last executing test programs:

28m43.758011558s ago: executing program 32 (id=429):
r0 = syz_io_uring_setup(0x5c2, &(0x7f00000002c0)={0x0, 0x3594, 0x10, 0x1003, 0x21e}, &(0x7f0000000240)=<r1=>0x0, &(0x7f0000000340)=<r2=>0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000340)={0x0, 0xb4}}, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0x2a5cc081, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000004c0)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x4, 0x0, 0x80, 0x2, 0x0, 0x127})
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
io_uring_enter(r0, 0x6efc, 0x3900, 0xb, 0x0, 0x0)
io_uring_register$IORING_REGISTER_SYNC_CANCEL(r0, 0x18, &(0x7f00000000c0)={0x1, 0xffffffffffffffff, 0x0, {0x5, 0x5}, 0x1}, 0x1)

27m44.087951513s ago: executing program 33 (id=514):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000e40), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_ENABLE(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000001080)={&(0x7f0000000000)={0x5c, r1, 0x1, 0x0, 0x25dfdbfe, {}, [@TIPC_NLA_BEARER={0x48, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x2, 0x0, @loopback}}, {0x20, 0x2, @in6={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}}}]}]}, 0x5c}, 0x1, 0x0, 0x0, 0x40004}, 0x0)

25m15.655749941s ago: executing program 34 (id=748):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x20002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket$unix(0x1, 0x1, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000400)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x70bd2e, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0x2}, {0xffff, 0xffff}, {0x2}}, [@qdisc_kind_options=@q_cbs={{0x8}, {0x1c, 0x2, @TCA_CBS_PARMS={0x18, 0x1, {0x0, '\x00', 0xe8b, 0x93, 0x1, 0x3}}}}]}, 0x48}, 0x1, 0x0, 0x0, 0x20000001}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}})

16m45.912692697s ago: executing program 4 (id=1888):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r2)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r4 = openat$tun(0xffffffffffffff9c, &(0x7f00000004c0), 0x100, 0x0)
close(r4)
r5 = socket$unix(0x1, 0x1, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000380)=@newqdisc={0x78, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff3, 0xe}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x48, 0x2, {{0x100, 0x7, 0x6361, 0x5, 0xfffffffd, 0x40000006}, [@TCA_NETEM_SLOT={0x2c, 0xc, {0x5, 0x8, 0x4, 0x2, 0x1, 0x7}}]}}}]}, 0x78}, 0x1, 0x0, 0x0, 0x20000001}, 0x0)
ioctl$SIOCSIFHWADDR(r4, 0x8922, &(0x7f0000002280)={'syzkaller0\x00', @random="2b0100004ec6"})

16m44.328662602s ago: executing program 4 (id=1894):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kfree\x00', r0, 0x0, 0x200000000}, 0x18)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000000000000003000000018000180140002007665"], 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0x4000000)

16m44.195239084s ago: executing program 4 (id=1895):
r0 = memfd_create(&(0x7f0000000880)='C\x13\xfc2\x95WD\xaa\xba^\x90\xfd\x8d\xc2\xb1[\x81\xda\xda\xd6\x8c\xc99\xec\x0e*||\xe4\xb3\xc4\xb6\v\xaa\x15\x86,\xac\x8d\x89cu\x10\xdc\x93\x9b\xb4\x93\xafE*:\xe4\xdd\xa5\xa75\xb8\x1e;7\xb7.V\xdcrw[\r\x98\x93j\x9c\xf6\xf8\x99\xefF_\xcd\xdf!b\xc5\xec\ntb\xff\b\xaaF?!\x9f\a\x1a\x03\f\xe94\x1deU\x06zS\xc90\xb9voI\xa5/\xb4\xa7@\xa1\\B\xc2@\r_b\x9a\xeb\b\x81\x00V\xd6/N\xc5\xc6f\xb1\x95Z\xe5w^\xd8\xe7J\x80\xf7\xae\xafuv\x84\x9eG\xd1\xe7\x9b\xf0_9\xc2\x9b\xfd\xc3\xf3\xe4\x95P\xf1m\xcf\xc2\xe1\xe6\xa6\x8c\x11\xfb\xb8S\x8b\x92\\\asW-Ee\x02\x00\x00\x00\xd0;Q\xc1~\x89\xec\xc8\x9b\x88\a\xf2\x93\x82(\x8b\x00\xd8\xb4T\x80\x95\x93\x9c5\xcf\t\x04\x00\x00\x00\x00\x00\x00v\xef\xee+\xab\x9c\x00^R\xb2n?i=\xbe\x16\x8a\xbf\xe3\xcdB\xed\xe14\xe8\xd0\xb7\xff\xfeQ\x1c\x85n8\x1b\xc1\b\x00\x00\x00\x00\x00\x00\x00\x17\x94\xdfW<GE\xf1\xe9\xf1q\x8c\xf0\xae\x98\x8c\xe0\xc1g}\xaeW\xaa\xa1\x90\x8c\n$\xa6\xbb\x10\xaf\xc7~\x11\x03<v\xe9\xc7K\xf6]\x11)u\xd3\x15\x01}\xe25$\xb0\x86v\x80\r\x9c\xb8\xe6\xd3(\xa0G2s\xa9&\xb3QU~u\x13\x05kKp\xa6&\x8eu\x1d\xb2\xa9!\xc9\xfa\xd0dG5\xcbf<}r\xab\x9c\xd9f6iN\xaa>\x92z\xbe\xb2R)\xf1K\xd7\xaf\x99\xf6d\xe8\xec\xb7\xbd+T3\xa6\xa9\xfaY-1qs\x82\xefn*\x96\xc9\x1e\xf4\xd1\x02Dt\xc0\x19\xf7\x89\x96.D [F\xeeYW\x95\x13\xc7;\x94\x13^\x13\xaf\xf0C\x9c\xabf\x1daCS2\x02\xb0\xef\xc7\x8c\x9e\xed\a\n<V\xaa\xbfZ1\xa82\x85\x99\x0e$U\xb4X\xc7\xfa\f\b\x8f\xc4\xbeIt\xe4\xc51\xba\xb9H\xe8\x96\x94\xd7\xdc\x81\x111\t\xafl\x97\xd8T\xd40\x90ON\xaaFY\xb4\xb3\xf4\xf8JT\xc5:\xc5\aGc\xb5\x12\x90\x7f\x00\x91\xce@\xe5\xd3A\xcc\xd5|\x9f\x8e5\x042\x9a\xc1\xa1\a\xb7\xf5\xbc,\xd1\xd3k8\xc5', 0x2)
pwritev(r0, 0x0, 0x0, 0x800000, 0x0)

16m44.060767674s ago: executing program 4 (id=1896):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x15, 0x2000000000000216, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2400000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r0}, 0x10)
pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0)

16m44.0570372s ago: executing program 4 (id=1897):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x38, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r1}, 0x10)
name_to_handle_at(0xffffffffffffffff, &(0x7f0000000040)='./file7/file0\x00', 0x0, 0x0, 0x1200)

16m43.910014145s ago: executing program 4 (id=1898):
setresuid(0xee01, 0x0, 0xffffffffffffffff)
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), r1)
sendmsg$DEVLINK_CMD_RATE_NEW(r1, &(0x7f0000000540)={0x0, 0xa1ff, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r2, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
kcmp(r3, r0, 0x6, 0xffffffffffffffff, 0xffffffffffffffff)

16m28.790009386s ago: executing program 35 (id=1898):
setresuid(0xee01, 0x0, 0xffffffffffffffff)
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), r1)
sendmsg$DEVLINK_CMD_RATE_NEW(r1, &(0x7f0000000540)={0x0, 0xa1ff, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r2, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
kcmp(r3, r0, 0x6, 0xffffffffffffffff, 0xffffffffffffffff)

15m23.020775133s ago: executing program 1 (id=1998):
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x1e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x4, @tid=r1}, &(0x7f0000bbdffc)=<r2=>0x0)
timer_settime(r2, 0x1, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
splice(r3, 0x0, 0xffffffffffffffff, 0x0, 0x1, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000001280)=[{&(0x7f0000001180)="83", 0x1}], 0x1, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f00000005c0)=[{&(0x7f0000000180)="04", 0x1}], 0x1, 0x6)

15m23.011055154s ago: executing program 1 (id=1999):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480))
syz_io_uring_setup(0xa8f, &(0x7f0000000340)={0x0, 0xaee2, 0x1, 0x0, 0x13}, &(0x7f0000000000), &(0x7f0000000040))
socket$nl_route(0x10, 0x3, 0x0)
socket$unix(0x1, 0x1, 0x0)
r1 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_STAT_SET(r1, 0x0, 0xc094)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0x3, &(0x7f0000000300)=ANY=[], &(0x7f0000000280)='GPL\x00', 0xa, 0x0, 0x0, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
socket$inet_udplite(0x2, 0x2, 0x88)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000600)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file1\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mknod$loop(&(0x7f0000000180)='./file0\x00', 0x6000, 0x0)
r4 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
r5 = dup2(r4, r4)
ioctl$BLKTRACESETUP(r5, 0xc0481273, 0x0)
ioctl$BLKTRACESTART(r4, 0x1274, 0x0)
ioctl$BLKTRACETEARDOWN(r5, 0x1276, 0x0)

15m21.824594227s ago: executing program 1 (id=2000):
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
r1 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x10, &(0x7f0000000080)=[@in={0x2, 0x0, @private=0xa010101}]}, 0x0)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f0000000000)={0x1, [<r2=>0x0]}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000000)={r2}, &(0x7f0000000040)=0x8)

15m21.696583473s ago: executing program 1 (id=2001):
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x8, 0x1}, 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f0000000740)=@framed, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000100)='kmem_cache_free\x00', r0}, 0x18)
syz_emit_ethernet(0x86, &(0x7f0000000180)={@local, @random="ce3500590a7f", @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x78, 0x0, 0x2, 0x0, 0x11, 0x0, @empty, @empty}, {0x4e23, 0x0, 0x64, 0x0, @wg=@response={0x2, 0x0, 0x0, "a1ee206bf1c7506f731484b6a8ad6ba5fec73600c960a5e1e5c011531c7d96f6", "5f8d1da3bea3c456fef675c1b12460de", {"f9e400d5e0eec96a2ba94b486b52a6d4", "3942bc09e9bc342016741b7f661232b2"}}}}}}}, 0x0)
syz_emit_ethernet(0x32, &(0x7f0000000380)={@broadcast, @random="67eaa8fce250", @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x2, 0x0, 0x24, 0x0, 0xe000, 0x3, 0x11, 0x0, @empty, @empty}, {0x4, 0x0, 0x10, 0x0, @opaque="b5ace4c70521b9b4"}}}}}, 0x0)

15m21.644689563s ago: executing program 1 (id=2002):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000180)='sys_enter\x00', r0}, 0x10)
iopl(0x2)

15m21.579042501s ago: executing program 1 (id=2003):
set_mempolicy(0x6005, &(0x7f0000000080)=0xfffffffffffffffd, 0x4)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
close(r1)
socket$netlink(0x10, 0x3, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}})

15m5.526459637s ago: executing program 36 (id=2003):
set_mempolicy(0x6005, &(0x7f0000000080)=0xfffffffffffffffd, 0x4)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
close(r1)
socket$netlink(0x10, 0x3, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}})

12m7.145024512s ago: executing program 8 (id=2452):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB], 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x8ff20c2c10f0093d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prctl$PR_SET_MM(0x23, 0xa, &(0x7f00002d5000/0x2000)=nil)
r1 = syz_open_procfs(0x0, &(0x7f00000001c0)='environ\x00')
preadv(r1, &(0x7f0000001400)=[{&(0x7f0000000040)=""/113, 0x200000b1}], 0x1, 0x0, 0x0)

12m5.936472825s ago: executing program 8 (id=2457):
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r0=>0x0)
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r0, 0x1, &(0x7f0000000040)={{0x77359400}, {0x77359400}}, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
ioctl$PPPIOCATTCHAN(0xffffffffffffffff, 0x40047438, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
setresuid(0x0, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={0xffffffffffffffff, 0x0, 0x0, 0x4b, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, &(0x7f0000000000), 0x0}, 0x50)

12m5.65266656s ago: executing program 8 (id=2460):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a58000000060a0b040000000000000000020000002c0004802800018007000100637400001c0002800800014000000002080002400000000b05000300000000000900010073797a30000000000900020073797a320000000014000000110001"], 0x80}}, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000d40)={<r2=>0xffffffffffffffff})
sendmsg$inet(r2, &(0x7f0000000b00)={0x0, 0xf22fff7f, &(0x7f0000000180)=[{&(0x7f0000000080)="31de76fb398bc62d058b8a96924594f5476a0824be53f7a5949f80614c42391e4b80412938c955d34d37eb96ba7849c3eb823bb36724bd6f6d0219cfe5c884afcd2bdea5acf9c877c03dcdbbb3e47417b6707c27d4c5c1db1924071f6b6f23c7d199c799c9b0c41101e625fcdb7bbfd12a3eeeef4540a5698f058aaf6a141e5d333929b92a7f64e925bf0ef424c3ef29fcd5fd4721c547fde6abe4d47048b64511693624b0d786711abe4a66e250fcbfe95ac9037e58f331b26b6ed0d08e5c73ba4c49", 0xc00e}], 0x9, &(0x7f00000001c0)=[@ip_tos_int={{0x7ff4d4260000}}, @ip_ttl={{0x14}}, @ip_ttl={{0x14}}, @ip_tos_u8={{0x11}}, @ip_tos_u8={{0x11, 0x2}}, @ip_retopts={{0x0, 0x0, 0x7, {[@lsrr, @generic={0x0, 0x0, "96"}, @generic={0x0, 0x0, "206a77bdd1a004129054e7704a"}]}}}], 0xf}, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r3 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
r4 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_int(r4, 0x107, 0xa, &(0x7f0000000040)=0x1, 0x4)
write$tun(r1, &(0x7f0000000280)={@val={0x6f01, 0x800}, @val={0x1, 0x0, 0x14, 0x0, 0x14}, @mpls={[], @ipv4=@tcp={{0x6, 0x4, 0x0, 0x0, 0x3f, 0x0, 0x0, 0x0, 0x84, 0x0, @empty=0x3fffffff, @local}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x5, 0xb, 0x0, 0x0, 0x0, 0x18, {[@window={0x9, 0xfffffffffffffec4}, @timestamp={0x5, 0x2}, @generic={0x0, 0x2, "d58838068b91"}]}}}}}}, 0xfd6c)

12m4.917522689s ago: executing program 8 (id=2472):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
creat(&(0x7f00000000c0)='./file0\x00', 0x48)
pipe2$9p(&(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r3 = dup(r2)
write$P9_RLERRORu(r3, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r3, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @ib_path={0x0}}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000800)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085"], 0x0, 0x101, 0x0, 0x0, 0x41100, 0x59, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
write$binfmt_elf64(r3, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r3])
open(&(0x7f00000001c0)='./file0\x00', 0x300, 0x40)

12m4.509450594s ago: executing program 8 (id=2475):
r0 = mq_open(&(0x7f0000000180)='\r\x00elinu\xef\xe3elinux\x00\x96\xf6\x92\n#*\xac\x05\xce\xf8D\\\x9a\xe6[]L+\xf6\v\xe8\xf2\xd3\b\x15\n\xb8F!Q9o\x1f#\xbdt\r\xfb\"\x18%\xfdM\xaf_t\xd2\xdcJ\x10\a\xbab\x1a\xdf\xb1\xbdU\xd7Lo\xe7\xac\x81\x10k\xce-\xf5@\xbb\x9d;\xe8\xf6\xffQ\x04\xaai\x92k\x1b;\xddM\xa2\xe1-\x0e\xd8\xde\x00\xff\x18\xdd\bL\xfb\xa2.\xb6{\xb5\x85#\x88\xdc\xf0\x0f\x05\xf1\xc4 \xdeV\x80q\xf7\x04\xf5\x85T\x1f\xc2S]*\xc9lw\xd3J\xc5\xe8\x02\xcb\xbbAHxr\xac\xb77F\xdf\x1c\xcb\xd4\xce\x88L\xf1\xf9[\x98\xd4+pTx\x95\xb5\x1b]x\x1a\x95\xe1c6\xe7`83\xb7n#\xe0\xc1_\xec\xba\xde\a\x8b\xc5\x86woo\xbc\x1c\xa3r\x82\xf3enq-\x90/\xed\xff\xad+\x03\x10\t\xda\xfd\xa2\xd0\xef4\n%\xf1\xd8', 0x6e93ebbbcc0884f2, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x8, 0x1}, 0x48)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r1}, 0x18)
mq_getsetattr(r0, &(0x7f00000007c0)={0x800, 0x1ed00000000002, 0x9, 0x9a}, 0x0)

12m4.032823406s ago: executing program 8 (id=2477):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000003940)=ANY=[@ANYBLOB="210000000000000000000000000010000004"], 0x48)
mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x2, 0x13, r0, 0x0)
r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
process_vm_writev(r1, &(0x7f0000001c80)=[{&(0x7f0000001bc0)=""/156, 0x9c}], 0x1, &(0x7f0000001d80)=[{&(0x7f0000001cc0)=""/116, 0x20001c34}], 0x1, 0x0)

11m48.907477759s ago: executing program 37 (id=2477):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000003940)=ANY=[@ANYBLOB="210000000000000000000000000010000004"], 0x48)
mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x2, 0x13, r0, 0x0)
r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
process_vm_writev(r1, &(0x7f0000001c80)=[{&(0x7f0000001bc0)=""/156, 0x9c}], 0x1, &(0x7f0000001d80)=[{&(0x7f0000001cc0)=""/116, 0x20001c34}], 0x1, 0x0)

10m36.98987935s ago: executing program 9 (id=3060):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2b}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0xfffffffc}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x64}, 0x1, 0x0, 0x0, 0x4000850}, 0x24000000)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x4000000)
prctl$PR_SET_NAME(0xf, &(0x7f00000002c0)='+}[@\x00G5\v\x89n\xb2\x0e\xb7\xb4\x9a\xb3\xb9\xe1\xff@`\x87\xefy\xb7\xe0\xe6c\x91\x81ND\t3\xc4\xca\xf0\xd0Zp\xadbdY\xdcz\xc6lo\xd0\xc7\'CT')
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07372c29184ff7f4a7c0000070000006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1088d8b8588d72ec29c48f0af5f2d9f51c4b45e0000000000000401d01aa27ae8b09e00e79ab20b0b8ed8fb7a68af2ad0810000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d40224edc5465ad32b77a74e802a0dc6bf25cca242bc6099ad2300000480006ef6c1ff0900000000000010c63a949e8b7955394ffaff03000000000000ab87b1bfeda7be586602d985430cea080000000000000026abfb0767042361448279b05d96a703a660581eecdbf5bcd3de227a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b6c7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae645ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb9fbd48fc877505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f57000000009700cf0b4b8bc229413300000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaedab25b30002abbba7fa725f38400be7c1fb8f72cd317902f19e385be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec2271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761038b75d4fe32b561d46ea3abe0fa7956488bef241875f3b4b6ab7929a57affe760e797724f4fce1093b62d7e8c7123d890decacec55bf404e4e1f74b7eed82571be54c72d978cf906df0042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe582786105c70600000000000000b7561301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f870b136345cf67ca3fb5aac518a75f9e7d7101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562db0e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb26e22a2a998de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f154772f514216bdf57d2a40d40b51ab67903ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1594e32409e2a3bce109b6000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270bb29b81367ac91bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f00fb8191bbab2dc591dda61f0868afc4294859323e7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214d00000000d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ce21d69993e9960ff5f76015e6009756237badf4e7965bbe2777e808fcba821a00e8c5c39609ff854356cb490000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab40743b2a428f1da1f68df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c471c784ae7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d42645288d7226bbd9c9e9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff000040430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec30cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e2df4ca23d867693fd42de9b49a1b36d48a44ba6a4530e59bec53e876dc660dd63bed8d31c31c37a373d4efd89f0000377b1b1292a893a516dab183ee65744fb8fc4f9ce2242e0f0059161c5e0000000000000000000057d77480e0345effff6413258d1f6eb190aa28cbb4bafe34124172e436b176c7ed4b132fb805d5edd9d188daf28d89c014c3ecca10ae55704544673e1fa03b84f63e022fe755f4007a4a899eaf52c4f491d8e97c862e29e457060000007ac691faee1e0c8fe056a07474e6e5490a7d3c3402000000b60600d837c6befc63ddf2f594ad7cbc56a1e44d218c956a5392a995f1fae8e9f206efbb33854dc70104ebc1581848f9745cb796da2dfb714a0500000000000000faed94fc39acfb3fd25dfa8116a154cd1226e1bb72b59fed817072a0da60160761fd3dffda0f7c592eabd8ab68334d2a1693cb187539049e331272bf5135044df8161400211b8012b6eb1ed5656e83f65509bb4b323c5bd61bff949d3bade2f6ffda1360c2786e16937ab61d6dcafed319c716357d0885f9c6d1f442954c167dd9b4acd9468ce3674c82bbb2e31389179b025dbe063b7f906217b2cf8410c7023aa3e5cc3ba1000000000000000000000000000000006ae6301a2da44394275c582a6516bb92ea1980a0a659f2f1811c8b281c209647c4241f292b20508b215dde27bb2487a6e2b5e4a8ccfab90c23827ef06cbe364073005f8a6d1456aaeb85ffb7858f24eced67a67ab825e863928ed64c83f62ffdaa997657335b63c6b4163aff094059e626766845fd779c9e6cdbbd64c24936615ee68538e8fddd0d90f3a7579579a142c0f7b318264d5c13c31cf475829528267ead38523cab7e1664e8426ca85e82ccf821c8a02a7e7d954d05b68a9c28f79429b09e2bb3681ae2b831e27c735123361c193d66ed4d71f19b199d371ec6bfada7cd370e3fdd3cd980fa1e145fd3f3e96b1feb53c865e1ad6acf5d16ed652ee0c7f45352222692fbd679212c225d097aa90f7e1fb1f983415f43e75a19ecf7fd21bfa150ef563aa72ba1c43c5f3d9be128ec26b691f31f9cab931631606a81622f120675c962be2d3b5e95f74f0b209e42e6bdd76e6e725295b1d78d928f6f63c41cbde2ba66ad81168070c8c6e18a6e452a31bdc4a60d637545ed4c8a1c649c3ce54ad3e16304d06a234f5f9311ef0f78924b68dbb4712efdb6974667bdb54f16fd2061b9ba93638dd177227e94e4ebd0ec1d437db948062bf41742000000000000000000305f70dd02fa0c61d5fe6d8ff35389246037e18d34c1375ae04f44f0c2543c772c5ccb137be7dc1874c5140200000054d77d4ea5ed144a648257f4a0301067bbcd9b91072659d872f26b796e2b81025edb5f45f785e2c2602b248ecdd80f019ca659be7e8ae953325a27564f33c9d458a60be3dab38baab7eb1a66ab1ffd6308f7fd51beb356fe75eb985b7581bb5584c53984ba9c7340f97e8d3825681c53de5f554e595b00000000000000006a8fa9f05d64c4be42f981f00051a3bc38613067dbd1427e01bfec016e51844cefa8a855bf23ac887b4a88eed6d9443857242f28e31a41d20105fbf3394ff910e734b4d9101265ff729c426e01c1ab13dda8c388b9e6626f19eecb87e39175e85e17000000000000000000009431807e43886903526074e6b40244c938a4c68a38c25ddd7c143b3f14eafe4b28ec66815cf8d1f56aa1424bc9b5d58790298e5b310969e50c222563b54e60854e1bfeef448aca8c5ccbf5546ce4c3cd5a733fec25fb94e1e0f966bcbd28a4d8fe4f556eaa1104a793006619700798354c6ae0040965e3083562bfa20968c04007d21dc02c9fd1f75e1ff40f439bdde4e784012e52049b483f02f81b88f5f57816b3fecec79cfca8d37203e769759d6b6a56b7605ced8ee18475a77ff0963a565fb6021d216c01b1098e40550a1cfd80e9180100000000000000654cd76ca61fe5ad8a31ec558fdbfa706d5e738bceae81fe777c307d5bc72183a4c2d35732e74dd690c57bdfdc1f069f9491bca7a8c59363799be70018c25ece5ad7307dc7a95c51bc25a8bbe2cf5ddf6aa161693782b0e7feb8a768f391b49d4c978c96dbb52f21c122eba9f17c8bed10591958cf06321a248b5f76ceedfe0d080d6aeadc11b237b3326dd04b86ac37c0d131544888db9e128d059761ad9a393e96c3b41c13c5a381bff187a75de560ba6eb3faa5ff8d2bb3c88f8de5efc2fb2200cfda6d07ceae22577064334fbf76a23e62e6059211d995b879f6b7d3f7fcf03652b81e6b7cdeff947ad185d3c6269ca247b429c3b872a8f1ef60407d29a874f4ec31c9effed55543a65a6b4d778cebcd43b7905f3960140bd783540a7353014bda8e9c7a34a5f428fd1f8eb11e837dd9d586487fdebcb1ecd3a003ff0fda4be617fecf1ff0ef2cdfb7fea73ca18874664d60a4b9423f3297bc8eb91b4ee1d73272ab28a7d7ab055a8eb58fe379de85338304e26e3620941b463e9049fd105c74c91cc4d71b0f76e2c2e4825106aa7ce2a3adbbc7a0443ece98c077b358e752b439132a0f27080ece2a94c320b002c77f82662675a7713c7067081cac15994698c41ff4754268ae2676384ff799783f55d7e5a1a092a01b965dc99cb7a9d98440c355927629f2bcf9dc2396eb2f5d25829715b24327642ac48f1201014a95e0e65e12cdf27e19043e3c5d3e798375cead35b9a93190a52cdecaaccc854a1d41ef365303f0e9b4fc969c9dab6df5e8a795b140fcc09e8a7b694d12932917facd8ceaa4e2d0d16bb0b95387fcd5ff136d8abddf94daf442bbff744591931872a36cf921ad69f2127386e8b0f9afee4da8d3fbec809fbb3ca0fded2859cf25d4c6155d396c5b9bd1a928923123f63f4c40688eae69990a9419456247bbaeb7948de84d2ff875414883bb1e503d4bfebc01bc12a53ea06bf38e571157bd642dac25dbee7832c58378374a39483d6721eec96c28911db21c0c006b42afc90000000000000000000000700000000000000000008ce4ea442c1a207108b35511186c5e860278f6463f52f3990ce08b1bfccc3cff4b5ae27b610aa9ba11b47d4f94c439e055cdbb2b12c983885c93ea4ab4ca1e02d831ae162ee104"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xffffffffffffff27}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
flock(0xffffffffffffffff, 0x2)
socket$nl_route(0x10, 0x3, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl(r1, 0x40, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'batadv0\x00', <r2=>0x0})
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)=@newtfilter={0x24, 0x11, 0x1, 0x691522ec, 0x0, {0x0, 0x0, 0x74, r2, {0x10, 0xf}, {}, {0x5}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0x4044880}, 0x0)

