last executing test programs:

13m35.05020916s ago: executing program 3 (id=65):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000280)={@mcast1, 0x800, 0x0, 0x103, 0x1}, 0x20)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d000000850000000800000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000400)=0x6)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="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"], 0x150}}, 0x0)

13m33.14689786s ago: executing program 3 (id=70):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x1, 0x2, &(0x7f0000000000)=ANY=[@ANYBLOB], 0x0, 0x2}, 0x94)
r0 = socket$netlink(0x10, 0x3, 0x0)
add_key$user(0x0, 0x0, &(0x7f00000007c0)="3e12d23d346cfdeb1708e9b982bf3187ef6b10dac616f738274bc1c03bee4423fa20837e6e86b86592e9be8351aa0000000037d5095f839fa4a3507df4f7526f2440e7988da94ccd868dd8bb844bf127ee741d1e43eba0b67b516be14a8b51a75bfd611b2d7ae6a21d056c2c5116a416a76b0204dc55ea62d43c809e0ed6e56163fdab317afd5c34d614367e4425bb9a97e38b8beb84ef6d549eed5aaa86dbe646fc77a9b3df93199c796fa597f452bed6b6fbcc812df9be8e35d8d15086609c033a5d2a42d5dcb0d103098fa302c5b1d48f913f8b22a30a47d9ae02000000e2b855845f39806305f56d918cc5b4023fdbe9cae4147c84583ec9dd375031ba5ae65e31f00e641832d29ed658b91f33595b033222944765cb6a50d859f754ed83eefd480be0e3100965f081190bbb39a5965ceaa74775b88885041ff4e66e618d6c37c787f014eadb6c9f659ae43f57608e09d62083", 0x155, 0xfffffffffffffffe)
syz_emit_ethernet(0x82, &(0x7f0000000280)={@link_local, @random="1704b45adbde", @val={@void}, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x70, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0x5, 0x0, 0x0, 0xe0, 0x0, 0xe000, {0x15, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11, 0x0, @empty=0xac1414aa, @rand_addr, {[@lsrr={0x83, 0x3}, @timestamp_prespec={0x44, 0x3c, 0x0, 0x3, 0x0, [{@private=0xa011100, 0x1000000}, {@private}, {@broadcast}, {@dev}, {@private}, {@empty}, {@private}]}]}}}}}}}, 0x0)
r1 = syz_io_uring_setup(0x24fc, &(0x7f0000000400)={0x0, 0x2008b1d, 0x10100, 0x0, 0xfffffffc}, &(0x7f00000003c0)=<r2=>0x0, &(0x7f00000002c0)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000140)=@IORING_OP_OPENAT2={0x1c, 0x11, 0x0, 0xffffffffffffffff, &(0x7f0000000240)={0x700400, 0x82, 0x2}, 0x0, 0x18, 0x0, 0x12345})
io_uring_enter(r1, 0x1066, 0x0, 0x0, 0x0, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
r4 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$SOCK_DIAG_BY_FAMILY(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000900)=ANY=[@ANYBLOB="2800000014001901000000000000000228"], 0x28}}, 0x0)
r5 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x3f)
ioctl$KVM_CHECK_EXTENSION_VM(r5, 0xae03, 0xd)
read$watch_queue(r4, &(0x7f0000000200)=""/234, 0xea)
r6 = add_key$keyring(&(0x7f0000000140), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
r7 = add_key(&(0x7f00000000c0)='cifs.idmap\x00', &(0x7f0000000100)={'syz', 0x0}, 0x0, 0x0, r6)
keyctl$set_timeout(0xf, r7, 0x0)
add_key$fscrypt_v1(&(0x7f0000000080), &(0x7f0000000100)={'fscrypt:', @desc3}, &(0x7f0000000340)={0x0, "83a520380b4c4c1272412a449d75c027f65b66dba6d3bc8ca4c0e7e85c817c35bcfdeffa3634c0f8276c074ca446a9414f76df03ae67f739a362a503b2a1f393", 0x36}, 0x48, r7)
r8 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r8, 0x6, 0x23, 0x0, &(0x7f00000045c0)=0x5a)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_open_dev$usbmon(&(0x7f0000000080), 0x0, 0x0)
syz_open_dev$usbfs(&(0x7f0000000240), 0x75, 0x109301)
ioctl$MON_IOCG_STATS(r10, 0x80089203, &(0x7f0000000100))
fsopen(&(0x7f0000000480)='selinuxfs\x00', 0x0)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r9, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003300)={0x34, 0x0, 0x1, 0x70bd2e, 0x0, {}, [@ETHTOOL_A_COALESCE_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}, @ETHTOOL_A_COALESCE_USE_CQE_MODE_RX={0x5}]}, 0x34}, 0x1, 0x0, 0x0, 0x9044}, 0x20000050)
sendmsg$nl_route(r0, 0x0, 0x0)
syz_usb_connect(0x5, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000017ef7d401e04193f4774000000010902240001ffe141000a240101010a020102090506041000030205000000000000000000"], 0x0)

13m29.703952812s ago: executing program 3 (id=79):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setresuid(0x0, 0xee00, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sendmsg$unix(r3, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000001c0)='\x00', 0x1}], 0x1, &(0x7f00000000c0)=ANY=[@ANYBLOB="14000000000000000100000001"], 0x18}, 0x0)
prlimit64(0x0, 0x7, &(0x7f0000000140), 0x0)
sendmmsg$unix(r4, &(0x7f0000005400)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="14000000000000000100000001"], 0x18, 0x40000}}], 0x1, 0x4004080)

13m28.386399474s ago: executing program 3 (id=82):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x2}, &(0x7f0000000000)=<r0=>0x0)
timer_settime(r0, 0x1, &(0x7f0000000100)={{0x0, 0x8}, {0x0, 0x989680}}, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x2c, &(0x7f0000000000)='/proc/sys/\x00et/\x00\x00v4\x00\x00s/\x92ync_\x00le\xf44\x8cm\xa0\x8dN\xd4\xa2\x88\x00\xd1l,'}, 0x8c)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = open(&(0x7f00000000c0)='.\x00', 0x10000, 0x0)
getdents(r1, 0x0, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
r3 = syz_open_dev$sndpcmp(&(0x7f0000000000), 0x0, 0x0)
mmap$snddsp(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x1000001, 0x13, r3, 0x0)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000080)={[0x1ff, 0x7, 0x0, 0x7, 0x3, 0x9, 0x3, 0x6, 0x9, 0xb, 0x2, 0x46, 0x7, 0xa, 0x5, 0x253], 0x100000, 0x800})
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_MEMORY_ATTRIBUTES(r4, 0x4020aed2, &(0x7f00000001c0)={0x100000, 0x1000})

