last executing test programs:

14m56.159635513s ago: executing program 2 (id=681):
socket$kcm(0x10, 0x2, 0x4)
io_uring_register$IORING_REGISTER_PBUF_RING(0xffffffffffffffff, 0x16, 0x0, 0x1)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x40000, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}, {0x0, 0xfff3}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x6, 0x9, 0x80, 0x0, 0xffffffff, 0x91b1}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4000400}, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x2c)
openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp_SCTP_EVENTS(0xffffffffffffffff, 0x84, 0xb, &(0x7f0000000040)={0x33, 0x8, 0xe, 0x5, 0x5, 0x2, 0x6, 0x0, 0xfc, 0x5, 0x2, 0x3, 0x28, 0x6}, 0xe)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f0000000040)={0x20000006})
r3 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r3)
ptrace$peeksig(0x1a, r3, 0x0, &(0x7f0000000040))

14m55.427012953s ago: executing program 2 (id=687):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_VERDICT(r0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f00000000c0)=0xa)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000000)='.\x00', 0x0, 0x0, 0x101097, 0x0)
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r1, 0x0, 0xffffffffffffff9c, 0x0, 0x260)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000440)=ANY=[@ANYBLOB], 0x74}}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r0, 0xc0c89425, &(0x7f0000000800)={"54a41f7614f42e2f8c19cb810aea5bce", 0x0, 0x0, {0x2, 0x616}, {0x100, 0x4}, 0x2, [0x8, 0x0, 0x2, 0x1, 0x10000000, 0x7, 0x8, 0x5, 0x7, 0x2d, 0x0, 0x7, 0x6f740588, 0x1fffc0000000, 0x10000, 0x4]})
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
pipe(&(0x7f00000007c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
vmsplice(r4, &(0x7f00000000c0)=[{&(0x7f0000000180)='w', 0x1}], 0x1, 0x1)
close(r4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r5=>0xffffffffffffffff})
r6 = socket(0x1e, 0x1, 0x0)
connect$tipc(r6, &(0x7f0000000000)=@name={0x1e, 0x2, 0x1, {{0x1, 0x1}}}, 0x10)
write$binfmt_misc(r6, &(0x7f0000000340), 0x2000011a)
sendmmsg$sock(r6, &(0x7f0000001600)=[{{0x0, 0x0, &(0x7f0000000380)=[{&(0x7f00000000c0)="15", 0x1}], 0x1}}], 0x1, 0x40001)
recvmsg$unix(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002640)=[{&(0x7f0000000440)=""/4096, 0x1000}], 0x1}, 0x12000)
ioctl$IOCTL_VMCI_CTX_SET_CPT_STATE(r4, 0x7b2, &(0x7f0000000600)={&(0x7f0000000f80)=[0x1, 0xfffffff7, 0xfffffffc, 0x8, 0x2, 0x0, 0x4, 0x6, 0xdfa8, 0x6, 0x4, 0x1, 0x81, 0x3, 0xfffffffb, 0xa, 0x4, 0x110, 0x1ff, 0x9, 0x2, 0x80000001, 0xd, 0x1, 0x9, 0x7, 0xfff, 0xbda, 0x3, 0x1000, 0x0, 0xf3cd, 0x10001, 0x3, 0x4, 0x6, 0x401, 0x290d, 0x4, 0x2, 0x0, 0xca, 0x4, 0xc000000, 0x1, 0x8001, 0x4, 0xfffffff6, 0x1, 0x7, 0x0, 0x6, 0x57d5f43b, 0x400, 0x120, 0x4, 0x0, 0x1, 0x200, 0x3, 0x3, 0xff, 0x4, 0x9, 0x7, 0x2, 0x40057, 0xdc4, 0x5, 0x3, 0xf4, 0x2, 0x4, 0x85, 0x10001, 0x5, 0x0, 0x6, 0x2, 0x0, 0xfffffff8, 0x1, 0x8, 0x1, 0x8, 0x3d, 0x2, 0xfffffff8, 0x7, 0x0, 0x7, 0x7, 0x7, 0x8, 0x4, 0x3, 0x2, 0x400, 0x21d, 0x3, 0xa994, 0x8, 0x2, 0x3, 0xd59, 0x2, 0x8, 0x6c1f, 0x5, 0x9, 0x9, 0x8, 0x20, 0x4, 0x2, 0x8001, 0xd9, 0x7d76, 0x9, 0xfffff800, 0x80000000, 0x3, 0x80, 0x10001, 0xd, 0x0, 0x6, 0x8a, 0x8, 0x1, 0x8, 0x1, 0xd, 0xe9, 0x7, 0x8, 0xb2e2, 0x6, 0x7, 0x4, 0x401, 0xc, 0xdd4f, 0x15b6, 0x5, 0x1, 0x200, 0x4, 0x939e, 0x2, 0x4, 0x5, 0x3ff, 0x1, 0x7, 0x5d6ed544, 0x7, 0x9, 0x401, 0x9d, 0x7ff, 0x1ff, 0x2, 0x7ff, 0x3, 0xee93, 0x5, 0x8, 0x4, 0x80, 0x1ff, 0x1000, 0x7a, 0x4, 0x0, 0x9, 0x1, 0x9, 0xa, 0x0, 0x0, 0x80000000, 0x9, 0xfffffffb, 0xd6, 0x200, 0x3, 0x0, 0x6, 0xa, 0x5, 0x400, 0x83, 0x2, 0x9, 0x400, 0x2, 0x0, 0x5059, 0x6, 0x4, 0x9c, 0x6, 0x3, 0xec7, 0x7, 0x2, 0x2, 0x6, 0x1, 0xc20, 0x7d, 0x1, 0x1, 0x1ff, 0x800, 0x3ff, 0xfffffffe, 0x9, 0x3ff, 0x1, 0x5d7, 0x8, 0xb476, 0x2, 0x5, 0xb1, 0x9, 0xdb8, 0x7, 0x1, 0x8, 0xb, 0xa3, 0xec, 0x10, 0xaf, 0x7fff, 0xb2e7, 0x1, 0x81, 0x2, 0x3, 0x0, 0x3a, 0x42a, 0xffff0001, 0x4d31d16, 0x7, 0x0, 0x30, 0x4, 0x6, 0x2, 0x97, 0xeade, 0xa, 0x800, 0x0, 0x9, 0x10001, 0xffff85da, 0x4, 0x5, 0x52, 0x6, 0x8, 0x1, 0x8, 0xac9, 0x6, 0xa, 0x7, 0x5, 0x9, 0x8, 0xb4f, 0x0, 0x7, 0x5, 0x3, 0xc, 0x35c8, 0xfffffffe, 0x3, 0x2ffb, 0x7f, 0x6, 0x6, 0x4, 0x200, 0x9, 0x4000000, 0x0, 0x8, 0x4, 0x8, 0x3, 0xda, 0x7, 0x5, 0x5, 0x100, 0x2, 0x7, 0xe4dd, 0xc, 0x3, 0xfff, 0x4, 0xf, 0x0, 0x6, 0x2, 0x31f, 0x6, 0x9, 0x10, 0x4, 0x1575, 0x0, 0xdad6, 0x5, 0x15, 0x80000000, 0x6, 0x0, 0x7, 0xbdf, 0x7, 0x80000000, 0x13f3, 0x4, 0x4, 0x9, 0xfffffff8, 0x2, 0x100, 0x6, 0x3, 0x54, 0x2, 0x0, 0x7, 0x101, 0x8, 0x4, 0x3, 0x87a, 0x8, 0xffffff80, 0xffffff00, 0x1f, 0xaf, 0xec3, 0x8, 0xc, 0x8, 0x7, 0x0, 0x7, 0x480000, 0x2, 0x77, 0x5, 0x33aa7504, 0xc, 0xfffffffe, 0x12d, 0xc2, 0x0, 0x7, 0xffffff81, 0x9, 0x5, 0x40, 0xe767, 0x4, 0x7, 0x200, 0x5, 0x3, 0x6, 0xffffffff, 0x9, 0xa, 0x0, 0x88, 0x10000, 0x7, 0xfffffffc, 0x5, 0x200, 0x3, 0x8, 0x4, 0x0, 0x8, 0xd803, 0x9, 0xa7, 0x847, 0x4, 0x6, 0x9, 0x4, 0x3, 0x4, 0x7fffffff, 0x81, 0x9, 0xa523, 0x6, 0x8, 0x4, 0x7, 0x7, 0x4, 0x100, 0x6, 0x9, 0x4, 0x7f, 0xce, 0x2, 0x80000000, 0x7ff, 0x1, 0x7, 0x2, 0x8, 0x7, 0x6, 0x7ff, 0xffffffff, 0x4ce, 0xb20, 0xc0, 0x3, 0x1e, 0x9, 0x9, 0x1, 0x444, 0x64, 0x7ff, 0x9, 0x5, 0x6, 0x55, 0x80000000, 0x7, 0x100, 0xabe, 0x0, 0x9, 0x208b, 0x3, 0xfffffffc, 0xe74, 0x2, 0xf, 0x5, 0x7, 0x0, 0xe, 0x3, 0x100, 0xe, 0x4, 0x8, 0xfffffffa, 0x7, 0x7fffffff, 0x7, 0x9, 0x0, 0x7, 0x418, 0x2, 0x3, 0xffffba71, 0x4, 0x80, 0x1000, 0x83e, 0x7, 0x8e8, 0x400, 0xf, 0x4, 0x8, 0x1, 0x7ff, 0xf43, 0xe, 0x7, 0x30000000, 0x5, 0xc709, 0x5e, 0x6, 0xd, 0xf, 0x80000001, 0xffff, 0x40, 0xa, 0x9, 0xdcba, 0x200, 0x4, 0x84f7, 0xfffffff7, 0x400, 0x7, 0x1, 0x8000, 0x2, 0x100, 0x9, 0x8000, 0x4, 0x0, 0x3, 0x6, 0x6, 0xd, 0x3, 0x0, 0x81, 0x2, 0x1c34c00, 0xa5, 0xffffffff, 0x8, 0x9, 0x5, 0x4, 0xc71, 0xbcc8, 0x6, 0x9, 0xa, 0x49, 0x8, 0x507, 0x10000, 0xca, 0xe3e, 0x8000, 0x5, 0x5, 0x8, 0x80000001, 0x7fffffff, 0x1, 0x3ff, 0x8a49, 0x1b, 0xffffffff, 0x8, 0x92, 0x8, 0xffff, 0x7fffffff, 0x1, 0x800, 0xd2, 0xb, 0x10000, 0xb04, 0x10001, 0x0, 0x9, 0xfff, 0x7, 0x8001, 0xff, 0xfff, 0xa, 0x2, 0xba4, 0x401, 0x8, 0x10007, 0x7, 0x3ff, 0x9, 0x7, 0x1, 0x8, 0x9, 0x0, 0x10000, 0x4c1c, 0x10000, 0x2, 0x100, 0x3, 0x4, 0x509, 0x9, 0x9, 0xb, 0x7, 0x4, 0x8, 0x4, 0x2, 0xfffffff8, 0xffffff22, 0x8, 0x0, 0x5, 0x8000, 0x4, 0xb4, 0x6, 0x3f5, 0x8, 0x800, 0x3, 0x0, 0x941, 0x8, 0x5, 0xe, 0x7ff, 0x6, 0xf0, 0x800, 0xaa000000, 0x7, 0x8001, 0x400, 0x80, 0xfffffffd, 0x401, 0x14, 0x80000001, 0x2, 0x1, 0x4, 0x5, 0x0, 0x5, 0x0, 0x7, 0x5, 0x10000, 0x7, 0xe2, 0x32, 0xf, 0x401, 0x100, 0x8, 0x0, 0x6, 0x5, 0x9, 0x6, 0xffffffff, 0x8001, 0x81, 0x2, 0x4, 0x10, 0x7fffffff, 0x9, 0x3, 0xfffffff8, 0x1c, 0x6, 0xf, 0x7, 0x800, 0x8, 0xd52, 0x5, 0x10, 0x400, 0x4, 0x90d, 0xcad, 0x7, 0x5, 0x800, 0xe, 0x3, 0x6, 0x0, 0x3, 0x6, 0xb, 0x50bb, 0x2, 0x0, 0x1, 0x8, 0x2, 0x7fffffff, 0x1, 0x7, 0x1, 0x4, 0x0, 0xc89, 0x1, 0x9, 0x1, 0x2, 0x5, 0x5, 0x7, 0x8, 0x1, 0x4, 0x8514, 0x6, 0x63a, 0xba7, 0xfffffff0, 0xc00, 0x4, 0x52d9b7db, 0x4, 0x1, 0x401, 0x2, 0x2, 0x2, 0x1, 0x3, 0x7fff, 0x5, 0x1, 0xd445, 0x3, 0x9, 0x7f, 0x1, 0x10001, 0xf2d4, 0x19f8, 0x7, 0x7, 0x5, 0x3, 0x8, 0x401, 0x7, 0x10000, 0x9, 0x6, 0x0, 0x1, 0x48, 0x0, 0xbff, 0x8001, 0x101, 0x6, 0x7, 0x4, 0x6, 0x6, 0x3, 0x6e, 0xc, 0x607, 0x8, 0x0, 0xfff, 0x29c, 0xfc, 0x77b2, 0x101, 0x3, 0x5, 0x9, 0x8001, 0x5, 0x4, 0x582, 0x12b, 0x6, 0x6, 0x1, 0x6, 0x2, 0xf3, 0x8, 0x6, 0x70, 0x101, 0x7, 0x7ff, 0xa00, 0x5e, 0xf3bb, 0x153, 0xc5e, 0xffffffff, 0x4, 0x379b, 0x7, 0x8, 0xe52, 0x1000, 0x7d, 0x8, 0x8a, 0x40, 0x2e71, 0x200, 0x0, 0x23d, 0x81, 0x7fc, 0x800, 0x5, 0x40, 0x5, 0x5, 0x15, 0x1, 0x8, 0x5, 0x7, 0xeae, 0x3, 0x0, 0x14, 0x7, 0x7fffffff, 0x4ca9, 0x1d, 0x2ac8, 0x8, 0x9, 0x8, 0x4a, 0x5, 0x80, 0x7, 0x2, 0x1, 0x65, 0xf, 0x1, 0x4459f3e1, 0x6, 0x7, 0x8, 0xebb, 0xffffffff, 0xd, 0x8, 0x3, 0xa, 0xfffffffc, 0xffffff00, 0x1, 0x1, 0x6, 0x5, 0xfb46, 0xff, 0xcc, 0x4c, 0x1, 0x7, 0x2, 0x2, 0x2, 0x1ff, 0x544b, 0x8, 0x17aa, 0x0, 0x8, 0x8001, 0x8, 0x1ff, 0xb5, 0xb3, 0x10000, 0x8, 0x2, 0xffff, 0x3, 0xffff0000, 0x4, 0x7fff, 0x7, 0x6, 0xa1, 0x0, 0x8, 0x9, 0x7f, 0x7, 0x4, 0x824, 0x9, 0x65, 0x7fff, 0xfffffee9, 0xf, 0x4, 0x2, 0x6, 0x7, 0x5, 0xfff, 0x9, 0x4, 0x2, 0x7fffffff, 0xc6, 0x2, 0xffffffff, 0xab4, 0x6, 0x7, 0x2, 0x10, 0x7fffffff, 0x8, 0x7, 0x9, 0x2, 0xb, 0x165, 0xffffffff, 0x6, 0x1, 0x2, 0x5953, 0x800, 0xfffffffa, 0x5, 0xdb6, 0x7000, 0x1, 0x5, 0xfffffffc, 0x10, 0x40, 0x4, 0x8, 0xf48d, 0x2, 0xa, 0x10001, 0x9, 0xfff, 0x1000, 0x1, 0x7, 0x3, 0x0, 0x8, 0x5, 0x10001, 0xf, 0x89c, 0x3, 0x1, 0x9a8c, 0x1, 0xfffffff8, 0x7, 0x800, 0x8, 0x6, 0x2, 0x1, 0x3, 0x6, 0x400, 0x101, 0x1, 0xffff, 0x1, 0x1, 0x100, 0x7fffffff, 0x6, 0x1000, 0x2, 0x31, 0x4, 0x5, 0x5, 0xfa, 0x6, 0x7, 0xf740, 0x8, 0x5, 0x7fffffff, 0x2, 0x81, 0x3, 0x6, 0x5, 0x4, 0x3, 0x9e, 0xffffffff, 0x6, 0x0, 0xffffffff, 0x1, 0x7ff, 0x3, 0x10, 0x7fffffff, 0xd945, 0x0, 0x3ff], 0x4, 0x400, 0x93})
setsockopt$sock_int(r5, 0x1, 0x200000010, &(0x7f0000000040)=0x9, 0x65)
splice(r3, 0x0, r4, 0x0, 0xfffd, 0x0)

14m49.4348162s ago: executing program 2 (id=692):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000002100), 0x280449c, &(0x7f0000000440)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f00000093c0)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000004200)={0x50, 0x0, r1, {0x7, 0x1f, 0x0, 0x2026012, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f00000042c0)="000000000000000000000000000000000000000000000000000000000000000090c400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000542d0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ea8286a2fba523440000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000633956a1000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000007d6ab715107fa1820000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f6ffffffffffffff0000000000000e000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e1ffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f4000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000286071480000000000b13bc1e6d970884f00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000060000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fcffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f3ffffffffffffff00", 0x2000, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006340)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x40000, 0x2)
getdents64(r2, 0x0, 0x20000)
statx(r2, &(0x7f0000000b00)='./file0\x00', 0x0, 0x400, 0x0)
syz_fuse_handle_req(r0, &(0x7f0000006380)="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", 0x2000, &(0x7f0000001140)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000001200)=ANY=[@ANYBLOB="b80000"], 0x0, 0x0, 0x0})

14m48.158122374s ago: executing program 2 (id=696):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
syz_clone3(0x0, 0x0)
socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000ac0)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000786c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000fdffffff850000002d00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xa, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
r4 = socket$inet6(0xa, 0x2, 0x0)
sendmsg$inet(r4, &(0x7f0000000340)={&(0x7f0000000100)={0x2, 0x4e22, @multicast2}, 0x10, 0x0, 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x20}, 0x4000)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r5 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r5)
ptrace$pokeuser(0x6, r5, 0x358, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$inet6(0xa, 0x3, 0xff)
dup2(r6, r6)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
recvmsg(r7, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x200105d0}], 0x1}, 0x1f00)
sendmsg$tipc(r8, &(0x7f0000000240)={0x0, 0xfffffff5, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0xfffffdef}], 0x1}, 0x0)

14m44.845185825s ago: executing program 2 (id=706):
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(0x0, 0x2, 0x141181)
r1 = dup(r0)
write$6lowpan_enable(r1, 0x0, 0x0)
fsopen(&(0x7f0000000000)='configfs\x00', 0x1)
openat$ppp(0xffffffffffffff9c, 0x0, 0xc0802, 0x0)
r2 = creat(&(0x7f0000000100)='./file0\x00', 0xd931d3864d39dcca)
write$binfmt_elf32(r2, 0x0, 0x69)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000f60000000000000000000095"], &(0x7f0000000000)='syzkaller\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='svcsock_tcp_recv_short\x00', r3, 0x0, 0x2}, 0x18)
r4 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
readv(r4, &(0x7f0000000000)=[{&(0x7f00000028c0)=""/4098, 0x1002}], 0x1)
sched_setaffinity(0x0, 0xfffffffffffffdb0, &(0x7f0000000200)=0x400000bce)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000002000)=""/102400, 0x19000)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000480)={0xffffffffffffffff, 0x0, 0x25, 0x2, @void}, 0x10)
r6 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r6, 0xaf01, 0x0)
r7 = eventfd(0xffffffff)
ioctl$VHOST_SET_LOG_FD(r6, 0x4004af07, &(0x7f0000000240)=r7)
ioctl$VHOST_SET_VRING_KICK(r6, 0x4008af20, &(0x7f0000000040)={0x1, r7})
ioctl$VHOST_SET_VRING_ADDR(r6, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/65, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r6, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74})
ioctl$VHOST_SET_MEM_TABLE(r6, 0x4008af03, &(0x7f0000000680))
ioctl$VHOST_VSOCK_SET_RUNNING(r6, 0x4004af61, &(0x7f0000000000)=0x1)