10m36.706857859s ago: executing program 9 (id=3062):
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000140)={@fallback, 0xffffffffffffffff, 0x7}, 0x20)

10m36.460848586s ago: executing program 9 (id=3065):
mkdir(&(0x7f0000000580)='./file0\x00', 0x92)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
lseek(r0, 0x101, 0x1)
getdents64(r0, 0x0, 0x37)

10m36.09659242s ago: executing program 9 (id=3071):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x20, 0x3, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x99ee}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000002380)={r0, 0x0, 0x2d, 0x0, @val=@netfilter={0x2, 0x4, 0x600, 0x1}}, 0x20)
r1 = socket$kcm(0x2, 0x5, 0x0)
sendmsg$inet(r1, &(0x7f00000004c0)={&(0x7f0000000080)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xff}}, 0x10, &(0x7f0000000000)=[{&(0x7f0000000140)="9f", 0x1}], 0x1}, 0x3e8)

10m35.88340798s ago: executing program 9 (id=3074):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000005000000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x20000a, 0xcd}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
fstat(r0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xc1103000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000003c0), 0x8000, 0x0)
ioctl$TCSBRKP(r1, 0x5425, 0xfffffffffffffffb)
r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
ioctl$TCSETSW2(r2, 0x5408, &(0x7f00000001c0)={0x10000ff, 0x3eb, 0x0, 0x7fffffef, 0x0, "3ff5cf000000000000070010000000e4ff00", 0x1002, 0xfffffffc})

10m34.641956232s ago: executing program 3 (id=3093):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000060000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = socket$netlink(0x10, 0x3, 0xb)
bind$netlink(r2, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2fffffffd}, 0xc)
close(r2)

10m34.509085651s ago: executing program 3 (id=3094):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000007b00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r0, 0x0, 0x82}, 0x18)
r1 = openat$binfmt_register(0xffffffffffffff9c, &(0x7f00000000c0), 0x1, 0x0)
write$binfmt_register(r1, &(0x7f0000000200)={0x3a, 'syz3', 0x3a, 'M', 0x3a, 0x6, 0x3a, '@', 0x3a, '\\', 0x3a, './file0', 0x3a, [0x46]}, 0x2a)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r2, 0x0, 0x40004)
socket$netlink(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f0000000140)={'batadv0\x00', <r3=>0x0})
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000280)={0x0, 0xfffffffffffffe88, &(0x7f0000000240)={&(0x7f0000000080)=@newtfilter={0x24, 0x11, 0x1, 0x70bd2a, 0x0, {0x0, 0x0, 0x74, r3, {0x10, 0xfff3}, {0x2}, {0xfff1}}}, 0x24}, 0x1, 0xf0ffffffffffff}, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000100)={0x0, &(0x7f0000000340)=""/223, 0x0, 0xdf, 0x1, 0x1}, 0x28)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0}, 0x18)

10m33.778762989s ago: executing program 9 (id=3100):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x4, 0x0, 0x0, 0x41100, 0x6c, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000300)='kfree\x00', r1}, 0x10)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000080)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0xa802, 0x0)
close(r3)
socket$netlink(0x10, 0x3, 0x0)
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f00000000c0)={'syzkaller0\x00', @broadcast})
r4 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
r6 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=@gettclass={0x24, 0x2a, 0x129, 0x0, 0x25dfdbfd, {0x0, 0x0, 0x0, r5, {0x939e02dc105d5baa, 0xfff5}, {0xe}, {0x8, 0xfff1}}}, 0x24}}, 0x40004)
recvmmsg(r6, &(0x7f0000005140)=[{{0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000640)=""/211, 0xd3}, {&(0x7f0000002040)=""/4097, 0x1001}, {&(0x7f0000000540)=""/212, 0xd4}, {&(0x7f0000000180)=""/192, 0xc0}], 0x4}, 0x8}], 0x1, 0x0, 0x0)

10m33.652681478s ago: executing program 3 (id=3102):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000580)={r0, 0x0, 0x44, 0x0, &(0x7f0000000080)="f6f4e9a10000502468da5eb1c6b2feff8833c0000000000000c548dc7914cb11ad63bf3707164aac031971c4be105eb953f86fbc6b204e076aa7a493e796123bbbd8e3b7e62d8fd097cf21d6d431a069ebc0aefd5fce80cc99fb38c771fa46e2c32a95fe99", 0x0, 0x86, 0x0, 0xffffffffffffff80, 0x0, &(0x7f0000000000)="daf9e846ab156efc71b59652333536dbfd26a6d0546366e36eb77dd0aaa2dbe567d168904cf0d5bce1771889c98ffc0abf", 0x0}, 0x15)

10m33.56854259s ago: executing program 3 (id=3103):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x15, 0x2000000000000216, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2400000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r0}, 0x10)
setuid(0x0)

10m33.340830451s ago: executing program 3 (id=3105):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x8ff20c2c10f0093d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prctl$PR_SET_MM(0x23, 0xa, &(0x7f00002d5000/0x2000)=nil)
r1 = syz_open_procfs(0x0, &(0x7f00000001c0)='environ\x00')
preadv(r1, &(0x7f0000001400)=[{&(0x7f0000000040)=""/113, 0x200000b1}], 0x1, 0x0, 0x0)

10m32.08954276s ago: executing program 3 (id=3110):
r0 = socket$netlink(0x10, 0x3, 0x10)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000800b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x8, &(0x7f0000000000)=0x80, 0x4)
r3 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000300)={0x34, r3, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x8000)
r4 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r4, &(0x7f0000514ff4)={0x10, 0x0, 0x2, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r4, 0x1, 0x8, &(0x7f0000000000), 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r4, 0x10e, 0x4, &(0x7f0000000640)=0x1800, 0x4)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x40)

10m18.644308581s ago: executing program 38 (id=3100):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x4, 0x0, 0x0, 0x41100, 0x6c, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000300)='kfree\x00', r1}, 0x10)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000080)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0xa802, 0x0)
close(r3)
socket$netlink(0x10, 0x3, 0x0)
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f00000000c0)={'syzkaller0\x00', @broadcast})
r4 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
r6 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=@gettclass={0x24, 0x2a, 0x129, 0x0, 0x25dfdbfd, {0x0, 0x0, 0x0, r5, {0x939e02dc105d5baa, 0xfff5}, {0xe}, {0x8, 0xfff1}}}, 0x24}}, 0x40004)
recvmmsg(r6, &(0x7f0000005140)=[{{0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000640)=""/211, 0xd3}, {&(0x7f0000002040)=""/4097, 0x1001}, {&(0x7f0000000540)=""/212, 0xd4}, {&(0x7f0000000180)=""/192, 0xc0}], 0x4}, 0x8}], 0x1, 0x0, 0x0)

10m16.921546381s ago: executing program 39 (id=3110):
r0 = socket$netlink(0x10, 0x3, 0x10)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000800b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x8, &(0x7f0000000000)=0x80, 0x4)
r3 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000300)={0x34, r3, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x8000)
r4 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r4, &(0x7f0000514ff4)={0x10, 0x0, 0x2, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r4, 0x1, 0x8, &(0x7f0000000000), 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r4, 0x10e, 0x4, &(0x7f0000000640)=0x1800, 0x4)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x40)

3m41.464746328s ago: executing program 5 (id=5010):
syz_emit_ethernet(0x14, &(0x7f00000005c0)={@local, @local, @val={@void, {0x8100, 0x3, 0x0, 0x1}}, {@generic={0x8863, "5aa7"}}}, 0x0)

3m41.427566361s ago: executing program 5 (id=5011):
r0 = syz_open_dev$sndmidi(&(0x7f00000002c0), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, 0x0, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec850000007d000000850000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000900)={0x0, r2, 0x0, 0x1}, 0x18)
move_pages(0x0, 0x1efe, &(0x7f0000000080), 0x0, &(0x7f0000000040), 0x0)

3m41.288682317s ago: executing program 5 (id=5013):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
r2 = syz_io_uring_setup(0x239, &(0x7f0000000740)={0x0, 0xf803, 0x10100, 0x0, 0x0, 0x0, r1}, &(0x7f0000000180)=<r3=>0x0, &(0x7f00000001c0)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd=r0, 0x0, 0x0, 0x0, {}, 0x1})
read$FUSE(r1, &(0x7f00000007c0)={0x2020}, 0x2020)
io_uring_enter(r2, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
r5 = syz_open_dev$mouse(&(0x7f0000000180), 0x0, 0x2)
readv(r5, &(0x7f0000000980)=[{&(0x7f0000000000)=""/58, 0x3a}], 0x1)

3m40.239549274s ago: executing program 5 (id=5016):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000740)={0xc0, 0x36, 0x2, 0x70bd28, 0x25dfdbfc, "", [@generic="ef2c04e39bf75096de5a2960042a80d377b9ec8325e2f932185c1ce10ba88585033dab08b75ee83cc7c991e40e8d7ec2ca3c4679f03267", @nested={0x4, 0x100}, @generic="c0e2d76ece076559a7ae9c17c74313f02c4bf9fdb9ba7a6fff45147d7a97f86a0af4da9eecb85d44cd5ad7bf94f115ef155af58968317b913561529a361a6f17d26d013ecc0965eb61a798d126ce5084386ab99115f91a0085fa683e11e4e0bad746d874a0", @typed={0x8, 0xc3, 0x0, 0x0, @ipv4=@multicast1}, @nested={0x8, 0xfe, 0x0, 0x1, [@typed={0x4, 0x3b, 0x0, 0x0, @binary}]}]}, 0xc0}], 0x1, 0x0, 0x0, 0x40000}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000680)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r1, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r2, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)

3m40.097289941s ago: executing program 5 (id=5018):
r0 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000380), 0x2, 0x0)
ioctl$VIDIOC_ENUMSTD(r0, 0xc0485619, &(0x7f00000003c0)={0x8, 0x1000, "88ccc5daf80cd6a4471030967393bca9378705edf628163e", {0x7, 0x2}, 0x800})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
syz_open_dev$dri(&(0x7f0000000340), 0x4, 0x20000)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x2, @pix_mp={0x0, 0x0, 0x50313134, 0x0, 0xa, [{}, {0x10}, {}, {0x0, 0xffffffff}, {0x6}]}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
ioctl$vim2m_VIDIOC_S_CTRL(0xffffffffffffffff, 0xc008561c, &(0x7f0000000180)={0xf0f015, 0x4})
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r5, &(0x7f00000000c0)={0x26, 'hash\x00', 0x0, 0x0, 'cmac(aes-generic)\x00'}, 0x58)
r6 = accept4(r5, 0x0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r5, 0x117, 0x1, &(0x7f0000000300)="ad56b6c5820fae9d6dcd3292ea54c7be", 0x10)
sendto$inet6(r6, &(0x7f0000000080)="255b2a20f709b4a43a1307c620044218fe1f90c892edda55948fc95472faf24df297a8e4228b32dcc11a0a004c287b035078ffffffffffeffffdfc5955de", 0xfffffffffffffd0b, 0x800, 0x0, 0x0)
r7 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet6_group_source_req(r7, 0x29, 0x2e, &(0x7f0000000000)={0x0, {{0xa, 0x4e24, 0x4, @mcast2, 0x4}}, {{0xa, 0x4e20, 0x2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x3fe000}}}, 0x108)
setsockopt$inet6_group_source_req(r7, 0x29, 0x2e, &(0x7f0000000280)={0x0, {{0xa, 0x4e20, 0x4, @mcast2}}, {{0xa, 0x4e23, 0x9, @private2, 0x5}}}, 0x108)
syz_emit_ethernet(0x46, &(0x7f0000000440)=ANY=[@ANYBLOB="5f00000000003df150d0555f86dd60d2339600103afffe80000000000000000000000000e5d8e8528b535f890b0000000000000000018600907800fd020001000000060a0000"], 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
ioctl$FS_IOC_SETVERSION(r1, 0x40047602, &(0x7f0000000080)=0x7f)
r8 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r8, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})

3m25.203897641s ago: executing program 5 (id=5040):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r2, 0x6, 0x13, 0x0, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r2, 0x6, 0x14, &(0x7f0000000280)=0x1, 0x4)
connect$inet6(r2, &(0x7f0000000080)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @remote}}, 0x1c)
sendto$inet6(r2, &(0x7f00000001c0)="a6", 0x1, 0x840, 0x0, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR(r2, 0x6, 0x13, &(0x7f0000000100)=0xffffffffffffffff, 0x4)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r2, 0x6, 0x23, &(0x7f00000003c0)={&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x0, 0x0, 0x0, &(0x7f0000002380)=""/4082, 0xff2, 0x0, 0x0}, &(0x7f0000000300)=0x40)
r3 = openat(0xffffffffffffff9c, 0x0, 0x42, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00'}, 0x2d)
r4 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r4, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r4, 0x1, 0x8, &(0x7f0000000000), 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r4, 0x10e, 0x4, &(0x7f0000000640)=0x401800, 0x4b)
r5 = socket$kcm(0x10, 0x2, 0x0)
r6 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r6, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000380)="2e00000010008188e6b62aa73772cc9f1ba1f848110000005e140602000000000e000a001000000002900000121f", 0x2e}], 0x1}, 0x0)
sendmsg$kcm(r5, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="2e00000010008188040f80ec59acbc0413a1f848110000005e140602000000000e000a000f00000002800000121f", 0x2e}], 0x1}, 0x0)
sendmsg$DEVLINK_CMD_PORT_SPLIT(r3, &(0x7f0000000280)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000001c0)={&(0x7f0000000100)={0x44, 0x0, 0x100, 0x70bd2a, 0x25dfdbff, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x2}}, {0x8, 0x9, 0x6}}]}, 0x44}, 0x1, 0x0, 0x0, 0x40000}, 0x4000810)

2m24.115443703s ago: executing program 6 (id=5165):
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(des3_ede)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292", 0xc)
accept4(r1, 0x0, 0x0, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80202, 0x0)
syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
pselect6(0x40, &(0x7f00000001c0)={0x20, 0x0, 0x20000000000, 0xfffffffffffffffd, 0x0, 0x0, 0x1000001000, 0x49}, 0x0, &(0x7f00000002c0)={0x3ff, 0x7, 0x0, 0x9, 0x0, 0xf, 0x80000006}, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

2m23.764722985s ago: executing program 6 (id=5167):
pipe(&(0x7f0000000080))
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8000}, 0x0)
pipe2(0x0, 0x80c80)
rt_sigprocmask(0x3, 0x0, &(0x7f0000000240), 0xfea4)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000000), 0x10, 0x0}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000080)=ANY=[], 0x48)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDSIGACCEPT(r0, 0x5607, 0x2c)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r2 = dup(r1)
ioctl$TIOCL_SETVESABLANK(r2, 0x560e, &(0x7f0000000140))
r3 = syz_open_dev$tty1(0xc, 0x4, 0x4)
ioctl$VT_ACTIVATE(r3, 0x5606, 0x4)
ioctl$TIOCL_BLANKSCREEN(r3, 0x541c, &(0x7f0000000000))
set_tid_address(&(0x7f0000000040))
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8923, &(0x7f00000000c0)={'bond_slave_0\x00', @random="0137013710ff"})
ioctl$VT_RESIZEX(r2, 0x560a, &(0x7f0000000080)={0xd, 0x18, 0x3, 0x0, 0x0, 0x1000})
socket$nl_netfilter(0x10, 0x3, 0xc)
prlimit64(0x0, 0xe, &(0x7f0000000600)={0x9, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
getpid()

2m22.646793311s ago: executing program 6 (id=5169):
syz_emit_ethernet(0x1, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000380)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x0)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000280)={{}, 0x0, &(0x7f0000000140)='%-010d \x00'}, 0x20)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
clock_adjtime(0x0, &(0x7f0000000040)={0xd51, 0x0, 0x8, 0x0, 0x0, 0x4, 0x4, 0x0, 0x0, 0x7fffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0x100})
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x143102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_TIMER_IOCTL_TREAD_OLD(r1, 0x40045402, 0x0)
read(r1, 0x0, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4008880}, 0x800)

2m21.603078654s ago: executing program 6 (id=5170):
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount$afs(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f00000011c0)=ANY=[@ANYBLOB='dyn'])
chdir(&(0x7f00000000c0)='./file0\x00')
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', 0x0, 0x0, 0x0)
mount$afs(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000280), 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='dyn'])

2m21.495324912s ago: executing program 6 (id=5171):
r0 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000380), 0x2, 0x0)
ioctl$VIDIOC_ENUMSTD(r0, 0xc0485619, &(0x7f00000003c0)={0x8, 0x1000, "88ccc5daf80cd6a4471030967393bca9378705edf628163e", {0x7, 0x2}, 0x800})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
syz_open_dev$dri(&(0x7f0000000340), 0x4, 0x20000)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x2, @pix_mp={0x0, 0x0, 0x50313134, 0x0, 0xa, [{}, {0x10}, {}, {0x0, 0xffffffff}, {0x6}]}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
ioctl$vim2m_VIDIOC_S_CTRL(0xffffffffffffffff, 0xc008561c, &(0x7f0000000180)={0xf0f015, 0x4})
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r5, &(0x7f00000000c0)={0x26, 'hash\x00', 0x0, 0x0, 'cmac(aes-generic)\x00'}, 0x58)
r6 = accept4(r5, 0x0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r5, 0x117, 0x1, &(0x7f0000000300)="ad56b6c5820fae9d6dcd3292ea54c7be", 0x10)
sendto$inet6(r6, 0x0, 0x0, 0x800, 0x0, 0x0)
r7 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet6_group_source_req(r7, 0x29, 0x2e, &(0x7f0000000000)={0x0, {{0xa, 0x4e24, 0x4, @mcast2, 0x4}}, {{0xa, 0x4e20, 0x2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x3fe000}}}, 0x108)
setsockopt$inet6_group_source_req(r7, 0x29, 0x2e, &(0x7f0000000280)={0x0, {{0xa, 0x4e20, 0x4, @mcast2}}, {{0xa, 0x4e23, 0x9, @private2, 0x5}}}, 0x108)
syz_emit_ethernet(0x46, &(0x7f0000000440)=ANY=[@ANYBLOB="5f00000000003df150d0555f86dd60d2339600103afffe80000000000000000000000000e5d8e8528b535f890b0000000000000000018600907800fd020001000000060a0000"], 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
ioctl$FS_IOC_SETVERSION(r1, 0x40047602, &(0x7f0000000080)=0x7f)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})

2m20.490068709s ago: executing program 6 (id=5175):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x11, 0x8, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x1f)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={0x0, r0}, 0x18)
r1 = syz_open_dev$dri(&(0x7f00000008c0), 0x5c9, 0x500)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f00000001c0)={0x0, &(0x7f00000000c0)=[<r2=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCRTC(r1, 0xc06864a1, &(0x7f00000004c0)={0x0, 0x0, r2, <r3=>0x0})
ioctl$DRM_IOCTL_MODE_DIRTYFB(r1, 0xc01864b1, &(0x7f0000000100)={r3, 0x1, 0x7, 0x0, 0x0})

2m18.698399339s ago: executing program 40 (id=5175):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x11, 0x8, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x1f)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={0x0, r0}, 0x18)
r1 = syz_open_dev$dri(&(0x7f00000008c0), 0x5c9, 0x500)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f00000001c0)={0x0, &(0x7f00000000c0)=[<r2=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCRTC(r1, 0xc06864a1, &(0x7f00000004c0)={0x0, 0x0, r2, <r3=>0x0})
ioctl$DRM_IOCTL_MODE_DIRTYFB(r1, 0xc01864b1, &(0x7f0000000100)={r3, 0x1, 0x7, 0x0, 0x0})

