072] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  442.314992][   T12] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  442.364255][T11072] batman_adv: batadv0: Adding interface: batadv_slave_1
[  442.364270][T11072] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  442.364295][T11072] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  442.572153][T11219] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  442.834692][   T12] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  443.056878][T11230] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  443.056911][T11230] batman_adv: batadv0: Removing interface: batadv_slave_0
[  443.107160][T11230] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  443.107190][T11230] batman_adv: batadv0: Removing interface: batadv_slave_1
[  443.410350][T11246] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  443.414048][ T5154] Bluetooth: hci5: command tx timeout
[  443.420927][   T37] kauditd_printk_skb: 38 callbacks suppressed
[  443.420943][   T37] audit: type=1326 audit(1756681257.095:6722): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11244 comm="syz.2.1885" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7689cebe9 code=0x7ffc0000
[  443.421460][   T37] audit: type=1326 audit(1756681257.095:6723): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11244 comm="syz.2.1885" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa7689cebe9 code=0x7ffc0000
[  443.422396][   T37] audit: type=1326 audit(1756681257.105:6724): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11244 comm="syz.2.1885" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7689cebe9 code=0x7ffc0000
[  443.423185][   T37] audit: type=1326 audit(1756681257.105:6725): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11244 comm="syz.2.1885" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7689cebe9 code=0x7ffc0000
[  443.533150][   T37] audit: type=1326 audit(1756681257.215:6726): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11247 comm="syz.2.1886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7689cebe9 code=0x7ffc0000
[  443.534339][   T37] audit: type=1326 audit(1756681257.215:6727): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11247 comm="syz.2.1886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7689cebe9 code=0x7ffc0000
[  443.536659][   T37] audit: type=1326 audit(1756681257.215:6728): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11247 comm="syz.2.1886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa7689cebe9 code=0x7ffc0000
[  443.537135][   T37] audit: type=1326 audit(1756681257.215:6729): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11247 comm="syz.2.1886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7689cebe9 code=0x7ffc0000
[  443.537383][   T37] audit: type=1326 audit(1756681257.215:6730): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11247 comm="syz.2.1886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7689cebe9 code=0x7ffc0000
[  443.537893][   T37] audit: type=1326 audit(1756681257.215:6731): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11247 comm="syz.2.1886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa7689cebe9 code=0x7ffc0000
[  443.833768][T11072] hsr_slave_0: entered promiscuous mode
[  443.844744][T11072] hsr_slave_1: entered promiscuous mode
[  443.846493][T11072] debugfs: 'hsr0' already exists in 'hsr'
[  443.846518][T11072] Cannot create hsr debugfs directory
[  445.558949][T11265] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1894'.
[  445.806019][T11272] hub 9-0:1.0: USB hub found
[  445.807953][T11272] hub 9-0:1.0: 1 port detected
[  445.844911][T11276] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  448.406023][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  448.482801][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  448.542594][   T12] bond0 (unregistering): (slave dummy0): Releasing backup interface
[  448.567401][   T12] bond0 (unregistering): Released all slaves
[  449.372253][   T12] tipc: Disabling bearer <udp:syz0>
[  449.377519][   T12] tipc: Left network mode
[  449.584793][T11324] netlink: 'syz.0.1908': attribute type 7 has an invalid length.
[  449.584810][T11324] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1908'.
[  449.590254][ T7117] hid_parser_main: 28 callbacks suppressed
[  449.590274][ T7117] hid-generic 0000:0000:0000.0016: unknown main item tag 0x1
[  449.590302][ T7117] hid-generic 0000:0000:0000.0016: unknown main item tag 0x0
[  449.590325][ T7117] hid-generic 0000:0000:0000.0016: unknown main item tag 0x0
[  449.590350][ T7117] hid-generic 0000:0000:0000.0016: unknown main item tag 0x0
[  449.590373][ T7117] hid-generic 0000:0000:0000.0016: unknown main item tag 0x0
[  449.590397][ T7117] hid-generic 0000:0000:0000.0016: unknown main item tag 0x0
[  449.590420][ T7117] hid-generic 0000:0000:0000.0016: unknown main item tag 0x0
[  449.590444][ T7117] hid-generic 0000:0000:0000.0016: unknown main item tag 0x0
[  449.590467][ T7117] hid-generic 0000:0000:0000.0016: unknown main item tag 0x0
[  449.590490][ T7117] hid-generic 0000:0000:0000.0016: unknown main item tag 0x0
[  449.736156][ T7117] hid-generic 0000:0000:0000.0016: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  450.444880][T11072] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  450.588056][T11072] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  450.632368][T11072] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  450.951110][   T37] kauditd_printk_skb: 410 callbacks suppressed
[  450.951127][   T37] audit: type=1326 audit(1756681264.625:7142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11361 comm="syz.2.1922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7689cebe9 code=0x7ffc0000
[  450.951231][   T37] audit: type=1326 audit(1756681264.625:7143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11361 comm="syz.2.1922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7689cebe9 code=0x7ffc0000
[  450.951577][   T37] audit: type=1326 audit(1756681264.625:7144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11361 comm="syz.2.1922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=294 compat=0 ip=0x7fa7689cebe9 code=0x7ffc0000
[  451.040460][   T37] audit: type=1326 audit(1756681264.715:7145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11361 comm="syz.2.1922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7689cebe9 code=0x7ffc0000
[  451.043151][   T37] audit: type=1326 audit(1756681264.715:7146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11361 comm="syz.2.1922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7689cebe9 code=0x7ffc0000
[  451.045303][   T37] audit: type=1326 audit(1756681264.715:7147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11361 comm="syz.2.1922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=254 compat=0 ip=0x7fa7689cebe9 code=0x7ffc0000
[  451.045347][   T37] audit: type=1326 audit(1756681264.715:7148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11361 comm="syz.2.1922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7689cebe9 code=0x7ffc0000
[  451.045389][   T37] audit: type=1326 audit(1756681264.715:7149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11361 comm="syz.2.1922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7689cebe9 code=0x7ffc0000
[  451.045430][   T37] audit: type=1326 audit(1756681264.725:7150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11361 comm="syz.2.1922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=32 compat=0 ip=0x7fa7689cebe9 code=0x7ffc0000
[  451.045476][   T37] audit: type=1326 audit(1756681264.725:7151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11361 comm="syz.2.1922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7689cebe9 code=0x7ffc0000
[  451.240797][T11072] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  451.287136][T11369] netlink: 'syz.4.1923': attribute type 7 has an invalid length.