13m23.525646648s ago: executing program 3 (id=90):
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x50)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r3, 0x8933, &(0x7f0000000440)={'batadv0\x00', <r5=>0x0})
sendmsg$BATADV_CMD_GET_NEIGHBORS(r3, &(0x7f0000004340)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000400)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYRES32=r5], 0x1c}, 0x1, 0x0, 0x0, 0x24048800}, 0x4000000)

13m19.850953182s ago: executing program 3 (id=96):
bind$inet6(0xffffffffffffffff, &(0x7f00000003c0)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x9, 0x8010, 0xffffffffffffffff, 0x0)
r1 = userfaultfd(0x80001)
set_mempolicy(0x4005, 0x0, 0x2)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x218, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000100))
r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f00000002c0)={0x1, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000200)={[0x2, 0x9, 0xfffffffffffffffd, 0x0, 0x2, 0x0, 0x4002004c4, 0x1004, 0x45c5, 0x1000000000c595, 0x7, 0x2, 0xffffffffffffffff, 0x2000000000000000, 0x80000004000000, 0xc], 0x8000000, 0x2010d3})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f0000000200)="440f20c0350b000000440f22c0360f09c4217d700c9d0000000028b8010000000f01c166b82e000f00d80f20d835080000000f22d82e0f019885000000b9b1060000b86f8d0000ba0000000066b8b5008ec036363ef3420f51a600000000b9e30b0000b8f233278fba000000000f30", 0x6f}], 0x1, 0x13, 0x0, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
ppoll(0x0, 0x0, 0x0, 0x0, 0x0)
syz_clone(0x80001000, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$TUNGETDEVNETNS(0xffffffffffffffff, 0xff05, 0x0)
writev(0xffffffffffffffff, &(0x7f0000000080)=[{&(0x7f0000000200)="a10100001500add427", 0x9}], 0x1)

13m3.827680033s ago: executing program 32 (id=96):
bind$inet6(0xffffffffffffffff, &(0x7f00000003c0)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x9, 0x8010, 0xffffffffffffffff, 0x0)
r1 = userfaultfd(0x80001)
set_mempolicy(0x4005, 0x0, 0x2)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x218, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000100))
r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f00000002c0)={0x1, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000200)={[0x2, 0x9, 0xfffffffffffffffd, 0x0, 0x2, 0x0, 0x4002004c4, 0x1004, 0x45c5, 0x1000000000c595, 0x7, 0x2, 0xffffffffffffffff, 0x2000000000000000, 0x80000004000000, 0xc], 0x8000000, 0x2010d3})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f0000000200)="440f20c0350b000000440f22c0360f09c4217d700c9d0000000028b8010000000f01c166b82e000f00d80f20d835080000000f22d82e0f019885000000b9b1060000b86f8d0000ba0000000066b8b5008ec036363ef3420f51a600000000b9e30b0000b8f233278fba000000000f30", 0x6f}], 0x1, 0x13, 0x0, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
ppoll(0x0, 0x0, 0x0, 0x0, 0x0)
syz_clone(0x80001000, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$TUNGETDEVNETNS(0xffffffffffffffff, 0xff05, 0x0)
writev(0xffffffffffffffff, &(0x7f0000000080)=[{&(0x7f0000000200)="a10100001500add427", 0x9}], 0x1)

12m23.023933379s ago: executing program 0 (id=209):
r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0xa0842, 0x0)
r1 = syz_io_uring_setup(0x231, &(0x7f0000000080)={0x0, 0x2804, 0x10100}, &(0x7f0000000540)=<r2=>0x0, &(0x7f0000000100)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f00000009c0)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r0, 0x80000000000, 0x0, 0x0, 0x6c62ba9b35f8b9d1})
io_uring_enter(r1, 0x7898, 0x0, 0x8, 0x0, 0x0) (fail_nth: 1)

12m22.749235947s ago: executing program 0 (id=211):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
timer_create(0x0, &(0x7f0000000200)={0x0, 0x21, 0x2, @tid=0xffffffffffffffff}, &(0x7f0000000300)=<r2=>0x0)
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r2, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0xd3283d0368e269b3, 0x8031, 0xffffffffffffffff, 0x0)
write$tun(0xffffffffffffffff, &(0x7f0000000380)=ANY=[@ANYBLOB="030307006cbb190010004525002b00670000fc069078"], 0x35)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x4, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000040)=0x1000)
ioctl$KVM_SET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000140)=@x86={0x40, 0x1, 0xc, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x80, 0x9, 0x0, 0x0, 0x0, 0xfffffff8, 0x0, 0xff, 0xff, 0x0, '\x00', 0x0, 0x2000})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

12m21.769388662s ago: executing program 0 (id=214):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0f000000040000000400000012"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000740)={{r0, <r1=>0xffffffffffffffff}, &(0x7f00000006c0), &(0x7f0000000700)}, 0x20)
recvmsg$unix(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000002380)=[{&(0x7f0000002480)=""/195, 0xc3}], 0x1}, 0x2000)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000100)={{r1}, &(0x7f0000000000), &(0x7f00000000c0)}, 0x20)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000300)="ffbc", 0x2}], 0x1}, 0xc001)

12m21.625196171s ago: executing program 0 (id=216):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = syz_open_dev$dri(&(0x7f0000000080), 0x0, 0x0)
ioctl$DRM_IOCTL_SET_VERSION(r4, 0xc0106407, &(0x7f00000000c0)={0x1, 0x2})
ioctl$DRM_IOCTL_SET_VERSION(r4, 0xc0106407, &(0x7f0000000140)={0x1, 0x1, 0x0, 0xfffffffe})
lsetxattr$security_evm(0x0, &(0x7f0000004d80), 0x0, 0x2, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f0000006e80)={0x2020}, 0x2082)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000700)="89000000120081ae08060cdc030ec0007f03e3f70000000000e2ffca1b1f0000000004c00e72f750375ed08a56331dbf9ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec08123d000200030001400400446b9bbc7a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947ee2b49e33538afa8af92347514f0b56a20ff27fff", 0x89}], 0x1}, 0x0)