14m44.607495711s ago: executing program 0 (id=708):
ptrace(0x10, 0x1)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000980)={0x2c, 0x3e, 0x107, 0x70bd2d, 0x25dfdbfc, {0x4, 0x7c}, [@typed={0x4}, @nested={0x14, 0x1, 0x0, 0x1, [@typed={0x6, 0x6, 0x0, 0x0, @str='\x80\n'}, @typed={0x8, 0x13, 0x0, 0x0, @u32=0x7fffffff}]}]}, 0x2c}}, 0x0)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_open_dev$tty20(0xc, 0x4, 0x1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="54000000020601040000000000000000000000000c00078008000640000000010500010006000000050005000a00000005000400000000000900020073797a31000000000d000300686173683a6e657400000000bffb2648c216955eadf2594f9a8b282112759761b8fbd6cd305a1b3bfee9337edf84371ab0475b8ec7c4416bd2d503c975aaed22ca96f54d7d7cc8c089ab39a8b7102609f852ca6192e57466b36d248e5d7034551876f8823ee4395368bca72621f33d99aa1379e8e98e555c4db5eabe"], 0x54}}, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000500), 0x42, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0)
mount(&(0x7f00000000c0)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000000080)='befs\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000240)={0x0, 0x53, 0x3, 0x8, 0x2, 0xb, 0x0, 0x1}, 0x0, &(0x7f0000000280)={0x3fd, 0x252c, 0x2000000000000, 0x2, 0x0, 0x9, 0x466}, 0x0, 0x0)
r3 = socket$can_raw(0x1d, 0x3, 0x1)
sendmsg$L2TP_CMD_TUNNEL_GET(r0, &(0x7f00000005c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000200)={&(0x7f0000000540)={0x74, 0x0, 0x0, 0x70bd2c, 0x25dfdbfc, {}, [@L2TP_ATTR_IP6_DADDR={0x14, 0x20, @mcast1}, @L2TP_ATTR_IFNAME={0x14, 0x8, 'team_slave_0\x00'}, @L2TP_ATTR_IP_DADDR={0x8, 0x19, @multicast1}, @L2TP_ATTR_SEND_SEQ={0x5, 0x13, 0x2}, @L2TP_ATTR_UDP_ZERO_CSUM6_TX={0x5}, @L2TP_ATTR_UDP_ZERO_CSUM6_RX={0x5, 0x22, 0x1}, @L2TP_ATTR_IP_DADDR={0x8, 0x19, @remote}, @L2TP_ATTR_VLAN_ID={0x6, 0xe, 0x4af}, @L2TP_ATTR_PEER_SESSION_ID={0x8, 0xc, 0x3}]}, 0x74}, 0x1, 0x0, 0x0, 0x40}, 0x0)
setsockopt$CAN_RAW_FD_FRAMES(r3, 0x65, 0x5, 0x0, 0x0)
creat(&(0x7f0000000100)='./file0\x00', 0x88)
sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x3, 0x0, 0xffffffff, 0x0, 0x3, 0x400000000000fffc, 0x0, 0x0, 0xffffdffd}, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x0, 0x0, 0xffffffffffffffff}, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0x66, &(0x7f0000009a40)={&(0x7f00000003c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x101, 0x0, 0x0, {0x1, 0x0, 0x4}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x40, 0x3, 0xa, 0x801, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}, @NFTA_CHAIN_HOOK={0x14, 0x4, 0x0, 0x1, [@NFTA_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0xfffffffe}, @NFTA_HOOK_HOOKNUM={0x8, 0x1, 0x1, 0x0, 0x3}]}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x30, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN_ID={0x8, 0xb, 0x1, 0x0, 0x3}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x7}}}, 0xb8}}, 0x0)
sched_setattr(0x0, &(0x7f00000000c0)={0x38, 0x0, 0x0, 0x1}, 0x0)

14m40.824741247s ago: executing program 0 (id=712):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x0, 0x1, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r1}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x1e, 0x3, &(0x7f0000000000)=@framed, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x94)

14m40.471104991s ago: executing program 0 (id=713):
unlink(0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
rt_tgsigqueueinfo(0x0, r0, 0x1a, &(0x7f0000000440)={0x30, 0x4, 0x4})

14m40.313643622s ago: executing program 2 (id=714):
sendto$inet(0xffffffffffffffff, &(0x7f0000000100)="1ce0", 0xffeb, 0x0, &(0x7f0000001100)={0x2, 0x0, @private}, 0x10)
r0 = socket(0xa, 0x3, 0x3a)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
fsetxattr$security_capability(r2, 0x0, 0x0, 0xfffffe04, 0x1)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
mremap(&(0x7f000054e000/0x1000)=nil, 0x1000, 0x3000, 0x3, &(0x7f000022c000/0x3000)=nil)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r3 = syz_open_dev$vim2m(&(0x7f0000000000), 0x47b, 0x2)
ioctl$vim2m_VIDIOC_S_CTRL(r3, 0xc008561c, &(0x7f0000000040)={0xf0f002, 0x4})
mknod$loop(&(0x7f0000000200)='./file0\x00', 0x85c68e8ab9c77084, 0x0)
openat$sequencer2(0xffffff9c, &(0x7f0000000080), 0x143240, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
r4 = gettid()
setsockopt$MRT6_INIT(r0, 0x29, 0xc8, &(0x7f0000000340), 0x4)
setsockopt$MRT6_ADD_MIF(r0, 0x29, 0xca, &(0x7f0000000040)={0x1, 0x1, 0x40}, 0xc)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0401273, &(0x7f0000000240)={'\x00', 0x4, 0x5, 0x3b, 0x400, 0x65ad, <r5=>r4})
fcntl$lock(r1, 0x26, &(0x7f0000000280)={0x1, 0x5, 0x10001, 0x0, r5})
setsockopt$MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f00000000c0)={{0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @remote}}, {0xa, 0x0, 0x0, @empty}, 0x0, {[0x0, 0x0, 0x0, 0x0, 0x0, 0x400]}}, 0x5c)
setsockopt$MRT6_FLUSH(r0, 0x29, 0xd4, &(0x7f0000000080)=0x6, 0x4)
recvmmsg(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x40000002, 0x0)

14m39.788875971s ago: executing program 0 (id=717):
syz_open_dev$rtc(&(0x7f0000002280), 0xa, 0xe3f0a0330e04971c)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
pipe(&(0x7f00000001c0))
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
socket(0x10, 0x803, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080))
socket(0x10, 0x3, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ff0000/0x10000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff6000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
r1 = creat(&(0x7f0000000100)='./file0\x00', 0x100)
r2 = io_uring_setup(0x7, &(0x7f0000000040)={0x0, 0xc8a2, 0xc000, 0x8, 0xc1, 0x0, r1})
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
socket$nl_route(0x10, 0x3, 0x0)
openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x200, 0x10)
open$dir(&(0x7f0000000400)='./file0\x00', 0x0, 0x190)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x6, 0xf, &(0x7f0000000000)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, r3}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x1ab92b}, {0x85, 0x0, 0x0, 0x8}, {0x4}}, {{0x5, 0x0, 0x4, 0x9, 0x0, 0x1, 0x2000}}, [], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x9}, {0x85, 0x0, 0x0, 0xa4}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
pipe(&(0x7f0000000000))
io_uring_enter(r2, 0x2219, 0xcf74, 0x16, 0x0, 0x0)

14m39.083888794s ago: executing program 0 (id=721):
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000100)='blkio.bfq.empty_time\x00', 0x0, 0x0)
r0 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
r1 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x8)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
write$FUSE_DIRENTPLUS(r0, &(0x7f0000000100)=ANY=[@ANYBLOB="10000000feff53663e"], 0x10)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r2, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)=[0x7], 0x0, 0x0, 0x1}}, 0x40)

14m38.623955952s ago: executing program 0 (id=725):
fanotify_init(0x200, 0x40000)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
socket$nl_generic(0x10, 0x3, 0x10)
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0x7, 0xd, 0x5, 0x1, 0x6}, 0x0)
sendmsg$unix(r0, 0x0, 0x4000880)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, 0x0)
r2 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
r3 = syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xaee2, 0x0, 0xfffffffd, 0xb6, 0x0, r2}, &(0x7f0000000000)=<r4=>0x0, &(0x7f0000000280)=<r5=>0x0)
execve(&(0x7f0000000200)='./file0\x00', 0x0, &(0x7f0000000780))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000040)=0xfffffffc, 0x0, 0x4)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x1)
syz_io_uring_submit(r4, r5, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r3, 0x47f6, 0x0, 0x4, 0x0, 0x0)

14m24.695502948s ago: executing program 32 (id=714):
sendto$inet(0xffffffffffffffff, &(0x7f0000000100)="1ce0", 0xffeb, 0x0, &(0x7f0000001100)={0x2, 0x0, @private}, 0x10)
r0 = socket(0xa, 0x3, 0x3a)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
fsetxattr$security_capability(r2, 0x0, 0x0, 0xfffffe04, 0x1)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
mremap(&(0x7f000054e000/0x1000)=nil, 0x1000, 0x3000, 0x3, &(0x7f000022c000/0x3000)=nil)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r3 = syz_open_dev$vim2m(&(0x7f0000000000), 0x47b, 0x2)
ioctl$vim2m_VIDIOC_S_CTRL(r3, 0xc008561c, &(0x7f0000000040)={0xf0f002, 0x4})
mknod$loop(&(0x7f0000000200)='./file0\x00', 0x85c68e8ab9c77084, 0x0)
openat$sequencer2(0xffffff9c, &(0x7f0000000080), 0x143240, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
r4 = gettid()
setsockopt$MRT6_INIT(r0, 0x29, 0xc8, &(0x7f0000000340), 0x4)
setsockopt$MRT6_ADD_MIF(r0, 0x29, 0xca, &(0x7f0000000040)={0x1, 0x1, 0x40}, 0xc)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0401273, &(0x7f0000000240)={'\x00', 0x4, 0x5, 0x3b, 0x400, 0x65ad, <r5=>r4})
fcntl$lock(r1, 0x26, &(0x7f0000000280)={0x1, 0x5, 0x10001, 0x0, r5})
setsockopt$MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f00000000c0)={{0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @remote}}, {0xa, 0x0, 0x0, @empty}, 0x0, {[0x0, 0x0, 0x0, 0x0, 0x0, 0x400]}}, 0x5c)
setsockopt$MRT6_FLUSH(r0, 0x29, 0xd4, &(0x7f0000000080)=0x6, 0x4)
recvmmsg(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x40000002, 0x0)

14m22.573653364s ago: executing program 33 (id=725):
fanotify_init(0x200, 0x40000)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
socket$nl_generic(0x10, 0x3, 0x10)
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0x7, 0xd, 0x5, 0x1, 0x6}, 0x0)
sendmsg$unix(r0, 0x0, 0x4000880)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, 0x0)
r2 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
r3 = syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xaee2, 0x0, 0xfffffffd, 0xb6, 0x0, r2}, &(0x7f0000000000)=<r4=>0x0, &(0x7f0000000280)=<r5=>0x0)
execve(&(0x7f0000000200)='./file0\x00', 0x0, &(0x7f0000000780))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000040)=0xfffffffc, 0x0, 0x4)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x1)
syz_io_uring_submit(r4, r5, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r3, 0x47f6, 0x0, 0x4, 0x0, 0x0)

9m37.507134042s ago: executing program 4 (id=1266):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="05000000040000000800000005"], 0x48)
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)
execveat(0xffffffffffffff9c, &(0x7f0000000280)='./file2\x00', 0x0, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r3}, 0x10)
request_key(&(0x7f0000000000)='asymmetric\x00', &(0x7f0000001ffb)={'syz', 0x2, 0x11}, &(0x7f0000001fee)='R\brust\xe3c*sgrVex:D0', 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="a60a00000000000061118000000000001800000000000000000000000000000095"], &(0x7f0000000000)='GPL\x00'}, 0x94)

9m36.109940278s ago: executing program 4 (id=1270):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0xd, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000073"], 0x0, 0x0, 0x0, 0x0, 0x40e00, 0x10, '\x00', 0x0, @sock_ops=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x39, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020097b1af8ff00000000bfa100000000000007010000b8ffffffb7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x5, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000feffffff0000000000040000851000000200000085000000230000009500000000000000"], 0x0, 0xfffffffe, 0x0, 0x0, 0x727c45cd4283345, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000780)={&(0x7f00000007c0)='skb_copy_datagram_iovec\x00', r0}, 0x10)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000003c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmsg$inet(r2, &(0x7f0000000580)={0x0, 0x0, 0x0}, 0x0)
recvmsg$unix(r1, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffdc8}, 0x0)

9m34.791494275s ago: executing program 4 (id=1271):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x0, 0x1, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={0x0, r1}, 0x18)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x1e, 0x3, &(0x7f0000000000)=@framed, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x94)

9m34.430492184s ago: executing program 4 (id=1272):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f0000000940)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x8, 0x1}, 0x48)
fcntl$setownex(r1, 0xf, &(0x7f0000000040)={0x1, r0})

9m34.207346157s ago: executing program 4 (id=1273):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x101, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f00000001c0)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setrlimit(0x7, 0x0)

9m32.812213666s ago: executing program 4 (id=1274):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
unshare(0x78000100)
socket$inet6_udp(0xa, 0x2, 0x0)
add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xffffffffffffffff)
r3 = getpid()
r4 = syz_pidfd_open(r3, 0x0)
setns(r4, 0x24020000)
syz_clone(0xf5982500, 0x0, 0x0, 0x0, 0x0, 0x0)

9m17.330136484s ago: executing program 34 (id=1274):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
unshare(0x78000100)
socket$inet6_udp(0xa, 0x2, 0x0)
add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xffffffffffffffff)
r3 = getpid()
r4 = syz_pidfd_open(r3, 0x0)
setns(r4, 0x24020000)
syz_clone(0xf5982500, 0x0, 0x0, 0x0, 0x0, 0x0)

13.94527283s ago: executing program 1 (id=2089):
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
ppoll(&(0x7f0000000500)=[{r0, 0x13108}], 0x1, 0x0, 0x0, 0x0)
setsockopt$inet_tcp_TCP_FASTOPEN_KEY(r0, 0x6, 0x21, &(0x7f0000000040)="5766b1b827f600333b09d3748ee7d700", 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r2, 0x8983, &(0x7f0000000100)={0x0, 'erspan0\x00', {0x1}, 0x26})
read$FUSE(0xffffffffffffffff, &(0x7f0000002580)={0x2020, 0x0, 0x0, <r4=>0x0, 0x0, <r5=>0x0}, 0xfffffffffffffdde)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
keyctl$get_persistent(0x16, r4, 0xffffffffffffffff)
timer_create(0x4, &(0x7f0000000080)={0x0, 0xa, 0x4, @tid=r5}, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x1, 0x0, 0x0, 0x7ffc0002}]})
sched_getattr(0x0, 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0)
mount$cgroup(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0), 0x2010042, &(0x7f0000000000)={[{@subsystem='hugetlb'}, {@subsystem='memory'}, {@subsystem='cpuacct'}, {@xattr}]})
mount(0x0, &(0x7f00000001c0)='./file0\x00', 0x0, 0x40078, &(0x7f0000000000))
sendto$inet(0xffffffffffffffff, &(0x7f0000000040)="e5", 0xffffffe4, 0x0, 0x0, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x11, &(0x7f00000000c0)=0x1, 0x4)

12.083290035s ago: executing program 1 (id=2090):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x14, 0x30, 0x1, 0x70bd2b}, 0x14}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
socketpair(0x1e, 0x1, 0x200, 0x0)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
setrlimit(0x4, &(0x7f0000000180)={0x80, 0xc7})
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
fsmount(0xffffffffffffffff, 0x0, 0x70)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$kcm(0x29, 0x2, 0x0)
r4 = memfd_create(&(0x7f0000000000)='e\xf4E\x88-\x00', 0x0)
pwritev(r4, &(0x7f00000003c0)=[{&(0x7f0000000480)}, {&(0x7f0000000280)="111ec20239e272abb2cedf053d666ab41bdf031bdcaca63b9856f15d16d909ca3d83d93e22b370e9df36dc459b8791e09e4a38e1f0f3c7de180ffe20ac20e80f97e9e54415f6ff5999b3c974ec962a60", 0x50}], 0x2, 0x4000001, 0x0)
sendfile(r3, r4, 0x0, 0x8000fb00)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r5, 0x0, 0x0, 0x20000841, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @empty}, 0x1c)

9.697417246s ago: executing program 1 (id=2092):
prctl$PR_GET_TSC(0x43, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
ioprio_set$pid(0x2, 0x0, 0x0)
r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0x282, 0x0)
sendfile(r3, r3, 0x0, 0x40008)

8.830635445s ago: executing program 5 (id=730):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100))
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000004a80)={0x73622a85, 0x100, 0x1})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000004c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000fc0)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, &(0x7f0000000300)={@flat=@weak_binder={0x77622a85, 0x100a, 0x8000000000}, @flat=@weak_binder={0x77622a85, 0x1100, 0x3}}, 0x0}}], 0x0, 0x0, 0x0})
pselect6(0x40, &(0x7f0000000280)={0x9, 0x3, 0x0, 0x1, 0x800}, 0x0, 0x0, 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x50, 0x0, &(0x7f0000000580)="b3185d7bb56f70f003360fa8bf71ac3086aedebf6fff904f92849a7a07395ee7f0e4cb1d78001c08a0ab73ffcf5ad07693727980eea946e6cba1723e81bfa5c3688803c8a124dcb27df7938e7ddfdd52"})
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000004a40)={0x44, 0x0, &(0x7f0000002880)=[@transaction={0x40406301, {0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0})

8.442009476s ago: executing program 5 (id=2095):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$EVIOCGRAB(0xffffffffffffffff, 0x40044590, &(0x7f00000001c0)=0x2)
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
openat$vimc1(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000200)={'\x00', 0x401, 0x8, 0x1, 0x6, 0x5})
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000003840), 0xffffffffffffffff)
socket$can_bcm(0x1d, 0x2, 0x2)
sendmsg$NL80211_CMD_REGISTER_BEACONS(0xffffffffffffffff, &(0x7f0000003900)={0x0, 0x0, &(0x7f00000038c0)={&(0x7f0000001500)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010007bd7000fddbdf2555000000080001006400000008", @ANYRES32, @ANYBLOB="0c0099020b00000900000000"], 0x30}, 0x1, 0x0, 0x0, 0x40000a0}, 0x810)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x1, 0x0, 0x0, 0x2)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)

8.440677475s ago: executing program 3 (id=2096):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
socket$inet_sctp(0x2, 0x5, 0x84)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x2, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1f, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffff97, 0x10, &(0x7f00000000c0), 0xfffffffffffffd27}, 0x48)
syz_usb_connect(0x0, 0x3f, 0x0, 0x0)

6.541053254s ago: executing program 1 (id=2097):
socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000300)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_io_uring_setup(0x837, &(0x7f0000000540)={0x0, 0x2b94, 0x80, 0x7, 0x3cf}, &(0x7f0000000040)=<r3=>0x0, &(0x7f0000000000)=<r4=>0x0)
ioctl$SIOCGSTAMPNS(r0, 0x8907, &(0x7f0000000140))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f0000000100)=@IORING_OP_TIMEOUT={0xb, 0x41, 0x0, 0x0, 0x9, &(0x7f00000000c0), 0x1, 0x4})
open(0x0, 0x200001, 0x104)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x44, 0x0, 0x0)
io_uring_enter(r2, 0x3516, 0x0, 0x0, 0x0, 0x0)