55.357039495s ago: executing program 2 (id=5336):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
connect$bt_l2cap(r0, &(0x7f0000000040)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0xb}, 0xe)
sendmmsg$sock(r0, &(0x7f0000004100)=[{{0x0, 0x0, 0x0}}], 0xffffff80, 0x0)
shutdown(r0, 0x1)

55.174050555s ago: executing program 2 (id=5337):
syz_emit_ethernet(0x1, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000380)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x0)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000280)={{}, 0x0, &(0x7f0000000140)='%-010d \x00'}, 0x20)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
clock_adjtime(0x0, &(0x7f0000000040)={0xd51, 0x0, 0x8, 0x0, 0x0, 0x4, 0x4, 0x0, 0x0, 0x7fffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0x100})
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
r0 = syz_open_dev$sndmidi(0x0, 0x2, 0x143102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_TIMER_IOCTL_TREAD_OLD(r1, 0x40045402, 0x0)
read(r1, 0x0, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4008880}, 0x800)

54.746613968s ago: executing program 2 (id=5338):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2b}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0xfffffffc}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x64}, 0x1, 0x0, 0x0, 0x4000850}, 0x24000000)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x4000000)
prctl$PR_SET_NAME(0xf, &(0x7f00000002c0)='+}[@\x00G5\v\x89n\xb2\x0e\xb7\xb4\x9a\xb3\xb9\xe1\xff@`\x87\xefy\xb7\xe0\xe6c\x91\x81ND\t3\xc4\xca\xf0\xd0Zp\xadbdY\xdcz\xc6lo\xd0\xc7\'CT')
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xffffffffffffff27}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
flock(0xffffffffffffffff, 0x2)
socket$nl_route(0x10, 0x3, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl(r1, 0x40, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f0000000140))
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={0x0}, 0x1, 0xf0ffffffffffff, 0x0, 0x4044880}, 0x0)

54.632736677s ago: executing program 0 (id=5339):
signalfd(0xffffffffffffffff, &(0x7f00000002c0)={[0x7fffffff]}, 0x8)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmmsg$unix(r1, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xaee2, 0x0, 0x2, 0xbfdffffc}, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000280)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r2, 0x47f6, 0x0, 0x4, 0x0, 0x0)

54.393930647s ago: executing program 2 (id=5340):
r0 = socket$alg(0x26, 0x5, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bind$alg(r0, &(0x7f0000000100)={0x26, 'hash\x00', 0x0, 0x0, 'rmd160\x00'}, 0x58)
r3 = accept4(r0, 0x0, 0x0, 0x0)
sendmsg$alg(r3, &(0x7f0000008dc0)={0x0, 0x0, &(0x7f0000008cc0)=[{&(0x7f0000008a40)="7c72bf03f7d9c0fd0826786ffcfb99e55c1272594d5be5c7f1de9562bbf652", 0x1f}, {&(0x7f0000008c80)="9d", 0x7fffefe1}], 0x2}, 0x0)

54.218690793s ago: executing program 7 (id=5341):
r0 = socket(0x10, 0x3, 0x0)
recvmmsg$unix(r0, &(0x7f00000037c0)=[{{0x0, 0x0, &(0x7f0000003700)=[{&(0x7f0000002340)=""/125, 0x7d}, {&(0x7f0000000440)=""/182, 0xb6}, {&(0x7f0000000500)=""/9, 0x9}, {&(0x7f00000025c0)=""/4096, 0x1000}], 0x4}}], 0x1, 0x0, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000380)=@bridge_getvlan={0x18, 0x72, 0x7e3bfe4fa73db39f}, 0x18}}, 0x0)

53.703438027s ago: executing program 7 (id=5342):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x15)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000002440)=@updpolicy={0xc0, 0x19, 0xfd3649826d894c67, 0x0, 0x25dfdbfd, {{@in6=@dev={0xfe, 0x80, '\x00', 0xa}, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x20, 0x6}, {0x4, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x800000, 0x0, 0xfffffffffffffffc}, {0x3, 0x0, 0x1e2}, 0x400, 0x1, 0x1, 0x1, 0x0, 0x3}, [@sec_ctx={0xc, 0x8, {0x8, 0x8, 0x1, 0x1}}]}, 0xc0}, 0x1, 0x0, 0x0, 0x20040084}, 0x24048840)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r2=>0x0})
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a010300000000000000000100fffd0900010073797a300000000040000000030a01020000000000000000010000000900030073797a3200000000140004800800024032658aeb08000140000000010900010073797a300000000044000000060a010400000000000001040100000008000b40000000000900010073797a30000000001c000480180001800d00010073796e70726f7879000000000400028014000000110001"], 0xcc}}, 0x0)
syz_emit_ethernet(0x0, 0x0, 0x0)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000800), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f0000001280)={0x0, 0x0, &(0x7f0000001240)={&(0x7f0000000a40)={0x1c, r4, 0x131, 0x70bd2d, 0x25dfdbff, {{}, {@val={0x8, 0x3, r2}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x408d1}, 0x8880)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r7 = gettid()
sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x24, 0x0, 0x1, 0x70bd28, 0x25dfdbff, {}, [@NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x1}, @NL802154_ATTR_PID={0x8, 0x1c, r7}]}, 0x24}, 0x1, 0x0, 0x0, 0x20000040}, 0x4000000)
sendmsg$NL802154_CMD_SET_ACKREQ_DEFAULT(r5, &(0x7f00000002c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x38, 0x0, 0x800, 0x70bd28, 0x25dfdbfe, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x2}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x38}, 0x1, 0x0, 0x0, 0x54}, 0x4000)
getpgrp(0xffffffffffffffff)
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)

53.689304457s ago: executing program 0 (id=5343):
sendmsg$inet(0xffffffffffffffff, 0x0, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
fchmodat(0xffffffffffffff9c, 0x0, 0x20)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f0000000800)=ANY=[], 0x0}, 0x94)
writev(0xffffffffffffffff, 0x0, 0x0)
bpf$MAP_LOOKUP_BATCH(0x19, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000680), &(0x7f0000000540), 0x6c}, 0x38)

53.028528455s ago: executing program 0 (id=5344):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x21, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000001d40)={{r0}, &(0x7f0000001cc0), &(0x7f0000001d00)=r1}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r2, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10)

52.858438006s ago: executing program 0 (id=5345):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f0000000280)={0x0, 0x11, 0x6, @local}, 0x10)
setsockopt$packet_drop_memb(r0, 0x107, 0x2, &(0x7f0000000380)={0x0, 0x11, 0x6, @local}, 0x10)

52.410353384s ago: executing program 7 (id=5346):
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x3c, 0x0, 0x0)
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
r1 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0/file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x15, &(0x7f0000000680)={0x3, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0xa, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$int_in(r1, 0x40000000af01, 0x0)
socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, &(0x7f0000000340)={0x1, 0x6}, 0x8)
r5 = fsopen(&(0x7f0000000280)='btrfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r5, 0x6, 0x0, 0x0, 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x26)
rename(&(0x7f0000000300)='./file0\x00', &(0x7f0000000100)='./file0\x00')
openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000180)={{0x1, 0x1, 0x18, r0, {0xb75}}, './file0/file0\x00'})
ioctl$sock_SIOCOUTQ(r4, 0x5411, &(0x7f0000000400))
mount(&(0x7f0000000000)=@loop={'/dev/loop', 0x0}, &(0x7f0000000080)='./cgroup\x00', &(0x7f00000000c0)='hfsplus\x00', 0x410, &(0x7f0000000100)='barrier')

52.152609498s ago: executing program 0 (id=5347):
syz_emit_ethernet(0x1, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000380)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x0)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000280)={{}, 0x0, &(0x7f0000000140)='%-010d \x00'}, 0x20)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
clock_adjtime(0x0, &(0x7f0000000040)={0xd51, 0x0, 0x8, 0x0, 0x0, 0x4, 0x4, 0x0, 0x0, 0x7fffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0x100})
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
r0 = syz_open_dev$sndmidi(0x0, 0x2, 0x143102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_TIMER_IOCTL_TREAD_OLD(r1, 0x40045402, 0x0)
read(r1, 0x0, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4008880}, 0x800)

52.119015735s ago: executing program 0 (id=5348):
r0 = syz_clone(0x20300000, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
syz_usb_connect(0x3, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="120100008010bd40820514009dbb0000000109"], 0x0)
fchdir(r1)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
r2 = syz_open_procfs(r0, &(0x7f0000000140)='smaps\x00')
read$alg(r2, &(0x7f0000000680)=""/218, 0xda)

51.455900215s ago: executing program 2 (id=5349):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2b}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0xfffffffc}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x64}, 0x1, 0x0, 0x0, 0x4000850}, 0x24000000)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x4000000)
prctl$PR_SET_NAME(0xf, &(0x7f00000002c0)='+}[@\x00G5\v\x89n\xb2\x0e\xb7\xb4\x9a\xb3\xb9\xe1\xff@`\x87\xefy\xb7\xe0\xe6c\x91\x81ND\t3\xc4\xca\xf0\xd0Zp\xadbdY\xdcz\xc6lo\xd0\xc7\'CT')
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xffffffffffffff27}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
flock(0xffffffffffffffff, 0x2)
socket$nl_route(0x10, 0x3, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl(r1, 0x40, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f0000000140))
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={0x0}, 0x1, 0xf0ffffffffffff, 0x0, 0x4044880}, 0x0)

50.576616114s ago: executing program 2 (id=5350):
syz_emit_ethernet(0x46, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd6016000000102b00fc0100000000000000e2ff0000000000fe8000000000000000000400000000aa"], 0x0)
sendmsg$IPVS_CMD_NEW_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[@ANYBLOB="010000000000000000000900000030000380140002007369743000000000000000000000000006000400ffff000008"], 0x44}}, 0x0)
sendmsg$IPVS_CMD_NEW_DEST(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x5000002}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x20040804}, 0x20000000)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x4, &(0x7f0000006680))
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = syz_io_uring_setup(0x239, &(0x7f0000000740)={0x0, 0x1c2a, 0x10100, 0x0, 0x0, 0x0, r1}, &(0x7f0000000180)=<r3=>0x0, &(0x7f00000001c0)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd=r0, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r2, 0x2ded, 0xad96, 0x24, 0x0, 0x0)
r5 = openat$ppp(0xffffffffffffff9c, &(0x7f0000001740), 0x101042, 0x0)
ioctl$PPPIOCNEWUNIT(r5, 0xc004743e, &(0x7f0000000040))
ioctl$PPPIOCSACTIVE(r5, 0x40047459, &(0x7f0000000080)={0xfffffffffffffe43, 0x0})
read(r5, 0x0, 0x5d)

50.499032692s ago: executing program 7 (id=5351):
r0 = socket(0x10, 0x3, 0x0)
recvmmsg$unix(r0, &(0x7f00000037c0)=[{{0x0, 0x0, &(0x7f0000003700)=[{&(0x7f0000002340)=""/125, 0x7d}, {&(0x7f0000000440)=""/182, 0xb6}, {&(0x7f0000000500)=""/9, 0x9}, {&(0x7f00000025c0)=""/4096, 0x1000}], 0x4}}], 0x1, 0x0, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000380)=@bridge_getvlan={0x18, 0x72, 0x7e3bfe4fa73db39f}, 0x18}}, 0x0)

50.257890045s ago: executing program 7 (id=5352):
socket$nl_netfilter(0x10, 0x3, 0xc)
openat$udambuf(0xffffff9c, &(0x7f0000000300), 0x2)
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, 0x0, &(0x7f0000000240)='//\xf2/\x06\b/\xdf/o\xdc\xea\x95\x9a\x82\x10\x97W\x8f7\x98\x9b\\/\\\xf9\rmD\x94)U\xdb\x15X.I\n}\xf3\x9d\xe4_\x05\x9cqf4I^#b?9\xde\xafu\'\x83L\xe0\x97\xe1n_\xa4%\xb1\x97\x93\xafv\xce/\\\xb4L\xf2_\xa7\xfb\xf4\x84\x1fA\xeas^\xef\xa2\x85\xa3!\xfb\x93\xd7R\xab2\x1eW\xe9h\x9b\xf7ul\xf9D\xd4\x82X5\x13\xaa\x87\xf9\xba\xa9m\x14\x14R_\x9a\\>4\xce\x8e_#\xf8D\xb1\xdep\x01\xcc:\xa6\xc5n\xeb\xab\xf70\x99\xef\x8b<M\n\xc0`[\x82\xf6$\xa4\xbe\x1e\xd3\xe4\xd9L\x14\xed\xcfK\xcc\xeb,\x1a1\xa6\xf3e\xc2F\xc3\x00\xaa\xd5\xfc\x1bR\xa9\x8c\xb4&\x9f\xa2$\x06\x1a\xb0W#\xf4\xde6\x04c\xc0\xeec\xa0l\xd5d\xe5\xcd\xb2\xc10\x97w\x87\xe5\x06\x91W\rr\xf5\x97%\xe8pO\xeb]\xc2\x98C\xffK\xa0\xb3\\\x99{\xcdR\x92\x94\xf7\x1d\x01Q\x1a\xbd\x15b\x15h\xe2!\x00\xb9z)\x19\x00\xee\xd2)[p`\xb3\x03\xa7p\'X\xec\xcdoX\x05\xff\xff/o\xb2\xad\xb8\x89i@\f\xffS&\x8a\xc9\xfez\xc2\x90\xe7F\xa6\xdb\r\x03j,N\xe1lw\n\xad\xe8\xf0\xbd\xa1\x98\xce\xf9\x1eR\x9cc\xc5ke_\xa7\x11\"\x04\xd8.\xa0\x15\x83\xf1\x92\xdby\xe9\xdc@.\xc1g\xc6\fc\xa26\xd8\xdf\xef\xf7\x9c\x1a\xcc\x8am\x8b7\xcf\xc5\xa6\xf4\f\xabj%Y\xa9\xdd\x0e9e\xb5\xec\x99@\xd2\t\n\xb1o', 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', 0xffffffffffffffff, 0x0, 0xf}, 0x18)
socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r1, &(0x7f0000000100)={0x2, 0x4e24, @loopback}, 0x10)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x20000000000, 0xfffffffffffffffd, 0x0, 0x0, 0x1000001000, 0x49}, 0x0, &(0x7f00000002c0)={0x3ff, 0x7, 0xffffffffffffffff, 0x9, 0x0, 0xf, 0x80000006}, 0x0, 0x0)
sendmmsg$inet(r1, &(0x7f0000004980)=[{{&(0x7f0000000000)={0x2, 0x4e24, @loopback}, 0x10, &(0x7f0000000040)}}], 0x1, 0x20008000)
shutdown(r1, 0x1)

37.228661979s ago: executing program 7 (id=5353):
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x3c, 0x0, 0x0)
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
r1 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0/file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x15, &(0x7f0000000680)={0x3, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0xa, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$int_in(r1, 0x40000000af01, 0x0)
socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, &(0x7f0000000340)={0x1, 0x6}, 0x8)
r5 = fsopen(&(0x7f0000000280)='btrfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r5, 0x6, 0x0, 0x0, 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x26)
rename(&(0x7f0000000300)='./file0\x00', &(0x7f0000000100)='./file0\x00')
openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000180)={{0x1, 0x1, 0x18, <r6=>r0, {0xb75}}, './file0/file0\x00'})
sendmsg$802154_raw(r6, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000001c0)="739be4d07f7ecc0544", 0x9}, 0x1, 0x0, 0x0, 0x4000}, 0x844)
mount(&(0x7f0000000000)=@loop={'/dev/loop', 0x0}, &(0x7f0000000080)='./cgroup\x00', &(0x7f00000000c0)='hfsplus\x00', 0x410, &(0x7f0000000100)='barrier')

33.859831147s ago: executing program 41 (id=5350):
syz_emit_ethernet(0x46, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd6016000000102b00fc0100000000000000e2ff0000000000fe8000000000000000000400000000aa"], 0x0)
sendmsg$IPVS_CMD_NEW_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[@ANYBLOB="010000000000000000000900000030000380140002007369743000000000000000000000000006000400ffff000008"], 0x44}}, 0x0)
sendmsg$IPVS_CMD_NEW_DEST(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x5000002}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x20040804}, 0x20000000)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x4, &(0x7f0000006680))
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = syz_io_uring_setup(0x239, &(0x7f0000000740)={0x0, 0x1c2a, 0x10100, 0x0, 0x0, 0x0, r1}, &(0x7f0000000180)=<r3=>0x0, &(0x7f00000001c0)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd=r0, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r2, 0x2ded, 0xad96, 0x24, 0x0, 0x0)
r5 = openat$ppp(0xffffffffffffff9c, &(0x7f0000001740), 0x101042, 0x0)
ioctl$PPPIOCNEWUNIT(r5, 0xc004743e, &(0x7f0000000040))
ioctl$PPPIOCSACTIVE(r5, 0x40047459, &(0x7f0000000080)={0xfffffffffffffe43, 0x0})
read(r5, 0x0, 0x5d)

20.353427634s ago: executing program 42 (id=5348):
r0 = syz_clone(0x20300000, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
syz_usb_connect(0x3, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="120100008010bd40820514009dbb0000000109"], 0x0)
fchdir(r1)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
r2 = syz_open_procfs(r0, &(0x7f0000000140)='smaps\x00')
read$alg(r2, &(0x7f0000000680)=""/218, 0xda)

0s ago: executing program 43 (id=5353):
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x3c, 0x0, 0x0)
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
r1 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0/file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x15, &(0x7f0000000680)={0x3, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0xa, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$int_in(r1, 0x40000000af01, 0x0)
socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, &(0x7f0000000340)={0x1, 0x6}, 0x8)
r5 = fsopen(&(0x7f0000000280)='btrfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r5, 0x6, 0x0, 0x0, 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x26)
rename(&(0x7f0000000300)='./file0\x00', &(0x7f0000000100)='./file0\x00')
openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000180)={{0x1, 0x1, 0x18, <r6=>r0, {0xb75}}, './file0/file0\x00'})
sendmsg$802154_raw(r6, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000001c0)="739be4d07f7ecc0544", 0x9}, 0x1, 0x0, 0x0, 0x4000}, 0x844)
mount(&(0x7f0000000000)=@loop={'/dev/loop', 0x0}, &(0x7f0000000080)='./cgroup\x00', &(0x7f00000000c0)='hfsplus\x00', 0x410, &(0x7f0000000100)='barrier')

kernel console output (not intermixed with test programs):