12m20.337003349s ago: executing program 0 (id=219):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$vim2m_VIDIOC_S_CTRL(0xffffffffffffffff, 0xc008561c, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000000))
ioctl$SNDCTL_DSP_SPEED(r0, 0xc0045002, &(0x7f00000001c0))
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x8, 0x8000}, 0x0)
socket$inet(0x2, 0x1, 0xd)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
capset(&(0x7f0000000380)={0x20071026}, &(0x7f0000000040))
r1 = getpid()
r2 = syz_pidfd_open(r1, 0x0)
setns(r2, 0x24020000)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(0xffffffffffffffff, &(0x7f0000000a80)={0x0, 0x0, &(0x7f0000000a40)={0x0, 0x84}}, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r3)
r4 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r3, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x1}, 0x1c)
listen(r4, 0x0)
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r5, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
r6 = accept(r3, 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)=ANY=[], 0xfffffdef}}, 0x1)
recvfrom(r5, &(0x7f0000000180)=""/60, 0xfffffffffffffecb, 0x4100, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x6)
r7 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000002780)='/sys/kernel/debug/binder/transactions\x00', 0x0, 0x0)
read$FUSE(r7, 0x0, 0x0)
bind$llc(r7, &(0x7f0000000040)={0x1a, 0x3a, 0x7, 0x3, 0xc, 0x6, @multicast}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x3, 0x0, 0x2, 0x0)
r8 = syz_open_dev$MSR(&(0x7f00000001c0), 0x9, 0x0)
read$msr(r8, &(0x7f0000019680)=""/102392, 0x18ff8)

12m17.729989074s ago: executing program 0 (id=224):
syz_usb_connect(0x0, 0x24, &(0x7f0000000380)=ANY=[@ANYBLOB="120100004b41460860163209ea800102030109021e0001000000000904"], 0x0)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r1=>0x0})
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000400)='net/dev_mcast\x00')
read$msr(r3, &(0x7f0000019440)=""/102400, 0x19000)
preadv(r3, &(0x7f0000000100)=[{&(0x7f0000000000)=""/154, 0x9a}], 0x1, 0xffffffff, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x10, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000002000000850000008600000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b704000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000000)={r5, r1, 0x25, 0x0, @val=@tcx}, 0x40)
syz_emit_ethernet(0x46, &(0x7f0000000340)={@empty, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "c1fd84", 0x10, 0x21, 0xff, @private1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', {[], {{0x0, 0x4e23, 0x4, 0x1, 0x2, 0x0, 0x0, 0x5, 0x6, "c12fb9", 0x9, "89b72c"}}}}}}}, 0x0)
epoll_create1(0x80000)
syz_usb_connect$cdc_ncm(0x5, 0x9e, &(0x7f0000000040)={{0x12, 0x1, 0x250, 0x2, 0x0, 0x0, 0x40, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x8c, 0x2, 0x1, 0x8, 0xd0, 0x7, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x7, 0x24, 0x6, 0x0, 0x1, "558a"}, {0x5, 0x24, 0x0, 0x5}, {0xd, 0x24, 0xf, 0x1, 0xa, 0xef5, 0x5ee, 0x7}, {0x6, 0x24, 0x1a, 0x1}, [@mbim_extended={0x8, 0x24, 0x1c, 0xc, 0x3, 0xa}, @country_functional={0xa, 0x24, 0x7, 0x65, 0x4, [0x0, 0x4]}, @mdlm={0x15}, @dmm={0x7, 0x24, 0x14, 0x4, 0x5d83}]}, {{0x9, 0x5, 0x81, 0x3, 0x200, 0x2, 0x7, 0x1}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x3ff, 0xd, 0xc7, 0xf}}, {{0x9, 0x5, 0x3, 0x2, 0x3ff, 0xa6, 0x2, 0x2}}}}}}}]}}, &(0x7f0000000300)={0xa, &(0x7f0000000100)={0xa, 0x6, 0x110, 0x2, 0xce, 0x20, 0x10, 0x6}, 0x10, &(0x7f0000000180)={0x5, 0xf, 0x10, 0x1, [@wireless={0xb, 0x10, 0x1, 0xf, 0x8, 0x0, 0x3, 0x53, 0x8}]}, 0x3, [{0xb1, &(0x7f00000001c0)=@string={0xb1, 0x3, "c4079d58f62ef30f4286a34bdf197ba8062f5bb7295687e1ec1a4fd695eb29503d20fa92bbf8b69a76a99be81e3849cd7868211c021cc149907d6fea6a4345a5172653ff835e4dd9a8834e0cf23091604b3831ea17976550f46c51a1103c9f22509c97d45b8dd82518cbc8cab2d1bd0202028deaa72b9163df099a53587e30c8347e042231bc5c47a6980a886668af3fa733ab22f4230a2dae39c51ddfa29b10a940f1590cc94547a8d54a828be942"}}, {0x4, &(0x7f0000000280)=@lang_id={0x4, 0x3, 0x2409}}, {0x4, &(0x7f00000002c0)=@lang_id={0x4, 0x3, 0xc40}}]})
r6 = syz_open_dev$I2C(&(0x7f0000000000), 0x1, 0x402)
ioctl$I2C_RDWR(r6, 0x707, &(0x7f0000000340)={&(0x7f0000000140)=[{0x36de, 0x0, 0x2000, &(0x7f0000000440)="d1596137019028b4e6973edf1911fbfc4c57a136ff048efb6d1ff9da18c7b520508922e15ef5a43a2403935d48ed4c365d55448dc474f02bfc8c827504ccfccbaca50d6089edf0b48722fa0da7"}, {0x36de, 0x4801, 0x0, 0x0}], 0x2})
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f00000003c0)={<r7=>0x0}, &(0x7f00000004c0)=0xc)
sched_setaffinity(r7, 0x8, &(0x7f0000000500)=0x81)