6.525432197s ago: executing program 5 (id=2098):
socket$nl_xfrm(0x10, 0x3, 0x6)
capget(&(0x7f0000000240)={0x20080522}, &(0x7f0000000300)={0x9, 0x8, 0xffff, 0xb, 0x5, 0x4})
sched_setaffinity(0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x2000)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27fffff, 0x4002011, r0, 0x3000)
write$binfmt_format(0xffffffffffffffff, &(0x7f0000000100)='-1\x00', 0x2)

6.521838381s ago: executing program 3 (id=2099):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x14, 0x30, 0x1, 0x70bd2b}, 0x14}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
socketpair(0x1e, 0x1, 0x200, 0x0)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
setrlimit(0x4, &(0x7f0000000180)={0x80, 0xc7})
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
fsmount(0xffffffffffffffff, 0x0, 0x70)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, 0x0, 0x0, 0x2, 0x0)
r3 = socket$kcm(0x29, 0x2, 0x0)
r4 = memfd_create(&(0x7f0000000000)='e\xf4E\x88-\x00', 0x0)
pwritev(r4, &(0x7f00000003c0)=[{&(0x7f0000000480)}, {&(0x7f0000000280)="111ec20239e272abb2cedf053d666ab41bdf031bdcaca63b9856f15d16d909ca3d83d93e22b370e9df36dc459b8791e09e4a38e1f0f3c7de180ffe20ac20e80f97e9e54415f6ff5999b3c974ec962a60", 0x50}], 0x2, 0x4000001, 0x0)
sendfile(r3, r4, 0x0, 0x8000fb00)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r5, 0x0, 0x0, 0x20000841, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @empty}, 0x1c)

5.505446679s ago: executing program 3 (id=2100):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000001080)={{0x12, 0x1, 0x0, 0x78, 0x82, 0xb7, 0x40, 0x2c42, 0x1709, 0xcab7, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0xbf, 0x60, 0xe7}}]}}]}}, 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000980)={0x84, &(0x7f0000000440)={0x40, 0x18, 0x1, "8e"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$uac1(r0, &(0x7f0000000ac0)={0x14, 0x0, &(0x7f0000000300)={0x0, 0x3, 0x2, @string={0x2}}}, 0x0)

3.723666576s ago: executing program 5 (id=2101):
fspick(0xffffffffffffffff, 0x0, 0x710acacef034d5b6)
r0 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000080)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffc)
request_key(&(0x7f0000000040)='asymmetric\x00', &(0x7f0000001ffb)={'syz', 0x3}, &(0x7f0000001fee)='R\x10rust\xe3cusg\x91\xdedH\xe5+\xf0', r0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @broadcast})
creat(&(0x7f00000002c0)='./file0\x00', 0x51)
pipe2$9p(&(0x7f0000001900)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000500)=ANY=[@ANYBLOB="1500000065ffff048000000800395032303030"], 0x15)
r3 = dup(r2)
syz_usb_connect$hid(0x2, 0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000440)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_readahead}], [{@euid_lt}], 0x6b}})
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=ANY=[@ANYBLOB="54000000090601080000000000000000050000000900020073797a310000000005000100070000002c000780060004404e21000005000700e30000000c00018008000140850101010c00028008000140"], 0x54}, 0x1, 0x0, 0x0, 0x10004893}, 0x80)

3.515071936s ago: executing program 1 (id=2102):
syslog(0x2, &(0x7f0000001740), 0x0)
socket$netlink(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x20000000}, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000800)='./file0\x00', 0x8042, 0x80)
fallocate(r3, 0x0, 0x1000000, 0x3)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27ffff7, 0x4012011, r3, 0x0)
r4 = fanotify_init(0x20, 0x101000)
fanotify_mark(r4, 0x1, 0x48000013, r2, 0x0)
syz_usb_connect$cdc_ncm(0x4, 0x0, 0x0, 0x0)

3.46652547s ago: executing program 3 (id=2103):
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0xd, 0x4, &(0x7f00000006c0)=ANY=[@ANYBLOB="18000000000000000000000000000000850000"], &(0x7f0000000940)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

3.359643731s ago: executing program 3 (id=2104):
socket(0x10, 0x3, 0x0)
openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080))
openat$binder_debug(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x2b38094, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r0 = open(&(0x7f0000000000)='.\x00', 0x800000, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/file0\x00', 0x1c0)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0xa, 0x4, &(0x7f0000000180)=ANY=[@ANYRES32=r0], 0x0, 0x9, 0x0, 0x0, 0x0, 0x50, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff, r0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94)
ioctl$AUTOFS_IOC_PROTOSUBVER(r0, 0x40049366, &(0x7f0000000180))

1.497414328s ago: executing program 3 (id=2105):
prctl$PR_GET_TSC(0x43, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
ioprio_set$pid(0x2, 0x0, 0x0)
r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0x282, 0x0)
sendfile(r3, r3, 0x0, 0x40008)

1.175634529s ago: executing program 5 (id=2106):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000003c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
r1 = eventfd(0x401)
ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000240)=r1)
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x0, r1})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000380)={0x1, 0x0, 0x0, 0x0, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000780)={0x0, 0x1, 0x0, &(0x7f0000000700)=""/88, 0x0})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000400))
r2 = syz_io_uring_setup(0x239, &(0x7f0000000480)={0x0, 0x1c2a, 0x10100}, &(0x7f0000000440)=<r3=>0x0, &(0x7f00000001c0)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r2, 0x2ded, 0xef92, 0x0, 0x0, 0x0)
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000000)=0x20000)

727.655566ms ago: executing program 5 (id=2107):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$EVIOCGRAB(0xffffffffffffffff, 0x40044590, &(0x7f00000001c0)=0x2)
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
openat$vimc1(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000200)={'\x00', 0x401, 0x8, 0x1, 0x6, 0x5})
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000003840), 0xffffffffffffffff)
socket$can_bcm(0x1d, 0x2, 0x2)
sendmsg$NL80211_CMD_REGISTER_BEACONS(0xffffffffffffffff, &(0x7f0000003900)={0x0, 0x0, &(0x7f00000038c0)={&(0x7f0000001500)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010007bd7000fddbdf2555000000080001006400000008", @ANYRES32, @ANYBLOB="0c0099020b00000900000000"], 0x30}, 0x1, 0x0, 0x0, 0x40000a0}, 0x810)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x1, 0x0, 0x0, 0x2)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)

0s ago: executing program 1 (id=2108):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0100000000000000000003000000400001802c0004001400010002000000ac14140f000000000000000014000200116b5865ffffffff00000000000000000d0001007564703a73"], 0x54}}, 0x0)

kernel console output (not intermixed with test programs):