aller0>
[ 1588.663174][T18762] tipc: Disabling bearer <eth:syzkaller0>
[ 1588.791557][ T6411] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1588.792212][ T9473] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1588.979263][T18786] tipc: Started in network mode
[ 1588.979295][T18786] tipc: Node identity ca86ff4bb3ab, cluster identity 4711
[ 1588.987466][T18786] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1588.988528][T18782] syzkaller0: entered promiscuous mode
[ 1588.988554][T18782] syzkaller0: entered allmulticast mode
[ 1589.190201][T18782] tipc: Resetting bearer <eth:syzkaller0>
[ 1589.231519][T18781] tipc: Resetting bearer <eth:syzkaller0>
[ 1589.522109][T14365] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1590.384474][ T8156] tipc: Node number set to 2033057611
[ 1590.411762][T18781] tipc: Disabling bearer <eth:syzkaller0>
[ 1590.640969][T11168] usb 8-1: new high-speed USB device number 8 using dummy_hcd
[ 1590.802754][T11168] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0
[ 1590.805451][T11168] usb 8-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[ 1590.805468][T11168] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1590.805479][T11168] usb 8-1: Product: syz
[ 1590.805486][T11168] usb 8-1: Manufacturer: syz
[ 1590.805494][T11168] usb 8-1: SerialNumber: syz
[ 1590.808815][T11168] usb 8-1: config 0 descriptor??
[ 1590.914838][T18802] syz.0.4077 (18802): drop_caches: 2
[ 1591.370944][T12563] usb 3-1: new high-speed USB device number 16 using dummy_hcd
[ 1591.525272][T12563] usb 3-1: New USB device found, idVendor=0bda, idProduct=8150, bcdDevice= 0.00
[ 1591.525291][T12563] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1591.525302][T12563] usb 3-1: Product: syz
[ 1591.525309][T12563] usb 3-1: Manufacturer: syz
[ 1591.525316][T12563] usb 3-1: SerialNumber: syz
[ 1591.904644][T12563] rtl8150 3-1:1.0: couldn't reset the device
[ 1591.905208][T12563] rtl8150 3-1:1.0: probe with driver rtl8150 failed with error -5
[ 1591.930571][T12563] usb 3-1: USB disconnect, device number 16
[ 1593.308882][ T9473] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1593.830451][T18839] syz.0.4091 (18839): drop_caches: 2
[ 1594.265837][T18841] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[ 1594.402913][T18836] lo speed is unknown, defaulting to 1000
[ 1594.563014][T14372] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1594.563694][T14372] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1594.752832][  T995] usb 8-1: USB disconnect, device number 8
[ 1595.197170][ T6411] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1598.331660][T18880] bond0: (slave dummy0): Releasing backup interface
[ 1598.684583][T18886] netlink: 'syz.6.4103': attribute type 10 has an invalid length.
[ 1598.698448][T18880] bridge_slave_0: left allmulticast mode
[ 1598.698471][T18880] bridge_slave_0: left promiscuous mode
[ 1598.698637][T18880] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1598.771963][T18888] netlink: 4 bytes leftover after parsing attributes in process `syz.6.4103'.
[ 1598.865065][T18880] bridge_slave_1: left allmulticast mode
[ 1598.865141][T18880] bridge_slave_1: left promiscuous mode
[ 1598.868030][T18880] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1599.034969][T18880] bond0: (slave bond_slave_0): Releasing backup interface
[ 1599.037134][ T6411] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1599.138706][T18880] bond0: (slave bond_slave_1): Releasing backup interface
[ 1599.288399][T18880] team0: Port device team_slave_0 removed
[ 1599.434902][T18880] team0: Port device team_slave_1 removed
[ 1599.466498][T18880] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1599.466613][T18880] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1599.673528][T14365] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1599.674233][T14365] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1599.752937][T18884] team0: Mode changed to "loadbalance"
[ 1600.129564][T18886] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1600.158826][T18886] team0: Port device bond0 added
[ 1601.056190][T14372] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1602.070102][T18888] team0 (unregistering): Port device bond0 removed
[ 1602.333953][T18921] netlink: 32 bytes leftover after parsing attributes in process `syz.0.4117'.
[ 1602.333987][T18921] openvswitch: netlink: Missing key (keys=40, expected=100)
[ 1604.814016][T14365] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1605.432271][ T6411] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1605.433353][ T6411] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1605.570235][T18969] input: syz1 as /devices/virtual/input/input13
[ 1605.870141][   T37] audit: type=1326 audit(1756075270.756:2148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18976 comm="syz.5.4135" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd935a4ebe9 code=0x0
[ 1606.634673][T18974] netlink: 8 bytes leftover after parsing attributes in process `syz.7.4131'.
[ 1606.711999][T14360] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1607.382967][ T1323] ieee802154 phy0 wpan0: encryption failed: -22
[ 1607.383034][ T1323] ieee802154 phy1 wpan1: encryption failed: -22
[ 1608.516022][T19013] usb usb8: usbfs: process 19013 (syz.5.4144) did not claim interface 0 before use
[ 1609.653644][T19022] lo speed is unknown, defaulting to 1000
[ 1609.876025][   T37] audit: type=1326 audit(1756075274.756:2149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19028 comm="syz.7.4148" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f5241efebe9 code=0x0
[ 1609.912800][   T13] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1610.204119][T19039] netlink: 8 bytes leftover after parsing attributes in process `syz.6.4152'.
[ 1610.553173][T14365] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1611.362865][   T12] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1611.859288][T14365] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1611.906958][   T37] audit: type=1326 audit(1756075276.796:2150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19071 comm="syz.5.4165" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd935a4ebe9 code=0x0
[ 1612.064060][T19068] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4163'.
[ 1612.308135][T19078] lo speed is unknown, defaulting to 1000
[ 1615.988088][T14360] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1616.433514][  T156] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1616.952253][ T6411] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1617.485334][T19138] netlink: 'syz.7.4185': attribute type 10 has an invalid length.
[ 1617.485791][T19138] netlink: 'syz.7.4185': attribute type 10 has an invalid length.
[ 1617.547073][T19136] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4183'.
[ 1617.592705][   T12] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1617.622298][T19138] team0: Port device dummy0 removed
[ 1619.182325][T19154] tipc: Started in network mode
[ 1619.182355][T19154] tipc: Node identity 22f9788b6341, cluster identity 4711
[ 1619.182584][T19154] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1619.183550][T19154] syzkaller0: entered promiscuous mode
[ 1619.183574][T19154] syzkaller0: entered allmulticast mode
[ 1619.472478][T19156] tipc: Resetting bearer <eth:syzkaller0>
[ 1619.507060][T19153] tipc: Resetting bearer <eth:syzkaller0>
[ 1619.674282][T19153] tipc: Disabling bearer <eth:syzkaller0>
[ 1620.703918][T11051] tipc: Node number set to 1102608523
[ 1621.260954][T11168] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[ 1621.306389][T19182] 9pnet: p9_errstr2errno: server reported unknown error 0x000000000000000f
[ 1621.430860][T11168] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0
[ 1621.433942][T11168] usb 6-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[ 1621.433970][T11168] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1621.433988][T11168] usb 6-1: Product: syz
[ 1621.434001][T11168] usb 6-1: Manufacturer: syz
[ 1621.434014][T11168] usb 6-1: SerialNumber: syz
[ 1621.435883][ T6370] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1621.500742][T11168] usb 6-1: config 0 descriptor??
[ 1622.072044][T14372] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1622.072551][T14372] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1623.742752][ T6370] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1623.883930][T19195] netlink: 24 bytes leftover after parsing attributes in process `syz.2.4203'.
[ 1624.035944][T19210] netlink: 32 bytes leftover after parsing attributes in process `syz.0.4208'.
[ 1624.035967][T19210] openvswitch: netlink: Missing key (keys=40, expected=100)
[ 1624.528446][T13089] usb 6-1: USB disconnect, device number 5
[ 1627.274304][ T6411] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1627.274821][ T6411] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1627.612443][T19257] 9pnet: p9_errstr2errno: server reported unknown error 0x000000000000000f
[ 1627.859111][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1628.147411][T19274] input: syz1 as /devices/virtual/input/input14
[ 1628.682206][T19284] netlink: 'syz.5.4234': attribute type 10 has an invalid length.
[ 1628.725063][T19286] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4236'.
[ 1628.725816][T19284] team0: Port device dummy0 added
[ 1628.746298][T19284] netlink: 'syz.5.4234': attribute type 10 has an invalid length.
[ 1628.779466][T19288] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4236'.
[ 1628.823287][T19284] team0: Failed to send port change of device dummy0 via netlink (err -105)
[ 1628.873255][T19284] team0: Failed to send options change via netlink (err -105)
[ 1628.873405][T19284] team0: Failed to send port change of device dummy0 via netlink (err -105)
[ 1628.879140][T19288] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4236'.
[ 1628.882333][T19284] team0: Port device dummy0 removed
[ 1628.887861][T19284] bond0: (slave dummy0): Enslaving as an active interface with an up link
[ 1629.125393][ T9473] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1629.125980][ T9473] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1630.480336][T19300] tipc: Started in network mode
[ 1630.480365][T19300] tipc: Node identity 026db9874646, cluster identity 4711
[ 1630.480534][T19300] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1630.513819][T19300] syzkaller0: entered promiscuous mode
[ 1630.513847][T19300] syzkaller0: entered allmulticast mode
[ 1630.561469][T19300] tipc: Resetting bearer <eth:syzkaller0>
[ 1630.612510][T19299] tipc: Resetting bearer <eth:syzkaller0>
[ 1630.742320][T19299] tipc: Disabling bearer <eth:syzkaller0>
[ 1631.044272][ T5977] kworker/u8:11 (5977) used greatest stack depth: 12760 bytes left
[ 1631.329426][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1631.997689][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1632.056896][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1632.244374][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1633.183801][ T6370] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1633.184301][ T6370] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1633.375469][T19339] lo speed is unknown, defaulting to 1000
[ 1633.751205][T19346] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1633.752308][T19346] syzkaller0: entered promiscuous mode
[ 1633.752334][T19346] syzkaller0: entered allmulticast mode
[ 1633.776332][T19346] tipc: Resetting bearer <eth:syzkaller0>
[ 1633.851395][T19344] tipc: Resetting bearer <eth:syzkaller0>
[ 1634.147750][T19344] tipc: Disabling bearer <eth:syzkaller0>
[ 1634.241945][   T13] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1635.004617][T14365] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1635.141706][T19372] netem: change failed
[ 1635.968208][    C1] wlan0: beacon TX faster than countdown (channel/color switch) completion
[ 1636.925316][T19404] netlink: 24 bytes leftover after parsing attributes in process `syz.6.4271'.
[ 1638.243126][ T9473] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1639.629284][T14372] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1639.993786][   T13] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1640.280561][T19447] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4287'.
[ 1640.280587][T19447] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4287'.
[ 1640.280604][T19447] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4287'.
[ 1640.283941][T19447] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4287'.
[ 1640.283963][T19447] netlink: 5 bytes leftover after parsing attributes in process `syz.0.4287'.
[ 1640.286499][T19447] netlink: 'syz.0.4287': attribute type 16 has an invalid length.
[ 1640.286517][T19447] netlink: 'syz.0.4287': attribute type 17 has an invalid length.
[ 1640.339487][T19449] IPv6: NLM_F_REPLACE set, but no existing node found!
[ 1640.359420][T19450] binder: 19448:19450 unknown command 0
[ 1640.359442][T19450] binder: 19448:19450 ioctl c0306201 200000000080 returned -22
[ 1641.707045][T19464] netlink: 8 bytes leftover after parsing attributes in process `syz.7.4293'.
[ 1643.868294][ T6353] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1645.062908][T14371] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1645.119881][ T6370] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1645.622086][T19501] input: syz1 as /devices/virtual/input/input15
[ 1645.947254][T19510] syz.5.4313 (19510): drop_caches: 2
[ 1646.682321][ T6370] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1646.694113][ T6370] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1646.694164][ T6370] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1646.694207][ T6370] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1646.881363][T19532] tipc: Started in network mode
[ 1646.881391][T19532] tipc: Node identity 080211000001, cluster identity 4711
[ 1646.882011][T19532] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1646.882571][T19532] mac80211_hwsim hwsim25 syzkaller0: entered promiscuous mode
[ 1646.882604][T19532] mac80211_hwsim hwsim25 syzkaller0: entered allmulticast mode
[ 1646.889723][T19532] tipc: Resetting bearer <eth:syzkaller0>
[ 1647.284759][T19543] netlink: 20 bytes leftover after parsing attributes in process `syz.0.4324'.
[ 1647.285586][T19543] netlink: 36 bytes leftover after parsing attributes in process `syz.0.4324'.
[ 1648.001271][T11051] tipc: Node number set to 134418688
[ 1648.969352][T14371] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1649.018598][T19571] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1649.019280][T19571] mac80211_hwsim hwsim15 syzkaller0: entered promiscuous mode
[ 1649.019316][T19571] mac80211_hwsim hwsim15 syzkaller0: entered allmulticast mode
[ 1649.067364][T19571] tipc: Resetting bearer <eth:syzkaller0>
[ 1649.593318][T14372] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1649.953707][   T37] audit: type=1326 audit(1756075314.846:2151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19595 comm="syz.0.4346" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd1c1e6ebe9 code=0x0
[ 1650.041013][ T1231] tipc: Node number set to 1143716231
[ 1650.238811][T14372] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1650.250786][T14371] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1650.441766][T19607] netlink: 32 bytes leftover after parsing attributes in process `syz.7.4350'.
[ 1650.441798][T19607] openvswitch: netlink: Missing key (keys=40, expected=100)
[ 1650.543646][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1650.577787][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1650.611487][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1650.885222][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1652.778936][T19636] netem: change failed
[ 1653.362896][T19640] could not allocate digest TFM handle sha1-ssse3
[ 1653.768937][T19654] netlink: 24 bytes leftover after parsing attributes in process `syz.6.4362'.
[ 1653.982485][T19660] netlink: 32 bytes leftover after parsing attributes in process `syz.0.4365'.
[ 1653.982515][T19660] openvswitch: netlink: Missing key (keys=40, expected=100)
[ 1655.017164][T14373] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1655.359534][ T6370] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1655.360206][T14360] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1655.716609][T19683] sock: sock_timestamping_bind_phc: sock not bind to device
[ 1656.036982][ T6353] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1656.351487][T19690] fuse: Bad value for 'fd'
[ 1656.704581][T19693] netem: change failed
[ 1657.568019][T19713] lo speed is unknown, defaulting to 1000
[ 1659.198710][T12946] Bluetooth: hci0: unexpected event for opcode 0x0800
[ 1659.248507][T19763] netlink: 'syz.6.4402': attribute type 1 has an invalid length.
[ 1659.521741][T19775] netlink: 14 bytes leftover after parsing attributes in process `syz.0.4404'.
[ 1659.835729][T19767] bond1: (slave ip6gretap1): Enslaving as a backup interface with an up link
[ 1659.868506][T14373] bond1: Warning: No 802.3ad response from the link partner for any adapters in the bond
[ 1659.907982][T19772] 8021q: adding VLAN 0 to HW filter on device bond1
[ 1659.982634][ T6353] bond1: Warning: No 802.3ad response from the link partner for any adapters in the bond
[ 1660.091328][ T6353] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1660.216451][T19774] veth11: entered promiscuous mode
[ 1660.234736][T19774] bond1: (slave veth11): Enslaving as a backup interface with a down link
[ 1660.471374][ T6370] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1660.490942][T11051] usb 3-1: new high-speed USB device number 17 using dummy_hcd
[ 1660.653107][T11051] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0
[ 1660.657349][T11051] usb 3-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[ 1660.657375][T11051] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1660.657394][T11051] usb 3-1: Product: syz
[ 1660.657407][T11051] usb 3-1: Manufacturer: syz
[ 1660.657421][T11051] usb 3-1: SerialNumber: syz
[ 1660.682737][T11051] usb 3-1: config 0 descriptor??
[ 1661.114696][T14360] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1661.193165][T19804] netlink: 260 bytes leftover after parsing attributes in process `syz.5.4413'.
[ 1661.193182][T19804] netlink: 260 bytes leftover after parsing attributes in process `syz.5.4413'.
[ 1661.217296][T19804] netlink: 260 bytes leftover after parsing attributes in process `syz.5.4413'.
[ 1661.217312][T19804] netlink: 260 bytes leftover after parsing attributes in process `syz.5.4413'.
[ 1661.260368][T19804] netlink: 'syz.5.4413': attribute type 33 has an invalid length.
[ 1661.260383][T19804] netlink: 152 bytes leftover after parsing attributes in process `syz.5.4413'.
[ 1661.311984][T19805] netlink: 'syz.5.4413': attribute type 10 has an invalid length.
[ 1661.813633][T14360] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1662.326205][T18073] usb 3-1: USB disconnect, device number 17
[ 1662.429558][T19805] team0: Port device team_slave_0 removed
[ 1662.437983][ T6411] netdevsim netdevsim6 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1662.438081][ T6411] netdevsim netdevsim6 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1662.438116][ T6411] netdevsim netdevsim6 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1662.438149][ T6411] netdevsim netdevsim6 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1662.551901][T19817] binder: 19815:19817 unknown command 0
[ 1662.551922][T19817] binder: 19815:19817 ioctl c0306201 200000000080 returned -22
[ 1662.882989][T19824] lo speed is unknown, defaulting to 1000
[ 1663.275655][T12946] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[ 1663.275801][T12946] Bluetooth: hci0: Injecting HCI hardware error event
[ 1663.278707][ T6702] Bluetooth: hci0: hardware error 0x00
[ 1665.351202][ T6702] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[ 1665.510996][ T6702] Bluetooth: hci7: command 0x0c1a tx timeout
[ 1665.525303][ T6370] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1665.593493][T14371] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1665.711000][  T995] usb 3-1: new high-speed USB device number 18 using dummy_hcd
[ 1665.872017][  T995] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0
[ 1665.873981][  T995] usb 3-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[ 1665.873997][  T995] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1665.874006][  T995] usb 3-1: Product: syz
[ 1665.874013][  T995] usb 3-1: Manufacturer: syz
[ 1665.874021][  T995] usb 3-1: SerialNumber: syz
[ 1665.876991][  T995] usb 3-1: config 0 descriptor??
[ 1666.008770][T19871] netlink: 8 bytes leftover after parsing attributes in process `syz.6.4436'.
[ 1666.387906][ T6370] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1666.871446][ T6411] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1667.543440][T11051] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[ 1668.407455][T19878] netlink: 24 bytes leftover after parsing attributes in process `syz.0.4434'.
[ 1668.428237][T12562] usb 3-1: USB disconnect, device number 18
[ 1668.490981][ T6702] Bluetooth: hci2: unexpected event for opcode 0x0800
[ 1668.504578][T11051] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1668.504602][T11051] usb 7-1: config 0 has no interfaces?
[ 1668.504630][T11051] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 1668.504651][T11051] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1668.556386][T11051] usb 7-1: config 0 descriptor??
[ 1668.768699][T11051] usb 7-1: USB disconnect, device number 6
[ 1669.012417][ T1323] ieee802154 phy0 wpan0: encryption failed: -22
[ 1669.860294][T19899] netem: change failed
[ 1670.414152][T19906] overlayfs: failed to get inode (-116)
[ 1670.420079][T19906] overlayfs: failed to get inode (-116)
[ 1671.351722][ T6370] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1671.352225][ T6370] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1671.993687][   T12] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1672.045913][T19926] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[ 1672.047204][T19924] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[ 1672.047387][T19924] block device autoloading is deprecated and will be removed.
[ 1672.561099][ T6702] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[ 1672.561494][ T6702] Bluetooth: hci2: Injecting HCI hardware error event
[ 1672.568331][ T6702] Bluetooth: hci2: hardware error 0x00
[ 1672.641618][   T12] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1674.631259][ T6702] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[ 1674.917855][T19999] 9pnet_fd: Insufficient options for proto=fd
[ 1675.011855][T20001] tipc: Enabling of bearer <eth:syzkaller0> rejected, already enabled
[ 1675.656009][T20019] 9pnet_fd: Insufficient options for proto=fd
[ 1677.114091][ T6411] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1677.116134][ T6411] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1677.752384][   T12] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1677.822704][T20038] tipc: Enabling of bearer <eth:syzkaller0> rejected, already enabled
[ 1678.402493][ T6353] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1678.638103][T20051] IPVS: length: 127 != 24
[ 1678.680893][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1678.991087][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1679.501692][T20062] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4497'.
[ 1679.657326][T20062] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4497'.
[ 1679.736973][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1680.810589][T20079] tipc: Enabling of bearer <eth:syzkaller0> rejected, already enabled
[ 1680.920157][T20089] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4505'.
[ 1682.229844][   T37] audit: type=1326 audit(1756075347.116:2152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20100 comm="syz.5.4510" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd935a4ebe9 code=0x0
[ 1682.519377][T20116] netlink: 'syz.2.4516': attribute type 11 has an invalid length.
[ 1682.569080][T20118] netlink: 4 bytes leftover after parsing attributes in process `syz.6.4517'.
[ 1682.626861][T20118] netlink: 4 bytes leftover after parsing attributes in process `syz.6.4517'.
[ 1682.649877][T20121] netlink: 32 bytes leftover after parsing attributes in process `syz.7.4518'.
[ 1682.649909][T20121] openvswitch: netlink: Missing key (keys=40, expected=100)
[ 1682.755061][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1682.943327][   T13] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1682.944590][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1683.020034][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1683.037689][ T6411] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1683.116832][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1683.152362][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1683.184497][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1683.250447][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1683.299475][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1683.431444][ T6370] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1683.441075][T12563] usb 3-1: new high-speed USB device number 19 using dummy_hcd
[ 1683.511457][   T13] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1683.598837][T12563] usb 3-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[ 1683.598884][T12563] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1683.598908][T12563] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1683.598929][T12563] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[ 1683.600502][T12563] usb 3-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[ 1683.600526][T12563] usb 3-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[ 1683.600545][T12563] usb 3-1: Manufacturer: syz
[ 1683.612980][T12563] usb 3-1: config 0 descriptor??
[ 1683.732699][T20129] tipc: Enabling of bearer <eth:syzkaller0> rejected, already enabled
[ 1684.202181][T12563] appleir 0003:05AC:8243.0005: unknown main item tag 0x0
[ 1684.239938][T20146] 9pnet_fd: Insufficient options for proto=fd
[ 1684.250606][T12563] appleir 0003:05AC:8243.0005: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.2-1/input0
[ 1684.575230][T20153] usb usb8: usbfs: process 20153 (syz.7.4525) did not claim interface 0 before use
[ 1684.770745][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1685.351636][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1685.586533][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1685.705510][  T995] usb 3-1: USB disconnect, device number 19
[ 1686.063705][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1686.213211][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1686.263864][   T37] audit: type=1326 audit(1756075351.126:2153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20163 comm="syz.0.4530" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd1c1e6ebe9 code=0x0
[ 1687.371942][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1687.485664][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1687.538445][T20171] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4532'.
[ 1687.553378][T20149] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1687.632727][T20149] bond0 (unregistering): (slave team0): Releasing backup interface
[ 1687.736716][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1687.837260][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1687.999557][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1688.077354][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1688.170646][T14373] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1688.196966][T20179] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4532'.
[ 1688.285435][T20149] bond0 (unregistering): (slave syz_tun): Releasing backup interface
[ 1688.455694][T20149] bond0 (unregistering): (slave dummy0): Releasing backup interface
[ 1688.495335][T20149] bond0 (unregistering): Released all slaves