12m2.23247005s ago: executing program 33 (id=224):
syz_usb_connect(0x0, 0x24, &(0x7f0000000380)=ANY=[@ANYBLOB="120100004b41460860163209ea800102030109021e0001000000000904"], 0x0)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r1=>0x0})
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000400)='net/dev_mcast\x00')
read$msr(r3, &(0x7f0000019440)=""/102400, 0x19000)
preadv(r3, &(0x7f0000000100)=[{&(0x7f0000000000)=""/154, 0x9a}], 0x1, 0xffffffff, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x10, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000002000000850000008600000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b704000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000000)={r5, r1, 0x25, 0x0, @val=@tcx}, 0x40)
syz_emit_ethernet(0x46, &(0x7f0000000340)={@empty, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "c1fd84", 0x10, 0x21, 0xff, @private1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', {[], {{0x0, 0x4e23, 0x4, 0x1, 0x2, 0x0, 0x0, 0x5, 0x6, "c12fb9", 0x9, "89b72c"}}}}}}}, 0x0)
epoll_create1(0x80000)
syz_usb_connect$cdc_ncm(0x5, 0x9e, &(0x7f0000000040)={{0x12, 0x1, 0x250, 0x2, 0x0, 0x0, 0x40, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x8c, 0x2, 0x1, 0x8, 0xd0, 0x7, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x7, 0x24, 0x6, 0x0, 0x1, "558a"}, {0x5, 0x24, 0x0, 0x5}, {0xd, 0x24, 0xf, 0x1, 0xa, 0xef5, 0x5ee, 0x7}, {0x6, 0x24, 0x1a, 0x1}, [@mbim_extended={0x8, 0x24, 0x1c, 0xc, 0x3, 0xa}, @country_functional={0xa, 0x24, 0x7, 0x65, 0x4, [0x0, 0x4]}, @mdlm={0x15}, @dmm={0x7, 0x24, 0x14, 0x4, 0x5d83}]}, {{0x9, 0x5, 0x81, 0x3, 0x200, 0x2, 0x7, 0x1}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x3ff, 0xd, 0xc7, 0xf}}, {{0x9, 0x5, 0x3, 0x2, 0x3ff, 0xa6, 0x2, 0x2}}}}}}}]}}, &(0x7f0000000300)={0xa, &(0x7f0000000100)={0xa, 0x6, 0x110, 0x2, 0xce, 0x20, 0x10, 0x6}, 0x10, &(0x7f0000000180)={0x5, 0xf, 0x10, 0x1, [@wireless={0xb, 0x10, 0x1, 0xf, 0x8, 0x0, 0x3, 0x53, 0x8}]}, 0x3, [{0xb1, &(0x7f00000001c0)=@string={0xb1, 0x3, "c4079d58f62ef30f4286a34bdf197ba8062f5bb7295687e1ec1a4fd695eb29503d20fa92bbf8b69a76a99be81e3849cd7868211c021cc149907d6fea6a4345a5172653ff835e4dd9a8834e0cf23091604b3831ea17976550f46c51a1103c9f22509c97d45b8dd82518cbc8cab2d1bd0202028deaa72b9163df099a53587e30c8347e042231bc5c47a6980a886668af3fa733ab22f4230a2dae39c51ddfa29b10a940f1590cc94547a8d54a828be942"}}, {0x4, &(0x7f0000000280)=@lang_id={0x4, 0x3, 0x2409}}, {0x4, &(0x7f00000002c0)=@lang_id={0x4, 0x3, 0xc40}}]})
r6 = syz_open_dev$I2C(&(0x7f0000000000), 0x1, 0x402)
ioctl$I2C_RDWR(r6, 0x707, &(0x7f0000000340)={&(0x7f0000000140)=[{0x36de, 0x0, 0x2000, &(0x7f0000000440)="d1596137019028b4e6973edf1911fbfc4c57a136ff048efb6d1ff9da18c7b520508922e15ef5a43a2403935d48ed4c365d55448dc474f02bfc8c827504ccfccbaca50d6089edf0b48722fa0da7"}, {0x36de, 0x4801, 0x0, 0x0}], 0x2})
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f00000003c0)={<r7=>0x0}, &(0x7f00000004c0)=0xc)
sched_setaffinity(r7, 0x8, &(0x7f0000000500)=0x81)

9m56.398662318s ago: executing program 4 (id=456):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8e}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0/file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r3, 0x0, 0xf, &(0x7f0000000140)=0x31, 0x4)
bind$inet(r3, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
r4 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000500)=@bpf_tracing={0x1a, 0x6, &(0x7f0000000000)=@raw=[@ringbuf_query={{0x18, 0x1, 0x1, 0x0, 0x1}}, @map_val={0x18, 0x7, 0x2, 0x0, 0x1, 0x0, 0x0, 0x0, 0x8001}], &(0x7f0000000100)='syzkaller\x00', 0x1, 0x1000, &(0x7f0000002f40)=""/4096, 0x40f00, 0x1, '\x00', 0x0, 0x19, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x0, 0x1}, 0x8, 0x10, &(0x7f0000000240)={0x2, 0x4, 0x5, 0x8000}, 0x10, 0x19d62, 0xffffffffffffffff, 0x9, &(0x7f0000000300)=[0xffffffffffffffff, 0x1, 0xffffffffffffffff], &(0x7f0000000340)=[{0x1, 0x3, 0x5, 0xb}, {0x5, 0x4, 0xd, 0xb}, {0x8, 0x2, 0x7, 0x1}, {0x1, 0x3, 0x3, 0xa}, {0x4, 0x5, 0x9, 0x6}, {0x1, 0x4, 0x9, 0xa}, {0x4, 0x3, 0x4, 0x3}, {0x5, 0x2, 0xf}, {0x4, 0x1, 0xc, 0x3}], 0x10, 0x3}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, r4}, 0x94)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffc000/0x4000)=nil)
mprotect(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendmsg$TIPC_NL_KEY_SET(0xffffffffffffffff, 0x0, 0x840)
setsockopt$inet6_tcp_int(r6, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r6, 0x6, 0x14, &(0x7f00000013c0)=0x80000000001, 0x4)
connect$inet6(r6, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendto$inet6(r6, &(0x7f00000002c0)="e8", 0xfffffffffffffd79, 0x2000c850, 0x0, 0x4d)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
dup3(r6, r7, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r7, 0x0)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r7, 0x6, 0x23, &(0x7f0000000280)={&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000001380)=0x40)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r6, 0x6, 0x23, 0x0, 0x0)