7791][T10883] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  767.160579][T10864] batman_adv: batadv0: Adding interface: batadv_slave_1
[  767.160602][T10864] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  767.160631][T10864] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  767.240967][T10847] hsr_slave_0: entered promiscuous mode
[  767.242322][T10847] hsr_slave_1: entered promiscuous mode
[  767.298649][T10847] debugfs: 'hsr0' already exists in 'hsr'
[  767.298682][T10847] Cannot create hsr debugfs directory
[  767.512883][T11079] netlink: 240 bytes leftover after parsing attributes in process `syz.1.1433'.
[  768.814714][T10864] hsr_slave_0: entered promiscuous mode
[  768.816386][T10864] hsr_slave_1: entered promiscuous mode
[  768.817527][T10864] debugfs: 'hsr0' already exists in 'hsr'
[  768.817554][T10864] Cannot create hsr debugfs directory
[  768.851760][T10883] hsr_slave_0: entered promiscuous mode
[  768.859241][T10883] hsr_slave_1: entered promiscuous mode
[  768.869343][T10883] debugfs: 'hsr0' already exists in 'hsr'
[  768.869373][T10883] Cannot create hsr debugfs directory
[  774.656566][T11105] netlink: 'syz.1.1441': attribute type 39 has an invalid length.
[  774.716840][T11107] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  774.716877][T11107] overlayfs: missing 'lowerdir'
[  775.006334][T11114] futex_wake_op: syz.3.1443 tries to shift op by -1; fix this program
[  778.627716][T10847] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  778.989365][T10847] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  779.056654][T10847] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  779.415189][T10847] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  782.465029][ T3561] bridge_slave_1: left allmulticast mode
[  782.465066][ T3561] bridge_slave_1: left promiscuous mode
[  782.465396][ T3561] bridge0: port 2(bridge_slave_1) entered disabled state
[  782.574675][ T3561] bridge_slave_0: left allmulticast mode
[  782.574710][ T3561] bridge_slave_0: left promiscuous mode
[  782.575025][ T3561] bridge0: port 1(bridge_slave_0) entered disabled state
[  782.678001][ T3561] bridge_slave_1: left allmulticast mode
[  782.678040][ T3561] bridge_slave_1: left promiscuous mode
[  782.678338][ T3561] bridge0: port 2(bridge_slave_1) entered disabled state
[  782.765231][ T3561] bridge_slave_0: left allmulticast mode
[  782.765271][ T3561] bridge_slave_0: left promiscuous mode
[  782.765576][ T3561] bridge0: port 1(bridge_slave_0) entered disabled state
[  783.384909][   T37] audit: type=1107 audit(1757951702.150:596): pid=11162 uid=0 auid=4294967295 ses=4294967295 subj=_ msg=''
[  783.427560][ T3561] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  783.528217][T11168] netlink: 'syz.3.1453': attribute type 4 has an invalid length.
[  784.086076][T11167] overlayfs: failed to clone lowerpath
[  784.113923][ T3561] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  784.321124][ T3561] bond0 (unregistering): Released all slaves
[  784.916037][ T5155] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  784.943204][ T5155] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  784.963087][ T5155] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  784.981628][ T5155] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  784.991587][ T5155] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  785.436260][ T3561] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  785.545889][ T5849] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  785.558129][ T5849] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  785.579615][ T5849] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  785.585556][ T5849] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  785.586882][ T5849] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  785.598546][ T3561] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  785.722813][ T3561] bond0 (unregistering): Released all slaves
[  786.622973][ T3561] hsr_slave_0: left promiscuous mode
[  786.643682][ T3561] hsr_slave_1: left promiscuous mode
[  786.645029][ T3561] batman_adv: batadv0: Removing interface: batadv_slave_0
[  786.705559][ T3561] batman_adv: batadv0: Removing interface: batadv_slave_1
[  786.862716][ T3561] hsr_slave_0: left promiscuous mode
[  786.883019][ T3561] hsr_slave_1: left promiscuous mode
[  786.884230][ T3561] batman_adv: batadv0: Removing interface: batadv_slave_0
[  786.933945][ T3561] batman_adv: batadv0: Removing interface: batadv_slave_1
[  787.251612][ T5849] Bluetooth: hci2: command tx timeout
[  787.642742][ T5849] Bluetooth: hci3: command tx timeout
[  788.413643][ T3561] team0 (unregistering): Port device team_slave_1 removed
[  788.605522][ T3561] team0 (unregistering): Port device team_slave_0 removed
[  788.688018][ T5155] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  788.733982][ T5155] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  788.737453][ T5155] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  788.745733][ T5155] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  788.747323][ T5155] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  789.322695][ T5849] Bluetooth: hci2: command tx timeout
[  789.722815][ T5849] Bluetooth: hci3: command tx timeout
[  790.083995][ T3561] team0 (unregistering): Port device team_slave_1 removed
[  790.233668][ T3561] team0 (unregistering): Port device team_slave_0 removed
[  790.842967][ T5849] Bluetooth: hci5: command tx timeout
[  791.402716][ T5849] Bluetooth: hci2: command tx timeout
[  791.803052][ T5849] Bluetooth: hci3: command tx timeout
[  792.927856][ T5849] Bluetooth: hci5: command tx timeout
[  793.982647][ T5849] Bluetooth: hci2: command tx timeout
[  794.935970][ T5849] Bluetooth: hci3: command tx timeout
[  795.002860][ T5849] Bluetooth: hci5: command tx timeout
[  797.501876][ T5849] Bluetooth: hci5: command tx timeout
[  799.455299][T11175] chnl_net:caif_netlink_parms(): no params data found
[  799.690369][T11177] chnl_net:caif_netlink_parms(): no params data found
[  800.221755][T11192] chnl_net:caif_netlink_parms(): no params data found
[  801.575803][T11175] bridge0: port 1(bridge_slave_0) entered blocking state
[  801.575972][T11175] bridge0: port 1(bridge_slave_0) entered disabled state
[  801.576129][T11175] bridge_slave_0: entered allmulticast mode
[  801.632269][T11175] bridge_slave_0: entered promiscuous mode
[  801.925877][T11175] bridge0: port 2(bridge_slave_1) entered blocking state
[  801.926049][T11175] bridge0: port 2(bridge_slave_1) entered disabled state
[  801.926352][T11175] bridge_slave_1: entered allmulticast mode
[  801.929860][T11175] bridge_slave_1: entered promiscuous mode
[  802.306393][T11177] bridge0: port 1(bridge_slave_0) entered blocking state
[  802.306482][T11177] bridge0: port 1(bridge_slave_0) entered disabled state
[  802.306687][T11177] bridge_slave_0: entered allmulticast mode
[  802.322668][T11177] bridge_slave_0: entered promiscuous mode
[  805.708441][T11265] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1469'.
[  805.832832][T11268] vim2m vim2m.0: vidioc_s_fmt queue busy
[  805.894465][ T5849] Bluetooth: hci1: unexpected event for opcode 0x2005
[  805.894620][T11177] bridge0: port 2(bridge_slave_1) entered blocking state
[  805.894810][T11177] bridge0: port 2(bridge_slave_1) entered disabled state
[  805.895072][T11177] bridge_slave_1: entered allmulticast mode
[  805.898448][T11177] bridge_slave_1: entered promiscuous mode
[  806.534492][T11192] bridge0: port 1(bridge_slave_0) entered blocking state
[  806.534659][T11192] bridge0: port 1(bridge_slave_0) entered disabled state
[  806.534899][T11192] bridge_slave_0: entered allmulticast mode
[  806.538139][T11192] bridge_slave_0: entered promiscuous mode
[  806.580163][T11175] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  806.935674][T11192] bridge0: port 2(bridge_slave_1) entered blocking state
[  806.935837][T11192] bridge0: port 2(bridge_slave_1) entered disabled state
[  806.936093][T11192] bridge_slave_1: entered allmulticast mode
[  806.940548][T11192] bridge_slave_1: entered promiscuous mode
[  806.986323][T11175] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  807.000286][T11177] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  807.273027][T11177] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  807.901836][T11280] RDS: rds_bind could not find a transport for ::ffff:172.20.20.170, load rds_tcp or rds_rdma?
[  808.081205][T11285] overlayfs: failed to clone upperpath
[  808.345934][T11282] bridge0: entered promiscuous mode
[  808.346018][T11282] macsec0: entered promiscuous mode
[  808.364792][T11282] bridge0: port 3(macsec0) entered blocking state
[  808.365313][T11282] bridge0: port 3(macsec0) entered disabled state
[  808.365485][T11282] macsec0: entered allmulticast mode
[  808.365496][T11282] bridge0: entered allmulticast mode
[  808.424277][T11282] macsec0: left allmulticast mode
[  808.424295][T11282] bridge0: left allmulticast mode
[  808.457168][T11282] bridge0: left promiscuous mode
[  808.935993][T11192] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  809.062697][ T1323] ieee802154 phy0 wpan0: encryption failed: -22
[  809.062752][ T1323] ieee802154 phy1 wpan1: encryption failed: -22
[  809.246206][T11175] team0: Port device team_slave_0 added
[  809.263106][T11192] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  809.317597][T11177] team0: Port device team_slave_0 added
[  809.349864][T11175] team0: Port device team_slave_1 added
[  814.126509][T11177] team0: Port device team_slave_1 added
[  814.170195][   T37] audit: type=1326 audit(1757951732.950:597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11291 comm="syz.3.1479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3be230eba9 code=0x7ffc0000
[  814.170886][   T37] audit: type=1326 audit(1757951732.950:598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11291 comm="syz.3.1479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f3be230eba9 code=0x7ffc0000
[  814.171414][   T37] audit: type=1326 audit(1757951732.950:599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11291 comm="syz.3.1479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3be230eba9 code=0x7ffc0000
[  814.171741][   T37] audit: type=1326 audit(1757951732.950:600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11291 comm="syz.3.1479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3be230eba9 code=0x7ffc0000
[  814.172453][   T37] audit: type=1326 audit(1757951732.950:601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11291 comm="syz.3.1479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=226 compat=0 ip=0x7f3be230eba9 code=0x7ffc0000
[  814.173965][   T37] audit: type=1326 audit(1757951732.960:602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11291 comm="syz.3.1479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3be230eba9 code=0x7ffc0000
[  814.174279][   T37] audit: type=1326 audit(1757951732.960:603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11291 comm="syz.3.1479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3be230eba9 code=0x7ffc0000
[  815.007729][T11192] team0: Port device team_slave_0 added
[  815.189773][T11175] batman_adv: batadv0: Adding interface: batadv_slave_0
[  815.189792][T11175] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  815.190326][T11175] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  815.258253][T11192] team0: Port device team_slave_1 added
[  815.261765][T11177] batman_adv: batadv0: Adding interface: batadv_slave_0
[  815.261780][T11177] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  815.261805][T11177] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  815.267491][T11175] batman_adv: batadv0: Adding interface: batadv_slave_1
[  815.267505][T11175] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  815.267530][T11175] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  815.845292][T11177] batman_adv: batadv0: Adding interface: batadv_slave_1
[  815.845311][T11177] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  815.845341][T11177] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  817.135818][T11192] batman_adv: batadv0: Adding interface: batadv_slave_0
[  817.135848][T11192] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  817.135878][T11192] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  817.495788][T11192] batman_adv: batadv0: Adding interface: batadv_slave_1
[  817.495802][T11192] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  817.495818][T11192] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  818.406382][T11175] hsr_slave_0: entered promiscuous mode
[  818.408453][T11175] hsr_slave_1: entered promiscuous mode
[  818.427373][T11175] debugfs: 'hsr0' already exists in 'hsr'
[  818.427394][T11175] Cannot create hsr debugfs directory
[  818.495251][T11177] hsr_slave_0: entered promiscuous mode
[  818.514259][T11177] hsr_slave_1: entered promiscuous mode
[  818.515458][T11177] debugfs: 'hsr0' already exists in 'hsr'
[  818.515487][T11177] Cannot create hsr debugfs directory
[  819.363015][T11192] hsr_slave_0: entered promiscuous mode
[  819.364688][T11192] hsr_slave_1: entered promiscuous mode
[  819.365767][T11192] debugfs: 'hsr0' already exists in 'hsr'
[  819.365794][T11192] Cannot create hsr debugfs directory
[  829.105667][T11395] ptrace attach of "./syz-executor exec"[5836] was attempted by "                                                                ��\x0c��H;�'���Sde/Ȑ|�zP��иW��\x0b�P�<�I7�{���Wr�עӇam�L5��{�޶-ڨ���ظ�����E�f�YS�7�?�V�s��\x0b�M�������`���g��ر/◒��U�C�ΐ�OG�Dn��\x07��w��m}O��q�����p�]��K|I(����9�/�k��Y_�֤vqy����rƲ�.+/�n�y�]�6�B\x5c
*���Lo��� �\x0a��B�\x0d��An���\x0bptQU�olL��obB��M�����ȹ.��T3#(D�\x1b�����?-�M��M�\x0d�{�X���Lhl1G�J(��\x0a����\x07�b\x0cf��\x5c�L�e#�y�w�O%�0��,��zǂ�r�\x5cH�\x22�@)E�lĪo��=��0}�|�����m ��~�M��UK\x0b�QoDU1h$�t�Qf�\x0b�;\x0bvN�T/��rP��x0m�؇dG>�t5Q�I����0k��p��;����t�>?7~��՞��8�)>�\x0a.F�v\x5c0CP�{�\x07ԭ4OT)���%��DkfCkF 籥�;��m\x0c�v�\x0cTʪz5��m֢����v����ī'c���^ت�g_\x0bƍ��8�)c,�(q��e�B���㑻SPt4�o� 
�I�HwL#��@mU�p�E�^a��gh~d�_��9\x07r|��GJj+&ҽk(�\x07���rn�E�4�(����#ë�\x0b Y�βB��\x0aЦ&��R��`�?��L1t����իw��.M�=3�|G����s�m�g�4`|\x22{б�춋���1�[{��ȯw/B�_g�6-�qyk*�o��\x0d\x5cc8����\x5
[  832.959571][ T3561] bridge_slave_1: left allmulticast mode
[  832.959608][ T3561] bridge_slave_1: left promiscuous mode
[  832.961202][ T3561] bridge0: port 2(bridge_slave_1) entered disabled state
[  833.384665][ T3561] bridge_slave_0: left allmulticast mode
[  833.384704][ T3561] bridge_slave_0: left promiscuous mode
[  833.385040][ T3561] bridge0: port 1(bridge_slave_0) entered disabled state
[  834.267368][ T3561] bridge_slave_1: left allmulticast mode
[  834.267395][ T3561] bridge_slave_1: left promiscuous mode
[  834.267589][ T3561] bridge0: port 2(bridge_slave_1) entered disabled state
[  834.334760][ T3561] bridge_slave_0: left allmulticast mode
[  834.334798][ T3561] bridge_slave_0: left promiscuous mode
[  834.335144][ T3561] bridge0: port 1(bridge_slave_0) entered disabled state
[  834.407800][ T3561] bridge_slave_1: left allmulticast mode
[  834.407838][ T3561] bridge_slave_1: left promiscuous mode
[  834.408123][ T3561] bridge0: port 2(bridge_slave_1) entered disabled state
[  834.474761][ T3561] bridge_slave_0: left allmulticast mode
[  834.474802][ T3561] bridge_slave_0: left promiscuous mode
[  834.475114][ T3561] bridge0: port 1(bridge_slave_0) entered disabled state
[  834.764997][ T3561] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  834.843617][ T3561] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  834.895634][ T3561] bond0 (unregistering): Released all slaves
[  835.153695][ T3561] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  835.233744][ T3561] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  835.296878][ T3561] bond0 (unregistering): Released all slaves
[  835.573848][ T3561] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  835.667553][ T3561] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  835.737183][ T3561] bond0 (unregistering): Released all slaves
[  838.433108][ T3561] hsr_slave_0: left promiscuous mode
[  838.472814][ T3561] hsr_slave_1: left promiscuous mode
[  838.474027][ T3561] batman_adv: batadv0: Removing interface: batadv_slave_0
[  838.524727][ T3561] batman_adv: batadv0: Removing interface: batadv_slave_1
[  839.062873][ T3561] hsr_slave_0: left promiscuous mode
[  839.083028][ T3561] hsr_slave_1: left promiscuous mode
[  839.084350][ T3561] batman_adv: batadv0: Removing interface: batadv_slave_0
[  839.124078][ T3561] batman_adv: batadv0: Removing interface: batadv_slave_1
[  839.332799][ T3561] hsr_slave_0: left promiscuous mode
[  839.355319][ T3561] hsr_slave_1: left promiscuous mode
[  839.356496][ T3561] batman_adv: batadv0: Removing interface: batadv_slave_0
[  839.404508][ T3561] batman_adv: batadv0: Removing interface: batadv_slave_1
[  840.434545][ T3561] team0 (unregistering): Port device team_slave_1 removed
[  840.608899][ T3561] team0 (unregistering): Port device team_slave_0 removed
[  843.076952][ T3561] team0 (unregistering): Port device team_slave_1 removed
[  843.223732][ T3561] team0 (unregistering): Port device team_slave_0 removed
[  844.925181][ T5155] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  844.929614][ T5155] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  844.951667][ T5155] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  844.967423][ T5155] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  844.993661][ T5155] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  845.084974][ T3561] team0 (unregistering): Port device team_slave_1 removed
[  845.105254][ T5849] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  845.114048][ T5849] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  845.115689][ T5849] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  845.117037][ T5849] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  845.118363][ T5849] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  845.314835][ T3561] team0 (unregistering): Port device team_slave_0 removed
[  847.114353][ T5155] Bluetooth: hci4: command tx timeout
[  847.243903][ T5155] Bluetooth: hci6: command tx timeout
[  847.277497][T11506] bond2: (slave macvlan5): Error -98 calling set_mac_address
[  849.167424][ T5155] Bluetooth: hci4: command tx timeout
[  849.333300][ T5155] Bluetooth: hci6: command tx timeout
[  849.934890][T11492] chnl_net:caif_netlink_parms(): no params data found
[  851.240936][ T5849] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  851.243471][T10064] Bluetooth: hci4: command tx timeout
[  851.402984][ T5849] Bluetooth: hci6: command tx timeout
[  851.428364][ T5849] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  851.442429][ T5849] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  851.448229][ T5849] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  851.453916][ T5849] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  852.500555][T11495] chnl_net:caif_netlink_parms(): no params data found
[  852.897288][T11576] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(13)
[  852.897320][T11576] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  852.925366][T11576] vhci_hcd vhci_hcd.0: Device attached
[  853.162606][T11578] usbip_core: unknown command
[  853.162622][T11578] vhci_hcd: unknown pdu 0
[  853.162633][T11578] usbip_core: unknown command
[  853.187030][T11305] vhci_hcd: stop threads
[  853.187039][T11305] vhci_hcd: release socket
[  853.205617][T11305] vhci_hcd: disconnect device
[  853.322733][ T5849] Bluetooth: hci4: command tx timeout
[  853.513406][ T5849] Bluetooth: hci6: command tx timeout
[  853.562886][ T5849] Bluetooth: hci2: command tx timeout
[  853.734392][T11492] bridge0: port 1(bridge_slave_0) entered blocking state
[  853.734570][T11492] bridge0: port 1(bridge_slave_0) entered disabled state
[  853.734799][T11492] bridge_slave_0: entered allmulticast mode
[  853.787411][T11492] bridge_slave_0: entered promiscuous mode
[  853.845556][T11492] bridge0: port 2(bridge_slave_1) entered blocking state
[  853.845737][T11492] bridge0: port 2(bridge_slave_1) entered disabled state
[  853.847212][T11492] bridge_slave_1: entered allmulticast mode
[  853.863132][T11492] bridge_slave_1: entered promiscuous mode
[  855.179946][T11597] overlayfs: failed to clone upperpath
[  855.290594][T11492] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  855.642814][ T5849] Bluetooth: hci2: command tx timeout
[  855.673858][T11492] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  856.438012][T11495] bridge0: port 1(bridge_slave_0) entered blocking state
[  856.438206][T11495] bridge0: port 1(bridge_slave_0) entered disabled state
[  856.438443][T11495] bridge_slave_0: entered allmulticast mode
[  856.441959][T11495] bridge_slave_0: entered promiscuous mode
[  856.696526][T11495] bridge0: port 2(bridge_slave_1) entered blocking state
[  856.696652][T11495] bridge0: port 2(bridge_slave_1) entered disabled state
[  856.696804][T11495] bridge_slave_1: entered allmulticast mode
[  856.699296][T11495] bridge_slave_1: entered promiscuous mode
[  856.772721][T11492] team0: Port device team_slave_0 added
[  856.842766][T10376] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  857.003020][T10376] usb 4-1: Using ep0 maxpacket: 16
[  857.009436][T10376] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x4 has invalid wMaxPacketSize 0
[  857.009467][T10376] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 0
[  857.009491][T10376] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  857.009513][T10376] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 0
[  857.009578][T11492] team0: Port device team_slave_1 added
[  857.019058][T10376] usb 4-1: New USB device found, idVendor=04d8, idProduct=0a30, bcdDevice=ce.47
[  857.019086][T10376] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  857.019105][T10376] usb 4-1: Product: syz
[  857.019117][T10376] usb 4-1: Manufacturer: syz
[  857.019130][T10376] usb 4-1: SerialNumber: syz
[  857.149659][T10376] usb 4-1: config 0 descriptor??
[  857.722762][ T5849] Bluetooth: hci2: command tx timeout
[  859.802745][ T5849] Bluetooth: hci2: command tx timeout
[  860.338034][T11652] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -12
[  860.338083][T11652] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -12
[  860.338104][T11652] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[  860.545510][T10376] mcba_usb 4-1:0.0 can0: couldn't setup read URBs
[  860.545537][T10376] mcba_usb 4-1:0.0 can0: couldn't start device: -90
[  860.576959][T11495] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  862.345317][T11656] bond1: (slave macvlan4): Error -98 calling set_mac_address
[  863.886333][T11495] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  863.920596][T10376] mcba_usb 4-1:0.0: probe with driver mcba_usb failed with error -90
[  863.978853][T11492] batman_adv: batadv0: Adding interface: batadv_slave_0
[  863.978872][T11492] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  863.978900][T11492] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  864.063045][T10376] usb 4-1: USB disconnect, device number 3
[  864.230470][T11492] batman_adv: batadv0: Adding interface: batadv_slave_1
[  864.230484][T11492] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  864.230501][T11492] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  864.739056][T11495] team0: Port device team_slave_0 added
[  864.750682][T11495] team0: Port device team_slave_1 added
[  866.229806][T11492] hsr_slave_0: entered promiscuous mode
[  867.372983][T11492] hsr_slave_1: entered promiscuous mode
[  867.374098][T11492] debugfs: 'hsr0' already exists in 'hsr'
[  867.374125][T11492] Cannot create hsr debugfs directory