[ 1688.633774][ T6353] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1688.634735][ T6353] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1688.665943][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1688.921816][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1689.262195][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1689.285805][   T12] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1689.317393][T20184] netlink: 24 bytes leftover after parsing attributes in process `syz.5.4534'.
[ 1690.128523][T20190] syz.0.4537 (20190): drop_caches: 2
[ 1690.335669][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1690.637158][T20200] netlink: 32 bytes leftover after parsing attributes in process `syz.5.4542'.
[ 1690.637187][T20200] openvswitch: netlink: Missing key (keys=40, expected=100)
[ 1690.946008][T20207] netlink: 'syz.2.4545': attribute type 10 has an invalid length.
[ 1690.994608][T20207] bond0: (slave dummy0): Releasing backup interface
[ 1690.998593][T20210] netlink: 'syz.2.4545': attribute type 10 has an invalid length.
[ 1691.041685][T20207] team0: Failed to send port change of device dummy0 via netlink (err -105)
[ 1691.041851][T20207] team0: Failed to send options change via netlink (err -105)
[ 1691.041868][T20207] team0: Port device dummy0 added
[ 1691.043948][T20210] team0: Failed to send port change of device dummy0 via netlink (err -105)
[ 1691.101365][T20210] team0: Failed to send options change via netlink (err -105)
[ 1691.101627][T20210] team0: Failed to send port change of device dummy0 via netlink (err -105)
[ 1691.102280][T20210] team0: Port device dummy0 removed
[ 1691.138784][T20210] bond0: (slave dummy0): Enslaving as an active interface with an up link
[ 1691.223818][T20220] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4546'.
[ 1691.685604][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1691.759700][T20230] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4550'.
[ 1691.885944][T20230] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4550'.
[ 1691.995262][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1692.252036][T20240] syz.7.4554 (20240): drop_caches: 2
[ 1692.350773][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1692.517832][T20249] netlink: 32 bytes leftover after parsing attributes in process `syz.2.4558'.
[ 1692.517861][T20249] openvswitch: netlink: Missing key (keys=40, expected=100)
[ 1693.037499][T20251] netlink: 'syz.6.4557': attribute type 10 has an invalid length.
[ 1693.038995][T20251] netlink: 'syz.6.4557': attribute type 10 has an invalid length.
[ 1693.043319][T20251] bond0: (slave dummy0): Enslaving as an active interface with an up link
[ 1693.079411][T20254] 9pnet_fd: Insufficient options for proto=fd
[ 1693.262255][T20258] netlink: 8 bytes leftover after parsing attributes in process `syz.6.4561'.
[ 1693.379179][T20262] IPVS: length: 139 != 8
[ 1693.410798][T20264] 9pnet_fd: Insufficient options for proto=fd
[ 1693.751741][ T6370] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1693.752244][ T6370] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1693.908627][T20284] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4569'.
[ 1693.943279][T12562] kernel read not supported for file /media6 (pid: 12562 comm: kworker/0:5)
[ 1693.947111][T20285] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1694.090239][T20284] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4569'.
[ 1694.230415][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1694.399660][ T6370] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1694.635716][T20294] syz.7.4571 (20294): drop_caches: 2
[ 1695.042188][ T6370] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1695.047238][T20297] netlink: 'syz.5.4572': attribute type 10 has an invalid length.
[ 1695.051839][T20297] team0: Port device dummy0 added
[ 1695.053885][T20297] netlink: 'syz.5.4572': attribute type 10 has an invalid length.
[ 1695.055054][T20297] team0: Failed to send port change of device dummy0 via netlink (err -105)
[ 1695.066602][T20298] 9pnet_fd: Insufficient options for proto=fd
[ 1695.134885][T20297] team0: Failed to send options change via netlink (err -105)
[ 1695.135129][T20297] team0: Failed to send port change of device dummy0 via netlink (err -105)
[ 1695.135763][T20297] team0: Port device dummy0 removed
[ 1695.284119][T20305] netlink: 32 bytes leftover after parsing attributes in process `syz.7.4576'.
[ 1695.284150][T20305] openvswitch: netlink: Missing key (keys=40, expected=100)
[ 1696.558982][T20331] 9pnet_fd: Insufficient options for proto=fd
[ 1696.674654][T20333] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4584'.
[ 1696.941286][T20336] syz.2.4587 (20336): drop_caches: 2
[ 1697.727884][T20337] netlink: 4 bytes leftover after parsing attributes in process `syz.6.4582'.
[ 1697.824176][T20337] netlink: 4 bytes leftover after parsing attributes in process `syz.6.4582'.
[ 1698.211942][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1698.253005][T20354] netlink: 32 bytes leftover after parsing attributes in process `syz.5.4593'.
[ 1698.253029][T20354] openvswitch: netlink: Missing key (keys=40, expected=100)
[ 1698.490783][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1699.514615][   T12] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1699.514946][ T6370] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1699.549407][T20369] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[ 1699.549430][T20369] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1699.549457][T20369] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1699.628416][T20369] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1699.628460][T20369] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1699.775718][T19955] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1699.803094][T19955] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1699.854903][T19955] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1699.858246][T19955] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1699.859076][T19955] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1700.144333][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1700.155652][   T13] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1700.499799][T17552] syz_tun (unregistering): left allmulticast mode
[ 1700.791964][   T13] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1700.943820][T20377] lo speed is unknown, defaulting to 1000
[ 1701.176547][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1701.726461][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1701.788968][T20419] netlink: 24 bytes leftover after parsing attributes in process `syz.7.4609'.
[ 1701.791178][T12562] usb 6-1: new full-speed USB device number 6 using dummy_hcd
[ 1701.875264][T20377] chnl_net:caif_netlink_parms(): no params data found
[ 1701.929545][ T6702] Bluetooth: hci4: command tx timeout
[ 1701.960139][T12562] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1701.960156][T12562] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 2
[ 1701.960764][T12562] usb 6-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8
[ 1701.960776][T12562] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1701.968742][T12562] usb 6-1: config 0 descriptor??
[ 1701.973759][T12562] dvb-usb: found a 'Artec T1 USB2.0' in warm state.
[ 1701.973805][T12562] dvb-usb: bulk message failed: -22 (3/0)
[ 1702.063582][T12562] dvb-usb: will use the device's hardware PID filter (table count: 16).
[ 1702.066170][T12562] dvbdev: DVB: registering new adapter (Artec T1 USB2.0)
[ 1702.066205][T12562] usb 6-1: media controller created
[ 1702.067719][T12562] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[ 1702.188354][T20413] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1702.188805][T20413] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1702.250292][T12562] dvb-usb: bulk message failed: -22 (6/0)
[ 1702.250341][T12562] dvb-usb: no frontend was attached by 'Artec T1 USB2.0'
[ 1702.272406][T12562] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.5/usb6/6-1/input/input20
[ 1702.451690][T12562] dvb-usb: schedule remote query interval to 150 msecs.
[ 1702.451713][T12562] dvb-usb: Artec T1 USB2.0 successfully initialized and connected.
[ 1702.530081][T12562] usb 6-1: USB disconnect, device number 6
[ 1702.655551][T20377] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1702.655644][T20377] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1702.655798][T20377] bridge_slave_0: entered allmulticast mode
[ 1702.657610][T20377] bridge_slave_0: entered promiscuous mode
[ 1702.659689][T20377] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1702.659765][T20377] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1702.659983][T20377] bridge_slave_1: entered allmulticast mode
[ 1702.754200][T20377] bridge_slave_1: entered promiscuous mode
[ 1702.814548][T12562] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected.
[ 1703.164659][T20377] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1703.167521][T20377] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1703.270474][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1703.447998][T20377] team0: Port device team_slave_0 added
[ 1703.452277][T20377] team0: Port device team_slave_1 added
[ 1703.818734][T20377] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1703.818751][T20377] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1703.818776][T20377] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1703.820399][T20377] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1703.820422][T20377] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1703.820445][T20377] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1704.001023][ T6702] Bluetooth: hci4: command tx timeout
[ 1704.556987][ T6370] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1704.569616][T20463] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[ 1704.713505][T20377] hsr_slave_0: entered promiscuous mode
[ 1704.718901][T20377] hsr_slave_1: entered promiscuous mode
[ 1704.719832][T20377] debugfs: 'hsr0' already exists in 'hsr'
[ 1704.719855][T20377] Cannot create hsr debugfs directory
[ 1705.181980][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1705.272516][   T12] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1705.404327][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1705.912468][ T6370] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1706.081061][ T6702] Bluetooth: hci4: command tx timeout
[ 1706.467287][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1706.557355][   T13] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1706.776095][T20487] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1706.831843][T20487] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1706.891895][T20487] bond0 (unregistering): (slave dummy0): Releasing backup interface
[ 1706.936402][T20487] bond0 (unregistering): Released all slaves
[ 1707.273063][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1707.401265][T20506] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[ 1707.494626][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1707.815975][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1708.221161][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1708.271588][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1708.280901][ T6702] Bluetooth: hci4: command tx timeout
[ 1708.322575][T20513] Process accounting resumed
[ 1708.355686][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1708.492685][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1708.586016][T20520] fuse: Bad value for 'fd'
[ 1710.409157][ T9473] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1711.038139][   T13] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1711.691302][ T6370] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1712.311601][T14372] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1712.689353][T20547] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4649'.
[ 1712.855391][T20558] netlink: 4 bytes leftover after parsing attributes in process `syz.7.4652'.
[ 1712.940622][T20562] fuse: Bad value for 'fd'
[ 1718.747788][ T6411] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1718.748317][ T6353] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1718.748883][ T6353] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1720.998176][   T37] audit: type=1326 audit(1756075385.886:2154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20599 comm="syz.5.4665" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd935a4ebe9 code=0x0
[ 1721.035750][T20602] fuse: Bad value for 'fd'
[ 1721.989534][T14372] netdevsim netdevsim9 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1721.989569][T14372] netdevsim netdevsim9 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1722.783485][T14372] netdevsim netdevsim9 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1722.783519][T14372] netdevsim netdevsim9 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1722.996215][T20644] netlink: 32 bytes leftover after parsing attributes in process `syz.2.4678'.
[ 1722.996253][T20644] openvswitch: netlink: Missing key (keys=40, expected=100)
[ 1723.005107][T20377] netdevsim netdevsim6 netdevsim0: renamed from eth0
[ 1723.600703][T20377] netdevsim netdevsim6 netdevsim1: renamed from eth1
[ 1723.878963][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1723.959022][T14372] netdevsim netdevsim9 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1723.959045][T14372] netdevsim netdevsim9 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1724.025262][T20377] netdevsim netdevsim6 netdevsim2: renamed from eth2
[ 1724.082853][T20657] netlink: 8 bytes leftover after parsing attributes in process `syz.7.4682'.
[ 1724.093940][T20377] netdevsim netdevsim6 netdevsim3: renamed from eth3
[ 1724.418150][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1724.635235][T14372] netdevsim netdevsim9 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1724.635256][T14372] netdevsim netdevsim9 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1725.045557][T20692] netlink: 32 bytes leftover after parsing attributes in process `syz.0.4693'.
[ 1725.045580][T20692] openvswitch: netlink: Missing key (keys=40, expected=100)
[ 1725.132110][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1725.274543][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1725.368858][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1725.450788][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1727.056888][T20377] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1727.083687][T14372] bridge_slave_1: left allmulticast mode
[ 1727.083720][T14372] bridge_slave_1: left promiscuous mode
[ 1727.084021][T14372] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1727.152786][T14372] bridge_slave_0: left allmulticast mode
[ 1727.152822][T14372] bridge_slave_0: left promiscuous mode
[ 1727.153108][T14372] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1728.301599][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1728.420060][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1728.491086][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1728.725762][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1728.896208][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1729.058884][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1729.645929][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1729.813932][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1729.881291][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1729.939579][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1729.987943][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1730.258049][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1730.259665][ T1323] ieee802154 phy0 wpan0: encryption failed: -22
[ 1730.404162][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1730.675557][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1731.182587][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1731.738256][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1731.942908][T14372] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1732.164736][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1732.206556][T14372] bond0 (unregistering): (slave dummy0): Releasing backup interface
[ 1732.407904][T14372] bond0 (unregistering): Released all slaves
[ 1735.004787][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1735.255543][T20377] 8021q: adding VLAN 0 to HW filter on device team0
[ 1735.413359][T14360] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1735.413445][T14360] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1735.430729][T14371] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1735.430952][T14371] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1735.981247][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1736.171277][T20790] 9pnet_virtio: no channels available for device syz
[ 1736.212762][T20790] 9pnet_virtio: no channels available for device syz
[ 1742.742934][T14372] hsr_slave_0: left promiscuous mode
[ 1742.781450][T20821] random: crng reseeded on system resumption
[ 1742.786261][T14372] hsr_slave_1: left promiscuous mode
[ 1742.787326][T14372] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1742.787353][T14372] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1742.842173][T14372] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1742.842205][T14372] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1742.987694][T14372] veth1_macvtap: left promiscuous mode
[ 1742.987813][T14372] veth0_macvtap: left promiscuous mode
[ 1742.988115][T14372] veth1_vlan: left promiscuous mode
[ 1743.007398][T14372] veth0_vlan: left promiscuous mode
[ 1744.247242][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1745.582023][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1745.724348][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1745.799502][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1745.913445][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1746.285216][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1746.417359][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1746.485677][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1746.726103][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1747.018562][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1747.460217][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1747.533844][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1747.655942][T14372] team0 (unregistering): Port device team_slave_1 removed
[ 1747.789351][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1747.880973][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1748.006849][T20863] 9pnet_virtio: no channels available for device syz
[ 1748.041857][T14372] team0 (unregistering): Port device team_slave_0 removed
[ 1748.085228][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1748.220579][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1748.297835][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1748.413713][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1748.736925][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1748.838878][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1748.920543][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1749.000035][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1749.086614][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1749.139487][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1749.227426][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1749.287333][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1749.349489][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1749.831882][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1750.025662][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1750.377619][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1750.421612][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1750.549595][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1750.700477][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1750.832314][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1751.039390][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1751.092149][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1751.144849][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1751.203203][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1751.396850][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1751.457853][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1751.534697][T20812] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1751.566268][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1751.597079][T20824] tipc: Resetting bearer <eth:syzkaller0>
[ 1751.617960][T20836] netem: change failed
[ 1752.200978][T20895] lo speed is unknown, defaulting to 1000
[ 1752.636553][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1752.782523][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1754.093073][T20377] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1754.133019][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1754.526608][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1754.609917][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1757.497129][T20926] netlink: zone id is out of range
[ 1757.499450][T20926] netlink: zone id is out of range
[ 1757.506085][T20926] netlink: zone id is out of range
[ 1757.506146][T20926] netlink: zone id is out of range
[ 1757.507403][T20926] netlink: zone id is out of range
[ 1757.507455][T20926] netlink: zone id is out of range
[ 1757.507627][T20926] netlink: zone id is out of range
[ 1757.507683][T20926] netlink: zone id is out of range
[ 1757.508011][T20926] netlink: zone id is out of range
[ 1757.713113][T20926] netlink: zone id is out of range
[ 1758.178993][T20930] tipc: Enabling of bearer <eth:syzkaller0> rejected, already enabled
[ 1758.406790][T20937] netlink: 4 bytes leftover after parsing attributes in process `syz.7.4761'.
[ 1758.484131][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1758.498318][T20941] binder: 20939:20941 ioctl 4018620d 0 returned -22
[ 1758.499185][T20941] binder: 20939:20941 unknown command 0
[ 1758.499200][T20941] binder: 20939:20941 ioctl c0306201 200000000080 returned -22
[ 1758.725192][T20947] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4763'.
[ 1759.550578][T20947] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1760.430566][T20961] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4770'.
[ 1760.465366][T20947] bridge_slave_0 (unregistering): left allmulticast mode
[ 1760.465387][T20947] bridge_slave_0 (unregistering): left promiscuous mode
[ 1760.465461][T20947] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1760.795476][T19955] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1760.838905][T19955] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1760.840396][T19955] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1760.860116][T19955] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1760.868100][T19955] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1760.964887][T20968] lo speed is unknown, defaulting to 1000
[ 1761.858848][T20980] binder: BINDER_SET_CONTEXT_MGR already set
[ 1761.858862][T20980] binder: 20979:20980 ioctl 4018620d 200000000040 returned -16
[ 1762.361173][T20983] netlink: 'syz.2.4777': attribute type 10 has an invalid length.
[ 1762.394974][T20983] team0: Port device dummy0 added
[ 1762.400008][T20983] netlink: 'syz.2.4777': attribute type 10 has an invalid length.
[ 1762.415195][T20983] team0: Failed to send port change of device dummy0 via netlink (err -105)
[ 1762.482061][T20983] team0: Failed to send options change via netlink (err -105)
[ 1762.482198][T20983] team0: Failed to send port change of device dummy0 via netlink (err -105)
[ 1762.482591][T20983] team0: Port device dummy0 removed
[ 1762.821848][T20993] netlink: 32 bytes leftover after parsing attributes in process `syz.7.4780'.
[ 1762.821879][T20993] net_ratelimit: 1 callbacks suppressed
[ 1762.821889][T20993] openvswitch: netlink: Missing key (keys=40, expected=100)
[ 1762.951187][ T6702] Bluetooth: hci0: command tx timeout
[ 1763.202140][ T6702] Bluetooth: hci7: unexpected event for opcode 0x2005
[ 1763.563092][T21008] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4783'.
[ 1763.930341][T21011] binder: BINDER_SET_CONTEXT_MGR already set
[ 1763.930358][T21011] binder: 21010:21011 ioctl 4018620d 200000000040 returned -16
[ 1765.034823][ T6702] Bluetooth: hci0: command tx timeout
[ 1765.242958][T21028] netlink: 'syz.7.4789': attribute type 10 has an invalid length.
[ 1765.253482][T21028] team0: Port device dummy0 added
[ 1765.272021][T21028] netlink: 'syz.7.4789': attribute type 10 has an invalid length.
[ 1765.275629][T21028] team0: Failed to send port change of device dummy0 via netlink (err -105)
[ 1765.323891][T21028] team0: Failed to send options change via netlink (err -105)
[ 1765.324023][T21028] team0: Failed to send port change of device dummy0 via netlink (err -105)
[ 1765.324367][T21028] team0: Port device dummy0 removed
[ 1765.326310][T20968] chnl_net:caif_netlink_parms(): no params data found
[ 1766.531555][T21046] netlink: 32 bytes leftover after parsing attributes in process `syz.5.4794'.
[ 1766.531584][T21046] openvswitch: netlink: Missing key (keys=40, expected=100)
[ 1766.860754][T21053] binder: BINDER_SET_CONTEXT_MGR already set
[ 1766.860770][T21053] binder: 21052:21053 ioctl 4018620d 200000000040 returned -16
[ 1766.890987][T20968] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1766.891189][T20968] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1766.891437][T20968] bridge_slave_0: entered allmulticast mode
[ 1766.894436][T20968] bridge_slave_0: entered promiscuous mode
[ 1766.957087][T20968] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1766.957265][T20968] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1766.957475][T20968] bridge_slave_1: entered allmulticast mode
[ 1766.960254][T20968] bridge_slave_1: entered promiscuous mode
[ 1767.111390][ T6702] Bluetooth: hci0: command tx timeout
[ 1767.277431][T21059] netlink: 8 bytes leftover after parsing attributes in process `syz.7.4795'.
[ 1767.378044][T20968] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1767.416865][T20968] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1767.753127][T20968] team0: Port device team_slave_0 added
[ 1767.769749][T20968] team0: Port device team_slave_1 added
[ 1767.867082][T21069] netlink: 'syz.7.4801': attribute type 10 has an invalid length.
[ 1767.888542][ T9473] bridge_slave_1: left allmulticast mode
[ 1767.888574][ T9473] bridge_slave_1: left promiscuous mode
[ 1767.888855][ T9473] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1767.931394][T21070] netlink: 'syz.7.4801': attribute type 10 has an invalid length.
[ 1767.982868][ T9473] bridge_slave_0: left allmulticast mode
[ 1767.982902][ T9473] bridge_slave_0: left promiscuous mode
[ 1767.983250][ T9473] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1769.218238][ T6702] Bluetooth: hci0: command tx timeout
[ 1769.500387][T21085] netlink: 'syz.2.4806': attribute type 1 has an invalid length.
[ 1769.500403][T21085] netlink: 1284 bytes leftover after parsing attributes in process `syz.2.4806'.
[ 1770.907151][T21103] 9pnet_fd: Insufficient options for proto=fd
[ 1771.653543][ T9473] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1771.721901][ T9473] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1771.755771][ T9473] bond0 (unregistering): Released all slaves
[ 1771.825698][T21069] team0: Port device dummy0 added
[ 1772.030281][T21070] team0: Port device dummy0 removed
[ 1772.249422][T20968] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1772.249438][T20968] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1772.249462][T20968] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1772.555282][T20968] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1772.555294][T20968] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1772.555309][T20968] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1773.578104][ T9473] hsr_slave_0: left promiscuous mode