9m54.132288683s ago: executing program 4 (id=458):
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000900)={0x0, 0x0, &(0x7f00000008c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="d80000001b00010000000000fdfffffffc000000000000000000000000000000200100000000000000000000000000004e240000000000010000000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000000000ffffffffffffff7ffcffffffffffffff04000000000000000000000000000000fdffffffffffffff00000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000006fcffff00000000000003000000000000000000000000000c0008"], 0xd8}}, 0x20008004)
mkdirat(0xffffffffffffff9c, &(0x7f0000006f40)='./file0\x00', 0x190)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000008300), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000002080)='./file0\x00', &(0x7f00000020c0), 0x0, &(0x7f0000002100)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
syz_fuse_handle_req(r0, &(0x7f00000021c0), 0x2000, &(0x7f00000041c0)={&(0x7f00000001c0)={0x50, 0x0, 0x0, {0x7, 0x29, 0x7, 0x2100039, 0x0, 0x0, 0x1, 0x57, 0x0, 0x0, 0x2}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r0, &(0x7f0000004300)="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", 0x2000, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)={0x78, 0x0, 0x200000000000007, {0xc7bf, 0xcbff, 0x0, {0x0, 0x6, 0x200000003, 0x6c, 0xb, 0x40000000000d, 0x5, 0xfffff2df, 0x101, 0x4000, 0x2, 0x0, 0x0, 0x4, 0x400001}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
chdir(&(0x7f0000000040)='./file0\x00')
creat(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x182)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x4, 0x10, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b014a0000000000b7080000959700007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=<r3=>r2, @ANYBLOB="00000d0000002000b705000008000000850040067c3056086b62a500000095cf3b1ce2509fb85a2d826961f24afdce142ea76da776e02f696760d445b16778bbf0b4e07982d85aaf6f6306aef74acce82f1da1b76a61cafa5d9c923676a2fb3ff0c2cb5590129105bb890b89577f687ea13d03589d293662775b07755b037ad3cfbeef2b7544676adc8310aa7f656cc6dc0a0c54fcc2a8cb71a728ae03290b7d192683afb7784556b3e69e3c8199d0762aec3e87f0263f7a032802ff24af400586b84ea9db08be18384af95024809088931b6578a7959bde5eb5215cce6f0eb332f69f644fa701b307e207b9"], &(0x7f0000000500)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000003}, 0x94)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=@base={0xa, 0xb, 0x42, 0x3e, 0x42}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000300)={{r4}, &(0x7f0000000100), &(0x7f0000000180)}, 0x20)
r5 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000440), 0x200, 0x0)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000480)={{0x1, 0x1, 0x18, <r6=>r1, {0xff}}, './file0\x00'})
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x8, 0x1}, 0x50)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f00000001c0)={r7, &(0x7f0000000040), 0x0}, 0xd)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000580)={0x6, 0x1, &(0x7f0000000300)=@raw=[@ldst={0x3, 0x0, 0x1, 0x9, 0xa, 0xffffffffffffffff, 0xa6be19847d200780}], &(0x7f0000000340)='syzkaller\x00', 0x1ff, 0x59, &(0x7f0000000380)=""/89, 0x41000, 0x28, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000400)={0x8, 0x2}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x7, &(0x7f00000004c0)=[r2, r4, r1, 0x1, 0x1, r5, r1, r6, r7], &(0x7f0000000500)=[{0x4, 0x2, 0x8, 0x7}, {0x2, 0x3, 0x6}, {0x0, 0x4, 0x7}, {0x4, 0x5, 0x3, 0x2}, {0x0, 0x4, 0xf}, {0x5, 0x4, 0x1, 0xc}, {0x0, 0x3, 0xe, 0x6}], 0x10, 0x101}, 0x94)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000200)={'bond0\x00', <r8=>0x0})
r9 = syz_open_dev$vim2m(&(0x7f0000000680), 0x8, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r9, 0xc0145608, &(0x7f00000000c0)={0x1, 0x2, 0x1})
write$P9_RLINK(r9, &(0x7f0000000080)={0x7, 0x47, 0x1}, 0x7)
r10 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_CONTEXT(r10, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x3}, 0x8)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'pim6reg1\x00'})
sendmsg$nl_route(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYRES32=r3, @ANYRES32=0x0, @ANYRES32=r8, @ANYRES32=r2, @ANYBLOB="02000020", @ANYRES32=r8], 0x50}, 0x1, 0x0, 0x0, 0x4040041}, 0x8000)
r11 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000180)='/dev/comedi0\x00', 0x40800, 0x0)
preadv(r11, &(0x7f0000000280)=[{&(0x7f00000001c0)=""/62, 0x3e}, {&(0x7f0000000240)=""/15, 0xf}], 0x2, 0x0, 0x200)

9m53.841304521s ago: executing program 1 (id=459):
syz_kvm_add_vcpu$x86(0x0, &(0x7f0000000000)={0x0, &(0x7f0000000100)=[@code={0xa, 0x4f, {"3ef30f090f20c035010000000f22c0c441c9e513c462f94196d5bc589d66b83e018ed8b9800000c00f3235000100000f30f3dcfc0f015d010fc719440f30"}}], 0x4f})
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000040)={0x1, 0x0, [{0x560, 0x0, 0x6}]})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_SET_LAPIC(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000100)={"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"})
ioctl$KVM_XEN_HVM_CONFIG(0xffffffffffffffff, 0x4038ae7a, &(0x7f0000000100)={0x0, 0xaaa, 0x0, 0x0})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000003c0)={[0x60000000004, 0x1000000000, 0x5, 0x41, 0x2000000, 0x0, 0x2004cb, 0x0, 0xa1d, 0x68ff, 0x5, 0x0, 0x3, 0x2], 0x10000, 0x202})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000100)={{0xd000, 0x17d739293968d0b1, 0x0, 0x0, 0x8, 0x0, 0x7, 0x2, 0x0, 0x8, 0x6, 0x40}, {0xffff1000, 0x10000, 0x3, 0x0, 0x2, 0x0, 0x7, 0x0, 0x7, 0xff, 0x4}, {0xeeee0000, 0x1000, 0xc, 0x0, 0x7, 0xc4, 0x0, 0x0, 0x48, 0x3, 0x0, 0xfc}, {0x1, 0x0, 0x9, 0x1, 0x1, 0x0, 0x9, 0x0, 0x8, 0x0, 0x4}, {0xdddd0000, 0xffff1000, 0x3, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x38}, {0x0, 0x0, 0xe, 0x78, 0x5, 0x0, 0x2, 0x0, 0x0, 0xff, 0x40}, {0x0, 0x8080000, 0xa, 0x0, 0x4, 0x0, 0xa1, 0x20}, {0x0, 0x6000, 0x10, 0x0, 0x0, 0x7, 0x8, 0x40, 0x26, 0x0, 0x0, 0x2}, {0x80a0000, 0xdf}, {0xdddd1000}, 0xddf8ffdb, 0x0, 0x0, 0x0, 0x0, 0xf801, 0x0, [0x80000001, 0x0, 0x5]})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

9m53.58877281s ago: executing program 1 (id=461):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
shutdown(r0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff})
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f0000000180)={r2, &(0x7f0000000280), 0x0}, 0x20)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
socket$inet_mptcp(0x2, 0x1, 0x106)
socket$phonet_pipe(0x23, 0x5, 0x2)
socket$inet6_sctp(0xa, 0x5, 0x84)
pselect6(0x40, &(0x7f00000001c0)={0x1, 0x1, 0x0, 0x7fffffff, 0x8000000000000, 0x0, 0x0, 0x1}, 0x0, &(0x7f0000000280)={0x3ff, 0x800, 0x5, 0x0, 0xfffffffffffffff9}, 0x0, 0x0)
close(0x4)
sendmmsg$inet(r1, &(0x7f0000002c40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)