[  868.158787][T11495] batman_adv: batadv0: Adding interface: batadv_slave_0
[  868.158806][T11495] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  868.158837][T11495] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  868.475972][T11495] batman_adv: batadv0: Adding interface: batadv_slave_1
[  868.475993][T11495] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  868.476024][T11495] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  868.569134][T11695] bond1: (slave macvlan4): Error -98 calling set_mac_address
[  868.639775][ T3561] bridge_slave_1: left allmulticast mode
[  868.639812][ T3561] bridge_slave_1: left promiscuous mode
[  868.640092][ T3561] bridge0: port 2(bridge_slave_1) entered disabled state
[  868.693258][T10376] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  868.695245][ T3561] bridge_slave_0: left allmulticast mode
[  868.695279][ T3561] bridge_slave_0: left promiscuous mode
[  868.695629][ T3561] bridge0: port 1(bridge_slave_0) entered disabled state
[  868.760248][ T3561] bridge_slave_1: left allmulticast mode
[  868.760274][ T3561] bridge_slave_1: left promiscuous mode
[  868.760444][ T3561] bridge0: port 2(bridge_slave_1) entered disabled state
[  868.845077][ T3561] bridge_slave_0: left allmulticast mode
[  868.845115][ T3561] bridge_slave_0: left promiscuous mode
[  868.845451][ T3561] bridge0: port 1(bridge_slave_0) entered disabled state
[  868.877540][T10376] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x6 has invalid maxpacket 1023
[  868.877569][T10376] usb 4-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xBA, changing to 0x8A
[  868.877583][T10376] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8A has invalid wMaxPacketSize 0
[  868.877595][T10376] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8A has invalid maxpacket 0
[  868.879953][T10376] usb 4-1: New USB device found, idVendor=2294, idProduct=425b, bcdDevice=a2.10
[  868.879970][T10376] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  868.879981][T10376] usb 4-1: Product: syz
[  868.879990][T10376] usb 4-1: Manufacturer: syz
[  868.879997][T10376] usb 4-1: SerialNumber: syz
[  868.955928][T10376] usb 4-1: config 0 descriptor??
[  868.956722][T11697] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  868.980886][T10376] usb 4-1: ucan: probing device on interface #0
[  868.980913][T10376] usb 4-1: ucan: invalid in_ep MaxPacketSize
[  868.980927][T10376] usb 4-1: ucan: probe failed; try to update the device firmware
[  869.073673][ T3561] bridge_slave_1: left allmulticast mode
[  869.073712][ T3561] bridge_slave_1: left promiscuous mode
[  869.074006][ T3561] bridge0: port 2(bridge_slave_1) entered disabled state
[  869.156611][ T3561] bridge_slave_0: left allmulticast mode
[  869.156642][ T3561] bridge_slave_0: left promiscuous mode
[  869.156828][ T3561] bridge0: port 1(bridge_slave_0) entered disabled state
[  869.244368][  T993] usb 4-1: USB disconnect, device number 4
[  869.686104][ T3561] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  869.805187][ T3561] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  869.897258][ T3561] bond0 (unregistering): Released all slaves
[  870.083327][T11707] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1549'.
[  870.466801][ T1323] ieee802154 phy0 wpan0: encryption failed: -22
[  870.468767][ T1323] ieee802154 phy1 wpan1: encryption failed: -22
[  871.024917][    C1] vkms_vblank_simulate: vblank timer overrun
[  871.250688][ T3561] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  871.375209][ T3561] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  871.451402][ T3561] bond0 (unregistering): Released all slaves
[  872.177338][ T3561] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  872.275899][ T3561] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  872.349790][ T3561] bond0 (unregistering): Released all slaves
[  872.628553][T11707] chnl_net:caif_netlink_parms(): no params data found
[  873.501642][    C1] vkms_vblank_simulate: vblank timer overrun
[  874.561673][    C1] vkms_vblank_simulate: vblank timer overrun
[  875.665933][T11734] overlayfs: missing 'lowerdir'
[  876.913282][T11495] hsr_slave_0: entered promiscuous mode
[  876.914873][T11495] hsr_slave_1: entered promiscuous mode
[  876.916487][T11495] debugfs: 'hsr0' already exists in 'hsr'
[  876.916513][T11495] Cannot create hsr debugfs directory
[  876.983604][T11552] chnl_net:caif_netlink_parms(): no params data found
[  877.286350][ T3561] hsr_slave_0: left promiscuous mode
[  877.317549][ T3561] hsr_slave_1: left promiscuous mode
[  877.332417][ T3561] batman_adv: batadv0: Removing interface: batadv_slave_0
[  877.414305][ T3561] batman_adv: batadv0: Removing interface: batadv_slave_1
[  878.064539][ T3561] hsr_slave_0: left promiscuous mode
[  878.113789][ T3561] hsr_slave_1: left promiscuous mode
[  878.114473][ T3561] batman_adv: batadv0: Removing interface: batadv_slave_0
[  878.254160][ T3561] batman_adv: batadv0: Removing interface: batadv_slave_1
[  878.883527][ T3561] hsr_slave_0: left promiscuous mode
[  878.922702][ T3561] hsr_slave_1: left promiscuous mode
[  878.923886][ T3561] batman_adv: batadv0: Removing interface: batadv_slave_0
[  878.954435][ T3561] batman_adv: batadv0: Removing interface: batadv_slave_1
[  883.296482][ T3561] team0 (unregistering): Port device team_slave_1 removed
[  883.643439][ T3561] team0 (unregistering): Port device team_slave_0 removed
[  885.191203][T11758] netlink: 88 bytes leftover after parsing attributes in process `syz.3.1564'.
[  885.200602][T11758] unsupported nlmsg_type 40
[  886.493553][ T3561] team0 (unregistering): Port device team_slave_1 removed
[  886.653832][ T3561] team0 (unregistering): Port device team_slave_0 removed
[  888.314010][ T3561] team0 (unregistering): Port device team_slave_1 removed
[  888.496827][ T3561] team0 (unregistering): Port device team_slave_0 removed
[  892.261821][  T993] IPVS: starting estimator thread 0...
[  892.362996][T11796] IPVS: using max 6 ests per chain, 14400 per kthread
[  892.568947][T11552] bridge0: port 1(bridge_slave_0) entered blocking state
[  892.569241][T11552] bridge0: port 1(bridge_slave_0) entered disabled state
[  892.569478][T11552] bridge_slave_0: entered allmulticast mode
[  892.610467][T11552] bridge_slave_0: entered promiscuous mode
[  892.678338][T11552] bridge0: port 2(bridge_slave_1) entered blocking state
[  892.678504][T11552] bridge0: port 2(bridge_slave_1) entered disabled state
[  892.678759][T11552] bridge_slave_1: entered allmulticast mode
[  892.692864][T11552] bridge_slave_1: entered promiscuous mode
[  892.983991][T11800] ptrace attach of "./syz-executor exec"[5837] was attempted by "                                                                ��\x0c��H;�'���Sde/Ȑ|�zP��иW��\x0b�P�<�I7�{���Wr�עӇam�L5��{�޶-ڨ���ظ�����E�f�YS�7�?�V�s��\x0b�M�������`���g��ر/◒��U�C�ΐ�OG�Dn��\x07��w��m}O��q�����p�]��K|I(����9�/�k��Y_�֤vqy����rƲ�.+/�n�y�]�6�B\x5c
*���Lo��� �\x0a��B�\x0d��An���\x0bptQU�olL��obB��M�����ȹ.��T3#(D�\x1b�����?-�M��M�\x0d�{�X���Lhl1G�J(��\x0a����\x07�b\x0cf��\x5c�L�e#�y�w�O%�0��,��zǂ�r�\x5cH�\x22�@)E�lĪo��=��0}�|�����m ��~�M��UK\x0b�QoDU1h$�t�Qf�\x0b�;\x0bvN�T/��rP��x0m�؇dG>�t5Q�I����0k��p��;����t�>?7~��՞��8�)>�\x0a.F�v\x5c0CP�{�\x07ԭ4OT)���%��DkfCkF 籥�;��m\x0c�v�\x0cTʪz5��m֢����v����ī'c���^ت�g_\x0bƍ��8�)c,�(q��e�B���㑻SPt4�o� 
�I�HwL#��@mU�p�E�^a��gh~d�_��9\x07r|��GJj+&ҽk(�\x07���rn�E�4�(����#ë�\x0b Y�βB��\x0aЦ&��R��`�?��L1t����իw��.M�=3�|G����s�m�g�4`|\x22{б�춋���1�[{��ȯw/B�_g�6-�qyk*�o��\x0d\x5cc8����\x5
[  893.812236][T11552] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  893.870998][T11552] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  895.474848][T11813] workqueue: Failed to create a rescuer kthread for wq "bond5": -EINTR
[  896.325629][T11552] team0: Port device team_slave_0 added
[  897.653218][T11552] team0: Port device team_slave_1 added
[  897.668581][T11492] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  898.214466][T11492] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  898.446079][T11492] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  899.021536][T11552] batman_adv: batadv0: Adding interface: batadv_slave_0
[  899.021549][T11552] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  899.021565][T11552] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  899.098432][T11492] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  899.139050][T11552] batman_adv: batadv0: Adding interface: batadv_slave_1
[  899.139076][T11552] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  899.139103][T11552] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  899.935943][T11870] netlink: 'syz.3.1582': attribute type 27 has an invalid length.
[  900.016883][T11872] RDS: rds_bind could not find a transport for ::ffff:172.20.20.170, load rds_tcp or rds_rdma?
[  900.120506][T11552] hsr_slave_0: entered promiscuous mode
[  900.129443][T11552] hsr_slave_1: entered promiscuous mode
[  900.130706][T11552] debugfs: 'hsr0' already exists in 'hsr'
[  900.130733][T11552] Cannot create hsr debugfs directory
[  900.810311][T11870] bridge0: port 1(bridge_slave_0) entered disabled state
[  901.012369][T11870] bond_slave_0: left promiscuous mode
[  901.021308][T11870] bond_slave_1: left promiscuous mode
[  902.239181][T11870] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  902.314749][T11891] ptrace attach of "./syz-executor exec"[5837] was attempted by "                                                                ��\x0c��H;�'���Sde/Ȑ|�zP��иW��\x0b�P�<�I7�{���Wr�עӇam�L5��{�޶-ڨ���ظ�����E�f�YS�7�?�V�s��\x0b�M�������`���g��ر/◒��U�C�ΐ�OG�Dn��\x07��w��m}O��q�����p�]��K|I(����9�/�k��Y_�֤vqy����rƲ�.+/�n�y�]�6�B\x5c
*���Lo��� �\x0a��B�\x0d��An���\x0bptQU�olL��obB��M�����ȹ.��T3#(D�\x1b�����?-�M��M�\x0d�{�X���Lhl1G�J(��\x0a����\x07�b\x0cf��\x5c�L�e#�y�w�O%�0��,��zǂ�r�\x5cH�\x22�@)E�lĪo��=��0}�|�����m ��~�M��UK\x0b�QoDU1h$�t�Qf�\x0b�;\x0bvN�T/��rP��x0m�؇dG>�t5Q�I����0k��p��;����t�>?7~��՞��8�)>�\x0a.F�v\x5c0CP�{�\x07ԭ4OT)���%��DkfCkF 籥�;��m\x0c�v�\x0cTʪz5��m֢����v����ī'c���^ت�g_\x0bƍ��8�)c,�(q��e�B���㑻SPt4�o� 
�I�HwL#��@mU�p�E�^a��gh~d�_��9\x07r|��GJj+&ҽk(�\x07���rn�E�4�(����#ë�\x0b Y�βB��\x0aЦ&��R��`�?��L1t����իw��.M�=3�|G����s�m�g�4`|\x22{б�춋���1�[{��ȯw/B�_g�6-�qyk*�o��\x0d\x5cc8����\x5
[  902.404642][T11870] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  903.928284][T11870] bridge1: left promiscuous mode
[  904.218935][T11495] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  904.296601][ T4317] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  904.342685][ T1447] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  904.342804][T11495] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  904.542989][ T1447] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  904.550669][T11495] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  904.749573][T11021] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  904.767635][T11495] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  906.423793][ T5155] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  906.428184][ T5155] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  906.430392][ T5155] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  906.432321][ T5155] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  906.433354][ T5155] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  906.968236][ T5155] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  906.971608][ T5155] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  906.995776][ T5155] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  907.024061][ T5155] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  907.025134][ T5155] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  907.690276][T11950] netlink: 'syz.1.1592': attribute type 27 has an invalid length.
[  907.774066][T11951] RDS: rds_bind could not find a transport for ::ffff:172.20.20.170, load rds_tcp or rds_rdma?
[  908.278837][T11956] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1593'.
[  908.335021][T11950] bond_slave_0: left promiscuous mode
[  908.335215][T11950] bond_slave_1: left promiscuous mode
[  908.532854][ T5155] Bluetooth: hci3: command tx timeout
[  909.402759][ T5155] Bluetooth: hci4: command tx timeout
[  909.720845][T11950] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  909.759566][T11950] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  910.602660][ T5155] Bluetooth: hci3: command tx timeout
[  910.778954][ T5849] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  910.804625][ T5849] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  910.806182][ T5849] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  910.807636][ T5849] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  910.808913][ T5849] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  911.176218][ T1161] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  911.482566][ T5849] Bluetooth: hci4: command tx timeout
[  911.676307][ T1161] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  911.786170][T11972] overlayfs: failed to resolve './file0': -2
[  912.464568][ T1161] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  912.692836][ T5849] Bluetooth: hci3: command tx timeout
[  912.842688][ T5849] Bluetooth: hci5: command tx timeout
[  913.006479][ T1161] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  913.614056][ T5849] Bluetooth: hci4: command tx timeout
[  914.766618][ T5849] Bluetooth: hci3: command tx timeout
[  915.158247][ T5849] Bluetooth: hci5: command tx timeout
[  915.642689][ T5849] Bluetooth: hci4: command tx timeout
[  915.649988][T11999] netlink: 'syz.1.1603': attribute type 27 has an invalid length.
[  915.875309][T12001] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1604'.
[  915.985516][T11999] RDS: rds_bind could not find a transport for ::ffff:172.20.20.170, load rds_tcp or rds_rdma?
[  916.362231][T11312] bridge_slave_1: left allmulticast mode
[  916.362269][T11312] bridge_slave_1: left promiscuous mode
[  916.364109][T11312] bridge0: port 2(bridge_slave_1) entered disabled state
[  916.516221][T11312] bridge_slave_0: left allmulticast mode
[  916.516260][T11312] bridge_slave_0: left promiscuous mode
[  916.516565][T11312] bridge0: port 1(bridge_slave_0) entered disabled state
[  917.179402][ T5849] Bluetooth: hci5: command tx timeout
[  917.582406][T11312] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  917.909165][T11312] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  918.404178][T12016] new mount options do not match the existing superblock, will be ignored
[  918.515659][T12016] cgroup: option or name mismatch, new: 0x4 "", old: 0x0 ""
[  919.067465][T11312] bond0 (unregistering): Released all slaves
[  919.242581][ T5849] Bluetooth: hci5: command tx timeout
[  920.206049][T11312] hsr_slave_0: left promiscuous mode
[  920.207413][T12037] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1612'.
[  920.252716][T11312] hsr_slave_1: left promiscuous mode
[  920.253551][T11312] batman_adv: batadv0: Removing interface: batadv_slave_0
[  920.308126][T11312] batman_adv: batadv0: Removing interface: batadv_slave_1
[  920.360487][T12042] netlink: 'syz.3.1614': attribute type 27 has an invalid length.
[  921.724239][T11312] team0 (unregistering): Port device team_slave_1 removed
[  921.894400][T11312] team0 (unregistering): Port device team_slave_0 removed
[  922.951783][T11940] chnl_net:caif_netlink_parms(): no params data found
[  923.014952][T12047] loop2: detected capacity change from 0 to 7
[  923.021952][T11932] chnl_net:caif_netlink_parms(): no params data found
[  923.067710][T12047] Dev loop2: unable to read RDB block 7
[  923.067760][T12047]  loop2: unable to read partition table
[  923.068048][T12047] loop2: partition table beyond EOD, truncated
[  923.068070][T12047] loop_reread_partitions: partition scan of loop2 (�被x������ ) failed (rc=-5)
[  923.674029][T11959] chnl_net:caif_netlink_parms(): no params data found
[  924.362897][T10376] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  924.516471][T10376] usb 4-1: Using ep0 maxpacket: 32
[  924.549755][T10376] usb 4-1: config index 0 descriptor too short (expected 7469, got 45)
[  924.549789][T10376] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  924.549847][T10376] usb 4-1: config 0 interface 0 altsetting 16 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  924.549874][T10376] usb 4-1: config 0 interface 0 altsetting 16 endpoint 0x81 has invalid wMaxPacketSize 0
[  924.549898][T10376] usb 4-1: config 0 interface 0 altsetting 16 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  924.549925][T10376] usb 4-1: config 0 interface 0 has no altsetting 0
[  924.549962][T10376] usb 4-1: New USB device found, idVendor=044f, idProduct=b65d, bcdDevice= 0.00
[  924.549986][T10376] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  924.672382][T10376] usb 4-1: config 0 descriptor??
[  925.154395][T10376] hid_parser_main: 8 callbacks suppressed
[  925.154421][T10376] hid-thrustmaster 0003:044F:B65D.0003: unknown main item tag 0x0
[  925.154453][T10376] hid-thrustmaster 0003:044F:B65D.0003: unknown main item tag 0x0
[  925.154480][T10376] hid-thrustmaster 0003:044F:B65D.0003: unknown main item tag 0x0
[  925.154506][T10376] hid-thrustmaster 0003:044F:B65D.0003: unknown main item tag 0x0
[  925.154532][T10376] hid-thrustmaster 0003:044F:B65D.0003: unknown main item tag 0x0
[  925.272688][T10376] hid-thrustmaster 0003:044F:B65D.0003: hidraw0: USB HID v0.00 Device [HID 044f:b65d] on usb-dummy_hcd.3-1/input0
[  925.273043][T10376] hid-thrustmaster 0003:044F:B65D.0003: Wrong number of endpoints?
[  925.321458][    C0] hid-thrustmaster 0003:044F:B65D.0003: Unknown packet type 0x0, unable to proceed further with wheel init
[  925.408654][T11940] bridge0: port 1(bridge_slave_0) entered blocking state
[  925.408945][T11940] bridge0: port 1(bridge_slave_0) entered disabled state
[  925.409195][T11940] bridge_slave_0: entered allmulticast mode
[  925.493823][T12082] netlink: 'syz.1.1622': attribute type 27 has an invalid length.
[  925.518228][T11940] bridge_slave_0: entered promiscuous mode
[  925.547361][T11932] bridge0: port 1(bridge_slave_0) entered blocking state
[  925.547528][T11932] bridge0: port 1(bridge_slave_0) entered disabled state
[  925.547787][T11932] bridge_slave_0: entered allmulticast mode
[  925.594937][ T7010] usb 4-1: USB disconnect, device number 5
[  925.657535][T11932] bridge_slave_0: entered promiscuous mode
[  925.804702][T11940] bridge0: port 2(bridge_slave_1) entered blocking state
[  925.804820][T11940] bridge0: port 2(bridge_slave_1) entered disabled state
[  925.804997][T11940] bridge_slave_1: entered allmulticast mode
[  925.847526][T11940] bridge_slave_1: entered promiscuous mode
[  925.867401][T11932] bridge0: port 2(bridge_slave_1) entered blocking state
[  925.867560][T11932] bridge0: port 2(bridge_slave_1) entered disabled state
[  925.867808][T11932] bridge_slave_1: entered allmulticast mode
[  925.875860][T11932] bridge_slave_1: entered promiscuous mode
[  926.773899][T11940] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  926.830918][T11932] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  926.842954][T11959] bridge0: port 1(bridge_slave_0) entered blocking state
[  926.843160][T11959] bridge0: port 1(bridge_slave_0) entered disabled state
[  926.843381][T11959] bridge_slave_0: entered allmulticast mode
[  926.888861][T11959] bridge_slave_0: entered promiscuous mode
[  926.906485][T11940] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  926.928259][T11932] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  926.941856][T11959] bridge0: port 2(bridge_slave_1) entered blocking state
[  926.941948][T11959] bridge0: port 2(bridge_slave_1) entered disabled state
[  926.942098][T11959] bridge_slave_1: entered allmulticast mode
[  926.964487][T11959] bridge_slave_1: entered promiscuous mode
[  930.870822][T12122] netlink: 'syz.1.1634': attribute type 27 has an invalid length.
[  931.983672][ T1323] ieee802154 phy0 wpan0: encryption failed: -22
[  931.983772][ T1323] ieee802154 phy1 wpan1: encryption failed: -22
[  932.174049][T11940] team0: Port device team_slave_0 added
[  932.179077][T11932] team0: Port device team_slave_0 added
[  932.415942][T11959] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  932.424806][T11940] team0: Port device team_slave_1 added
[  932.428032][T11932] team0: Port device team_slave_1 added
[  932.478171][T11959] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  933.934522][T11932] batman_adv: batadv0: Adding interface: batadv_slave_0
[  933.934541][T11932] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  933.934570][T11932] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  933.936312][T11940] batman_adv: batadv0: Adding interface: batadv_slave_0
[  933.936326][T11940] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  933.936351][T11940] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  933.939439][T11959] team0: Port device team_slave_0 added
[  933.940286][T11932] batman_adv: batadv0: Adding interface: batadv_slave_1
[  933.940294][T11932] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  933.940309][T11932] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  933.941395][T11940] batman_adv: batadv0: Adding interface: batadv_slave_1
[  933.941404][T11940] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  933.941419][T11940] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  934.286766][T11959] team0: Port device team_slave_1 added
[  935.147411][T11959] batman_adv: batadv0: Adding interface: batadv_slave_0
[  935.147431][T11959] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  935.147460][T11959] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  936.294790][T12156] kthread_run failed with err -4
[  937.493536][T12160] ptrace attach of "./syz-executor exec"[5837] was attempted by "                                                                ��\x0c��H;�'���Sde/Ȑ|�zP��иW��\x0b�P�<�I7�{���Wr�עӇam�L5��{�޶-ڨ���ظ�����E�f�YS�7�?�V�s��\x0b�M�������`���g��ر/◒��U�C�ΐ�OG�Dn��\x07��w��m}O��q�����p�]��K|I(����9�/�k��Y_�֤vqy����rƲ�.+/�n�y�]�6�B\x5c
*���Lo��� �\x0a��B�\x0d��An���\x0bptQU�olL��obB��M�����ȹ.��T3#(D�\x1b�����?-�M��M�\x0d�{�X���Lhl1G�J(��\x0a����\x07�b\x0cf��\x5c�L�e#�y�w�O%�0��,��zǂ�r�\x5cH�\x22�@)E�lĪo��=��0}�|�����m ��~�M��UK\x0b�QoDU1h$�t�Qf�\x0b�;\x0bvN�T/��rP��x0m�؇dG>�t5Q�I����0k��p��;����t�>?7~��՞��8�)>�\x0a.F�v\x5c0CP�{�\x07ԭ4OT)���%��DkfCkF 籥�;��m\x0c�v�\x0cTʪz5��m֢����v����ī'c���^ت�g_\x0bƍ��8�)c,�(q��e�B���㑻SPt4�o� 
�I�HwL#��@mU�p�E�^a��gh~d�_��9\x07r|��GJj+&ҽk(�\x07���rn�E�4�(����#ë�\x0b Y�βB��\x0aЦ&��R��`�?��L1t����իw��.M�=3�|G����s�m�g�4`|\x22{б�춋���1�[{��ȯw/B�_g�6-�qyk*�o��\x0d\x5cc8����\x5
[  937.606523][T11959] batman_adv: batadv0: Adding interface: batadv_slave_1
[  937.606544][T11959] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  937.606575][T11959] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  937.627436][T11932] hsr_slave_0: entered promiscuous mode
[  937.628716][T11932] hsr_slave_1: entered promiscuous mode
[  937.629616][T11932] debugfs: 'hsr0' already exists in 'hsr'
[  937.629640][T11932] Cannot create hsr debugfs directory
[  937.674575][T11940] hsr_slave_0: entered promiscuous mode
[  937.697876][T11940] hsr_slave_1: entered promiscuous mode
[  937.702609][T11940] debugfs: 'hsr0' already exists in 'hsr'
[  937.702645][T11940] Cannot create hsr debugfs directory
[  939.998781][T11959] hsr_slave_0: entered promiscuous mode
[  940.011357][T11959] hsr_slave_1: entered promiscuous mode
[  940.194002][T11959] debugfs: 'hsr0' already exists in 'hsr'
[  940.194035][T11959] Cannot create hsr debugfs directory
[  940.937398][T12216] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1659'.