[  451.287157][T11369] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1923'.
[  451.334640][ T7211] hid-generic 0000:0000:0000.0017: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  451.680943][   T12] hsr_slave_0: left promiscuous mode
[  451.706510][   T12] hsr_slave_1: left promiscuous mode
[  451.805504][   T12] veth1_macvtap: left promiscuous mode
[  451.805801][   T12] veth0_macvtap: left promiscuous mode
[  451.807394][   T12] veth1_vlan: left promiscuous mode
[  451.807633][   T12] veth0_vlan: left promiscuous mode
[  452.056242][T11404] netlink: 'syz.4.1937': attribute type 7 has an invalid length.
[  452.056263][T11404] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1937'.
[  454.102053][T11440] netlink: 'syz.3.1951': attribute type 4 has an invalid length.
[  454.102105][T11440] netlink: 17 bytes leftover after parsing attributes in process `syz.3.1951'.
[  454.268227][T11441] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1951'.
[  456.945047][   T12] team0 (unregistering): Port device team_slave_1 removed
[  457.164079][   T12] team0 (unregistering): Port device team_slave_0 removed
[  458.262939][T11443] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1952'.
[  459.369386][T11439] lo speed is unknown, defaulting to 1000
[  459.374666][T11439] lo speed is unknown, defaulting to 1000
[  459.640635][T11464] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1960'.
[  459.742917][T11411] bond0: (slave dummy0): Releasing backup interface
[  459.789782][T11411] bridge_slave_0: left allmulticast mode
[  459.789812][T11411] bridge_slave_0: left promiscuous mode
[  459.793703][T11411] bridge0: port 1(bridge_slave_0) entered disabled state
[  459.818098][T11468] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1962'.
[  459.874487][T11411] bridge_slave_1: left allmulticast mode
[  459.874518][T11411] bridge_slave_1: left promiscuous mode
[  459.874788][T11411] bridge0: port 2(bridge_slave_1) entered disabled state
[  459.904527][T11474] netlink: 'syz.0.1963': attribute type 49 has an invalid length.
[  460.005748][T11411] bond0: (slave bond_slave_0): Releasing backup interface
[  460.046056][T11411] bond0: (slave bond_slave_1): Releasing backup interface
[  460.129175][T11411] team0: Port device team_slave_0 removed
[  460.148806][T11411] team0: Port device team_slave_1 removed
[  460.149808][T11411] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  460.149836][T11411] batman_adv: batadv0: Removing interface: batadv_slave_0
[  460.175887][T11411] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  460.175918][T11411] batman_adv: batadv0: Removing interface: batadv_slave_1
[  460.284251][T11412] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  460.320118][T11415] netlink: 'syz.2.1936': attribute type 3 has an invalid length.
[  461.358036][T11489] loop9: detected capacity change from 0 to 7
[  461.358919][T11489] buffer_io_error: 4 callbacks suppressed
[  461.358933][T11489] Buffer I/O error on dev loop9, logical block 0, async page read
[  461.359044][T11489] Buffer I/O error on dev loop9, logical block 0, async page read
[  461.359149][T11489] Buffer I/O error on dev loop9, logical block 0, async page read
[  461.359243][T11489] Buffer I/O error on dev loop9, logical block 0, async page read
[  461.359404][T11489] Buffer I/O error on dev loop9, logical block 0, async page read
[  461.359532][T11489] Buffer I/O error on dev loop9, logical block 0, async page read
[  461.359702][T11489] Buffer I/O error on dev loop9, logical block 0, async page read
[  461.359768][T11489] ldm_validate_partition_table(): Disk read failed.
[  461.359816][T11489] Buffer I/O error on dev loop9, logical block 0, async page read
[  461.359911][T11489] Buffer I/O error on dev loop9, logical block 0, async page read
[  461.360014][T11489] Buffer I/O error on dev loop9, logical block 0, async page read
[  461.360171][T11489] Dev loop9: unable to read RDB block 0
[  461.360473][T11489]  loop9: unable to read partition table
[  461.612832][T11489] loop9: partition table beyond EOD, truncated
[  461.612856][T11489] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ�����
[  461.612856][T11489] 
) failed (rc=-5)
[  461.747940][T11498] netlink: 'syz.2.1969': attribute type 7 has an invalid length.