9m53.269359281s ago: executing program 1 (id=462):
r0 = syz_usb_connect$hid(0x2, 0x36, &(0x7f0000000700)=ANY=[@ANYBLOB="12010000000000104355220500221100000109022400010000000009040700010300000009"], 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r1 = syz_open_dev$sndctrl(&(0x7f0000001440), 0x0, 0x801)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r1, 0x40045532, &(0x7f0000000100))
r2 = openat$audio(0xffffffffffffff9c, &(0x7f00000000c0), 0x88602, 0x0)
ioctl$SNDCTL_DSP_GETODELAY(r2, 0x80045017, 0x0)
syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
r3 = syz_open_dev$sndpcmp(&(0x7f0000001200), 0x0, 0xa2c65)
ioctl$SNDRV_PCM_IOCTL_DRAIN(r3, 0x4144, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r4}, 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r5 = getpid()
sched_setscheduler(r5, 0x1, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_PCM_IOCTL_REWIND(r3, 0x40084146, &(0x7f00000001c0)=0x2b67)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f0000000400)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$SNDCTL_DSP_GETOPTR(r2, 0x800c5012, 0xffffffffffffffff)
syz_usb_control_io$hid(r0, &(0x7f0000000000)={0x16, 0x0, 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="00225fdf99e19c8b39136b5ab2de05000009f7"], 0x0}, 0x0)

9m52.95475844s ago: executing program 4 (id=463):
syz_kvm_add_vcpu$x86(0x0, &(0x7f0000000000)={0x0, &(0x7f0000000100)=[@code={0xa, 0x4f, {"3ef30f090f20c035010000000f22c0c441c9e513c462f94196d5bc589d66b83e018ed8b9800000c00f3235000100000f30f3dcfc0f015d010fc719440f30"}}], 0x4f})
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000040)={0x1, 0x0, [{0x560, 0x0, 0x6}]})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_SET_LAPIC(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000100)={"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"})
ioctl$KVM_XEN_HVM_CONFIG(0xffffffffffffffff, 0x4038ae7a, &(0x7f0000000100)={0x0, 0xaaa, 0x0, 0x0})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000003c0)={[0x60000000004, 0x1000000000, 0x5, 0x41, 0x2000000, 0x0, 0x2004cb, 0x0, 0xa1d, 0x68ff, 0x5, 0x0, 0x3, 0x2], 0x10000, 0x202})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000100)={{0xd000, 0x17d739293968d0b1, 0x0, 0x0, 0x8, 0x0, 0x7, 0x2, 0x0, 0x8, 0x6, 0x40}, {0xffff1000, 0x10000, 0x3, 0x0, 0x2, 0x0, 0x7, 0x0, 0x7, 0xff, 0x4}, {0xeeee0000, 0x1000, 0xc, 0x0, 0x7, 0xc4, 0x0, 0x0, 0x48, 0x3, 0x0, 0xfc}, {0x1, 0x0, 0x9, 0x1, 0x1, 0x0, 0x9, 0x0, 0x8, 0x0, 0x4}, {0xdddd0000, 0xffff1000, 0x3, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x38}, {0x0, 0x0, 0xe, 0x78, 0x5, 0x0, 0x2, 0x0, 0x0, 0xff, 0x40}, {0x0, 0x8080000, 0xa, 0x0, 0x4, 0x0, 0xa1, 0x20}, {0x0, 0x6000, 0x10, 0x0, 0x0, 0x7, 0x8, 0x40, 0x26, 0x0, 0x0, 0x2}, {0x80a0000, 0xdf}, {0xdddd1000}, 0xddf8ffdb, 0x0, 0x0, 0x0, 0x0, 0xf801, 0x0, [0x80000001, 0x0, 0x5]})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

9m52.147836137s ago: executing program 4 (id=464):
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000001000)={{}, &(0x7f0000000040), 0x0}, 0x20)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0xa, 0x10000000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
socket$inet6_udp(0xa, 0x2, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0/file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x2, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0xa, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffffffffffef3, 0x10, &(0x7f00000000c0), 0xfffffffffffffd00}, 0x48)

9m49.70436017s ago: executing program 1 (id=466):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000001500)=@framed, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
geteuid()
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDMKTONE(r1, 0x4b30, 0xfffffffffffffffd)
write$UHID_INPUT(r1, &(0x7f00000011c0)={0xfc, {"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", 0x1000}}, 0xffbc)
ioctl$GIO_UNIMAP(r1, 0x4b66, &(0x7f0000000000)={0x26, 0x0})

9m49.162744417s ago: executing program 4 (id=468):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000000c0)=<r3=>0x0)
ptrace$peek(0xffffffffffffffff, r3, &(0x7f0000000100))
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000002040)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x200000000000002f, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
read(r5, 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r7, 0x84, 0x66, &(0x7f0000000040)={0x0, 0x6}, &(0x7f0000000080)=0x8)
r8 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r6, 0x8933, &(0x7f0000000000)={'batadv0\x00', <r9=>0x0})
sendmsg$BATADV_CMD_GET_DAT_CACHE(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x1c, r8, 0x305, 0x0, 0x0, {0x7}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r9}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000}, 0x0)

9m49.119534725s ago: executing program 1 (id=469):
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000400)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x40, &(0x7f00000001c0)=ANY=[], 0xd0060)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r3}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
unshare(0x2c020400)
recvmmsg(0xffffffffffffffff, &(0x7f0000007e00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x4000000)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWRULE={0x5c, 0x6, 0xa, 0x603, 0x0, 0x0, {0xa, 0x0, 0x9}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_EXPRESSIONS={0x30, 0x4, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_XFRM_DREG={0x8}, @NFTA_XFRM_DIR={0x5, 0x3, 0x1}, @NFTA_XFRM_KEY={0x8, 0x2, 0x1, 0x0, 0x4}]}}}]}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x84}, 0x1, 0x0, 0x0, 0x4000850}, 0x24000840)