[  941.177785][T12216] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1659'.
[  942.176423][T12220] delete_channel: no stack
[  946.661118][T12281] ptrace attach of "./syz-executor exec"[5836] was attempted by "./syz-executor exec"[12281]
[  947.137477][T12290] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1672'.
[  947.137544][T12290] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1672'.
[  951.367953][T11312] bridge_slave_1: left allmulticast mode
[  951.372942][T11312] bridge_slave_1: left promiscuous mode
[  951.374283][T11312] bridge0: port 2(bridge_slave_1) entered disabled state
[  951.476575][T11312] bridge_slave_0: left allmulticast mode
[  951.476612][T11312] bridge_slave_0: left promiscuous mode
[  951.477129][T11312] bridge0: port 1(bridge_slave_0) entered disabled state
[  951.572646][T11312] bridge_slave_1: left allmulticast mode
[  951.572683][T11312] bridge_slave_1: left promiscuous mode
[  951.572991][T11312] bridge0: port 2(bridge_slave_1) entered disabled state
[  951.658968][T11312] bridge_slave_0: left allmulticast mode
[  951.659005][T11312] bridge_slave_0: left promiscuous mode
[  951.659353][T11312] bridge0: port 1(bridge_slave_0) entered disabled state
[  952.669131][T11312] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  952.746152][T11312] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  952.952818][T11312] bond0 (unregistering): Released all slaves
[  953.747461][T11312] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  953.873316][T11312] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  953.958992][T11312] bond0 (unregistering): Released all slaves
[  954.496861][T12365] netlink: 68 bytes leftover after parsing attributes in process `syz.1.1688'.
[  955.805015][T11312] hsr_slave_0: left promiscuous mode
[  955.843041][T11312] hsr_slave_1: left promiscuous mode
[  955.843673][T11312] batman_adv: batadv0: Removing interface: batadv_slave_0
[  955.894259][T11312] batman_adv: batadv0: Removing interface: batadv_slave_1
[  956.122392][T11312] hsr_slave_0: left promiscuous mode
[  956.251387][T11312] hsr_slave_1: left promiscuous mode
[  956.252168][T11312] batman_adv: batadv0: Removing interface: batadv_slave_0
[  956.304003][T11312] batman_adv: batadv0: Removing interface: batadv_slave_1
[  959.265832][T11312] team0 (unregistering): Port device team_slave_1 removed
[  959.663666][T11312] team0 (unregistering): Port device team_slave_0 removed
[  965.503679][T11312] team0 (unregistering): Port device team_slave_1 removed
[  965.643822][T11312] team0 (unregistering): Port device team_slave_0 removed
[  966.376786][T12392] batadv_slave_0: entered promiscuous mode
[  967.347948][ T5155] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  967.387767][ T5155] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  967.389661][ T5155] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  967.409400][ T5155] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  967.410819][ T5155] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  967.913419][T12445] bond2: option mode: unable to set because the bond device has slaves
[  968.160073][T12445] 8021q: adding VLAN 0 to HW filter on device macvlan5
[  968.185096][T12445] bond2: (slave macvlan5): Enslaving as a backup interface with an up link
[  968.679005][ T5155] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  968.704685][ T5155] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  968.749180][ T5155] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  968.796815][ T5155] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  968.815061][ T5155] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  969.483058][ T5849] Bluetooth: hci2: command tx timeout
[  969.592023][T12467] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1717'.
[  970.236055][T12437] chnl_net:caif_netlink_parms(): no params data found
[  971.027503][ T5849] Bluetooth: hci4: command tx timeout
[  971.875037][ T5849] Bluetooth: hci2: command tx timeout
[  973.088251][ T5849] Bluetooth: hci4: command tx timeout
[  973.487386][T12437] bridge0: port 1(bridge_slave_0) entered blocking state
[  973.487689][T12437] bridge0: port 1(bridge_slave_0) entered disabled state
[  973.487933][T12437] bridge_slave_0: entered allmulticast mode
[  973.522820][T12437] bridge_slave_0: entered promiscuous mode
[  973.581309][T12437] bridge0: port 2(bridge_slave_1) entered blocking state
[  973.581520][T12437] bridge0: port 2(bridge_slave_1) entered disabled state
[  973.581780][T12437] bridge_slave_1: entered allmulticast mode
[  973.725057][T12437] bridge_slave_1: entered promiscuous mode
[  973.890186][ T5155] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  973.909290][ T5155] Bluetooth: hci2: command tx timeout
[  973.929830][ T5155] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  973.934454][ T5155] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  973.945683][ T5155] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  973.948859][ T5155] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  975.016816][T12506] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1728'.
[  975.373673][T10064] Bluetooth: hci4: command tx timeout
[  976.004652][T10064] Bluetooth: hci2: command tx timeout
[  976.052606][T10064] Bluetooth: hci3: command tx timeout
[  976.915195][T12437] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  976.975989][T12437] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  977.630165][T10064] Bluetooth: hci4: command tx timeout
[  978.891299][T10064] Bluetooth: hci3: command tx timeout
[  980.497852][T12437] team0: Port device team_slave_0 added
[  980.562979][T12455] chnl_net:caif_netlink_parms(): no params data found
[  980.640587][T12437] team0: Port device team_slave_1 added
[  980.939490][T10064] Bluetooth: hci3: command tx timeout
[  983.012995][T10064] Bluetooth: hci3: command tx timeout
[  983.051861][T12437] batman_adv: batadv0: Adding interface: batadv_slave_0
[  983.051875][T12437] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  983.051993][T12437] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  983.133588][T12437] batman_adv: batadv0: Adding interface: batadv_slave_1
[  983.133606][T12437] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  983.133635][T12437] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  983.462775][ T9493] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  983.622698][ T9493] usb 4-1: Using ep0 maxpacket: 16
[  983.627630][ T9493] usb 4-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF3, changing to 0x83
[  983.627665][ T9493] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  983.631182][ T9493] usb 4-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  983.631210][ T9493] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  983.631232][ T9493] usb 4-1: Product: syz
[  983.631262][ T9493] usb 4-1: Manufacturer: syz
[  983.631278][ T9493] usb 4-1: SerialNumber: syz
[  983.709847][ T9493] usb 4-1: config 0 descriptor??
[  983.746177][ T9493] em28xx 4-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  983.746223][ T9493] em28xx 4-1:0.0: Audio interface 0 found (Vendor Class)
[  983.988191][T12455] bridge0: port 1(bridge_slave_0) entered blocking state
[  983.988859][T12455] bridge0: port 1(bridge_slave_0) entered disabled state
[  983.989343][T12455] bridge_slave_0: entered allmulticast mode
[  984.021382][T12455] bridge_slave_0: entered promiscuous mode
[  984.141720][T12437] hsr_slave_0: entered promiscuous mode
[  984.144396][T12437] hsr_slave_1: entered promiscuous mode
[  984.148744][T12437] debugfs: 'hsr0' already exists in 'hsr'
[  984.148769][T12437] Cannot create hsr debugfs directory
[  984.149485][T12455] bridge0: port 2(bridge_slave_1) entered blocking state
[  984.149653][T12455] bridge0: port 2(bridge_slave_1) entered disabled state
[  984.150272][T12455] bridge_slave_1: entered allmulticast mode
[  984.189569][T12455] bridge_slave_1: entered promiscuous mode
[  984.343247][ T9493] em28xx 4-1:0.0: unknown em28xx chip ID (0)
[  984.345149][ T9493] em28xx 4-1:0.0: Config register raw data: 0x96
[  984.562590][ T9493] em28xx 4-1:0.0: AC97 command still being executed: not handled properly!
[  984.562616][ T9493] em28xx 4-1:0.0: AC97 chip type couldn't be determined
[  984.562632][ T9493] em28xx 4-1:0.0: No AC97 audio processor
[  984.746686][T12455] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  984.984660][ T5925] usb 4-1: USB disconnect, device number 6
[  984.993283][ T5925] em28xx 4-1:0.0: Disconnecting em28xx
[  985.031308][ T5925] em28xx 4-1:0.0: Freeing device
[  985.506136][T12455] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  986.868659][T12455] team0: Port device team_slave_0 added
[  987.008054][T12455] team0: Port device team_slave_1 added
[  987.253253][ T9493] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  987.412794][ T9493] usb 4-1: Using ep0 maxpacket: 16
[  987.415334][ T9493] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x4 has invalid wMaxPacketSize 0
[  987.415375][ T9493] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 0
[  987.415398][ T9493] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  987.415420][ T9493] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 0
[  987.418939][ T9493] usb 4-1: New USB device found, idVendor=04d8, idProduct=0a30, bcdDevice=ce.47
[  987.418969][ T9493] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  987.418989][ T9493] usb 4-1: Product: syz
[  987.419003][ T9493] usb 4-1: Manufacturer: syz
[  987.419017][ T9493] usb 4-1: SerialNumber: syz
[  987.444675][ T9493] usb 4-1: config 0 descriptor??
[  988.040141][ T9493] mcba_usb 4-1:0.0 can0: couldn't setup read URBs
[  988.040159][ T9493] mcba_usb 4-1:0.0 can0: couldn't start device: -90
[  988.040490][T12455] batman_adv: batadv0: Adding interface: batadv_slave_0
[  988.040501][T12455] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  988.040516][T12455] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  988.273722][T12455] batman_adv: batadv0: Adding interface: batadv_slave_1
[  988.273741][T12455] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  988.273772][T12455] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  988.275645][T11312] bridge_slave_1: left allmulticast mode
[  988.275677][T11312] bridge_slave_1: left promiscuous mode
[  988.275973][T11312] bridge0: port 2(bridge_slave_1) entered disabled state
[  988.344445][ T9493] mcba_usb 4-1:0.0: probe with driver mcba_usb failed with error -90
[  988.380809][T11312] bridge_slave_0: left allmulticast mode
[  988.380846][T11312] bridge_slave_0: left promiscuous mode
[  988.381155][T11312] bridge0: port 1(bridge_slave_0) entered disabled state
[  988.780139][T11312] bridge_slave_1: left allmulticast mode
[  988.780713][T11312] bridge_slave_1: left promiscuous mode
[  988.807715][T11312] bridge0: port 2(bridge_slave_1) entered disabled state
[  989.524659][T11312] bridge_slave_0: left allmulticast mode
[  989.524698][T11312] bridge_slave_0: left promiscuous mode
[  989.525081][T11312] bridge0: port 1(bridge_slave_0) entered disabled state
[  989.913515][T11312] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  990.073045][   T45] usb 4-1: USB disconnect, device number 7
[  990.103857][T11312] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  990.427708][T11312] bond0 (unregistering): Released all slaves
[  991.753560][T11312] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  991.833848][T11312] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  991.897646][T11312] bond0 (unregistering): Released all slaves
[  992.061850][T12494] chnl_net:caif_netlink_parms(): no params data found
[  993.346737][ T1323] ieee802154 phy0 wpan0: encryption failed: -22
[  993.346791][ T1323] ieee802154 phy1 wpan1: encryption failed: -22
[  994.318149][T12455] hsr_slave_0: entered promiscuous mode
[  994.319726][T12455] hsr_slave_1: entered promiscuous mode
[  994.320795][T12455] debugfs: 'hsr0' already exists in 'hsr'
[  994.320821][T12455] Cannot create hsr debugfs directory
[  995.024233][T11312] hsr_slave_0: left promiscuous mode
[  995.099104][T11312] hsr_slave_1: left promiscuous mode
[  995.099788][T11312] batman_adv: batadv0: Removing interface: batadv_slave_0
[  995.136288][T11312] batman_adv: batadv0: Removing interface: batadv_slave_1
[  995.406136][T11312] hsr_slave_0: left promiscuous mode
[  995.422605][T11312] hsr_slave_1: left promiscuous mode
[  995.423413][T11312] batman_adv: batadv0: Removing interface: batadv_slave_0
[  995.478601][T11312] batman_adv: batadv0: Removing interface: batadv_slave_1
[  997.718721][T10064] Bluetooth: hci1: ACL packet for unknown connection handle 201
[  998.262275][T12654] ptrace attach of "./syz-executor exec"[5837] was attempted by "                                                                ��\x0c��H;�'���Sde/Ȑ|�zP��иW��\x0b�P�<�I7�{���Wr�עӇam�L5��{�޶-ڨ���ظ�����E�f�YS�7�?�V�s��\x0b�M�������`���g��ر/◒��U�C�ΐ�OG�Dn��\x07��w��m}O��q�����p�]��K|I(����9�/�k��Y_�֤vqy����rƲ�.+/�n�y�]�6�B\x5c
*���Lo��� �\x0a��B�\x0d��An���\x0bptQU�olL��obB��M�����ȹ.��T3#(D�\x1b�����?-�M��M�\x0d�{�X���Lhl1G�J(��\x0a����\x07�b\x0cf��\x5c�L�e#�y�w�O%�0��,��zǂ�r�\x5cH�\x22�@)E�lĪo��=��0}�|�����m ��~�M��UK\x0b�QoDU1h$�t�Qf�\x0b�;\x0bvN�T/��rP��x0m�؇dG>�t5Q�I����0k��p��;����t�>?7~��՞��8�)>�\x0a.F�v\x5c0CP�{�\x07ԭ4OT)���%��DkfCkF 籥�;��m\x0c�v�\x0cTʪz5��m֢����v����ī'c���^ت�g_\x0bƍ��8�)c,�(q��e�B���㑻SPt4�o� 
�I�HwL#��@mU�p�E�^a��gh~d�_��9\x07r|��GJj+&ҽk(�\x07���rn�E�4�(����#ë�\x0b Y�βB��\x0aЦ&��R��`�?��L1t����իw��.M�=3�|G����s�m�g�4`|\x22{б�춋���1�[{��ȯw/B�_g�6-�qyk*�o��\x0d\x5cc8����\x5
[  998.278894][T11312] team0 (unregistering): Port device team_slave_1 removed
[  998.545925][T11312] team0 (unregistering): Port device team_slave_0 removed
[ 1001.357067][T12673] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1773'.
[ 1001.414470][T11312] team0 (unregistering): Port device team_slave_1 removed
[ 1001.578419][T11312] team0 (unregistering): Port device team_slave_0 removed
[ 1002.417547][T12661] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1770'.
[ 1002.595815][T12678] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1774'.
[ 1002.617860][ T5206] udevd[5206]: worker [12676] terminated by signal 33 (Unknown signal 33)
[ 1010.769591][T12494] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1010.769748][T12494] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1010.769948][T12494] bridge_slave_0: entered allmulticast mode
[ 1010.773246][T12494] bridge_slave_0: entered promiscuous mode
[ 1010.867554][T12494] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1010.867721][T12494] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1010.867932][T12494] bridge_slave_1: entered allmulticast mode
[ 1010.902830][T12494] bridge_slave_1: entered promiscuous mode
[ 1011.512129][T12700] tipc: Started in network mode
[ 1011.512171][T12700] tipc: Node identity ac1414aa, cluster identity 4711
[ 1011.512236][T12700] tipc: Enabling of bearer <udp:s> rejected, failed to enable media
[ 1011.528566][T12494] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1011.709390][T12494] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1011.946956][T12704] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1781'.
[ 1012.106420][T12709] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1782'.
[ 1012.324515][T12494] team0: Port device team_slave_0 added
[ 1014.143925][T12494] team0: Port device team_slave_1 added
[ 1014.610231][T12494] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1014.610245][T12494] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1014.610261][T12494] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1015.468947][T12494] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1015.468966][T12494] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1015.468996][T12494] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1015.566816][T12437] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 1015.619697][T12437] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 1015.747666][T12437] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 1016.051323][T12437] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 1016.104341][ T9493] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[ 1016.252994][ T9493] usb 4-1: Using ep0 maxpacket: 16
[ 1016.256906][ T9493] usb 4-1: config 33 has 0 interfaces, different from the descriptor's value: 9
[ 1016.256954][ T9493] usb 4-1: New USB device found, idVendor=1fd2, idProduct=6006, bcdDevice= 0.00
[ 1016.257083][ T9493] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1016.333307][T12494] hsr_slave_0: entered promiscuous mode
[ 1016.335437][T12494] hsr_slave_1: entered promiscuous mode
[ 1016.336632][T12494] debugfs: 'hsr0' already exists in 'hsr'
[ 1016.336661][T12494] Cannot create hsr debugfs directory
[ 1016.583073][ T7010] usb 4-1: USB disconnect, device number 8
[ 1018.228852][T12455] netdevsim netdevsim7 netdevsim0: renamed from eth0
[ 1018.357447][T12455] netdevsim netdevsim7 netdevsim1: renamed from eth1
[ 1018.442824][T12455] netdevsim netdevsim7 netdevsim2: renamed from eth2
[ 1018.511363][T12455] netdevsim netdevsim7 netdevsim3: renamed from eth3
[ 1018.687961][T12749] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1791'.
[ 1018.952031][T12758] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1794'.
[ 1020.777749][T11312] bridge_slave_1: left allmulticast mode
[ 1020.777796][T11312] bridge_slave_1: left promiscuous mode
[ 1020.778094][T11312] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1020.875021][T11312] bridge_slave_0: left allmulticast mode
[ 1020.875058][T11312] bridge_slave_0: left promiscuous mode
[ 1020.876672][T11312] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1021.474626][T11312] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1021.573328][T11312] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1021.635703][T11312] bond0 (unregistering): Released all slaves
[ 1021.997930][T12437] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1022.017152][T12790] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1800'.
[ 1022.262644][T11312] hsr_slave_0: left promiscuous mode
[ 1022.296897][T11312] hsr_slave_1: left promiscuous mode
[ 1022.297565][T11312] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1022.513659][T11312] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1026.753549][T11312] team0 (unregistering): Port device team_slave_1 removed
[ 1026.913933][T11312] team0 (unregistering): Port device team_slave_0 removed
[ 1028.703633][ T5849] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1028.731254][ T5849] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1028.741226][ T5849] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1028.754797][ T5849] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1028.755922][ T5849] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1030.866958][T10064] Bluetooth: hci5: command tx timeout
[ 1031.605539][ T5849] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1031.626570][ T5849] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1031.630189][ T5849] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1031.631403][ T5849] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1031.635027][ T5849] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1032.922655][ T5849] Bluetooth: hci5: command tx timeout
[ 1033.824329][ T5849] Bluetooth: hci2: command tx timeout
[ 1035.421504][T10064] Bluetooth: hci5: command tx timeout
[ 1035.437325][T10064] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1035.439786][T10064] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1035.441392][T10064] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1035.481378][T10064] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1035.490757][T10064] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1035.570363][T12817] chnl_net:caif_netlink_parms(): no params data found
[ 1035.892758][T10064] Bluetooth: hci2: command tx timeout
[ 1037.649583][T10064] Bluetooth: hci5: command tx timeout
[ 1037.661360][T10064] Bluetooth: hci3: command tx timeout
[ 1038.112575][ T5849] Bluetooth: hci2: command tx timeout
[ 1039.970253][ T5849] Bluetooth: hci3: command tx timeout
[ 1040.138762][ T5849] Bluetooth: hci2: command tx timeout
[ 1042.042671][ T5849] Bluetooth: hci3: command tx timeout
[ 1042.977528][T12817] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1043.044772][T12817] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1043.045042][T12817] bridge_slave_0: entered allmulticast mode
[ 1043.048275][T12817] bridge_slave_0: entered promiscuous mode
[ 1043.163907][T12817] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1043.164079][T12817] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1043.164306][T12817] bridge_slave_1: entered allmulticast mode
[ 1043.167496][T12817] bridge_slave_1: entered promiscuous mode
[ 1043.701299][T12817] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1043.818201][T12839] chnl_net:caif_netlink_parms(): no params data found
[ 1043.988630][T12817] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1045.006332][ T5849] Bluetooth: hci3: command tx timeout
[ 1045.805722][T12817] team0: Port device team_slave_0 added
[ 1045.857096][T12817] team0: Port device team_slave_1 added
[ 1046.290668][T12817] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1046.290686][T12817] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1046.290714][T12817] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1046.638139][T12817] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1046.638157][T12817] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1046.638186][T12817] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1046.691120][T12966] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1834'.
[ 1050.066576][T12839] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1050.066867][T12839] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1050.067093][T12839] bridge_slave_0: entered allmulticast mode
[ 1050.112265][T12839] bridge_slave_0: entered promiscuous mode
[ 1050.264413][T12839] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1050.264588][T12839] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1050.264807][T12839] bridge_slave_1: entered allmulticast mode
[ 1050.268386][T12839] bridge_slave_1: entered promiscuous mode
[ 1050.342593][  T993] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[ 1050.505615][  T993] usb 4-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config
[ 1050.505645][  T993] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 2
[ 1050.505700][  T993] usb 4-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 1050.509184][  T993] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1050.509214][  T993] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1050.509235][  T993] usb 4-1: Product: syz
[ 1050.509249][  T993] usb 4-1: Manufacturer: syz
[ 1050.509263][  T993] usb 4-1: SerialNumber: syz
[ 1050.526884][  T993] cdc_ncm 4-1:1.0: CDC Union missing and no IAD found
[ 1050.526933][  T993] cdc_ncm 4-1:1.0: bind() failure
[ 1050.758285][  T993] usb 4-1: USB disconnect, device number 9
[ 1050.826729][T12817] hsr_slave_0: entered promiscuous mode
[ 1050.828364][T12817] hsr_slave_1: entered promiscuous mode
[ 1050.829652][T12817] debugfs: 'hsr0' already exists in 'hsr'
[ 1050.829680][T12817] Cannot create hsr debugfs directory
[ 1050.915627][T12854] chnl_net:caif_netlink_parms(): no params data found
[ 1051.193264][T12839] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1051.304150][T12839] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1052.033057][T13015] futex_wake_op: syz.3.1851 tries to shift op by -1; fix this program