[  461.747959][T11498] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1969'.
[  461.835897][T11501] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1971'.
[  461.955938][   T37] kauditd_printk_skb: 15 callbacks suppressed
[  461.955955][   T37] audit: type=1326 audit(1756681275.635:7167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11504 comm="syz.3.1973" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  461.956075][   T37] audit: type=1326 audit(1756681275.635:7168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11504 comm="syz.3.1973" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  461.957693][   T37] audit: type=1326 audit(1756681275.635:7169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11504 comm="syz.3.1973" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  461.958250][   T37] audit: type=1326 audit(1756681275.635:7170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11504 comm="syz.3.1973" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  461.958545][   T37] audit: type=1326 audit(1756681275.635:7171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11504 comm="syz.3.1973" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  461.958915][   T37] audit: type=1326 audit(1756681275.635:7172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11504 comm="syz.3.1973" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  461.959029][   T37] audit: type=1326 audit(1756681275.635:7173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11504 comm="syz.3.1973" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  461.959240][   T37] audit: type=1326 audit(1756681275.635:7174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11504 comm="syz.3.1973" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  461.959362][   T37] audit: type=1326 audit(1756681275.635:7175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11504 comm="syz.3.1973" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  461.959536][   T37] audit: type=1326 audit(1756681275.635:7176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11504 comm="syz.3.1973" exe="/root/syz-executor" sig=0 arch=c000003e syscall=294 compat=0 ip=0x7f25641cebe9 code=0x7ffc0000
[  462.196055][T11478] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  462.657199][T11072] 8021q: adding VLAN 0 to HW filter on device bond0
[  462.842083][T11072] 8021q: adding VLAN 0 to HW filter on device team0
[  463.360560][T11522] lo speed is unknown, defaulting to 1000
[  463.427266][T11522] lo speed is unknown, defaulting to 1000
[  463.808775][T11521] netlink: 'syz.2.1978': attribute type 3 has an invalid length.
[  463.808795][T11521] netlink: 'syz.2.1978': attribute type 1 has an invalid length.
[  463.808807][T11521] netlink: 60387 bytes leftover after parsing attributes in process `syz.2.1978'.
[  464.061707][T11523] netlink: 'syz.3.1976': attribute type 4 has an invalid length.
[  464.061789][T11523] netlink: 17 bytes leftover after parsing attributes in process `syz.3.1976'.
[  464.097782][T11523] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1976'.
[  465.830968][T11527] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1979'.
[  465.832810][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[  465.832946][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[  465.953882][ T7120] bridge0: port 2(bridge_slave_1) entered blocking state
[  465.954218][ T7120] bridge0: port 2(bridge_slave_1) entered forwarding state
[  466.065280][T11535] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1982'.
[  466.330305][T11543] netlink: 'syz.2.1986': attribute type 7 has an invalid length.
[  466.330327][T11543] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1986'.
[  467.216042][T11072] 8021q: adding VLAN 0 to HW filter on device batadv0
[  467.335687][T11582] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2003'.
[  467.827365][T11592] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  468.218311][ T7211] lo speed is unknown, defaulting to 1000
[  468.218354][ T7211] syz2: Port: 1 Link ACTIVE
[  468.400203][T11611] netlink: 'syz.4.2012': attribute type 3 has an invalid length.
[  468.400224][T11611] netlink: 'syz.4.2012': attribute type 1 has an invalid length.
[  468.400235][T11611] netlink: 60387 bytes leftover after parsing attributes in process `syz.4.2012'.
[  468.673566][T11618] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2015'.
[  468.691329][T11072] veth0_vlan: entered promiscuous mode
[  468.721366][T11072] veth1_vlan: entered promiscuous mode
[  468.913475][T11072] veth0_macvtap: entered promiscuous mode
[  468.937238][T11072] veth1_macvtap: entered promiscuous mode
[  468.994326][T11072] batman_adv: batadv0: Interface activated: batadv_slave_0
[  469.020257][T11072] batman_adv: batadv0: Interface activated: batadv_slave_1
[  469.058162][ T7120] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  469.058427][ T7120] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  469.058464][ T7120] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  469.058498][ T7120] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  469.653878][T11640] netlink: 'syz.2.2024': attribute type 3 has an invalid length.
[  469.653900][T11640] netlink: 'syz.2.2024': attribute type 1 has an invalid length.
[  469.653912][T11640] netlink: 60387 bytes leftover after parsing attributes in process `syz.2.2024'.
[  470.120195][T11652] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2029'.