9m47.928552805s ago: executing program 4 (id=471):
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff001000000800395032303030"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_DIRENT(r2, &(0x7f0000000000)=ANY=[@ANYBLOB="58000000000000009fed2788c5532994414b47034801d524faf416638217", @ANYRES32], 0x58)
mount$9p_fd(0x0, &(0x7f00000025c0)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1])
chdir(&(0x7f0000000100)='./file0\x00')
read$FUSE(r0, 0x0, 0x0)
mkdir(&(0x7f0000000500)='./file0\x00', 0x0)
r3 = syz_usb_connect$hid(0x3, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x5ac, 0x323, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0xc, 0x10, 0x1, {0x22, 0x7}}, {{{0x9, 0x5, 0x81, 0x3, 0x20}}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(r3, 0x0, 0x0)
syz_usb_control_io(r3, &(0x7f0000000040)={0x2c, &(0x7f0000000080)={0x40, 0x6, 0x7, {0x7, 0xc, "3a95df2e98"}}, 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_connect$cdc_ecm(0x2, 0x67, &(0x7f00000000c0)={{0x12, 0x1, 0x300, 0x2, 0x0, 0x0, 0x8, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x55, 0x1, 0x1, 0x50, 0x40, 0x5, [{{0x9, 0x4, 0x0, 0x9, 0x2, 0x2, 0x6, 0x0, 0x4, {{0xa, 0x24, 0x6, 0x0, 0x0, "9c9e5af33d"}, {0x5, 0x24, 0x0, 0x9}, {0xd, 0x24, 0xf, 0x1, 0x7, 0xfff, 0x5, 0x40}, [@obex={0x5, 0x24, 0x15, 0xb}, @network_terminal={0x7, 0x24, 0xa, 0x5, 0x6, 0x1, 0x7}]}, {[{{0x9, 0x5, 0x81, 0x3, 0x3ff, 0x8f, 0x5, 0x6}}], {{0x9, 0x5, 0x82, 0x2, 0x0, 0x8, 0x0, 0x2}}, {{0x9, 0x5, 0x3, 0x2, 0x8, 0xa, 0x1, 0xfe}}}}}]}}]}}, &(0x7f00000005c0)={0xa, &(0x7f0000000140)={0xa, 0x6, 0x310, 0x8, 0x80, 0x4, 0x40, 0x13}, 0xcf, &(0x7f0000000180)={0x5, 0xf, 0xcf, 0x1, [@generic={0xca, 0x10, 0xa, "8233893bb57b12e4d1858a463804f4b6f32dc2391b811519aee4b113a344efae2fd438b7593421b9b12fb4975030fc82eb4e60dfad2e244fccb75b95ad07ab076f40493561781bacb962f369a8824c2f76ea62c1c088cb5d98a9ee68372862e7a8236df03ead52984774930fb73c623d787c83762144c57f0e5b64615e7f96bcf0b1c2b881c52a15deaafedb0c6062018e248dc8bab30d460b29d4d97bee20d65f4e4391eda42fb3ed5a64eef844bf7bf113b0f6ab088f6dad7f10fa6041727beed210e0d69299"}]}, 0x6, [{0xfb, &(0x7f0000000280)=@string={0xfb, 0x3, "7a574fc2c9c64d7b3bbc99b98491ccef283028211320fcbcde2502114eb5618bb968d67d518017828010c887f55dacef54ba5945c882cdec52664c4eacd81de42f5d486ea9583367b65911a4b05909ba2d73922ff40a60aef422f19410cd9866668238ef287aaeb653e77ce1109a67034a4044964e23dc6df2e33fbf46cb32664698ea6c7efc7a407e83c35c8803b934f08ae5a278d66838d9a61fc6ff7693b63be522cc78f528e87624b0a732f9a22e5af14756d8a15af75655adc5232838be3adc7157d310786f09816e7b6cfbab43f6a18c997f06b3dea192963d981ab931d690826d0c00c7e9c3070e4c584025b8c4ebc4c817906da433"}}, {0xd0, &(0x7f0000000380)=@string={0xd0, 0x3, "3554c1f04a87abcde37dde25ab26b1699ee680071de2e83999f09aa53314d28565a35aa63df24be382400ac7a113f141d50aaf19a65457aa946be3021fb48b84c025ec04a7f27fa0e1f40b73e87633f7746a1dd7869cdab9bf6ad7ac65b11be66a09aafa353a4183c72856a36ec831552b5496404412f03675ca8d12b9a4210fd79fe319b09d61182b02e8703f0968a4436fc3eea7696d9f08382fbb916895e21249f139e540d9d03b1083b9efbfcdabb18a36fa2a9352a0b1ad811c97de62d7e790f25e577333a4388008267ba4"}}, {0xd9, &(0x7f00000006c0)=@string={0xd9, 0x3, "941dda9c19503e998a43fd51dfe64d31b5ef0cfba4606cd83d8e67a2f46537ecaae5e988b97683d3c13200fa8c507ffdb9bdfea199898fa9e82078c499f9e2fef367ba49c1f5a9f5e1fe50a9ffdb5060c2287332245c022d9438f6c3a4efe4785e956c66e54efb917373213924e90bab11c931800ffdf67d2cce8861fb4dbf1fa144ced3b51c57c42ab7a750ffff7c7cbe7398c0376560290dd84c414501eaebda4bf2debd02b45d967ed2d9b4e25cb833fa770d6a12bc6b6ce00ec0128ee3829026110c2810f36650ccc4446c734c4db56738d36e0522"}}, {0x4, &(0x7f00000004c0)=@lang_id={0x4, 0x3, 0x1401}}, {0x4, &(0x7f0000000500)=@lang_id={0x4, 0x3, 0x180a}}, {0x6e, &(0x7f0000000540)=@string={0x6e, 0x3, "84e1c873666def2fe68782f05a39772a9179f00696169f56c1ec50ddf526283d459b068ee8f99668f8f697b3408706785d8f9bfea350c1055b6879f2e0691f700cc662aa4eb27920fb593f1e49c614529a26142eaef755004ca5c403f4d821456a5b8b16ec918c620a94bb85"}}]})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000400)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='GPL\x00'}, 0x94)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r5, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
r6 = socket$l2tp(0x2, 0x2, 0x73)
setsockopt$IP_VS_SO_SET_ZERO(r6, 0x0, 0x48f, &(0x7f00000002c0)={0x84, @multicast1, 0x4e20, 0x0, 'fo\x00', 0x2a, 0x7ffc, 0x43}, 0x2c)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r7, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010005"], 0x3c}}, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)

9m45.87345552s ago: executing program 1 (id=473):
r0 = socket$igmp(0x2, 0x3, 0x2)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000003c0)={'wlan0\x00'})
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000240)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_FRAME(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)={0x24, r2, 0x1, 0x70bd26, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_CSA_C_OFFSETS_TX={0x4}, @NL80211_ATTR_TX_NO_CCK_RATE={0x4}]}, 0x24}, 0x1, 0x0, 0x0, 0xc0}, 0x40)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f0000002140)={0x26, 'aead\x00', 0x0, 0x0, 'authencesn(michael_mic-generic,xchacha20-generic)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x7, &(0x7f00000000c0)="fee5bc77", 0x4)
setsockopt$MRT_ADD_MFC_PROXY(r0, 0x0, 0xd2, &(0x7f0000000280)={@multicast2, @multicast2, 0x0, "614af285791a63abd0f993af8077b5cd01e03d64a831683fdc3fd440829c82ae", 0x1000000}, 0x3c)
setsockopt$MRT_ADD_MFC(r0, 0x0, 0xcc, &(0x7f0000000080)={@multicast2, @multicast2, 0x0, "b18c89f8ec85752dace37a71e337f670bfac54f9a317850eaa73a3eb92f19456", 0xa, 0x8, 0x8, 0x1ff}, 0x3c)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)=ANY=[@ANYBLOB="f80000003e000701feffffff00000000017c0000040042800c00018006000600800a0000d1000280cb001480080007"], 0xf8}, 0x1, 0x0, 0x0, 0x4048011}, 0xc000)
sendmsg$NL80211_CMD_DEL_PMK(r5, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000001c0)={0xfffffffffffffffe}}, 0x4000800)
r6 = socket$inet_sctp(0x2, 0x1, 0x84)
sendto$inet(r6, &(0x7f0000000180)="01", 0x1, 0x0, &(0x7f0000004ff0)={0x2, 0x0, @rand_addr=0xfffffffffffffffe}, 0x10)
listen(r6, 0xda90)
r7 = accept4(r6, 0x0, 0x0, 0x0)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r8, &(0x7f0000000000)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r8, 0x0)
setsockopt$inet_sctp_SCTP_RTOINFO(r7, 0x84, 0x0, &(0x7f00000000c0)={0x0, 0x5, 0x2, 0x6}, 0x10)
syz_usb_connect$uac1(0x0, 0xaa, &(0x7f00000000c0)=ANY=[@ANYBLOB="12010000000000106b1d01014000010203010902980003010000000904000000010100000a2401000000020102132406040006030000000000000000000000000924030000010000ff0924050000f8431cfd0924030604030204001b240404020904", @ANYBLOB="06c930f017"], 0x0)
getsockopt$EBT_SO_GET_INIT_INFO(0xffffffffffffffff, 0x0, 0x82, &(0x7f0000000000)={'filter\x00', 0x0, 0x0, 0x0, [0x8001, 0x4f54, 0x0, 0xfffffffffffffffc, 0x7, 0x100000000]}, &(0x7f0000000100)=0x78)