[ 1052.523960][  T993] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[ 1052.540221][T12839] team0: Port device team_slave_0 added
[ 1052.567635][  T993] hid-generic 0000:0000:0000.0004: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[ 1052.650496][T12839] team0: Port device team_slave_1 added
[ 1053.441511][T12839] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1053.441531][T12839] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1053.441557][T12839] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1053.487077][T12854] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1053.487318][T12854] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1053.487526][T12854] bridge_slave_0: entered allmulticast mode
[ 1053.496842][T12854] bridge_slave_0: entered promiscuous mode
[ 1053.510624][T12839] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1053.510640][T12839] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1053.510665][T12839] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1053.827212][T12854] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1053.827365][T12854] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1053.827630][T12854] bridge_slave_1: entered allmulticast mode
[ 1053.830634][T12854] bridge_slave_1: entered promiscuous mode
[ 1054.114494][T13033] ptrace attach of "./syz-executor exec"[5836] was attempted by "                                                                ��\x0c��H;�'���Sde/Ȑ|�zP��иW��\x0b�P�<�I7�{���Wr�עӇam�L5��{�޶-ڨ���ظ�����E�f�YS�7�?�V�s��\x0b�M�������`���g��ر/◒��U�C�ΐ�OG�Dn��\x07��w��m}O��q�����p�]��K|I(����9�/�k��Y_�֤vqy����rƲ�.+/�n�y�]�6�B\x5c
*���Lo��� �\x0a��B�\x0d��An���\x0bptQU�olL��obB��M�����ȹ.��T3#(D�\x1b�����?-�M��M�\x0d�{�X���Lhl1G�J(��\x0a����\x07�b\x0cf��\x5c�L�e#�y�w�O%�0��,��zǂ�r�\x5cH�\x22�@)E�lĪo��=��0}�|�����m ��~�M��UK\x0b�QoDU1h$�t�Qf�\x0b�;\x0bvN�T/��rP��x0m�؇dG>�t5Q�I����0k��p��;����t�>?7~��՞��8�)>�\x0a.F�v\x5c0CP�{�\x07ԭ4OT)���%��DkfCkF 籥�;��m\x0c�v�\x0cTʪz5��m֢����v����ī'c���^ت�g_\x0bƍ��8�)c,�(q��e�B���㑻SPt4�o� 
�I�HwL#��@mU�p�E�^a��gh~d�_��9\x07r|��GJj+&ҽk(�\x07���rn�E�4�(����#ë�\x0b Y�βB��\x0aЦ&��R��`�?��L1t����իw��.M�=3�|G����s�m�g�4`|\x22{б�춋���1�[{��ȯw/B�_g�6-�qyk*�o��\x0d\x5cc8����\x5
[ 1054.772572][ T1323] ieee802154 phy0 wpan0: encryption failed: -22
[ 1054.772626][ T1323] ieee802154 phy1 wpan1: encryption failed: -22
[ 1055.637362][T12854] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1055.909346][T13043] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1858'.
[ 1056.103228][T12854] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1056.539034][T12839] hsr_slave_0: entered promiscuous mode
[ 1056.539931][T12839] hsr_slave_1: entered promiscuous mode
[ 1056.540567][T12839] debugfs: 'hsr0' already exists in 'hsr'
[ 1056.540584][T12839] Cannot create hsr debugfs directory
[ 1056.540860][T11312] bridge_slave_1: left allmulticast mode
[ 1056.540880][T11312] bridge_slave_1: left promiscuous mode
[ 1056.541047][T11312] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1056.674443][T11312] bridge_slave_0: left allmulticast mode
[ 1056.674482][T11312] bridge_slave_0: left promiscuous mode
[ 1056.674996][T11312] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1056.789751][T11312] bridge_slave_1: left allmulticast mode
[ 1056.789791][T11312] bridge_slave_1: left promiscuous mode
[ 1056.790079][T11312] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1056.934576][T11312] bridge_slave_0: left allmulticast mode
[ 1056.934600][T11312] bridge_slave_0: left promiscuous mode
[ 1056.934771][T11312] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1058.585375][T11312] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1058.713917][T11312] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1058.791345][T11312] bond0 (unregistering): Released all slaves
[ 1061.775343][T11312] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1061.863160][T11312] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1061.987561][T11312] bond0 (unregistering): Released all slaves
[ 1062.330708][T12854] team0: Port device team_slave_0 added
[ 1062.565759][T12854] team0: Port device team_slave_1 added
[ 1062.964705][T13088] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1871'.
[ 1063.468338][T13091] new mount options do not match the existing superblock, will be ignored
[ 1064.688841][T12854] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1064.688854][T12854] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1064.688871][T12854] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1064.782932][T12854] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1064.782951][T12854] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1064.782980][T12854] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1065.213777][T11312] hsr_slave_0: left promiscuous mode
[ 1065.286141][T11312] hsr_slave_1: left promiscuous mode
[ 1065.286819][T11312] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1065.334311][T11312] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1065.783028][T11312] hsr_slave_0: left promiscuous mode
[ 1065.823790][T11312] hsr_slave_1: left promiscuous mode
[ 1065.825096][T11312] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1065.885636][T11312] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1067.895040][T11312] team0 (unregistering): Port device team_slave_1 removed
[ 1068.154448][T11312] team0 (unregistering): Port device team_slave_0 removed
[ 1068.274649][T13116] netlink: 'syz.1.1879': attribute type 27 has an invalid length.
[ 1068.454076][T13117] RDS: rds_bind could not find a transport for ::ffff:172.20.20.170, load rds_tcp or rds_rdma?
[ 1069.401437][T13123] new mount options do not match the existing superblock, will be ignored
[ 1070.893605][T11312] team0 (unregistering): Port device team_slave_1 removed
[ 1071.043838][T11312] team0 (unregistering): Port device team_slave_0 removed
[ 1073.614287][T12854] hsr_slave_0: entered promiscuous mode
[ 1073.616698][T12854] hsr_slave_1: entered promiscuous mode
[ 1073.620001][T12854] debugfs: 'hsr0' already exists in 'hsr'
[ 1073.620019][T12854] Cannot create hsr debugfs directory
[ 1074.217470][T13145] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1885'.
[ 1074.220438][T13145] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1885'.
[ 1075.977807][T12817] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 1076.168998][T12817] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 1076.557778][T12817] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 1076.724513][T12817] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 1077.018752][T13148] futex_wake_op: syz.1.1887 tries to shift op by -1; fix this program
[ 1077.376310][T13160] netlink: 'syz.1.1888': attribute type 27 has an invalid length.
[ 1078.494466][T13162] RDS: rds_bind could not find a transport for ::ffff:172.20.20.170, load rds_tcp or rds_rdma?
[ 1079.703961][T12817] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1079.996480][T12817] 8021q: adding VLAN 0 to HW filter on device team0
[ 1080.158896][ T1447] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1080.159137][ T1447] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1080.176962][ T1447] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1080.177196][ T1447] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1081.890615][T11312] bridge_slave_1: left allmulticast mode
[ 1081.890652][T11312] bridge_slave_1: left promiscuous mode
[ 1081.890964][T11312] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1082.154456][T11312] bridge_slave_0: left allmulticast mode
[ 1082.154494][T11312] bridge_slave_0: left promiscuous mode
[ 1082.154836][T11312] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1082.916698][T11312] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1083.043567][T11312] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1083.065826][T13189] futex_wake_op: syz.1.1895 tries to shift op by -1; fix this program
[ 1083.153206][T11312] bond0 (unregistering): Released all slaves
[ 1085.093769][T11312] hsr_slave_0: left promiscuous mode
[ 1085.132807][T11312] hsr_slave_1: left promiscuous mode
[ 1085.134097][T11312] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1085.185197][T11312] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1086.351979][T13204] mpoa:atm_mpoa_vcc_attach: mpoa:Short read (missed 12 bytes) from userland
[ 1087.000472][T11312] team0 (unregistering): Port device team_slave_1 removed
[ 1087.194016][T11312] team0 (unregistering): Port device team_slave_0 removed
[ 1088.696899][T12839] netdevsim netdevsim7 netdevsim0: renamed from eth0
[ 1088.778935][T12839] netdevsim netdevsim7 netdevsim1: renamed from eth1
[ 1088.820391][T12839] netdevsim netdevsim7 netdevsim2: renamed from eth2
[ 1089.163298][T12839] netdevsim netdevsim7 netdevsim3: renamed from eth3
[ 1089.978549][T10064] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1090.000020][T10064] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1090.037703][T10064] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1090.061995][T10064] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1090.071899][T10064] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1090.156737][T12854] netdevsim netdevsim6 netdevsim0: renamed from eth0
[ 1090.326068][T12854] netdevsim netdevsim6 netdevsim1: renamed from eth1
[ 1090.541478][T12854] netdevsim netdevsim6 netdevsim2: renamed from eth2
[ 1091.512590][T12854] netdevsim netdevsim6 netdevsim3: renamed from eth3
[ 1091.611947][T10064] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1091.675866][T10064] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1091.702867][T10064] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1091.737647][T10064] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1091.738619][T10064] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1092.132620][T10064] Bluetooth: hci4: command tx timeout
[ 1092.544348][T13236] futex_wake_op: syz.3.1903 tries to shift op by -1; fix this program
[ 1093.884147][T10064] Bluetooth: hci2: command tx timeout
[ 1094.204219][T10064] Bluetooth: hci4: command tx timeout
[ 1095.656473][ T5849] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1095.678936][ T5849] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1095.687596][ T5849] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1095.706968][ T5849] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1095.707802][ T5849] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1095.973197][ T5849] Bluetooth: hci2: command tx timeout
[ 1096.283478][ T5849] Bluetooth: hci4: command tx timeout
[ 1096.659850][T11312] bridge_slave_1: left allmulticast mode
[ 1096.659877][T11312] bridge_slave_1: left promiscuous mode
[ 1096.660054][T11312] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1096.724446][T11312] bridge_slave_0: left allmulticast mode
[ 1096.724483][T11312] bridge_slave_0: left promiscuous mode
[ 1096.724836][T11312] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1097.882690][ T5849] Bluetooth: hci3: command tx timeout
[ 1098.042665][ T5849] Bluetooth: hci2: command tx timeout
[ 1098.362816][ T5849] Bluetooth: hci4: command tx timeout
[ 1100.010455][ T5849] Bluetooth: hci3: command tx timeout
[ 1100.122686][ T5849] Bluetooth: hci2: command tx timeout
[ 1102.052534][ T5849] Bluetooth: hci3: command tx timeout
[ 1104.022566][T13299] futex_wake_op: syz.3.1920 tries to shift op by -1; fix this program
[ 1104.142955][ T5849] Bluetooth: hci3: command tx timeout
[ 1104.267877][T13302] sg_write: data in/out 91/14 bytes for SCSI command 0x0-- guessing data in;
[ 1104.267877][T13302]    program syz.3.1921 not setting count and/or reply_len properly
[ 1104.374648][T11312] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1104.459485][T11312] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1104.495616][T11312] bond0 (unregistering): Released all slaves
[ 1104.573618][T13218] chnl_net:caif_netlink_parms(): no params data found
[ 1104.616022][T13310] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1924'.
[ 1104.701925][T13308] bond1: option mode: unable to set because the bond device has slaves
[ 1104.854110][T13311] 8021q: adding VLAN 0 to HW filter on device macvlan4
[ 1104.860175][T13311] bond1: (slave macvlan4): Enslaving as a backup interface with an up link
[ 1107.762678][T11312] hsr_slave_0: left promiscuous mode
[ 1107.782813][T11312] hsr_slave_1: left promiscuous mode
[ 1107.784035][T11312] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1107.817731][T11312] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1109.137261][T13326] futex_wake_op: syz.3.1928 tries to shift op by -1; fix this program
[ 1111.718127][T11312] team0 (unregistering): Port device team_slave_1 removed
[ 1113.278600][T11312] team0 (unregistering): Port device team_slave_0 removed
[ 1116.209942][ T1323] ieee802154 phy0 wpan0: encryption failed: -22
[ 1116.210031][ T1323] ieee802154 phy1 wpan1: encryption failed: -22
[ 1116.475222][T13362] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1940'.
[ 1117.303274][T13225] chnl_net:caif_netlink_parms(): no params data found
[ 1122.315691][T13218] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1122.315958][T13218] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1122.316180][T13218] bridge_slave_0: entered allmulticast mode
[ 1122.319499][T13218] bridge_slave_0: entered promiscuous mode
[ 1122.398863][T13218] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1122.399068][T13218] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1122.399282][T13218] bridge_slave_1: entered allmulticast mode
[ 1122.423174][T13218] bridge_slave_1: entered promiscuous mode
[ 1122.449879][T13398] 9pnet_fd: Insufficient options for proto=fd
[ 1122.619515][T13405] futex_wake_op: syz.3.1953 tries to shift op by -1; fix this program
[ 1126.687668][T13225] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1126.687824][T13225] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1126.688045][T13225] bridge_slave_0: entered allmulticast mode
[ 1126.691091][T13225] bridge_slave_0: entered promiscuous mode
[ 1126.745362][T13218] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1126.745822][T13225] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1126.746046][T13225] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1126.746249][T13225] bridge_slave_1: entered allmulticast mode
[ 1126.788895][T13225] bridge_slave_1: entered promiscuous mode
[ 1126.807110][T13218] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1127.859209][T13225] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1127.867443][T13218] team0: Port device team_slave_0 added
[ 1128.046338][T13218] team0: Port device team_slave_1 added
[ 1128.181361][T13225] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1128.235947][T13434] futex_wake_op: syz.1.1962 tries to shift op by -1; fix this program
[ 1129.974235][T13218] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1129.974253][T13218] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1129.974281][T13218] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1130.047064][T13225] team0: Port device team_slave_0 added
[ 1130.086714][T13218] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1130.086731][T13218] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1130.086758][T13218] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1130.097123][T13225] team0: Port device team_slave_1 added
[ 1130.557516][T13259] chnl_net:caif_netlink_parms(): no params data found
[ 1133.781207][T13225] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1133.781227][T13225] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1133.781256][T13225] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1133.992891][T13225] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1133.992910][T13225] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1133.992948][T13225] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1135.315868][T13218] hsr_slave_0: entered promiscuous mode
[ 1135.338196][T13218] hsr_slave_1: entered promiscuous mode
[ 1135.354775][T13218] debugfs: 'hsr0' already exists in 'hsr'
[ 1135.354931][T13218] Cannot create hsr debugfs directory
[ 1138.691956][T13225] hsr_slave_0: entered promiscuous mode
[ 1138.695185][T13225] hsr_slave_1: entered promiscuous mode
[ 1138.696138][T13225] debugfs: 'hsr0' already exists in 'hsr'
[ 1138.696161][T13225] Cannot create hsr debugfs directory
[ 1139.443592][T13259] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1139.443691][T13259] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1139.443824][T13259] bridge_slave_0: entered allmulticast mode
[ 1139.450812][T13259] bridge_slave_0: entered promiscuous mode
[ 1139.490058][T13259] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1139.490222][T13259] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1139.490428][T13259] bridge_slave_1: entered allmulticast mode
[ 1139.525951][T13259] bridge_slave_1: entered promiscuous mode
[ 1142.743662][T13259] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1142.884518][T13259] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1145.893551][T13259] team0: Port device team_slave_0 added
[ 1146.015081][T13259] team0: Port device team_slave_1 added
[ 1147.027007][T13259] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1147.027020][T13259] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1147.027036][T13259] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1147.352888][T13259] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1147.352909][T13259] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1147.352940][T13259] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1150.986577][T13259] hsr_slave_0: entered promiscuous mode
[ 1150.988091][T13259] hsr_slave_1: entered promiscuous mode
[ 1150.989221][T13259] debugfs: 'hsr0' already exists in 'hsr'
[ 1150.989248][T13259] Cannot create hsr debugfs directory
[ 1152.187965][T10064] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1152.199851][T10064] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1152.219288][T10064] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1152.240115][T10064] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1152.241597][T10064] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1152.285864][T11312] bridge_slave_1: left allmulticast mode
[ 1152.285899][T11312] bridge_slave_1: left promiscuous mode
[ 1152.286222][T11312] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1152.434928][T11312] bridge_slave_0: left allmulticast mode
[ 1152.434966][T11312] bridge_slave_0: left promiscuous mode
[ 1152.435274][T11312] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1153.315738][T11312] bridge_slave_1: left allmulticast mode
[ 1153.315779][T11312] bridge_slave_1: left promiscuous mode
[ 1153.316079][T11312] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1153.699970][T11312] bridge_slave_0: left allmulticast mode
[ 1153.700006][T11312] bridge_slave_0: left promiscuous mode
[ 1153.700329][T11312] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1153.803738][T10064] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1153.810204][T10064] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1153.827061][T10064] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1153.828365][T10064] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1153.829224][T10064] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1154.503902][ T5849] Bluetooth: hci5: command tx timeout
[ 1154.644648][T11312] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1155.440291][T11312] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1155.985984][ T5849] Bluetooth: hci4: command tx timeout
[ 1156.065463][T11312] bond0 (unregistering): Released all slaves
[ 1156.313867][T11312] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1156.393705][T11312] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1156.455753][T11312] bond0 (unregistering): Released all slaves
[ 1156.524488][ T5849] Bluetooth: hci5: command tx timeout
[ 1158.047592][ T5849] Bluetooth: hci4: command tx timeout
[ 1158.234202][T10064] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 1158.252073][T10064] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 1158.260908][T10064] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 1158.266907][T10064] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 1158.267892][T10064] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 1158.518446][T13633] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2016'.
[ 1158.602448][T10064] Bluetooth: hci5: command tx timeout
[ 1158.712021][T13632] bond1: option mode: unable to set because the bond device has slaves
[ 1158.740671][T13634] bond1: (slave macvlan5): Error -98 calling set_mac_address
[ 1159.665748][T11312] hsr_slave_0: left promiscuous mode
[ 1159.682530][T11312] hsr_slave_1: left promiscuous mode
[ 1159.683126][T11312] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1159.761699][T11312] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1159.912804][T11312] hsr_slave_0: left promiscuous mode
[ 1159.939540][T11312] hsr_slave_1: left promiscuous mode
[ 1159.940149][T11312] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1159.983176][T11312] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1160.132660][ T5849] Bluetooth: hci4: command tx timeout
[ 1161.283331][ T5849] Bluetooth: hci5: command tx timeout
[ 1161.283405][ T5849] Bluetooth: hci6: command tx timeout
[ 1162.202783][T10064] Bluetooth: hci4: command tx timeout
[ 1162.466682][T11312] team0 (unregistering): Port device team_slave_1 removed
[ 1162.966308][T11312] team0 (unregistering): Port device team_slave_0 removed
[ 1163.936757][T10064] Bluetooth: hci6: command tx timeout
[ 1164.725727][T13664] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2027'.
[ 1164.726427][T13664] openvswitch: netlink: Unknown nsh attribute 0
[ 1164.726462][T13664] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1164.733820][T13664] random: crng reseeded on system resumption
[ 1165.962746][T10064] Bluetooth: hci6: command tx timeout
[ 1166.343572][T11312] team0 (unregistering): Port device team_slave_1 removed
[ 1166.579176][T11312] team0 (unregistering): Port device team_slave_0 removed
[ 1168.283401][T10064] Bluetooth: hci6: command tx timeout
[ 1168.610046][T13678] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2030'.
[ 1168.610071][T13678] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2030'.
[ 1168.738451][T13678] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2030'.
[ 1168.738477][T13678] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2030'.
[ 1168.837413][T11021] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[ 1168.988288][T11021] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[ 1169.134768][T11021] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[ 1169.201382][T11021] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[ 1172.511804][T13592] chnl_net:caif_netlink_parms(): no params data found
[ 1172.622944][T13604] chnl_net:caif_netlink_parms(): no params data found
[ 1173.153766][T13629] chnl_net:caif_netlink_parms(): no params data found
[ 1174.064541][T13592] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1174.064723][T13592] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1174.064979][T13592] bridge_slave_0: entered allmulticast mode
[ 1174.068555][T13592] bridge_slave_0: entered promiscuous mode
[ 1174.478272][T13592] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1174.478468][T13592] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1174.478747][T13592] bridge_slave_1: entered allmulticast mode
[ 1174.510805][T13592] bridge_slave_1: entered promiscuous mode
[ 1174.530389][T13604] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1174.530572][T13604] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1174.530796][T13604] bridge_slave_0: entered allmulticast mode