[  470.493587][ T7121] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  470.493607][ T7121] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  470.717604][T10188] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  470.717623][T10188] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  470.878126][T11678] program syz.4.2037 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  471.228032][   T37] kauditd_printk_skb: 55 callbacks suppressed
[  471.228049][   T37] audit: type=1326 audit(1756681284.905:7232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11688 comm="syz.4.2041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09c5b5ebe9 code=0x7ffc0000
[  471.260457][   T37] audit: type=1326 audit(1756681284.915:7233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11688 comm="syz.4.2041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09c5b5ebe9 code=0x7ffc0000
[  471.260511][   T37] audit: type=1326 audit(1756681284.935:7234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11688 comm="syz.4.2041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f09c5b5ebe9 code=0x7ffc0000
[  471.260553][   T37] audit: type=1326 audit(1756681284.935:7235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11688 comm="syz.4.2041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09c5b5ebe9 code=0x7ffc0000
[  471.260593][   T37] audit: type=1326 audit(1756681284.935:7236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11688 comm="syz.4.2041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09c5b5ebe9 code=0x7ffc0000
[  471.260633][   T37] audit: type=1326 audit(1756681284.935:7237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11688 comm="syz.4.2041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f09c5b5ebe9 code=0x7ffc0000
[  471.260673][   T37] audit: type=1326 audit(1756681284.935:7238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11688 comm="syz.4.2041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09c5b5ebe9 code=0x7ffc0000
[  471.260709][   T37] audit: type=1326 audit(1756681284.935:7239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11688 comm="syz.4.2041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09c5b5ebe9 code=0x7ffc0000
[  471.260749][   T37] audit: type=1326 audit(1756681284.935:7240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11688 comm="syz.4.2041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f09c5b5ebe9 code=0x7ffc0000
[  471.260789][   T37] audit: type=1326 audit(1756681284.935:7241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11688 comm="syz.4.2041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09c5b5ebe9 code=0x7ffc0000
[  471.268070][T11689] sctp: [Deprecated]: syz.4.2041 (pid 11689) Use of struct sctp_assoc_value in delayed_ack socket option.
[  471.268070][T11689] Use struct sctp_sack_info instead
[  471.883816][T11703] netlink: 'syz.2.2044': attribute type 3 has an invalid length.
[  471.883837][T11703] netlink: 'syz.2.2044': attribute type 1 has an invalid length.
[  471.883848][T11703] netlink: 60387 bytes leftover after parsing attributes in process `syz.2.2044'.
[  472.090972][T11713] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  472.091006][T11713] batman_adv: batadv0: Removing interface: batadv_slave_0
[  472.117979][T11712] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2049'.
[  472.133088][T11713] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  472.133120][T11713] batman_adv: batadv0: Removing interface: batadv_slave_1
[  472.687334][T11727] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[  472.714536][T11724] IPVS: stopping master sync thread 11727 ...
[  473.344954][T11751] netlink: 60 bytes leftover after parsing attributes in process `syz.2.2066'.
[  473.345455][T11751] unsupported nlmsg_type 40
[  473.496089][T11757] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2070'.
[  476.374009][T11849] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2106'.
[  476.611605][   T37] kauditd_printk_skb: 252 callbacks suppressed
[  476.611622][   T37] audit: type=1326 audit(1756681290.285:7494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11856 comm="syz.0.2110" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4dd1c5ebe9 code=0x7ffc0000
[  476.646847][   T37] audit: type=1326 audit(1756681290.285:7495): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11856 comm="syz.0.2110" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4dd1c5ebe9 code=0x7ffc0000
[  476.646904][   T37] audit: type=1326 audit(1756681290.295:7496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11856 comm="syz.0.2110" exe="/root/syz-executor" sig=0 arch=c000003e syscall=158 compat=0 ip=0x7f4dd1c5ebe9 code=0x7ffc0000
[  476.646947][   T37] audit: type=1326 audit(1756681290.295:7497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11856 comm="syz.0.2110" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4dd1c5ebe9 code=0x7ffc0000
[  476.810201][T11862] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2113'.
[  476.848228][   T37] audit: type=1326 audit(1756681290.525:7498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11864 comm="syz.0.2112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4dd1c5ebe9 code=0x7ffc0000
[  476.875945][   T37] audit: type=1326 audit(1756681290.555:7499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11864 comm="syz.0.2112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4dd1c5ebe9 code=0x7ffc0000
[  476.876407][   T37] audit: type=1326 audit(1756681290.555:7500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11864 comm="syz.0.2112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4dd1c5ebe9 code=0x7ffc0000
[  476.876558][   T37] audit: type=1326 audit(1756681290.555:7501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11864 comm="syz.0.2112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4dd1c5ebe9 code=0x7ffc0000
[  476.877151][   T37] audit: type=1326 audit(1756681290.555:7502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11864 comm="syz.0.2112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4dd1c5ebe9 code=0x7ffc0000
[  476.877276][   T37] audit: type=1326 audit(1756681290.555:7503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11864 comm="syz.0.2112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4dd1c5ebe9 code=0x7ffc0000
[  477.203873][T11881] atomic_op ffff888028258a18 conn xmit_atomic 0000000000000000
[  477.486111][T11889] =======================================================
[  477.486111][T11889] WARNING: The mand mount option has been deprecated and
[  477.486111][T11889]          and is ignored by this kernel. Remove the mand
[  477.486111][T11889]          option from the mount to silence this warning.
[  477.486111][T11889] =======================================================
[  477.494867][T11887] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2121'.
[  477.494908][T11887] openvswitch: netlink: Flow key attr not present in new flow.
[  477.751344][T11894] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2126'.
[  477.947598][T11900] program syz.4.2129 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  478.877438][T11925] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2138'.