[ 1774.238233][ T9473] hsr_slave_1: left promiscuous mode
[ 1774.255374][ T9473] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1774.794446][ T9473] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1778.683061][T21152] netlink: 'syz.5.4824': attribute type 10 has an invalid length.
[ 1778.735566][T21153] netlink: 'syz.5.4824': attribute type 10 has an invalid length.
[ 1779.373510][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1779.744909][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1779.791894][ T9473] team0 (unregistering): Port device team_slave_1 removed
[ 1779.828979][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1779.892012][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1779.943967][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1780.064172][ T9473] team0 (unregistering): Port device team_slave_0 removed
[ 1780.149639][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1780.322820][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1780.600733][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1780.670452][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1780.823615][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1780.904085][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1781.080147][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1781.133737][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1781.215793][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1781.272454][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1781.425681][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1781.533561][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1781.678792][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1782.057111][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1782.114036][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1782.378483][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1782.431975][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1782.480414][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1782.718250][T21149] mac80211_hwsim hwsim25 syzkaller0: left promiscuous mode
[ 1782.724119][T21149] mac80211_hwsim hwsim25 syzkaller0: left allmulticast mode
[ 1782.754575][T21152] team0: Port device dummy0 added
[ 1782.820500][T21153] team0: Port device dummy0 removed
[ 1782.956536][T21166] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4827'.
[ 1784.142242][T21166] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1784.679916][T21166] bridge_slave_0 (unregistering): left allmulticast mode
[ 1784.679949][T21166] bridge_slave_0 (unregistering): left promiscuous mode
[ 1784.680111][T21166] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1784.964723][   T37] audit: type=1326 audit(1756075449.856:2155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=21184 comm="syz.5.4832" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd935a4ebe9 code=0x7ffc0000
[ 1784.967282][   T37] audit: type=1326 audit(1756075449.856:2156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=21184 comm="syz.5.4832" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd935a4ebe9 code=0x7ffc0000
[ 1784.991120][   T37] audit: type=1326 audit(1756075449.876:2157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=21184 comm="syz.5.4832" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7fd935a4ebe9 code=0x7ffc0000
[ 1784.991247][   T37] audit: type=1326 audit(1756075449.876:2158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=21184 comm="syz.5.4832" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd935a4ebe9 code=0x7ffc0000
[ 1784.991367][   T37] audit: type=1326 audit(1756075449.876:2159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=21184 comm="syz.5.4832" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd935a4ebe9 code=0x7ffc0000
[ 1784.993116][   T37] audit: type=1326 audit(1756075449.886:2160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=21184 comm="syz.5.4832" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fd935a4ebe9 code=0x7ffc0000
[ 1784.994085][   T37] audit: type=1326 audit(1756075449.886:2161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=21184 comm="syz.5.4832" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd935a4ebe9 code=0x7ffc0000
[ 1784.995646][   T37] audit: type=1326 audit(1756075449.886:2162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=21184 comm="syz.5.4832" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd935a4ebe9 code=0x7ffc0000
[ 1785.006700][   T37] audit: type=1326 audit(1756075449.896:2163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=21184 comm="syz.5.4832" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd935a4ebe9 code=0x7ffc0000
[ 1785.006746][   T37] audit: type=1326 audit(1756075449.896:2164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=21184 comm="syz.5.4832" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd935a4ebe9 code=0x7ffc0000
[ 1785.855693][T21185] tty tty1: ldisc open failed (-12), clearing slot 0
[ 1786.220340][T21194] netlink: 20 bytes leftover after parsing attributes in process `syz.0.4834'.
[ 1786.989222][T20968] hsr_slave_0: entered promiscuous mode
[ 1787.001617][T20968] hsr_slave_1: entered promiscuous mode
[ 1787.011593][T21197] netlink: 20 bytes leftover after parsing attributes in process `syz.2.4836'.
[ 1787.174132][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1787.260400][T21208] netlink: 'syz.0.4842': attribute type 10 has an invalid length.
[ 1787.369410][T21211] netlink: 'syz.0.4842': attribute type 10 has an invalid length.
[ 1787.398559][T21208] team0: Port device dummy0 added
[ 1787.400462][T21211] team0: Failed to send port change of device dummy0 via netlink (err -105)
[ 1787.438407][T21211] team0: Failed to send options change via netlink (err -105)
[ 1787.440093][T21211] team0: Failed to send port change of device dummy0 via netlink (err -105)
[ 1787.440671][T21211] team0: Port device dummy0 removed
[ 1787.722937][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1787.960436][T21224] fuse: Bad value for 'group_id'
[ 1787.960458][T21224] fuse: Bad value for 'group_id'
[ 1791.675650][ T1323] ieee802154 phy0 wpan0: encryption failed: -22
[ 1793.295903][T21232] overlayfs: failed to resolve './file1': -2
[ 1793.634032][T21242] netlink: 20 bytes leftover after parsing attributes in process `syz.7.4851'.
[ 1795.544772][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1795.797839][T21277] overlayfs: failed to resolve './file1': -2
[ 1796.243100][T20968] netdevsim netdevsim6 netdevsim0: renamed from eth0
[ 1796.671230][T20968] netdevsim netdevsim6 netdevsim1: renamed from eth1
[ 1796.763589][T20968] netdevsim netdevsim6 netdevsim2: renamed from eth2
[ 1796.815578][T20968] netdevsim netdevsim6 netdevsim3: renamed from eth3
[ 1798.392110][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1798.425878][T20968] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1798.504137][T20968] 8021q: adding VLAN 0 to HW filter on device team0
[ 1798.533708][T14371] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1798.533914][T14371] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1798.575104][ T6353] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1798.575250][ T6353] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1799.047528][T21347] netlink: 20 bytes leftover after parsing attributes in process `syz.7.4885'.
[ 1799.083717][T20968] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1799.926763][T20968] veth0_vlan: entered promiscuous mode
[ 1799.963218][T20968] veth1_vlan: entered promiscuous mode
[ 1800.310105][T20968] veth0_macvtap: entered promiscuous mode
[ 1800.326402][T20968] veth1_macvtap: entered promiscuous mode
[ 1800.385971][T20968] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1800.432367][T20968] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1800.456885][T14372] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1800.458001][T14372] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1800.458040][T14372] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1800.458074][T14372] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1800.762216][T21373] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[ 1800.775065][T21380] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4895'.
[ 1800.907410][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1801.025045][T21389] netlink: 68 bytes leftover after parsing attributes in process `syz.5.4899'.
[ 1801.029669][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1801.938539][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1802.124555][T21397] overlayfs: failed to resolve './file0': -2
[ 1802.175823][T13017] libceph: connect (1)[c::]:6789 error -101
[ 1802.176038][T13017] libceph: mon0 (1)[c::]:6789 connect error
[ 1802.308645][T21398] ceph: No mds server is up or the cluster is laggy
[ 1802.409771][T21410] netlink: 'syz.5.4905': attribute type 10 has an invalid length.
[ 1802.473917][T21412] netlink: 'syz.5.4905': attribute type 10 has an invalid length.
[ 1802.651553][T21410] team0: Port device dummy0 added
[ 1802.745435][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1802.746355][T21412] team0: Failed to send port change of device dummy0 via netlink (err -105)
[ 1802.804399][T21412] team0: Failed to send options change via netlink (err -105)
[ 1802.804656][T21412] team0: Failed to send port change of device dummy0 via netlink (err -105)
[ 1802.805447][T21412] team0: Port device dummy0 removed
[ 1802.882915][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1802.997942][ T6411] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1802.997963][ T6411] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1803.170015][T21422] netlink: 20 bytes leftover after parsing attributes in process `syz.5.4910'.
[ 1803.172604][ T9473] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1803.172624][ T9473] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1803.434491][T21435] netlink: 168 bytes leftover after parsing attributes in process `syz.5.4912'.
[ 1803.440451][T21435] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4912'.
[ 1803.520168][T21438] 9pnet_fd: Insufficient options for proto=fd
[ 1803.560105][T21439] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4915'.
[ 1803.560131][T21439] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4915'.
[ 1803.954167][T19955] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1803.970441][T19955] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1803.980053][T19955] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1803.993608][T19955] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1803.995437][T19955] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1804.126601][T21443] lo speed is unknown, defaulting to 1000
[ 1804.604129][T21459] netlink: 4 bytes leftover after parsing attributes in process `syz.6.4921'.
[ 1804.731360][T21461] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4919'.
[ 1805.174288][T21454] netlink: 20 bytes leftover after parsing attributes in process `syz.2.4922'.
[ 1805.174349][T21459] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1805.174379][T21459] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1805.349877][T21459] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1805.349908][T21459] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1805.970981][T21474] 9pnet_fd: Insufficient options for proto=fd
[ 1806.071841][ T6702] Bluetooth: hci4: command tx timeout
[ 1806.175229][T21443] chnl_net:caif_netlink_parms(): no params data found
[ 1806.348715][T21493] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4931'.
[ 1806.348740][T21493] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4931'.
[ 1806.444906][T21495] netlink: 20 bytes leftover after parsing attributes in process `syz.6.4933'.
[ 1806.555844][T21443] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1806.555987][T21443] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1806.556225][T21443] bridge_slave_0: entered allmulticast mode
[ 1806.584506][T21443] bridge_slave_0: entered promiscuous mode
[ 1806.588003][T21443] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1806.588226][T21499] overlayfs: failed to get inode (-116)
[ 1806.588233][T21443] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1806.588447][T21443] bridge_slave_1: entered allmulticast mode
[ 1806.588807][T21499] overlayfs: failed to get inode (-116)
[ 1806.626569][T21443] bridge_slave_1: entered promiscuous mode
[ 1806.839123][T21443] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1806.867742][T21443] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1806.910088][T21504] 9pnet_fd: Insufficient options for proto=fd
[ 1807.093837][T21507] 9pnet_fd: Insufficient options for proto=fd
[ 1807.649491][T21515] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4939'.
[ 1808.158601][ T6702] Bluetooth: hci4: command tx timeout
[ 1808.708646][T21443] team0: Port device team_slave_0 added
[ 1808.756216][T21443] team0: Port device team_slave_1 added
[ 1808.800350][ T6702] Bluetooth: hci1: unexpected event for opcode 0x2005
[ 1808.880744][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1809.158208][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1809.305704][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1809.574537][T21540] netlink: 24 bytes leftover after parsing attributes in process `syz.0.4947'.
[ 1810.082176][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1810.237800][ T6702] Bluetooth: hci4: command tx timeout
[ 1810.350139][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1810.559934][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1810.574353][T21443] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1810.574370][T21443] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1810.574395][T21443] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1810.576870][T21443] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1810.576885][T21443] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1810.576910][T21443] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1810.778634][T21548] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4950'.
[ 1810.778659][T21548] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4950'.
[ 1810.890718][T21551] 9pnet_fd: Insufficient options for proto=fd
[ 1810.974066][T21443] hsr_slave_0: entered promiscuous mode
[ 1810.975637][T21443] hsr_slave_1: entered promiscuous mode
[ 1810.977635][T21443] debugfs: 'hsr0' already exists in 'hsr'
[ 1810.977661][T21443] Cannot create hsr debugfs directory
[ 1811.981310][T21564] netlink: 'syz.6.4955': attribute type 10 has an invalid length.
[ 1812.033946][T21566] autofs: Unknown parameter 'fd0x0000000000000000'
[ 1812.037487][T21567] netlink: 'syz.6.4955': attribute type 10 has an invalid length.
[ 1812.176441][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1812.324725][T21571] netlink: 24 bytes leftover after parsing attributes in process `syz.5.4958'.
[ 1812.327212][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1812.656420][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1812.688230][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1812.987250][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1813.013985][ T6702] Bluetooth: hci4: command tx timeout
[ 1813.108418][T21564] team0: Port device dummy0 added
[ 1813.202818][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1813.242432][T21567] team0: Port device dummy0 removed
[ 1813.249469][T21567] bond0: (slave dummy0): Enslaving as an active interface with an up link
[ 1814.130168][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1814.416139][T21443] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1814.623045][T21585] 9pnet_fd: Insufficient options for proto=fd
[ 1815.356863][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1815.613554][T21443] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1815.683138][T21597] overlayfs: failed to resolve './file0': -2
[ 1815.702887][T21600] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4967'.
[ 1815.702910][T21600] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4967'.
[ 1815.899198][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1815.960030][T21443] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1816.466502][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1816.519340][T21443] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1816.604853][ T6702] Bluetooth: hci1: unexpected event for opcode 0x2005
[ 1818.918270][T21628] netlink: 32 bytes leftover after parsing attributes in process `syz.5.4979'.
[ 1818.918948][T21628] netlink: 32 bytes leftover after parsing attributes in process `syz.5.4979'.
[ 1819.105195][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1819.300958][T21443] netdevsim netdevsim7 netdevsim0: renamed from eth0
[ 1819.318808][T21640] netlink: 'syz.0.4984': attribute type 10 has an invalid length.
[ 1819.346831][T21640] team0: Port device dummy0 added
[ 1819.348376][T21640] netlink: 'syz.0.4984': attribute type 10 has an invalid length.
[ 1819.356754][T21443] netdevsim netdevsim7 netdevsim1: renamed from eth1
[ 1819.397362][T21645] netlink: 8 bytes leftover after parsing attributes in process `syz.6.4985'.
[ 1819.397385][T21645] netlink: 8 bytes leftover after parsing attributes in process `syz.6.4985'.
[ 1819.397931][T21640] team0: Failed to send port change of device dummy0 via netlink (err -105)
[ 1819.463894][T21640] team0: Failed to send options change via netlink (err -105)
[ 1819.464030][T21640] team0: Failed to send port change of device dummy0 via netlink (err -105)
[ 1819.464471][T21640] team0: Port device dummy0 removed
[ 1819.466633][T21443] netdevsim netdevsim7 netdevsim2: renamed from eth2
[ 1824.775394][T21443] netdevsim netdevsim7 netdevsim3: renamed from eth3
[ 1824.926452][ T6702] Bluetooth: hci1: unexpected event for opcode 0x2005
[ 1825.035460][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1825.436699][T21679] netlink: 24 bytes leftover after parsing attributes in process `syz.2.4993'.
[ 1826.164008][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1826.358617][T21443] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1826.428776][T21443] 8021q: adding VLAN 0 to HW filter on device team0
[ 1826.445420][T14372] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1826.445569][T14372] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1826.475042][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1826.475214][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1826.665379][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1826.716687][T21687] netlink: 'syz.0.4997': attribute type 10 has an invalid length.
[ 1826.720277][T21687] team0: Port device dummy0 added
[ 1826.721957][T21687] netlink: 'syz.0.4997': attribute type 10 has an invalid length.
[ 1826.746657][T21687] team0: Failed to send port change of device dummy0 via netlink (err -105)
[ 1826.868319][T21687] team0: Failed to send options change via netlink (err -105)
[ 1826.868570][T21687] team0: Failed to send port change of device dummy0 via netlink (err -105)
[ 1826.870615][T21687] team0: Port device dummy0 removed
[ 1827.077698][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1830.533320][T21714] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5003'.
[ 1830.614838][T21443] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1831.154631][T21731] netlink: 24 bytes leftover after parsing attributes in process `syz.2.5005'.
[ 1831.831545][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1832.256568][ T6702] Bluetooth: hci1: unexpected event for opcode 0x2005
[ 1832.297659][T21443] veth0_vlan: entered promiscuous mode
[ 1832.307153][T21443] veth1_vlan: entered promiscuous mode
[ 1832.356044][T21443] veth0_macvtap: entered promiscuous mode
[ 1832.376800][T21443] veth1_macvtap: entered promiscuous mode
[ 1832.415363][T21443] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1832.442629][T21443] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1832.459471][ T6353] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1832.459871][ T6353] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1832.459908][ T6353] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1832.459939][ T6353] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1833.100239][T14372] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1833.100259][T14372] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1833.214488][T14371] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1833.214509][T14371] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1833.360126][T21758] netlink: 'syz.0.5017': attribute type 10 has an invalid length.
[ 1833.368511][T21758] team0: Port device dummy0 added
[ 1833.371393][T21758] netlink: 'syz.0.5017': attribute type 10 has an invalid length.
[ 1833.372605][T21758] team0: Failed to send port change of device dummy0 via netlink (err -105)
[ 1833.412133][T21758] team0: Failed to send options change via netlink (err -105)
[ 1833.412434][T21758] team0: Failed to send port change of device dummy0 via netlink (err -105)
[ 1833.413054][T21758] team0: Port device dummy0 removed
[ 1833.667165][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1835.770925][T21783] netlink: 24 bytes leftover after parsing attributes in process `syz.6.5022'.
[ 1839.943175][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1840.017601][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1841.336324][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1841.367485][T21824] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[ 1841.438996][T21834] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5034'.
[ 1841.625426][T21830] team0: Mode "l”›ÿalance" not found
[ 1841.625810][T21824] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1841.625839][T21824] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1841.655173][T21824] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1841.655204][T21824] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1841.824449][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1842.101867][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1842.174810][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1842.303855][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1842.334233][ T6702] Bluetooth: hci1: unexpected event for opcode 0x2005
[ 1842.542457][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1842.584320][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1843.607340][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1843.772831][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1843.822201][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1843.921443][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1845.911530][ T6702] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[ 1846.169439][T19955] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1847.939381][ T6702] Bluetooth: hci4: unexpected event for opcode 0x2005
[ 1848.087813][T21867] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[ 1850.033229][T19955] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1850.055285][T19955] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1850.057092][T19955] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1850.133294][T19955] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1850.136133][T19955] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1851.132401][   T37] kauditd_printk_skb: 22 callbacks suppressed
[ 1851.132423][   T37] audit: type=1326 audit(1756075516.026:2187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=21883 comm="syz.7.5057" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f0466c8ebe9 code=0x0
[ 1851.238622][T21900] lo speed is unknown, defaulting to 1000
[ 1851.672476][T19955] Bluetooth: hci3: unexpected event for opcode 0x2005
[ 1851.859885][T21900] chnl_net:caif_netlink_parms(): no params data found
[ 1853.111569][T19955] Bluetooth: hci2: command tx timeout
[ 1853.118801][ T1323] ieee802154 phy0 wpan0: encryption failed: -22
[ 1853.154808][T21940] netlink: 4 bytes leftover after parsing attributes in process `syz.6.5070'.
[ 1853.497116][T21943] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5072'.
[ 1854.695813][T21900] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1854.696034][T21900] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1854.696988][T21900] bridge_slave_0: entered allmulticast mode
[ 1854.741936][T21900] bridge_slave_0: entered promiscuous mode
[ 1854.755069][T21900] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1854.755251][T21900] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1854.755621][T21900] bridge_slave_1: entered allmulticast mode
[ 1854.763787][T21900] bridge_slave_1: entered promiscuous mode
[ 1855.226642][T21967] netlink: 24 bytes leftover after parsing attributes in process `syz.6.5078'.
[ 1855.897842][T19955] Bluetooth: hci2: command tx timeout
[ 1856.206067][T21900] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1856.305185][T21900] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1857.920978][ T6702] Bluetooth: hci2: command tx timeout
[ 1858.712268][T22007] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5087'.
[ 1859.369392][T21997] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[ 1859.862914][T21900] team0: Port device team_slave_0 added
[ 1859.865251][T21900] team0: Port device team_slave_1 added
[ 1859.990952][ T6702] Bluetooth: hci2: command 0x0419 tx timeout
[ 1860.130129][T21900] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1860.130146][T21900] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1860.130171][T21900] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1860.184443][T21900] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1860.184454][T21900] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1860.184469][T21900] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1860.679224][T21900] hsr_slave_0: entered promiscuous mode
[ 1860.699362][T21900] hsr_slave_1: entered promiscuous mode
[ 1860.798690][T21900] debugfs: 'hsr0' already exists in 'hsr'
[ 1860.798726][T21900] Cannot create hsr debugfs directory
[ 1864.783634][T22047] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5098'.
[ 1864.984066][T22055] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5100'.
[ 1865.550413][T22064] 9pnet: Could not find request transport: fd0x0000000000000004
[ 1869.102599][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1869.881376][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1870.923707][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1871.758706][T22095] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1872.221935][T22095] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1872.267179][T21900] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 1872.320000][T22115] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[ 1872.349901][T21900] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 1872.504091][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1872.533552][T22117] 9pnet: Could not find request transport: fd0x0000000000000004
[ 1872.750554][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1878.781767][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1878.845590][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1878.990174][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1879.177722][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1879.217919][T22095] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1879.307911][T21900] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 1879.378832][T21900] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 1879.709619][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1879.769704][T22095] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1881.432817][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1882.647848][T19955] Bluetooth: hci3: unexpected event for opcode 0x2005
[ 1882.714131][T22175] 9pnet: Could not find request transport: fd0x0000000000000004