[ 1174.544143][T13604] bridge_slave_0: entered promiscuous mode
[ 1175.664491][T13604] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1175.664690][T13604] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1175.664961][T13604] bridge_slave_1: entered allmulticast mode
[ 1175.668430][T13604] bridge_slave_1: entered promiscuous mode
[ 1175.669937][T11312] bridge_slave_1: left allmulticast mode
[ 1175.669968][T11312] bridge_slave_1: left promiscuous mode
[ 1175.670243][T11312] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1175.984604][T11312] bridge_slave_0: left allmulticast mode
[ 1175.984642][T11312] bridge_slave_0: left promiscuous mode
[ 1175.984980][T11312] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1176.095025][T11312] bridge_slave_1: left allmulticast mode
[ 1176.095052][T11312] bridge_slave_1: left promiscuous mode
[ 1176.095229][T11312] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1176.183854][T11312] bridge_slave_0: left allmulticast mode
[ 1176.183878][T11312] bridge_slave_0: left promiscuous mode
[ 1176.184054][T11312] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1176.276214][T11312] bridge_slave_1: left allmulticast mode
[ 1176.276238][T11312] bridge_slave_1: left promiscuous mode
[ 1176.276440][T11312] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1176.333572][T11312] bridge_slave_0: left allmulticast mode
[ 1176.333595][T11312] bridge_slave_0: left promiscuous mode
[ 1176.333765][T11312] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1177.049300][T11312] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1177.291618][T11312] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1177.348437][T11312] bond0 (unregistering): Released all slaves
[ 1177.712856][ T1323] ieee802154 phy0 wpan0: encryption failed: -22
[ 1177.712944][ T1323] ieee802154 phy1 wpan1: encryption failed: -22
[ 1178.617227][T11312] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1178.701981][T11312] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1178.757753][T11312] bond0 (unregistering): Released all slaves
[ 1179.183101][T11312] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1179.293813][T11312] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1179.393666][T11312] bond0 (unregistering): Released all slaves
[ 1180.368497][T13592] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1180.852715][T13592] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1180.856871][T13604] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1180.857530][T13629] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1180.857658][T13629] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1180.857782][T13629] bridge_slave_0: entered allmulticast mode
[ 1180.864726][T13629] bridge_slave_0: entered promiscuous mode
[ 1181.060311][T13604] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1181.060593][T13629] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1181.060751][T13629] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1181.060947][T13629] bridge_slave_1: entered allmulticast mode
[ 1181.066286][T13629] bridge_slave_1: entered promiscuous mode
[ 1182.071550][T13592] team0: Port device team_slave_0 added
[ 1182.348254][T13755] futex_wake_op: syz.3.2047 tries to shift op by -1; fix this program
[ 1182.374315][T13592] team0: Port device team_slave_1 added
[ 1182.428224][T13604] team0: Port device team_slave_0 added
[ 1182.546189][T11312] hsr_slave_0: left promiscuous mode
[ 1182.609720][T11312] hsr_slave_1: left promiscuous mode
[ 1182.610401][T11312] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1182.665468][T11312] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1182.863294][T11312] hsr_slave_0: left promiscuous mode
[ 1182.903562][T11312] hsr_slave_1: left promiscuous mode
[ 1182.904585][T11312] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1182.946777][T11312] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1183.223845][T11312] hsr_slave_0: left promiscuous mode
[ 1183.287349][T11312] hsr_slave_1: left promiscuous mode
[ 1183.289076][T11312] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1183.353256][T11312] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1185.480849][T13768] new mount options do not match the existing superblock, will be ignored
[ 1186.033339][T11312] team0 (unregistering): Port device team_slave_1 removed
[ 1186.153030][T11312] team0 (unregistering): Port device team_slave_0 removed
[ 1188.647089][T11312] team0 (unregistering): Port device team_slave_1 removed
[ 1188.753494][T11312] team0 (unregistering): Port device team_slave_0 removed
[ 1189.925256][T11312] team0 (unregistering): Port device team_slave_1 removed
[ 1190.093147][T11312] team0 (unregistering): Port device team_slave_0 removed
[ 1190.925711][T13629] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1191.169399][T13604] team0: Port device team_slave_1 added
[ 1191.186064][T13629] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1191.599202][T13592] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1191.599221][T13592] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1191.599250][T13592] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1192.035948][T13592] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1192.035967][T13592] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1192.035996][T13592] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1192.037620][T13604] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1192.037633][T13604] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1192.037661][T13604] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1192.041058][T13629] team0: Port device team_slave_0 added
[ 1192.045461][T13629] team0: Port device team_slave_1 added
[ 1192.270960][T13604] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1192.270974][T13604] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1192.270989][T13604] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1192.585824][T13629] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1192.585842][T13629] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1192.585867][T13629] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1192.644714][T13629] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1192.644730][T13629] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1192.644754][T13629] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1192.862281][T13795] futex_wake_op: syz.3.2059 tries to shift op by -1; fix this program
[ 1193.355109][T13592] hsr_slave_0: entered promiscuous mode
[ 1193.356668][T13592] hsr_slave_1: entered promiscuous mode
[ 1193.357694][T13592] debugfs: 'hsr0' already exists in 'hsr'
[ 1193.357722][T13592] Cannot create hsr debugfs directory
[ 1195.182192][T13604] hsr_slave_0: entered promiscuous mode
[ 1195.200442][T13604] hsr_slave_1: entered promiscuous mode
[ 1195.201543][T13604] debugfs: 'hsr0' already exists in 'hsr'
[ 1195.201571][T13604] Cannot create hsr debugfs directory
[ 1195.739627][T13629] hsr_slave_0: entered promiscuous mode
[ 1195.807376][T13629] hsr_slave_1: entered promiscuous mode
[ 1195.850399][T13629] debugfs: 'hsr0' already exists in 'hsr'
[ 1195.850495][T13629] Cannot create hsr debugfs directory
[ 1201.453224][T13592] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 1201.650520][T13592] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 1201.678539][T13592] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 1201.775431][T13592] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 1202.489960][T13592] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1202.589459][T13592] 8021q: adding VLAN 0 to HW filter on device team0
[ 1202.650285][ T6926] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1202.650476][ T6926] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1202.860297][ T6182] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1202.862932][ T6182] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1203.119531][T13604] netdevsim netdevsim7 netdevsim0: renamed from eth0
[ 1203.200289][T13604] netdevsim netdevsim7 netdevsim1: renamed from eth1
[ 1203.237948][T13604] netdevsim netdevsim7 netdevsim2: renamed from eth2
[ 1203.359871][T13604] netdevsim netdevsim7 netdevsim3: renamed from eth3
[ 1203.804726][T13629] netdevsim netdevsim6 netdevsim0: renamed from eth0
[ 1203.871110][T13629] netdevsim netdevsim6 netdevsim1: renamed from eth1
[ 1203.972840][T13629] netdevsim netdevsim6 netdevsim2: renamed from eth2
[ 1204.028534][T13629] netdevsim netdevsim6 netdevsim3: renamed from eth3
[ 1204.493044][T13592] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1204.604630][T13604] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1204.778894][T13604] 8021q: adding VLAN 0 to HW filter on device team0
[ 1204.819989][T13629] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1204.838200][ T7620] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1204.842656][ T7620] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1204.909147][ T7620] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1204.909428][ T7620] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1205.068923][T13629] 8021q: adding VLAN 0 to HW filter on device team0
[ 1205.166942][ T6182] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1205.172628][ T6182] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1205.267948][ T6182] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1205.268129][ T6182] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1205.421254][T13930] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2086'.
[ 1205.844657][T13592] veth0_vlan: entered promiscuous mode
[ 1205.965616][T13592] veth1_vlan: entered promiscuous mode
[ 1206.292829][T13604] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1206.299708][T13592] veth0_macvtap: entered promiscuous mode
[ 1206.336971][T13592] veth1_macvtap: entered promiscuous mode
[ 1206.449567][T13592] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1206.489345][T13592] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1206.547452][ T7620] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1206.548599][ T7620] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1206.548663][ T7620] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1206.548709][ T7620] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1206.990395][T13949] new mount options do not match the existing superblock, will be ignored
[ 1209.046169][ T3561] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1209.046193][ T3561] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1209.083803][T13629] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1210.756603][T11021] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1210.756629][T11021] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1211.192064][T13604] veth0_vlan: entered promiscuous mode
[ 1211.319170][T13604] veth1_vlan: entered promiscuous mode
[ 1211.572428][T13604] veth0_macvtap: entered promiscuous mode
[ 1211.574108][T13981] binder_alloc: 13976: binder_alloc_buf, no vma
[ 1211.652850][T13604] veth1_macvtap: entered promiscuous mode
[ 1211.826224][T13604] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1212.235125][T13604] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1212.572964][T13629] veth0_vlan: entered promiscuous mode
[ 1212.616093][ T3561] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1212.636447][ T3561] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1212.637560][ T3561] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1212.645630][ T3561] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1212.810527][T13629] veth1_vlan: entered promiscuous mode
[ 1213.050071][T13629] veth0_macvtap: entered promiscuous mode
[ 1213.087555][T13629] veth1_macvtap: entered promiscuous mode
[ 1213.168824][T13629] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1213.206871][T13629] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1213.235276][T11312] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1213.236586][T11312] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1213.240201][T11312] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1213.240254][T11312] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1214.932617][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1214.932640][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1215.091262][ T5849] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1215.105118][T10376] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[ 1215.141575][ T5849] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1215.161021][ T5849] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1215.170575][ T5849] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1215.171582][ T5849] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1215.311406][T10376] usb 4-1: New USB device found, idVendor=2c42, idProduct=1709, bcdDevice=ca.b7
[ 1215.311439][T10376] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1215.311450][T10376] usb 4-1: Product: syz
[ 1215.311459][T10376] usb 4-1: Manufacturer: syz
[ 1215.311467][T10376] usb 4-1: SerialNumber: syz
[ 1215.346756][T10376] usb 4-1: config 0 descriptor??
[ 1215.556071][ T7620] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1216.004730][T10376] usb 4-1: f81604_read: reg: 105 failed: -EPROTO
[ 1216.004762][T10376] f81604 4-1:0.0: Setting termination of CH#1 failed: -EPROTO
[ 1216.004800][T10376] f81604 4-1:0.0: probe with driver f81604 failed with error -71
[ 1216.044540][T10376] usb 4-1: USB disconnect, device number 10
[ 1216.419928][ T7620] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1216.504665][T11021] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1216.504688][T11021] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1217.121696][ T7620] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1217.323129][T10064] Bluetooth: hci2: command tx timeout
[ 1218.150047][ T7620] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1219.415517][T10064] Bluetooth: hci2: command tx timeout
[ 1220.019464][ T5849] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1220.033289][ T5849] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1220.042836][ T5849] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1220.050771][ T5849] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1220.060138][ T5849] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1220.242653][T14039] page: refcount:515 mapcount:0 mapping:ffff888023f007e8 index:0x200 pfn:0x66200
[ 1220.242689][T14039] head: order:9 mapcount:1 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 1220.242707][T14039] aops:hugetlbfs_aops ino:addd dentry name(?):"anon_hugepage"
[ 1220.242739][T14039] flags: 0x80000000000041(locked|head|node=0|zone=1)
[ 1220.242757][T14039] page_type: f4(hugetlb)
[ 1220.242777][T14039] raw: 0080000000000041 ffffea0008eb0008 ffffea0001d40008 ffff888023f007e8
[ 1220.242795][T14039] raw: 0000000000000200 0000000000000000 00000203f4000000 0000000000000000
[ 1220.242814][T14039] head: 0080000000000041 ffffea0008eb0008 ffffea0001d40008 ffff888023f007e8
[ 1220.242832][T14039] head: 0000000000000200 0000000000000000 00000203f4000000 0000000000000000
[ 1220.242850][T14039] head: 0080000000000009 ffffea0001988001 0000000000000000 0000000000000000
[ 1220.242865][T14039] head: 0000000000000592 0000000000000000 00000000ffffffff 0000000000000200
[ 1220.242874][T14039] page dumped because: VM_BUG_ON_FOLIO(folio_mapped(folio))
[ 1220.242885][T14039] page_owner tracks the page as allocated
[ 1220.242892][T14039] page last allocated via order 9, migratetype Movable, gfp_mask 0x146cca(GFP_HIGHUSER_MOVABLE|__GFP_NOWARN|__GFP_RETRY_MAYFAIL|__GFP_COMP), pid 13991, tgid 13983 (syz.5.2095), ts 1212609796374, free_ts 1056066320918
[ 1220.242940][T14039]  post_alloc_hook+0x240/0x2a0
[ 1220.242971][T14039]  get_page_from_freelist+0x2119/0x21b0
[ 1220.242990][T14039]  __alloc_frozen_pages_noprof+0x181/0x370
[ 1220.243010][T14039]  alloc_buddy_hugetlb_folio+0xdf/0x1c0
[ 1220.243040][T14039]  only_alloc_fresh_hugetlb_folio+0x8c/0x280
[ 1220.243058][T14039]  alloc_surplus_hugetlb_folio+0x103/0x430
[ 1220.243076][T14039]  alloc_hugetlb_folio+0xb31/0x16c0
[ 1220.243099][T14039]  hugetlb_fault+0x1de1/0x2990
[ 1220.243124][T14039]  handle_mm_fault+0x20c8/0x3400
[ 1220.243148][T14039]  __get_user_pages+0x16e4/0x2b60
[ 1220.243168][T14039]  populate_vma_page_range+0x29f/0x3a0
[ 1220.243191][T14039]  __mm_populate+0x24c/0x380
[ 1220.243214][T14039]  vm_mmap_pgoff+0x38a/0x4d0
[ 1220.243237][T14039]  ksys_mmap_pgoff+0x551/0x720
[ 1220.243259][T14039]  do_syscall_64+0xfa/0x3b0
[ 1220.243277][T14039]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1220.243297][T14039] page last free pid 13044 tgid 13037 stack trace:
[ 1220.243310][T14039]  __free_pages_ok+0xa3e/0xba0
[ 1220.243336][T14039]  __free_frozen_pages+0x11e/0xce0
[ 1220.243363][T14039]  __folio_put+0x247/0x300
[ 1220.243389][T14039]  update_and_free_hugetlb_folio+0x169/0x280
[ 1220.243411][T14039]  free_huge_folio+0xd7f/0x1100
[ 1220.243430][T14039]  folios_put_refs+0x45e/0x670
[ 1220.243447][T14039]  remove_inode_hugepages+0xee2/0x1100
[ 1220.243471][T14039]  hugetlbfs_fallocate+0xbd4/0x1110
[ 1220.243494][T14039]  vfs_fallocate+0x672/0x7f0
[ 1220.243517][T14039]  madvise_vma_behavior+0x3156/0x3a00
[ 1220.243544][T14039]  madvise_walk_vmas+0x51c/0xa30
[ 1220.243568][T14039]  madvise_do_behavior+0x38e/0x550
[ 1220.243592][T14039]  do_madvise+0x183/0x230
[ 1220.243614][T14039]  __x64_sys_madvise+0xa7/0xc0
[ 1220.243638][T14039]  do_syscall_64+0xfa/0x3b0
[ 1220.243654][T14039]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1220.243830][T14039] ------------[ cut here ]------------
[ 1220.243838][T14039] kernel BUG at mm/filemap.c:154!
[ 1220.243857][T14039] Oops: invalid opcode: 0000 [#1] SMP KASAN PTI
[ 1220.243878][T14039] CPU: 0 UID: 0 PID: 14039 Comm: syz.5.2107 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[ 1220.243897][T14039] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 1220.243918][T14039] RIP: 0010:filemap_unaccount_folio+0x44f/0x4a0
[ 1220.243946][T14039] Code: 9d c9 ff 48 89 df 48 c7 c6 20 4e 14 8b e8 59 dc 32 ff 90 0f 0b e8 c1 9d c9 ff 48 89 df 48 c7 c6 60 4d 14 8b e8 42 dc 32 ff 90 <0f> 0b e8 aa 9d c9 ff 48 89 df 48 c7 c6 20 4e 14 8b e8 2b dc 32 ff
[ 1220.243961][T14039] RSP: 0018:ffffc90004fdee60 EFLAGS: 00010246
[ 1220.243978][T14039] RAX: 67422c0f90306600 RBX: ffffea0001988000 RCX: 67422c0f90306600
[ 1220.243990][T14039] RDX: 0000000000000007 RSI: ffffffff8d21ad8b RDI: ffff88802e6cd940
[ 1220.244001][T14039] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[ 1220.244011][T14039] R10: dffffc0000000000 R11: ffffed1017104863 R12: 0000000000000040
[ 1220.244022][T14039] R13: 1ffffd4000331000 R14: 1ffffd4000331001 R15: ffffea0001988008
[ 1220.244034][T14039] FS:  00007fb8babb66c0(0000) GS:ffff8881268bc000(0000) knlGS:0000000000000000
[ 1220.244049][T14039] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1220.244063][T14039] CR2: fffffffffffffffd CR3: 000000003b316000 CR4: 00000000003526f0
[ 1220.244083][T14039] Call Trace:
[ 1220.244091][T14039]  <TASK>
[ 1220.244102][T14039]  __filemap_remove_folio+0xc3/0x500
[ 1220.244132][T14039]  ? __pfx___filemap_remove_folio+0x10/0x10
[ 1220.244156][T14039]  ? rt_spin_lock+0x223/0x2c0
[ 1220.244181][T14039]  ? __pfx_rt_spin_lock+0x10/0x10
[ 1220.244201][T14039]  ? rt_mutex_slowunlock+0x239/0x2e0
[ 1220.244225][T14039]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 1220.244253][T14039]  filemap_remove_folio+0xe6/0x200
[ 1220.244280][T14039]  remove_inode_hugepages+0x593/0x1100
[ 1220.244320][T14039]  ? __pfx_remove_inode_hugepages+0x10/0x10
[ 1220.244358][T14039]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 1220.244378][T14039]  ? hugetlbfs_fallocate+0xbbc/0x1110
[ 1220.244404][T14039]  hugetlbfs_fallocate+0xbd4/0x1110
[ 1220.244427][T14039]  ? __bad_area_nosemaphore+0x11a/0x780
[ 1220.244457][T14039]  ? __pfx_hugetlbfs_fallocate+0x10/0x10
[ 1220.244494][T14039]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[ 1220.244520][T14039]  vfs_fallocate+0x672/0x7f0
[ 1220.244544][T14039]  ? __perf_event_task_sched_in+0xec/0x17e0
[ 1220.244571][T14039]  ? __pfx_vfs_fallocate+0x10/0x10
[ 1220.244598][T14039]  madvise_vma_behavior+0x3156/0x3a00
[ 1220.244629][T14039]  ? __pfx_madvise_vma_behavior+0x10/0x10
[ 1220.244656][T14039]  ? finish_task_switch+0x18b/0x950
[ 1220.244689][T14039]  ? finish_task_switch+0x266/0x950
[ 1220.244720][T14039]  ? finish_task_switch+0x266/0x950
[ 1220.244744][T14039]  ? rcu_is_watching+0x15/0xb0
[ 1220.244767][T14039]  ? trace_sched_exit_tp+0x36/0x110
[ 1220.244788][T14039]  ? __schedule+0x1709/0x4c20
[ 1220.244816][T14039]  ? mas_prev_slot+0xb34/0xbb0
[ 1220.244842][T14039]  ? find_vma_prev+0xfc/0x170
[ 1220.244862][T14039]  ? __pfx_find_vma_prev+0x10/0x10
[ 1220.244887][T14039]  ? __pfx_rcu_preempt_deferred_qs_irqrestore+0x10/0x10
[ 1220.244920][T14039]  madvise_walk_vmas+0x51c/0xa30
[ 1220.244950][T14039]  ? __pfx_madvise_walk_vmas+0x10/0x10
[ 1220.244980][T14039]  ? blk_start_plug+0x6f/0x1b0
[ 1220.245003][T14039]  madvise_do_behavior+0x38e/0x550
[ 1220.245035][T14039]  ? __pfx_madvise_do_behavior+0x10/0x10
[ 1220.245063][T14039]  ? down_read+0x181/0x1f0
[ 1220.245084][T14039]  ? handle_mm_fault+0xdb/0x3400
[ 1220.245116][T14039]  do_madvise+0x183/0x230
[ 1220.245147][T14039]  ? __pfx_do_madvise+0x10/0x10
[ 1220.245179][T14039]  ? rcu_is_watching+0x15/0xb0
[ 1220.245211][T14039]  __x64_sys_madvise+0xa7/0xc0
[ 1220.245240][T14039]  do_syscall_64+0xfa/0x3b0
[ 1220.245257][T14039]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1220.245285][T14039]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1220.245305][T14039]  ? clear_bhb_loop+0x60/0xb0
[ 1220.245327][T14039]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1220.245346][T14039] RIP: 0033:0x7fb8bd1deba9
[ 1220.245363][T14039] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1220.245380][T14039] RSP: 002b:00007fb8babb6038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[ 1220.245403][T14039] RAX: ffffffffffffffda RBX: 00007fb8bd426360 RCX: 00007fb8bd1deba9
[ 1220.245419][T14039] RDX: 0000000000000009 RSI: 0000000000600002 RDI: 0000200000000000
[ 1220.245433][T14039] RBP: 00007fb8bd261e19 R08: 0000000000000000 R09: 0000000000000000
[ 1220.245446][T14039] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1220.245458][T14039] R13: 00007fb8bd4263f8 R14: 00007fb8bd426360 R15: 00007fffc70b2808
[ 1220.245480][T14039]  </TASK>
[ 1220.245486][T14039] Modules linked in:
[ 1220.245502][T14039] ---[ end trace 0000000000000000 ]---
[ 1220.245512][T14039] RIP: 0010:filemap_unaccount_folio+0x44f/0x4a0
[ 1220.245540][T14039] Code: 9d c9 ff 48 89 df 48 c7 c6 20 4e 14 8b e8 59 dc 32 ff 90 0f 0b e8 c1 9d c9 ff 48 89 df 48 c7 c6 60 4d 14 8b e8 42 dc 32 ff 90 <0f> 0b e8 aa 9d c9 ff 48 89 df 48 c7 c6 20 4e 14 8b e8 2b dc 32 ff
[ 1220.245558][T14039] RSP: 0018:ffffc90004fdee60 EFLAGS: 00010246
[ 1220.245575][T14039] RAX: 67422c0f90306600 RBX: ffffea0001988000 RCX: 67422c0f90306600
[ 1220.245591][T14039] RDX: 0000000000000007 RSI: ffffffff8d21ad8b RDI: ffff88802e6cd940
[ 1220.245606][T14039] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[ 1220.245616][T14039] R10: dffffc0000000000 R11: ffffed1017104863 R12: 0000000000000040
[ 1220.245627][T14039] R13: 1ffffd4000331000 R14: 1ffffd4000331001 R15: ffffea0001988008
[ 1220.245639][T14039] FS:  00007fb8babb66c0(0000) GS:ffff8881268bc000(0000) knlGS:0000000000000000
[ 1220.245652][T14039] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1220.245664][T14039] CR2: fffffffffffffffd CR3: 000000003b316000 CR4: 00000000003526f0
[ 1220.245683][T14039] Kernel panic - not syncing: Fatal exception
[ 1220.246023][T14039] Kernel Offset: disabled