[  478.877461][T11925] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2138'.
[  479.220887][T11936] netlink: 'syz.3.2142': attribute type 3 has an invalid length.
[  479.220909][T11936] netlink: 61211 bytes leftover after parsing attributes in process `syz.3.2142'.
[  479.830013][T11956] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2151'.
[  479.830039][T11956] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2151'.
[  479.995665][T11958] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2152'.
[  481.389925][T11997] __nla_validate_parse: 3 callbacks suppressed
[  481.389946][T11997] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2166'.
[  481.586418][T11996] random: crng reseeded on system resumption
[  481.931597][T12013] netlink: 4 bytes leftover after parsing attributes in process `+}S@'.
[  482.747591][T12035] netlink: 'syz.5.2186': attribute type 3 has an invalid length.
[  482.747611][T12035] netlink: 61211 bytes leftover after parsing attributes in process `syz.5.2186'.
[  482.987720][T12046] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2190'.
[  482.996664][T12053] netlink: 36 bytes leftover after parsing attributes in process `syz.3.2191'.
[  484.053761][T12080] atomic_op ffff888066a17a18 conn xmit_atomic 0000000000000000
[  484.461884][   T37] kauditd_printk_skb: 37 callbacks suppressed
[  484.461903][   T37] audit: type=1326 audit(1756681298.085:7541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12078 comm="syz.0.2202" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4dd1c5ebe9 code=0x7ffc0000
[  484.461962][   T37] audit: type=1326 audit(1756681298.085:7542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12078 comm="syz.0.2202" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4dd1c5ebe9 code=0x7ffc0000
[  484.462002][   T37] audit: type=1326 audit(1756681298.095:7543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12078 comm="syz.0.2202" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4dd1c5ebe9 code=0x7ffc0000
[  484.462045][   T37] audit: type=1326 audit(1756681298.095:7544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12078 comm="syz.0.2202" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4dd1c5ebe9 code=0x7ffc0000
[  484.462085][   T37] audit: type=1326 audit(1756681298.095:7545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12078 comm="syz.0.2202" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4dd1c5ebe9 code=0x7ffc0000
[  484.462125][   T37] audit: type=1326 audit(1756681298.095:7546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12078 comm="syz.0.2202" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4dd1c5ebe9 code=0x7ffc0000
[  484.462164][   T37] audit: type=1326 audit(1756681298.095:7547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12078 comm="syz.0.2202" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4dd1c5ebe9 code=0x7ffc0000
[  484.462204][   T37] audit: type=1326 audit(1756681298.095:7548): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12078 comm="syz.0.2202" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f4dd1c5ebe9 code=0x7ffc0000
[  484.462243][   T37] audit: type=1326 audit(1756681298.095:7549): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12078 comm="syz.0.2202" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4dd1c5ebe9 code=0x7ffc0000
[  484.462283][   T37] audit: type=1326 audit(1756681298.095:7550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12078 comm="syz.0.2202" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f4dd1c5ebe9 code=0x7ffc0000
[  484.772442][T12087] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2204'.
[  485.264431][T12120] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2217'.
[  485.646268][T12139] IPVS: stopping master sync thread 12140 ...
[  485.720401][T12142] netlink: 'syz.3.2223': attribute type 3 has an invalid length.
[  485.720423][T12142] netlink: 61211 bytes leftover after parsing attributes in process `syz.3.2223'.
[  486.266029][T12144] lo speed is unknown, defaulting to 1000
[  486.322806][T12144] lo speed is unknown, defaulting to 1000
[  487.198282][T12145] netlink: 'syz.2.2221': attribute type 4 has an invalid length.
[  487.198349][T12145] netlink: 17 bytes leftover after parsing attributes in process `syz.2.2221'.
[  487.223449][T12145] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2221'.
[  489.113010][T12166] netlink: 36 bytes leftover after parsing attributes in process `syz.4.2231'.
[  489.471769][   T37] kauditd_printk_skb: 227 callbacks suppressed
[  489.471784][   T37] audit: type=1326 audit(1756681303.145:7778): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12174 comm="syz.5.2235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fc53cb7adb9 code=0x7ffc0000
[  489.471817][   T37] audit: type=1326 audit(1756681303.145:7779): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12174 comm="syz.5.2235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7fc53cbdebe9 code=0x7ffc0000
[  489.479969][   T37] audit: type=1326 audit(1756681303.155:7780): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12174 comm="syz.5.2235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fc53cbd5ba7 code=0x7ffc0000
[  489.480018][   T37] audit: type=1326 audit(1756681303.155:7781): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12174 comm="syz.5.2235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fc53cb7adb9 code=0x7ffc0000
[  489.480057][   T37] audit: type=1326 audit(1756681303.155:7782): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12174 comm="syz.5.2235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7fc53cbdebe9 code=0x7ffc0000
[  489.543234][   T37] audit: type=1326 audit(1756681303.225:7783): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12174 comm="syz.5.2235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fc53cbd5ba7 code=0x7ffc0000
[  489.543591][   T37] audit: type=1326 audit(1756681303.225:7784): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12174 comm="syz.5.2235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fc53cb7adb9 code=0x7ffc0000
[  489.547212][   T37] audit: type=1326 audit(1756681303.225:7785): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12174 comm="syz.5.2235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7fc53cbdebe9 code=0x7ffc0000
[  489.549687][   T37] audit: type=1326 audit(1756681303.225:7786): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12174 comm="syz.5.2235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fc53cbd5ba7 code=0x7ffc0000
[  489.549804][   T37] audit: type=1326 audit(1756681303.225:7787): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12174 comm="syz.5.2235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fc53cb7adb9 code=0x7ffc0000
[  490.067399][T12204] netlink: 36 bytes leftover after parsing attributes in process `syz.2.2246'.