[ 1882.758800][T14371] netdevsim netdevsim6 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1882.835021][T14371] netdevsim netdevsim6 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1882.925635][   T13] netdevsim netdevsim6 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1882.993629][T14360] netdevsim netdevsim6 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1883.066789][T21900] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1883.153672][T21900] 8021q: adding VLAN 0 to HW filter on device team0
[ 1883.188261][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1883.188514][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1883.215766][T14360] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1883.215999][T14360] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1883.452431][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1884.745621][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1887.121613][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1887.427299][T21900] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1887.577682][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1887.749649][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1887.768287][T19955] Bluetooth: hci0: command 0x0406 tx timeout
[ 1887.848962][T22216] 9pnet_virtio: no channels available for device syz
[ 1888.232550][T22223] overlayfs: missing 'lowerdir'
[ 1888.453504][ T6702] Bluetooth: hci1: unexpected event for opcode 0x2005
[ 1888.534740][T21900] veth0_vlan: entered promiscuous mode
[ 1888.558127][T21900] veth1_vlan: entered promiscuous mode
[ 1888.580411][T22230] 9pnet_fd: Insufficient options for proto=fd
[ 1888.648531][T21900] veth0_macvtap: entered promiscuous mode
[ 1888.670201][T21900] veth1_macvtap: entered promiscuous mode
[ 1888.708562][T21900] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1889.187812][T21900] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1889.248800][T22238] fuse: Invalid rootmode
[ 1889.614758][T14365] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1889.617684][T14365] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1889.621133][T14365] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1889.625254][T14365] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1890.431691][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1891.791914][ T8156] usb 3-1: new high-speed USB device number 20 using dummy_hcd
[ 1892.012802][ T8156] usb 3-1: config index 0 descriptor too short (expected 45, got 36)
[ 1892.012983][ T8156] usb 3-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[ 1892.013054][ T8156] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[ 1892.013078][ T8156] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[ 1892.013103][ T8156] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[ 1892.013187][ T8156] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[ 1892.013243][ T8156] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1892.241558][ T8156] usb 3-1: config 0 descriptor??
[ 1892.532516][T22249] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[ 1897.755979][ T8156] usbhid 3-1:0.0: can't add hid device: -32
[ 1897.756460][ T8156] usbhid 3-1:0.0: probe with driver usbhid failed with error -32
[ 1900.020487][T12562] usb 3-1: USB disconnect, device number 20
[ 1900.323411][T14360] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1900.323425][T14360] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1900.804408][T22262] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5151'.
[ 1901.801943][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1901.894780][T14372] bond1 (unregistering): (slave ip6gretap1): Removing an active aggregator
[ 1901.895476][T14372] bond1 (unregistering): (slave ip6gretap1): Releasing backup interface
[ 1901.895498][T14372] bond1 (unregistering): (slave ip6gretap1): the permanent HWaddr of slave - 6a:db:d4:d9:31:17 - is still in use by bond - set the HWaddr of slave to a different address to avoid conflicts
[ 1901.943419][T22274] 9pnet_fd: Insufficient options for proto=fd
[ 1902.046636][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1902.230970][T22281] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5156'.
[ 1902.292116][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1902.419560][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1903.295041][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1903.406323][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1903.564909][ T6702] Bluetooth: hci2: link tx timeout
[ 1903.566897][ T6702] Bluetooth: hci2: killing stalled connection 11:aa:aa:aa:aa:aa
[ 1903.588458][T19955] Bluetooth: hci2: link tx timeout
[ 1903.588493][T19955] Bluetooth: hci2: killing stalled connection 11:aa:aa:aa:aa:aa
[ 1903.608822][T19955] Bluetooth: hci2: link tx timeout
[ 1903.608844][T19955] Bluetooth: hci2: killing stalled connection 11:aa:aa:aa:aa:aa
[ 1903.626884][T19955] Bluetooth: hci2: link tx timeout
[ 1903.626907][T19955] Bluetooth: hci2: killing stalled connection 11:aa:aa:aa:aa:aa
[ 1905.406938][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1905.475888][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1905.611585][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1905.621273][T19955] Bluetooth: hci2: command 0x0419 tx timeout
[ 1905.702241][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1905.859664][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1905.924114][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1905.981482][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1906.046193][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1906.111803][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1906.521197][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1906.576264][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1907.697636][ T6702] Bluetooth: hci2: command 0x0419 tx timeout
[ 1908.466781][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1908.556993][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1908.611964][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1908.645185][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1908.936524][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1909.026645][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1909.041995][   T37] audit: type=1800 audit(1756075573.926:2188): pid=22310 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.7.5164" name="SYSV00000000" dev="tmpfs" ino=1 res=0 errno=0
[ 1909.313691][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1909.572508][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1909.578914][T22315] 9pnet_fd: Insufficient options for proto=fd
[ 1909.821172][T19955] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1909.984755][T19955] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1909.989629][T19955] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1910.013464][T19955] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1910.013946][T19955] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1910.089680][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1910.182889][T14372] bond0 (unregistering): (slave dummy0): Releasing backup interface
[ 1910.224408][T14372] bond0 (unregistering): Released all slaves
[ 1910.358037][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1910.420185][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1910.485100][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1910.566340][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1910.667242][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1910.728776][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1910.785531][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1910.849000][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1910.929881][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1911.040164][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1911.529933][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1911.779433][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1911.845802][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1912.052942][T14372] bond1 (unregistering): (slave veth11): Releasing backup interface
[ 1912.071293][ T6702] Bluetooth: hci5: command tx timeout
[ 1912.101891][T14372] bond1 (unregistering): Released all slaves
[ 1912.159278][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1912.261516][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1912.397220][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1912.573191][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1912.640613][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1912.721068][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1912.805701][T14372] tipc: Left network mode
[ 1912.915179][T22323] lo speed is unknown, defaulting to 1000
[ 1913.224998][T14372] IPVS: stopping master sync thread 17248 ...
[ 1913.344540][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1914.161318][ T6702] Bluetooth: hci5: command tx timeout
[ 1914.559241][ T1323] ieee802154 phy0 wpan0: encryption failed: -22
[ 1915.975895][T22357] 9pnet_fd: Insufficient options for proto=fd
[ 1916.231190][ T6702] Bluetooth: hci5: command tx timeout
[ 1916.461525][T22323] chnl_net:caif_netlink_parms(): no params data found
[ 1917.079352][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1917.275410][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1917.456088][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1917.744820][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1917.842616][T19955] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1917.865240][T19955] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1917.887692][T19955] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1917.890722][T19955] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1917.909086][T19955] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1918.322559][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1918.327167][T19955] Bluetooth: hci5: command tx timeout
[ 1918.605517][T19955] Bluetooth: hci4: unknown advertising packet type: 0x82
[ 1918.605557][T19955] Bluetooth: hci4: Malformed LE Event: 0x02
[ 1918.711636][T14372] hsr_slave_0: left promiscuous mode
[ 1918.751009][T14372] hsr_slave_1: left promiscuous mode
[ 1918.831384][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1918.900981][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1919.083033][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1919.154127][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1919.264043][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1919.536279][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1919.934351][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1919.988959][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1919.991301][T19955] Bluetooth: hci0: command tx timeout
[ 1920.085657][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1920.210604][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1920.306479][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1920.463024][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1920.550588][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1920.766998][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1920.889532][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1921.015336][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1921.144352][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1921.162497][T22400] 9pnet_fd: Insufficient options for proto=fd
[ 1921.228327][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1922.350977][T19955] Bluetooth: hci0: command tx timeout
[ 1922.811028][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1922.992297][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1923.126104][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1923.193019][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1923.273929][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1923.471867][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1923.529675][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1923.799055][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1924.023020][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1924.094593][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1924.147768][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1924.214833][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1924.291270][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1924.366028][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1924.419453][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1924.421526][T19955] Bluetooth: hci0: command tx timeout
[ 1924.488093][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1924.617844][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1924.693930][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1925.161503][T22366] lo speed is unknown, defaulting to 1000
[ 1925.289852][T22323] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1925.306558][T22323] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1925.306856][T22323] bridge_slave_0: entered allmulticast mode
[ 1925.310069][T22323] bridge_slave_0: entered promiscuous mode
[ 1925.396554][T22323] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1925.396658][T22323] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1925.396854][T22323] bridge_slave_1: entered allmulticast mode
[ 1925.405719][T22323] bridge_slave_1: entered promiscuous mode
[ 1925.636061][T19955] Bluetooth: hci3: unexpected event for opcode 0x1005
[ 1925.695880][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1926.607443][T19955] Bluetooth: hci0: command tx timeout
[ 1926.913953][T19955] Bluetooth: hci4: command 0x0405 tx timeout
[ 1927.265093][T22323] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1927.437921][T22323] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1928.145929][T22323] team0: Port device team_slave_0 added
[ 1928.171636][T22323] team0: Port device team_slave_1 added
[ 1928.485171][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1928.908715][T22323] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1928.908731][T22323] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1928.908756][T22323] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1928.930417][T22323] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1928.930441][T22323] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1928.930465][T22323] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1929.472228][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1929.831486][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1930.106753][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1931.473929][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1931.777866][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1932.008602][T22323] hsr_slave_0: entered promiscuous mode
[ 1932.009630][T22323] hsr_slave_1: entered promiscuous mode
[ 1932.010316][T22323] debugfs: 'hsr0' already exists in 'hsr'
[ 1932.010335][T22323] Cannot create hsr debugfs directory
[ 1936.594653][T14372] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1936.833836][ T6702] Bluetooth: hci4: unexpected event for opcode 0x0000
[ 1936.884977][T22366] chnl_net:caif_netlink_parms(): no params data found
[ 1937.257098][T14372] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1938.874017][T14372] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1939.846508][ T6702] Bluetooth: hci4: unexpected event for opcode 0x0000
[ 1940.546443][T14372] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1940.884246][ T6702] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0
[ 1940.889861][ T6702] Bluetooth: hci4: Injecting HCI hardware error event
[ 1940.982604][T19955] Bluetooth: hci4: hardware error 0x00
[ 1941.111848][T22580] overlayfs: missing 'workdir'
[ 1942.959326][T22366] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1942.959445][T22366] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1942.959565][T22366] bridge_slave_0: entered allmulticast mode
[ 1942.989111][T22366] bridge_slave_0: entered promiscuous mode
[ 1943.010488][T22366] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1943.010638][T22366] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1943.026358][T22366] bridge_slave_1: entered allmulticast mode
[ 1943.027959][T22366] bridge_slave_1: entered promiscuous mode
[ 1943.126323][T19955] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[ 1943.204715][T19955] Bluetooth: hci3: unexpected event for opcode 0x0000
[ 1943.427151][T22366] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1943.504693][T22366] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1944.805282][T22366] team0: Port device team_slave_0 added
[ 1944.899615][T22366] team0: Port device team_slave_1 added
[ 1946.096892][T22366] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1946.096908][T22366] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1946.096926][T22366] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1946.099201][T22366] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1946.099214][T22366] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1946.099233][T22366] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1946.181463][T22635] netlink: 168 bytes leftover after parsing attributes in process `syz.0.5256'.
[ 1946.303578][T22639] netlink: 12 bytes leftover after parsing attributes in process `syz.0.5256'.
[ 1946.403412][T14372] netdevsim netdevsim6 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1947.271781][T19955] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[ 1947.276857][T19955] Bluetooth: hci3: Injecting HCI hardware error event
[ 1947.282978][ T6702] Bluetooth: hci3: hardware error 0x00
[ 1947.428493][T14372] netdevsim netdevsim6 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1948.040383][T14372] netdevsim netdevsim6 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1948.189000][T22366] hsr_slave_0: entered promiscuous mode
[ 1948.192068][T22366] hsr_slave_1: entered promiscuous mode
[ 1948.207284][T22366] debugfs: 'hsr0' already exists in 'hsr'
[ 1948.207558][T22366] Cannot create hsr debugfs directory
[ 1949.361018][ T6702] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[ 1953.773700][T14372] netdevsim netdevsim6 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1966.736217][T22711] loop7: detected capacity change from 0 to 16384
[ 1966.753191][T14372] bridge_slave_1: left allmulticast mode
[ 1966.753221][T14372] bridge_slave_1: left promiscuous mode
[ 1966.753886][T14372] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1966.857139][T14372] bridge_slave_0: left allmulticast mode
[ 1966.857172][T14372] bridge_slave_0: left promiscuous mode
[ 1966.857466][T14372] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1966.965663][T14372] bridge_slave_1: left allmulticast mode
[ 1966.965694][T14372] bridge_slave_1: left promiscuous mode
[ 1966.965958][T14372] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1967.074040][T14372] bridge_slave_0: left allmulticast mode
[ 1967.074075][T14372] bridge_slave_0: left promiscuous mode
[ 1967.074340][T14372] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1967.505287][   T37] audit: type=1326 audit(1756075632.396:2189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=22725 comm="syz.2.5286" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1cdd00ebe9 code=0x0
[ 1969.195705][T22736] binder: 22734:22736 ioctl c0306201 0 returned -14
[ 1969.827810][T19955] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1969.848311][T19955] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1969.849781][T19955] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1969.859164][T19955] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1969.869428][T19955] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1970.621162][T22753] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5291'.
[ 1971.332395][T14372] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1971.411544][T14372] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1971.436663][T14372] bond0 (unregistering): Released all slaves
[ 1972.001151][ T6702] Bluetooth: hci2: command tx timeout
[ 1973.632667][T14372] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1973.691843][T14372] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1973.751559][T14372] bond0 (unregistering): (slave dummy0): Releasing backup interface
[ 1973.780085][T14372] bond0 (unregistering): Released all slaves
[ 1974.118862][ T6702] Bluetooth: hci2: command tx timeout
[ 1974.142411][   T37] audit: type=1326 audit(1756075639.036:2190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=22769 comm="syz.0.5297" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd1c1e6ebe9 code=0x0
[ 1974.199716][T22772] binder: 22771:22772 ioctl c0306201 0 returned -14
[ 1974.521318][T22777] netlink: 168 bytes leftover after parsing attributes in process `syz.7.5300'.
[ 1974.530477][T22777] netlink: 12 bytes leftover after parsing attributes in process `syz.7.5300'.
[ 1975.263501][T22741] lo speed is unknown, defaulting to 1000
[ 1976.081669][ T1323] ieee802154 phy0 wpan0: encryption failed: -22
[ 1976.161502][ T6702] Bluetooth: hci2: command tx timeout
[ 1976.382804][T19955] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1976.396614][T19955] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1976.398889][T19955] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1976.409898][T19955] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1976.412500][T19955] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1977.011939][T22807] netlink: 8 bytes leftover after parsing attributes in process `syz.7.5305'.
[ 1977.436979][   T37] audit: type=1326 audit(1756075642.326:2191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=22814 comm="syz.0.5311" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd1c1e6ebe9 code=0x0
[ 1977.521316][T22822] netlink: 168 bytes leftover after parsing attributes in process `syz.7.5312'.
[ 1977.523457][T22822] netlink: 12 bytes leftover after parsing attributes in process `syz.7.5312'.
[ 1978.231028][ T6702] Bluetooth: hci2: command tx timeout
[ 1978.256657][T22795] lo speed is unknown, defaulting to 1000
[ 1978.481451][ T6702] Bluetooth: hci5: command tx timeout
[ 1980.482506][T14372] hsr_slave_0: left promiscuous mode
[ 1980.522786][T14372] hsr_slave_1: left promiscuous mode
[ 1980.524514][T14372] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1980.524534][T14372] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1980.551114][ T6702] Bluetooth: hci5: command tx timeout
[ 1980.567440][T14372] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1980.567466][T14372] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1980.752755][T14372] hsr_slave_0: left promiscuous mode
[ 1980.771045][T14372] hsr_slave_1: left promiscuous mode
[ 1980.846686][T14372] veth1_macvtap: left promiscuous mode
[ 1980.846770][T14372] veth0_macvtap: left promiscuous mode
[ 1980.846973][T14372] veth1_vlan: left promiscuous mode
[ 1980.847094][T14372] veth0_vlan: left promiscuous mode
[ 1980.981373][T14372] veth1_macvtap: left promiscuous mode
[ 1980.981503][T14372] veth0_macvtap: left promiscuous mode
[ 1980.981810][T14372] veth1_vlan: left promiscuous mode
[ 1980.982019][T14372] veth0_vlan: left promiscuous mode
[ 1982.121934][T22852] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5321'.
[ 1982.630947][ T6702] Bluetooth: hci5: command tx timeout
[ 1984.091535][T14372] team0 (unregistering): Port device team_slave_1 removed
[ 1984.341675][T14372] team0 (unregistering): Port device team_slave_0 removed
[ 1984.751067][ T6702] Bluetooth: hci5: command tx timeout
[ 1990.051825][T14372] team0 (unregistering): Port device team_slave_1 removed
[ 1990.351588][T14372] team0 (unregistering): Port device team_slave_0 removed
[ 1993.653764][   T37] audit: type=1326 audit(1756075658.546:2192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=22857 comm="syz.0.5323" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd1c1e6ebe9 code=0x0
[ 1993.952558][T22741] chnl_net:caif_netlink_parms(): no params data found
[ 1994.068332][T22869] netlink: 168 bytes leftover after parsing attributes in process `syz.2.5325'.
[ 1994.097695][T22869] netlink: 12 bytes leftover after parsing attributes in process `syz.2.5325'.
[ 1994.276952][T22795] chnl_net:caif_netlink_parms(): no params data found
[ 1994.859609][T22741] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1994.859777][T22741] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1994.859999][T22741] bridge_slave_0: entered allmulticast mode
[ 1994.863399][T22741] bridge_slave_0: entered promiscuous mode
[ 1994.915215][T22741] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1994.915407][T22741] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1994.915608][T22741] bridge_slave_1: entered allmulticast mode
[ 1994.917807][T22881] netlink: 28 bytes leftover after parsing attributes in process `syz.2.5327'.
[ 1994.918873][T22741] bridge_slave_1: entered promiscuous mode
[ 1995.399504][T22741] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1995.652739][T22741] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1996.048225][T22795] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1996.048411][T22795] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1996.048691][T22795] bridge_slave_0: entered allmulticast mode
[ 1996.050563][T22795] bridge_slave_0: entered promiscuous mode
[ 1996.273674][T22795] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1996.273752][T22795] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1996.273908][T22795] bridge_slave_1: entered allmulticast mode
[ 1996.275772][T22795] bridge_slave_1: entered promiscuous mode
[ 1996.312551][T22741] team0: Port device team_slave_0 added
[ 1996.449603][T22741] team0: Port device team_slave_1 added
[ 1996.704972][T22795] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1996.876210][T22795] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1996.966061][T22741] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1996.966078][T22741] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1996.966104][T22741] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1997.064999][T22902] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5332'.
[ 1997.128549][T22741] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1997.128566][T22741] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1997.128591][T22741] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1997.267274][T22795] team0: Port device team_slave_0 added
[ 1997.311656][T22795] team0: Port device team_slave_1 added
[ 1997.864802][T22795] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1997.864813][T22795] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1997.864827][T22795] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1997.917759][T22741] hsr_slave_0: entered promiscuous mode
[ 1997.918597][T22741] hsr_slave_1: entered promiscuous mode
[ 1998.065701][T22795] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1998.065714][T22795] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1998.065729][T22795] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1999.564447][T22795] hsr_slave_0: entered promiscuous mode
[ 1999.567333][T22795] hsr_slave_1: entered promiscuous mode
[ 1999.569596][T22795] debugfs: 'hsr0' already exists in 'hsr'
[ 1999.569622][T22795] Cannot create hsr debugfs directory
[ 2000.762120][T22947] netlink: 8 bytes leftover after parsing attributes in process `syz.7.5342'.
[ 2001.614613][T22955] I/O error, dev loop7, sector 2 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 2
[ 2001.617036][T22955] hfsplus: unable to find HFS+ superblock
[ 2043.907707][ T1323] ieee802154 phy0 wpan0: encryption failed: -22
[ 2052.066962][T19955] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 2052.094362][T19955] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 2052.121362][T19955] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 2052.125092][T19955] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 2052.125893][T19955] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 2053.126385][T19955] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 2053.181177][T19955] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 2053.186340][T19955] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 2053.187524][T19955] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 2053.188649][T19955] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 2054.245498][T19955] Bluetooth: hci0: command tx timeout
[ 2054.983407][ T6702] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[ 2055.023349][ T6702] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[ 2055.025333][ T6702] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[ 2055.026730][ T6702] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[ 2055.028954][ T6702] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[ 2055.238066][ T6702] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[ 2055.272476][ T6702] Bluetooth: hci6: command tx timeout
[ 2055.273328][ T6702] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[ 2055.275607][ T6702] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[ 2055.276946][ T6702] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[ 2055.314848][T22798] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[ 2055.656995][T22798] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1
[ 2055.691493][T22798] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9
[ 2055.693392][T22798] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9
[ 2055.695413][T22798] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4
[ 2055.701494][T22798] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2
[ 2056.316755][T22798] Bluetooth: hci0: command tx timeout
[ 2057.111189][T22798] Bluetooth: hci7: command tx timeout
[ 2057.351024][T19955] Bluetooth: hci6: command tx timeout
[ 2057.354328][T22798] Bluetooth: hci8: command tx timeout
[ 2057.831156][T22798] Bluetooth: hci9: command tx timeout
[ 2058.391550][T22798] Bluetooth: hci0: command tx timeout
[ 2059.191361][T22798] Bluetooth: hci7: command tx timeout
[ 2059.439506][T22798] Bluetooth: hci8: command tx timeout
[ 2059.439544][T22798] Bluetooth: hci6: command tx timeout
[ 2059.911297][T19955] Bluetooth: hci9: command tx timeout
[ 2060.471507][T19955] Bluetooth: hci0: command tx timeout
[ 2061.271071][T19955] Bluetooth: hci7: command tx timeout
[ 2061.511094][T19955] Bluetooth: hci6: command tx timeout
[ 2061.511129][T19955] Bluetooth: hci8: command tx timeout
[ 2061.991247][T22798] Bluetooth: hci9: command tx timeout
[ 2063.351065][T22798] Bluetooth: hci7: command tx timeout
[ 2063.591815][T22798] Bluetooth: hci8: command tx timeout
[ 2064.071360][T22798] Bluetooth: hci9: command tx timeout
[ 2096.688073][T19955] Bluetooth: hci2: command 0x0406 tx timeout
[ 2107.090676][ T1323] ieee802154 phy0 wpan0: encryption failed: -22
[ 2109.526251][T23011] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 2109.552931][T23011] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 2109.559743][T23011] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 2109.596053][T23011] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 2109.596911][T23011] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 2111.671401][T23011] Bluetooth: hci3: command tx timeout
[ 2113.756209][T19955] Bluetooth: hci3: command tx timeout
[ 2115.836440][T19955] Bluetooth: hci3: command tx timeout
[ 2117.911171][T19955] Bluetooth: hci3: command tx timeout
[ 2119.032820][T23011] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1
[ 2119.066893][T23011] Bluetooth: hci10: unexpected cc 0x1003 length: 249 > 9
[ 2119.078191][T23011] Bluetooth: hci10: unexpected cc 0x1001 length: 249 > 9
[ 2119.107449][T23011] Bluetooth: hci10: unexpected cc 0x0c23 length: 249 > 4
[ 2119.108371][T23011] Bluetooth: hci10: unexpected cc 0x0c38 length: 249 > 2
[ 2119.813682][T23010] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 2119.869640][T23024] Bluetooth: hci11: unexpected cc 0x0c03 length: 249 > 1
[ 2119.907323][T23024] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 2119.938916][T23024] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 2119.940231][T23024] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 2119.951158][T23022] Bluetooth: hci11: unexpected cc 0x1003 length: 249 > 9
[ 2119.961202][T23024] Bluetooth: hci11: unexpected cc 0x1001 length: 249 > 9
[ 2119.972588][T23024] Bluetooth: hci11: unexpected cc 0x0c23 length: 249 > 4
[ 2119.994945][T23024] Bluetooth: hci11: unexpected cc 0x0c38 length: 249 > 2
[ 2120.056849][T23024] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 2120.169871][T23024] Bluetooth: hci12: unexpected cc 0x0c03 length: 249 > 1
[ 2120.191245][T23024] Bluetooth: hci12: unexpected cc 0x1003 length: 249 > 9
[ 2120.215045][T23024] Bluetooth: hci12: unexpected cc 0x1001 length: 249 > 9
[ 2120.216342][T23024] Bluetooth: hci12: unexpected cc 0x0c23 length: 249 > 4
[ 2120.219586][T23024] Bluetooth: hci12: unexpected cc 0x0c38 length: 249 > 2
[ 2121.191184][T19955] Bluetooth: hci10: command tx timeout
[ 2121.445513][T19955] Bluetooth: hci5: command 0x0406 tx timeout
[ 2122.076899][ T6702] Bluetooth: hci11: command tx timeout
[ 2122.090170][T23024] Bluetooth: hci4: command tx timeout
[ 2123.271063][T23024] Bluetooth: hci10: command tx timeout
[ 2124.158696][T23024] Bluetooth: hci4: command tx timeout
[ 2124.158732][T23024] Bluetooth: hci11: command tx timeout
[ 2125.351093][T23024] Bluetooth: hci10: command tx timeout
[ 2126.231147][ T6702] Bluetooth: hci11: command tx timeout
[ 2126.236663][T23024] Bluetooth: hci4: command tx timeout
[ 2127.431445][T22798] Bluetooth: hci10: command tx timeout
[ 2128.311200][T22798] Bluetooth: hci4: command tx timeout
[ 2128.311232][T22798] Bluetooth: hci11: command tx timeout
[ 2131.031088][T19955] Bluetooth: hci12: command tx timeout
[ 2133.116002][T19955] Bluetooth: hci12: command tx timeout
[ 2135.249263][T19955] Bluetooth: hci12: command tx timeout
[ 2137.276687][T19955] Bluetooth: hci12: command tx timeout
[ 2144.006096][T23024] Bluetooth: hci13: unexpected cc 0x0c03 length: 249 > 1
[ 2144.038854][T23024] Bluetooth: hci13: unexpected cc 0x1003 length: 249 > 9
[ 2144.045185][T23024] Bluetooth: hci13: unexpected cc 0x1001 length: 249 > 9
[ 2144.061419][T23024] Bluetooth: hci13: unexpected cc 0x0c23 length: 249 > 4
[ 2144.080015][T23024] Bluetooth: hci13: unexpected cc 0x0c38 length: 249 > 2
[ 2146.151216][T19955] Bluetooth: hci13: command tx timeout
[ 2148.231307][T19955] Bluetooth: hci13: command tx timeout
[ 2150.311068][T19955] Bluetooth: hci13: command tx timeout
[ 2152.391063][T19955] Bluetooth: hci13: command tx timeout
[ 2155.831251][   T38] INFO: task syz-executor:22795 blocked for more than 147 seconds.
[ 2155.831277][   T38]       Not tainted syzkaller #0
[ 2155.831287][   T38] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 2155.831298][   T38] task:syz-executor    state:D stack:21832 pid:22795 tgid:22795 ppid:1      task_flags:0x400140 flags:0x00004004
[ 2155.831357][   T38] Call Trace:
[ 2155.831364][   T38]  <TASK>
[ 2155.831379][   T38]  __schedule+0x16f3/0x4c20
[ 2155.831432][   T38]  ? __pfx___schedule+0x10/0x10
[ 2155.831477][   T38]  rt_mutex_schedule+0x77/0xf0
[ 2155.831498][   T38]  rt_mutex_slowlock_block+0x5ba/0x6d0
[ 2155.831530][   T38]  ? rt_mutex_slowlock_block+0x351/0x6d0
[ 2155.831562][   T38]  rt_mutex_slowlock+0x2b1/0x6e0
[ 2155.831584][   T38]  ? rt_mutex_slowlock+0x1c9/0x6e0
[ 2155.831603][   T38]  ? __pfx_rt_mutex_slowlock+0x10/0x10
[ 2155.831619][   T38]  ? __lock_acquire+0xab9/0xd20
[ 2155.831654][   T38]  ? del_device_store+0xd1/0x360
[ 2155.831677][   T38]  ? __pfx_sscanf+0x10/0x10
[ 2155.831701][   T38]  ? del_device_store+0xd1/0x360
[ 2155.831717][   T38]  mutex_lock_nested+0x16a/0x1d0
[ 2155.831741][   T38]  del_device_store+0xd1/0x360
[ 2155.831757][   T38]  ? sysfs_file_kobj+0x1a/0x230
[ 2155.831782][   T38]  ? __pfx_del_device_store+0x10/0x10
[ 2155.831799][   T38]  ? sysfs_file_kobj+0x1e4/0x230
[ 2155.831824][   T38]  ? sysfs_kf_write+0x166/0x260
[ 2155.831849][   T38]  ? __pfx_sysfs_kf_write+0x10/0x10
[ 2155.831871][   T38]  kernfs_fop_write_iter+0x379/0x4f0
[ 2155.831899][   T38]  vfs_write+0x5d2/0xb40
[ 2155.831926][   T38]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[ 2155.831949][   T38]  ? __pfx_vfs_write+0x10/0x10
[ 2155.831974][   T38]  ? do_sys_openat2+0x154/0x1c0
[ 2155.831991][   T38]  ? kmem_cache_free+0x195/0x510
[ 2155.832029][   T38]  ksys_write+0x14b/0x260
[ 2155.832053][   T38]  ? __pfx_ksys_write+0x10/0x10
[ 2155.832072][   T38]  ? rcu_is_watching+0x15/0xb0
[ 2155.832103][   T38]  ? do_syscall_64+0xbe/0x3b0
[ 2155.832129][   T38]  do_syscall_64+0xfa/0x3b0
[ 2155.832152][   T38]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2155.832170][   T38]  ? asm_sysvec_reschedule_ipi+0x1a/0x20
[ 2155.832187][   T38]  ? clear_bhb_loop+0x60/0xb0
[ 2155.832209][   T38]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2155.832232][   T38] RIP: 0033:0x7f21151cd69f
[ 2155.832248][   T38] RSP: 002b:00007ffc1e4449d0 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 2155.832267][   T38] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00007f21151cd69f
[ 2155.832281][   T38] RDX: 0000000000000001 RSI: 00007ffc1e444a20 RDI: 0000000000000005
[ 2155.832293][   T38] RBP: 00007f21152530c1 R08: 0000000000000000 R09: 00007ffc1e444827
[ 2155.832306][   T38] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[ 2155.832317][   T38] R13: 00007ffc1e444a20 R14: 00007f2115f24620 R15: 0000000000000003
[ 2155.832349][   T38]  </TASK>
[ 2155.832379][   T38] 
[ 2155.832379][   T38] Showing all locks held in the system:
[ 2155.832390][   T38] 2 locks held by ktimers/1/29:
[ 2155.832401][   T38]  #0: ffffffff8d84a760 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[ 2155.832447][   T38]  #1: ffff8880b8923d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[ 2155.832492][   T38] 2 locks held by ksoftirqd/1/30:
[ 2155.832502][   T38]  #0: ffffffff8d84a760 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[ 2155.832544][   T38]  #1: ffff8880b8923d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[ 2155.832618][   T38] 1 lock held by khungtaskd/38:
[ 2155.832628][   T38]  #0: ffffffff8d9a8b80 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x2e/0x180
[ 2155.832669][   T38] 3 locks held by kworker/u8:2/43:
[ 2155.832679][   T38]  #0: ffff88814cf24138 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 2155.832724][   T38]  #1: ffffc90000b47bc0 ((work_completion)(&(&net->ipv6.addr_chk_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 2155.832769][   T38]  #2: ffffffff8ecd1e78 (rtnl_mutex){+.+.}-{4:4}, at: addrconf_verify_work+0x19/0x30
[ 2155.832818][   T38] 2 locks held by kworker/1:2/995:
[ 2155.832843][   T38] 2 locks held by getty/5594:
[ 2155.832853][   T38]  #0: ffff88823bf288a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[ 2155.832898][   T38]  #1: ffffc90003e832e0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x444/0x1410
[ 2155.832941][   T38] 4 locks held by kworker/1:4/8156:
[ 2155.832952][   T38] 4 locks held by kworker/1:1/11051:
[ 2155.832962][   T38]  #0: ffff888027028538 ((wq_completion)wg-crypt-wg1#9){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 2155.833010][   T38]  #1: ffffc90004cf7bc0 ((work_completion)(&({ do { const void *__vpp_verify = (typeof((worker) + 0))((void *)0); (void)__vpp_verify; } while (0); ({ unsigned long __ptr; __ptr = (unsigned long) ((__typeof_unqual__(*((worker))) *)(( unsigned long)((worker)))); (typeof((__typeof_unqual__(*((worker))) *)(( unsigned long)((worker))))) (__ptr + (((__per_cpu_offset[(cpu)])))); }); })->work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 2155.833066][   T38]  #2: ffffffff8d84a760 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[ 2155.833109][   T38]  #3: ffff8880b8923d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[ 2155.833153][   T38] 4 locks held by kworker/1:0/13017:
[ 2155.833163][   T38]  #0: ffff88805b946538 ((wq_completion)wg-crypt-wg0#2){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 2155.833211][   T38]  #1: ffffc90003a8fbc0 ((work_completion)(&peer->transmit_packet_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 2155.833254][   T38]  #2: ffffffff8d84a760 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[ 2155.833296][   T38]  #3: ffff8880b8923d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[ 2155.833340][   T38] 3 locks held by kworker/u8:28/14372:
[ 2155.833351][   T38]  #0: ffff88801a6f4138 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 2155.833394][   T38]  #1: ffffc900066dfbc0 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 2155.833437][   T38]  #2: ffffffff8ecc4f80 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xf7/0x800
[ 2155.833486][   T38] 1 lock held by syz.0.5214/22503:
[ 2155.833497][   T38]  #0: ffffffff8ecd1e78 (rtnl_mutex){+.+.}-{4:4}, at: tun_chr_close+0x41/0x1c0
[ 2155.833541][   T38] 1 lock held by syz.7.5273/22692:
[ 2155.833558][   T38]  #0: ffffffff8ecd1e78 (rtnl_mutex){+.+.}-{4:4}, at: tun_chr_close+0x41/0x1c0
[ 2155.833601][   T38] 7 locks held by syz-executor/22741:
[ 2155.833612][   T38]  #0: ffff888035072488 (sb_writers#7){.+.+}-{0:0}, at: vfs_write+0x217/0xb40
[ 2155.833658][   T38]  #1: ffff88809f4d4878 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x1e1/0x4f0
[ 2155.833702][   T38]  #2: ffff888027379f08 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x204/0x4f0
[ 2155.833750][   T38]  #3: ffffffff8e541ed8 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x360
[ 2155.833790][   T38]  #4: ffff8880391410d8 (&dev->mutex){....}-{4:4}, at: device_release_driver_internal+0xb6/0x800
[ 2155.833836][   T38]  #5: ffff88804f00a300 (&devlink->lock_key#49){+.+.}-{4:4}, at: nsim_drv_remove+0x50/0x160
[ 2155.833883][   T38]  #6: ffffffff8ecd1e78 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_net_dev_lock+0x257/0x2f0
[ 2155.833926][   T38] 4 locks held by syz-executor/22795:
[ 2155.833937][   T38]  #0: ffff888035072488 (sb_writers#7){.+.+}-{0:0}, at: vfs_write+0x217/0xb40
[ 2155.833983][   T38]  #1: ffff88809e422878 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x1e1/0x4f0
[ 2155.834026][   T38]  #2: ffff888027379f08 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x204/0x4f0
[ 2155.834073][   T38]  #3: ffffffff8e541ed8 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x360
[ 2155.834114][   T38] 1 lock held by syz.2.5350/22968:
[ 2155.834124][   T38]  #0: ffffffff8d9ae530 (rcu_state.barrier_mutex){+.+.}-{4:4}, at: rcu_barrier+0x4c/0x570
[ 2155.834165][   T38] 13 locks held by kworker/1:11/22984:
[ 2155.834177][   T38] 1 lock held by syz-executor/23009:
[ 2155.834188][   T38]  #0: ffffffff8ecd1e78 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x3b0/0x18b0
[ 2155.834234][   T38] 4 locks held by kworker/u9:3/23011:
[ 2155.834245][   T38]  #0: ffff8880355e7938 ((wq_completion)hci5#2){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 2155.834293][   T38]  #1: ffffc90005ca7bc0 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 2155.834336][   T38]  #2: ffff888055680e80 (&hdev->req_lock){+.+.}-{4:4}, at: hci_cmd_sync_work+0x1d4/0x3a0
[ 2155.834382][   T38]  #3: ffff8880556800a8 (&hdev->lock){+.+.}-{4:4}, at: hci_abort_conn_sync+0x242/0xe30
[ 2155.834421][   T38] 1 lock held by syz-executor/23017:
[ 2155.834431][   T38]  #0: ffffffff8ecd1e78 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x3b0/0x18b0
[ 2155.834476][   T38] 1 lock held by syz-executor/23018:
[ 2155.834486][   T38]  #0: ffffffff8ecd1e78 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x3b0/0x18b0
[ 2155.834532][   T38] 1 lock held by syz-executor/23021:
[ 2155.834543][   T38]  #0: ffffffff8ecd1e78 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x3b0/0x18b0
[ 2155.834594][   T38] 1 lock held by syz-executor/23025:
[ 2155.834605][   T38]  #0: ffffffff8ecd1e78 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x3b0/0x18b0
[ 2155.834651][   T38] 1 lock held by syz-executor/23029:
[ 2155.834661][   T38]  #0: ffffffff8ecd1e78 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x3b0/0x18b0
[ 2155.834706][   T38] 
[ 2155.834712][   T38] =============================================
[ 2155.834712][   T38] 
[ 2155.834727][   T38] NMI backtrace for cpu 0
[ 2155.834746][   T38] CPU: 0 UID: 0 PID: 38 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[ 2155.834766][   T38] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 2155.834776][   T38] Call Trace:
[ 2155.834784][   T38]  <TASK>
[ 2155.834791][   T38]  dump_stack_lvl+0x189/0x250
[ 2155.834818][   T38]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2155.834841][   T38]  ? __pfx__printk+0x10/0x10
[ 2155.834871][   T38]  nmi_cpu_backtrace+0x39e/0x3d0
[ 2155.834894][   T38]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[ 2155.834914][   T38]  ? __pfx__printk+0x10/0x10
[ 2155.834937][   T38]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[ 2155.834961][   T38]  nmi_trigger_cpumask_backtrace+0x17a/0x300
[ 2155.834982][   T38]  watchdog+0xf93/0xfe0
[ 2155.835008][   T38]  ? watchdog+0x1de/0xfe0
[ 2155.835034][   T38]  kthread+0x711/0x8a0
[ 2155.835061][   T38]  ? __pfx_watchdog+0x10/0x10
[ 2155.835080][   T38]  ? __pfx_kthread+0x10/0x10
[ 2155.835108][   T38]  ? __pfx_kthread+0x10/0x10
[ 2155.835132][   T38]  ret_from_fork+0x3fc/0x770
[ 2155.835155][   T38]  ? __pfx_ret_from_fork+0x10/0x10
[ 2155.835181][   T38]  ? __switch_to_asm+0x39/0x70
[ 2155.835197][   T38]  ? __switch_to_asm+0x33/0x70
[ 2155.835211][   T38]  ? __pfx_kthread+0x10/0x10
[ 2155.835236][   T38]  ret_from_fork_asm+0x1a/0x30
[ 2155.835267][   T38]  </TASK>
[ 2155.835274][   T38] Sending NMI from CPU 0 to CPUs 1:
[ 2155.835300][    C1] NMI backtrace for cpu 1
[ 2155.835314][    C1] CPU: 1 UID: 0 PID: 22984 Comm: kworker/1:11 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[ 2155.835335][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 2155.835347][    C1] Workqueue: events_power_efficient neigh_periodic_work
[ 2155.835367][    C1] RIP: 0010:check_preemption_disabled+0x3/0x120
[ 2155.835391][    C1] Code: 62 8b 48 c7 c6 60 0c 62 8b eb 1c 66 66 66 2e 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 55 41 57 <41> 56 53 48 83 ec 10 65 48 8b 05 fe 74 ff 06 48 89 44 24 08 65 8b
[ 2155.835406][    C1] RSP: 0018:ffffc90004925e18 EFLAGS: 00000283
[ 2155.835420][    C1] RAX: 0000000000000001 RBX: ffffffff8fa55801 RCX: 538d7e9d9c0e0500
[ 2155.835434][    C1] RDX: ffffc90004925f01 RSI: ffffffff8b620c60 RDI: ffffffff8b620c20
[ 2155.835447][    C1] RBP: dffffc0000000000 R08: ffffc90004927f48 R09: 0000000000000000
[ 2155.835460][    C1] R10: ffffc90004925fd8 R11: fffff52000924bfd R12: ffffc90004927f58
[ 2155.835473][    C1] R13: ffffffff8172b165 R14: ffffffff8d9a8b80 R15: ffffffff8172b165
[ 2155.835486][    C1] FS:  0000000000000000(0000) GS:ffff8881269c2000(0000) knlGS:0000000000000000
[ 2155.835500][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2155.835512][    C1] CR2: 00007f4bb95785c0 CR3: 000000000d7a6000 CR4: 00000000003526f0
[ 2155.835528][    C1] Call Trace:
[ 2155.835534][    C1]  <TASK>
[ 2155.835541][    C1]  ? unwind_next_frame+0xa5/0x2390
[ 2155.835563][    C1]  rcu_is_watching+0x15/0xb0
[ 2155.835592][    C1]  ? unwind_next_frame+0xa5/0x2390
[ 2155.835612][    C1]  lock_release+0x4b/0x3e0
[ 2155.835632][    C1]  ? deref_stack_reg+0x19f/0x230
[ 2155.835660][    C1]  ? unwind_next_frame+0xa5/0x2390
[ 2155.835681][    C1]  unwind_next_frame+0x19a9/0x2390
[ 2155.835706][    C1]  ? unwind_next_frame+0xa5/0x2390
[ 2155.835727][    C1]  ? ret_from_fork+0x3fc/0x770
[ 2155.835748][    C1]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 2155.835767][    C1]  arch_stack_walk+0x11c/0x150
[ 2155.835792][    C1]  ? ret_from_fork_asm+0x1a/0x30
[ 2155.835816][    C1]  stack_trace_save+0x9c/0xe0
[ 2155.835832][    C1]  ? __pfx_stack_trace_save+0x10/0x10
[ 2155.835854][    C1]  kasan_save_track+0x3e/0x80
[ 2155.835872][    C1]  ? kasan_save_track+0x3e/0x80
[ 2155.835888][    C1]  ? __kasan_slab_alloc+0x6c/0x80
[ 2155.835906][    C1]  ? kmem_cache_alloc_noprof+0x143/0x310
[ 2155.835926][    C1]  ? skb_clone+0x212/0x3a0
[ 2155.835947][    C1]  ? dev_queue_xmit_nit+0x416/0xcc0
[ 2155.835966][    C1]  ? dev_hard_start_xmit+0x1be/0x870
[ 2155.835987][    C1]  ? sch_direct_xmit+0x241/0x4b0
[ 2155.836003][    C1]  ? __qdisc_run+0xb1b/0x15c0
[ 2155.836017][    C1]  ? __dev_queue_xmit+0x11ff/0x3b70
[ 2155.836039][    C1]  ? ip_finish_output2+0xd5a/0x11d0
[ 2155.836055][    C1]  ? ip_output+0x2a1/0x3c0
[ 2155.836074][    C1]  ? synproxy_send_client_synack+0x8bb/0xe20
[ 2155.836095][    C1]  ? nft_synproxy_eval_v4+0x36e/0x560
[ 2155.836117][    C1]  ? nft_synproxy_do_eval+0x345/0x570
[ 2155.836139][    C1]  ? nft_do_chain+0x40c/0x1920
[ 2155.836159][    C1]  ? nft_do_chain_inet+0x25d/0x340
[ 2155.836180][    C1]  ? nf_hook_slow+0xc5/0x220
[ 2155.836198][    C1]  ? NF_HOOK+0x206/0x3a0
[ 2155.836214][    C1]  ? NF_HOOK+0x309/0x3a0
[ 2155.836237][    C1]  ? __netif_receive_skb+0x143/0x380
[ 2155.836253][    C1]  ? process_backlog+0x31e/0x900
[ 2155.836270][    C1]  ? __napi_poll+0xb6/0x540
[ 2155.836285][    C1]  ? net_rx_action+0x707/0xe00
[ 2155.836301][    C1]  ? handle_softirqs+0x22c/0x710
[ 2155.836319][    C1]  ? __local_bh_enable_ip+0x179/0x270
[ 2155.836338][    C1]  ? process_scheduled_works+0xade/0x17b0
[ 2155.836356][    C1]  ? worker_thread+0x8a0/0xda0
[ 2155.836374][    C1]  ? kthread+0x711/0x8a0
[ 2155.836394][    C1]  ? ret_from_fork+0x3fc/0x770
[ 2155.836426][    C1]  ? skb_clone+0x212/0x3a0
[ 2155.836448][    C1]  __kasan_slab_alloc+0x6c/0x80
[ 2155.836467][    C1]  ? skb_clone+0x212/0x3a0
[ 2155.836488][    C1]  kmem_cache_alloc_noprof+0x143/0x310
[ 2155.836512][    C1]  skb_clone+0x212/0x3a0
[ 2155.836532][    C1]  ? dev_queue_xmit_nit+0x25a/0xcc0
[ 2155.836553][    C1]  dev_queue_xmit_nit+0x416/0xcc0
[ 2155.836572][    C1]  ? dev_queue_xmit_nit+0x2d/0xcc0
[ 2155.836598][    C1]  dev_hard_start_xmit+0x1be/0x870
[ 2155.836628][    C1]  sch_direct_xmit+0x241/0x4b0
[ 2155.836647][    C1]  ? __pfx_sch_direct_xmit+0x10/0x10
[ 2155.836663][    C1]  ? __lock_acquire+0xa30/0xd20
[ 2155.836687][    C1]  __qdisc_run+0xb1b/0x15c0
[ 2155.836713][    C1]  __dev_queue_xmit+0x11ff/0x3b70
[ 2155.836745][    C1]  ? __dev_queue_xmit+0x26f/0x3b70
[ 2155.836771][    C1]  ? synproxy_pernet+0x23/0x240
[ 2155.836793][    C1]  ? __pfx___dev_queue_xmit+0x10/0x10
[ 2155.836821][    C1]  ? synproxy_pernet+0x23/0x240
[ 2155.836839][    C1]  ? synproxy_pernet+0x23/0x240
[ 2155.836859][    C1]  ? __asan_memset+0x22/0x50
[ 2155.836878][    C1]  ? __lock_acquire+0xab9/0xd20
[ 2155.836903][    C1]  ? ip_output+0x2a1/0x3c0
[ 2155.836927][    C1]  ? ip_finish_output2+0xbae/0x11d0
[ 2155.836944][    C1]  ip_finish_output2+0xd5a/0x11d0
[ 2155.836961][    C1]  ? ip_finish_output2+0x452/0x11d0
[ 2155.836980][    C1]  ? __pfx_ip_finish_output2+0x10/0x10
[ 2155.836997][    C1]  ? ip_skb_dst_mtu+0x866/0xab0
[ 2155.837021][    C1]  ? ip_finish_output+0x33a/0x3f0
[ 2155.837044][    C1]  ip_output+0x2a1/0x3c0
[ 2155.837065][    C1]  ? ip_output+0x60/0x3c0
[ 2155.837088][    C1]  synproxy_send_client_synack+0x8bb/0xe20
[ 2155.837115][    C1]  ? __pfx_synproxy_send_client_synack+0x10/0x10
[ 2155.837135][    C1]  ? nft_tproxy_eval+0x6e8/0x1c00
[ 2155.837156][    C1]  ? synproxy_pernet+0x45/0x270
[ 2155.837181][    C1]  nft_synproxy_eval_v4+0x36e/0x560
[ 2155.837207][    C1]  ? __pfx_nft_synproxy_eval_v4+0x10/0x10
[ 2155.837231][    C1]  ? nf_ip_checksum+0x13c/0x510
[ 2155.837255][    C1]  nft_synproxy_do_eval+0x345/0x570
[ 2155.837281][    C1]  ? __pfx_nft_synproxy_do_eval+0x10/0x10
[ 2155.837312][    C1]  nft_do_chain+0x40c/0x1920
[ 2155.837341][    C1]  ? __pfx_nft_do_chain+0x10/0x10
[ 2155.837366][    C1]  ? rtlock_slowlock_locked+0xd8/0x4010
[ 2155.837399][    C1]  nft_do_chain_inet+0x25d/0x340
[ 2155.837420][    C1]  ? __pfx_nft_do_chain_inet+0x10/0x10
[ 2155.837442][    C1]  ? __lock_acquire+0xab9/0xd20
[ 2155.837467][    C1]  ? NF_HOOK+0x9a/0x3a0
[ 2155.837485][    C1]  ? __pfx_nft_do_chain_inet+0x10/0x10
[ 2155.837508][    C1]  nf_hook_slow+0xc5/0x220
[ 2155.837529][    C1]  NF_HOOK+0x206/0x3a0
[ 2155.837547][    C1]  ? __pfx_ip_local_deliver_finish+0x10/0x10
[ 2155.837566][    C1]  ? NF_HOOK+0x9a/0x3a0
[ 2155.837584][    C1]  ? __pfx_NF_HOOK+0x10/0x10
[ 2155.837600][    C1]  ? ip_rcv_finish_core+0xda3/0x1c00
[ 2155.837620][    C1]  ? __pfx_ip_local_deliver_finish+0x10/0x10
[ 2155.837640][    C1]  ? skb_dst+0x4f/0xd0
[ 2155.837657][    C1]  ? ip_local_deliver+0x12a/0x1b0
[ 2155.837678][    C1]  NF_HOOK+0x309/0x3a0
[ 2155.837696][    C1]  ? __pfx_ip_rcv_finish+0x10/0x10
[ 2155.837714][    C1]  ? NF_HOOK+0x9a/0x3a0
[ 2155.837731][    C1]  ? __pfx_NF_HOOK+0x10/0x10
[ 2155.837750][    C1]  ? __pfx_ip_rcv_finish+0x10/0x10
[ 2155.837774][    C1]  ? __pfx_ip_rcv+0x10/0x10
[ 2155.837791][    C1]  __netif_receive_skb+0x143/0x380
[ 2155.837812][    C1]  ? rt_spin_unlock+0x65/0x80
[ 2155.837830][    C1]  ? process_backlog+0x27b/0x900
[ 2155.837847][    C1]  process_backlog+0x31e/0x900
[ 2155.837872][    C1]  __napi_poll+0xb6/0x540
[ 2155.837891][    C1]  net_rx_action+0x707/0xe00
[ 2155.837918][    C1]  ? __pfx_net_rx_action+0x10/0x10
[ 2155.837938][    C1]  ? kvm_sched_clock_read+0x11/0x20
[ 2155.837962][    C1]  ? __pfx_sched_clock_cpu+0x10/0x10
[ 2155.837994][    C1]  handle_softirqs+0x22c/0x710
[ 2155.838018][    C1]  ? __pfx_handle_softirqs+0x10/0x10
[ 2155.838042][    C1]  __local_bh_enable_ip+0x179/0x270
[ 2155.838061][    C1]  ? __pfx___local_bh_enable_ip+0x10/0x10
[ 2155.838083][    C1]  ? neigh_periodic_work+0xdd9/0xe90
[ 2155.838103][    C1]  ? neigh_periodic_work+0x57/0xe90
[ 2155.838121][    C1]  ? process_scheduled_works+0x9ef/0x17b0
[ 2155.838139][    C1]  ? process_scheduled_works+0x9ef/0x17b0
[ 2155.838160][    C1]  process_scheduled_works+0xade/0x17b0
[ 2155.838193][    C1]  ? __pfx_process_scheduled_works+0x10/0x10
[ 2155.838222][    C1]  worker_thread+0x8a0/0xda0
[ 2155.838242][    C1]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 2155.838267][    C1]  ? __kthread_parkme+0x7b/0x200
[ 2155.838293][    C1]  kthread+0x711/0x8a0
[ 2155.838316][    C1]  ? __pfx_worker_thread+0x10/0x10
[ 2155.838335][    C1]  ? __pfx_kthread+0x10/0x10
[ 2155.838359][    C1]  ? __pfx_kthread+0x10/0x10
[ 2155.838382][    C1]  ret_from_fork+0x3fc/0x770
[ 2155.838403][    C1]  ? __pfx_ret_from_fork+0x10/0x10
[ 2155.838425][    C1]  ? __switch_to_asm+0x39/0x70
[ 2155.838440][    C1]  ? __switch_to_asm+0x33/0x70
[ 2155.838455][    C1]  ? __pfx_kthread+0x10/0x10
[ 2155.838477][    C1]  ret_from_fork_asm+0x1a/0x30
[ 2155.838501][    C1]  </TASK>
[ 2155.839303][   T38] Kernel panic - not syncing: hung_task: blocked tasks
[ 2155.839317][   T38] CPU: 0 UID: 0 PID: 38 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[ 2155.839337][   T38] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 2155.839348][   T38] Call Trace:
[ 2155.839356][   T38]  <TASK>
[ 2155.839363][   T38]  dump_stack_lvl+0x99/0x250
[ 2155.839387][   T38]  ? __asan_memcpy+0x40/0x70
[ 2155.839406][   T38]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2155.839429][   T38]  ? __pfx__printk+0x10/0x10
[ 2155.839459][   T38]  vpanic+0x281/0x750
[ 2155.839486][   T38]  ? __pfx_vpanic+0x10/0x10
[ 2155.839506][   T38]  ? __x2apic_send_IPI_mask+0x1e4/0x260
[ 2155.839524][   T38]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2155.839564][   T38]  panic+0xb9/0xc0
[ 2155.839587][   T38]  ? __pfx_panic+0x10/0x10
[ 2155.839612][   T38]  ? irq_work_queue+0xc3/0x140
[ 2155.839637][   T38]  ? nmi_trigger_cpumask_backtrace+0x234/0x300
[ 2155.839659][   T38]  watchdog+0xfd2/0xfe0
[ 2155.839684][   T38]  ? watchdog+0x1de/0xfe0
[ 2155.839710][   T38]  kthread+0x711/0x8a0
[ 2155.839737][   T38]  ? __pfx_watchdog+0x10/0x10
[ 2155.839757][   T38]  ? __pfx_kthread+0x10/0x10
[ 2155.839786][   T38]  ? __pfx_kthread+0x10/0x10
[ 2155.839810][   T38]  ret_from_fork+0x3fc/0x770
[ 2155.839834][   T38]  ? __pfx_ret_from_fork+0x10/0x10
[ 2155.839861][   T38]  ? __switch_to_asm+0x39/0x70
[ 2155.839876][   T38]  ? __switch_to_asm+0x33/0x70
[ 2155.839892][   T38]  ? __pfx_kthread+0x10/0x10
[ 2155.839916][   T38]  ret_from_fork_asm+0x1a/0x30
[ 2155.839948][   T38]  </TASK>
[ 2155.840239][   T38] Kernel Offset: disabled