[  490.406889][T12221] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2252'.
[  491.059354][T12236] siw: device registration error -23
[  491.735459][T12240] netlink: 36 bytes leftover after parsing attributes in process `syz.3.2260'.
[  491.764160][T12239] netlink: 14 bytes leftover after parsing attributes in process `syz.5.2257'.
[  491.873987][T12239] hsr_slave_0: left promiscuous mode
[  491.968696][T12239] hsr_slave_1: left promiscuous mode
[  492.161824][T12250] IPv6: Can't replace route, no match found
[  492.672186][T12264] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2272'.
[  492.738116][T12267] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2274'.
[  492.738139][T12267] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2274'.
[  494.018732][T12277] lo speed is unknown, defaulting to 1000
[  494.024081][T12277] lo speed is unknown, defaulting to 1000
[  494.153686][T12283] netlink: 'syz.4.2278': attribute type 3 has an invalid length.
[  494.153707][T12283] netlink: 61203 bytes leftover after parsing attributes in process `syz.4.2278'.
[  494.356042][T12288] program syz.4.2280 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  495.482224][T12311] atomic_op ffff88805cf18a18 conn xmit_atomic 0000000000000000
[  496.207915][T12319] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2290'.
[  496.392795][T12327] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2295'.
[  496.549140][   T37] kauditd_printk_skb: 172 callbacks suppressed
[  496.549157][   T37] audit: type=1326 audit(1756681310.225:7960): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12333 comm="syz.4.2297" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09c5b5ebe9 code=0x7ffc0000
[  496.550860][   T37] audit: type=1326 audit(1756681310.225:7961): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12333 comm="syz.4.2297" exe="/root/syz-executor" sig=0 arch=c000003e syscall=272 compat=0 ip=0x7f09c5b5ebe9 code=0x7ffc0000
[  496.558986][   T37] audit: type=1326 audit(1756681310.235:7962): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12333 comm="syz.4.2297" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09c5b5ebe9 code=0x7ffc0000
[  496.559966][   T37] audit: type=1326 audit(1756681310.235:7963): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12333 comm="syz.4.2297" exe="/root/syz-executor" sig=0 arch=c000003e syscall=68 compat=0 ip=0x7f09c5b5ebe9 code=0x7ffc0000
[  496.563335][   T37] audit: type=1326 audit(1756681310.245:7964): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12333 comm="syz.4.2297" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09c5b5ebe9 code=0x7ffc0000
[  496.563745][   T37] audit: type=1326 audit(1756681310.245:7965): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12333 comm="syz.4.2297" exe="/root/syz-executor" sig=0 arch=c000003e syscall=69 compat=0 ip=0x7f09c5b5ebe9 code=0x7ffc0000
[  496.564276][   T37] audit: type=1326 audit(1756681310.245:7966): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12333 comm="syz.4.2297" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09c5b5ebe9 code=0x7ffc0000
[  496.565708][   T37] audit: type=1326 audit(1756681310.245:7967): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12333 comm="syz.4.2297" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09c5b5ebe9 code=0x7ffc0000
[  496.565981][   T37] audit: type=1326 audit(1756681310.245:7968): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12333 comm="syz.4.2297" exe="/root/syz-executor" sig=0 arch=c000003e syscall=70 compat=0 ip=0x7f09c5b5ebe9 code=0x7ffc0000
[  496.566494][   T37] audit: type=1326 audit(1756681310.245:7969): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12333 comm="syz.4.2297" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09c5b5ebe9 code=0x7ffc0000
[  496.797644][T12341] netlink: 36 bytes leftover after parsing attributes in process `syz.5.2300'.
[  497.298007][T12361] program syz.5.2310 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  498.370751][T12369] Can't find ip_set type hash:net,n
[  498.444553][T12365] 
[  498.444564][T12365] ======================================================
[  498.444573][T12365] WARNING: possible circular locking dependency detected
[  498.444586][T12365] syzkaller #0 Not tainted
[  498.444595][T12365] ------------------------------------------------------
[  498.444603][T12365] syz.0.2312/12365 is trying to acquire lock:
[  498.444613][T12365] ffff8880b8923d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[  498.444666][T12365] 
[  498.444666][T12365] but task is already holding lock:
[  498.444672][T12365] ffffffff8efa6be8 (smc_v6_hashinfo.lock){++.+}-{3:3}, at: smc_diag_dump_proto+0x174/0x1fb0
[  498.444714][T12365] 
[  498.444714][T12365] which lock already depends on the new lock.
[  498.444714][T12365] 
[  498.444721][T12365] 
[  498.444721][T12365] the existing dependency chain (in reverse order) is:
[  498.444728][T12365] 
[  498.444728][T12365] -> #1 (smc_v6_hashinfo.lock){++.+}-{3:3}:
[  498.444752][T12365]        lock_acquire+0x120/0x360
[  498.444773][T12365]        rt_write_lock+0x6a/0x110
[  498.444790][T12365]        smc_hash_sk+0x8f/0x2a0
[  498.444806][T12365]        smc_sk_init+0x5a4/0x7f0
[  498.444822][T12365]        __smc_create+0x10d/0x280
[  498.444842][T12365]        __sock_create+0x4b3/0x9f0
[  498.444860][T12365]        __sys_socket+0xd7/0x1b0
[  498.444876][T12365]        __x64_sys_socket+0x7a/0x90
[  498.444893][T12365]        do_syscall_64+0xfa/0x3b0
[  498.444914][T12365]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  498.444931][T12365] 
[  498.444931][T12365] -> #0 ((softirq_ctrl.lock)){+.+.}-{3:3}:
[  498.444954][T12365]        validate_chain+0xb9b/0x2140
[  498.444976][T12365]        __lock_acquire+0xab9/0xd20
[  498.444995][T12365]        reacquire_held_locks+0x127/0x1d0
[  498.445017][T12365]        lock_release+0x1b4/0x3e0
[  498.445035][T12365]        __local_bh_enable_ip+0x10c/0x270
[  498.445053][T12365]        sock_i_ino+0xa9/0xc0
[  498.445074][T12365]        smc_diag_dump_proto+0xa4c/0x1fb0
[  498.445092][T12365]        smc_diag_dump+0x59/0xa0
[  498.445109][T12365]        netlink_dump+0x6e4/0xe90
[  498.445126][T12365]        __netlink_dump_start+0x5cb/0x7e0
[  498.445151][T12365]        smc_diag_handler_dump+0x178/0x210
[  498.445169][T12365]        sock_diag_rcv_msg+0x4c9/0x600
[  498.445187][T12365]        netlink_rcv_skb+0x205/0x470
[  498.445213][T12365]        netlink_unicast+0x843/0xa10
[  498.445230][T12365]        netlink_sendmsg+0x805/0xb30
[  498.445248][T12365]        __sock_sendmsg+0x219/0x270
[  498.445264][T12365]        ____sys_sendmsg+0x508/0x820
[  498.445285][T12365]        ___sys_sendmsg+0x21f/0x2a0
[  498.445306][T12365]        __x64_sys_sendmsg+0x1a1/0x260
[  498.445327][T12365]        do_syscall_64+0xfa/0x3b0
[  498.445348][T12365]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  498.445364][T12365] 
[  498.445364][T12365] other info that might help us debug this:
[  498.445364][T12365] 
[  498.445371][T12365]  Possible unsafe locking scenario:
[  498.445371][T12365] 
[  498.445377][T12365]        CPU0                    CPU1
[  498.445383][T12365]        ----                    ----
[  498.445389][T12365]   rlock(smc_v6_hashinfo.lock);
[  498.445401][T12365]                                lock((softirq_ctrl.lock));
[  498.445415][T12365]                                lock(smc_v6_hashinfo.lock);
[  498.445428][T12365]   lock((softirq_ctrl.lock));
[  498.445440][T12365] 
[  498.445440][T12365]  *** DEADLOCK ***
[  498.445440][T12365] 
[  498.445445][T12365] 3 locks held by syz.0.2312/12365:
[  498.445454][T12365]  #0: ffff88804a190908 (nlk_cb_mutex-SOCK_DIAG){+.+.}-{4:4}, at: __netlink_dump_start+0xfe/0x7e0
[  498.445495][T12365]  #1: ffffffff8efa6be8 (smc_v6_hashinfo.lock){++.+}-{3:3}, at: smc_diag_dump_proto+0x174/0x1fb0
[  498.445538][T12365]  #2: ffffffff8d9a8bc0 (rcu_read_lock){....}-{1:3}, at: rt_read_lock+0x1f8/0x360
[  498.445579][T12365] 
[  498.445579][T12365] stack backtrace:
[  498.445590][T12365] CPU: 1 UID: 0 PID: 12365 Comm: syz.0.2312 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  498.445611][T12365] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  498.445623][T12365] Call Trace:
[  498.445630][T12365]  <TASK>
[  498.445638][T12365]  dump_stack_lvl+0x189/0x250
[  498.445664][T12365]  ? __pfx_dump_stack_lvl+0x10/0x10
[  498.445688][T12365]  ? __pfx__printk+0x10/0x10
[  498.445708][T12365]  ? print_lock_name+0xde/0x100
[  498.445727][T12365]  print_circular_bug+0x2ee/0x310
[  498.445747][T12365]  check_noncircular+0x134/0x160
[  498.445774][T12365]  validate_chain+0xb9b/0x2140
[  498.445798][T12365]  ? validate_chain+0x897/0x2140
[  498.445830][T12365]  __lock_acquire+0xab9/0xd20
[  498.445854][T12365]  reacquire_held_locks+0x127/0x1d0
[  498.445877][T12365]  ? __local_bh_disable_ip+0x264/0x400
[  498.445900][T12365]  lock_release+0x1b4/0x3e0
[  498.445921][T12365]  ? __local_bh_enable_ip+0x100/0x270
[  498.445943][T12365]  __local_bh_enable_ip+0x10c/0x270
[  498.445964][T12365]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  498.445987][T12365]  ? rt_read_unlock+0x65/0xa0
[  498.446006][T12365]  ? sock_i_ino+0x24/0xc0
[  498.446029][T12365]  sock_i_ino+0xa9/0xc0
[  498.446052][T12365]  smc_diag_dump_proto+0xa4c/0x1fb0
[  498.446083][T12365]  ? __pfx_smc_diag_dump_proto+0x10/0x10
[  498.446104][T12365]  ? __lruvec_stat_mod_folio+0x79/0x2f0
[  498.446132][T12365]  ? __lruvec_stat_mod_folio+0x79/0x2f0
[  498.446159][T12365]  ? __phys_addr+0xd3/0x180
[  498.446182][T12365]  ? __kasan_kmalloc_large+0x85/0xa0
[  498.446211][T12365]  ? rcu_is_watching+0x15/0xb0
[  498.446238][T12365]  ? rcu_is_watching+0x15/0xb0
[  498.446261][T12365]  ? trace_kmalloc+0x1f/0xd0
[  498.446283][T12365]  ? __kmalloc_node_track_caller_noprof+0x213/0x450
[  498.446310][T12365]  ? __build_skb_around+0x257/0x3e0
[  498.446335][T12365]  smc_diag_dump+0x59/0xa0
[  498.446353][T12365]  netlink_dump+0x6e4/0xe90
[  498.446378][T12365]  ? __pfx_netlink_dump+0x10/0x10
[  498.446396][T12365]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  498.446418][T12365]  ? lockdep_hardirqs_on+0x9c/0x150
[  498.446449][T12365]  __netlink_dump_start+0x5cb/0x7e0
[  498.446473][T12365]  smc_diag_handler_dump+0x178/0x210
[  498.446494][T12365]  ? __pfx_smc_diag_handler_dump+0x10/0x10
[  498.446513][T12365]  ? __pfx_smc_diag_dump+0x10/0x10
[  498.446533][T12365]  ? sock_diag_lock_handler+0x19/0x290
[  498.446551][T12365]  ? sock_diag_lock_handler+0x19/0x290
[  498.446573][T12365]  sock_diag_rcv_msg+0x4c9/0x600
[  498.446594][T12365]  netlink_rcv_skb+0x205/0x470
[  498.446613][T12365]  ? __pfx_sock_diag_rcv_msg+0x10/0x10
[  498.446633][T12365]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  498.446658][T12365]  ? netlink_deliver_tap+0x2e/0x1b0
[  498.446681][T12365]  netlink_unicast+0x843/0xa10
[  498.446703][T12365]  ? __pfx_netlink_unicast+0x10/0x10
[  498.446721][T12365]  ? netlink_sendmsg+0x642/0xb30
[  498.446740][T12365]  ? skb_put+0x11b/0x210
[  498.446762][T12365]  netlink_sendmsg+0x805/0xb30
[  498.446787][T12365]  ? __pfx_netlink_sendmsg+0x10/0x10
[  498.446810][T12365]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  498.446828][T12365]  ? __pfx_netlink_sendmsg+0x10/0x10
[  498.446848][T12365]  __sock_sendmsg+0x219/0x270
[  498.446867][T12365]  ____sys_sendmsg+0x508/0x820
[  498.446897][T12365]  ? __pfx_____sys_sendmsg+0x10/0x10
[  498.446924][T12365]  ? import_iovec+0x74/0xa0
[  498.446945][T12365]  ___sys_sendmsg+0x21f/0x2a0
[  498.446969][T12365]  ? __pfx____sys_sendmsg+0x10/0x10
[  498.447009][T12365]  ? __fget_files+0x2a/0x420
[  498.447031][T12365]  ? __fget_files+0x3a6/0x420
[  498.447057][T12365]  __x64_sys_sendmsg+0x1a1/0x260
[  498.447081][T12365]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  498.447109][T12365]  ? __secure_computing+0xe2/0x2a0
[  498.447136][T12365]  do_syscall_64+0xfa/0x3b0
[  498.447158][T12365]  ? lockdep_hardirqs_on+0x9c/0x150
[  498.447178][T12365]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  498.447196][T12365]  ? clear_bhb_loop+0x60/0xb0
[  498.447220][T12365]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  498.447238][T12365] RIP: 0033:0x7f4dd1c5ebe9
[  498.447254][T12365] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  498.447270][T12365] RSP: 002b:00007f4dcfec6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  498.447289][T12365] RAX: ffffffffffffffda RBX: 00007f4dd1e95fa0 RCX: 00007f4dd1c5ebe9
[  498.447303][T12365] RDX: 0000000000000600 RSI: 0000200000000540 RDI: 000000000000000c
[  498.447315][T12365] RBP: 00007f4dd1ce1e19 R08: 0000000000000000 R09: 0000000000000000
[  498.447327][T12365] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  498.447338][T12365] R13: 00007f4dd1e96038 R14: 00007f4dd1e95fa0 R15: 00007fff4d9ac508
[  498.447360][T12365]  </TASK>
[  501.584324][ T1322] ieee802154 phy0 wpan0: encryption failed: -22
[  501.584383][ T1322] ieee802154 phy1 wpan1: encryption failed: -22