9m32.217467177s ago: executing program 34 (id=471):
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff001000000800395032303030"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_DIRENT(r2, &(0x7f0000000000)=ANY=[@ANYBLOB="58000000000000009fed2788c5532994414b47034801d524faf416638217", @ANYRES32], 0x58)
mount$9p_fd(0x0, &(0x7f00000025c0)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1])
chdir(&(0x7f0000000100)='./file0\x00')
read$FUSE(r0, 0x0, 0x0)
mkdir(&(0x7f0000000500)='./file0\x00', 0x0)
r3 = syz_usb_connect$hid(0x3, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x5ac, 0x323, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0xc, 0x10, 0x1, {0x22, 0x7}}, {{{0x9, 0x5, 0x81, 0x3, 0x20}}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(r3, 0x0, 0x0)
syz_usb_control_io(r3, &(0x7f0000000040)={0x2c, &(0x7f0000000080)={0x40, 0x6, 0x7, {0x7, 0xc, "3a95df2e98"}}, 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_connect$cdc_ecm(0x2, 0x67, &(0x7f00000000c0)={{0x12, 0x1, 0x300, 0x2, 0x0, 0x0, 0x8, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x55, 0x1, 0x1, 0x50, 0x40, 0x5, [{{0x9, 0x4, 0x0, 0x9, 0x2, 0x2, 0x6, 0x0, 0x4, {{0xa, 0x24, 0x6, 0x0, 0x0, "9c9e5af33d"}, {0x5, 0x24, 0x0, 0x9}, {0xd, 0x24, 0xf, 0x1, 0x7, 0xfff, 0x5, 0x40}, [@obex={0x5, 0x24, 0x15, 0xb}, @network_terminal={0x7, 0x24, 0xa, 0x5, 0x6, 0x1, 0x7}]}, {[{{0x9, 0x5, 0x81, 0x3, 0x3ff, 0x8f, 0x5, 0x6}}], {{0x9, 0x5, 0x82, 0x2, 0x0, 0x8, 0x0, 0x2}}, {{0x9, 0x5, 0x3, 0x2, 0x8, 0xa, 0x1, 0xfe}}}}}]}}]}}, &(0x7f00000005c0)={0xa, &(0x7f0000000140)={0xa, 0x6, 0x310, 0x8, 0x80, 0x4, 0x40, 0x13}, 0xcf, &(0x7f0000000180)={0x5, 0xf, 0xcf, 0x1, [@generic={0xca, 0x10, 0xa, "8233893bb57b12e4d1858a463804f4b6f32dc2391b811519aee4b113a344efae2fd438b7593421b9b12fb4975030fc82eb4e60dfad2e244fccb75b95ad07ab076f40493561781bacb962f369a8824c2f76ea62c1c088cb5d98a9ee68372862e7a8236df03ead52984774930fb73c623d787c83762144c57f0e5b64615e7f96bcf0b1c2b881c52a15deaafedb0c6062018e248dc8bab30d460b29d4d97bee20d65f4e4391eda42fb3ed5a64eef844bf7bf113b0f6ab088f6dad7f10fa6041727beed210e0d69299"}]}, 0x6, [{0xfb, &(0x7f0000000280)=@string={0xfb, 0x3, "7a574fc2c9c64d7b3bbc99b98491ccef283028211320fcbcde2502114eb5618bb968d67d518017828010c887f55dacef54ba5945c882cdec52664c4eacd81de42f5d486ea9583367b65911a4b05909ba2d73922ff40a60aef422f19410cd9866668238ef287aaeb653e77ce1109a67034a4044964e23dc6df2e33fbf46cb32664698ea6c7efc7a407e83c35c8803b934f08ae5a278d66838d9a61fc6ff7693b63be522cc78f528e87624b0a732f9a22e5af14756d8a15af75655adc5232838be3adc7157d310786f09816e7b6cfbab43f6a18c997f06b3dea192963d981ab931d690826d0c00c7e9c3070e4c584025b8c4ebc4c817906da433"}}, {0xd0, &(0x7f0000000380)=@string={0xd0, 0x3, "3554c1f04a87abcde37dde25ab26b1699ee680071de2e83999f09aa53314d28565a35aa63df24be382400ac7a113f141d50aaf19a65457aa946be3021fb48b84c025ec04a7f27fa0e1f40b73e87633f7746a1dd7869cdab9bf6ad7ac65b11be66a09aafa353a4183c72856a36ec831552b5496404412f03675ca8d12b9a4210fd79fe319b09d61182b02e8703f0968a4436fc3eea7696d9f08382fbb916895e21249f139e540d9d03b1083b9efbfcdabb18a36fa2a9352a0b1ad811c97de62d7e790f25e577333a4388008267ba4"}}, {0xd9, &(0x7f00000006c0)=@string={0xd9, 0x3, "941dda9c19503e998a43fd51dfe64d31b5ef0cfba4606cd83d8e67a2f46537ecaae5e988b97683d3c13200fa8c507ffdb9bdfea199898fa9e82078c499f9e2fef367ba49c1f5a9f5e1fe50a9ffdb5060c2287332245c022d9438f6c3a4efe4785e956c66e54efb917373213924e90bab11c931800ffdf67d2cce8861fb4dbf1fa144ced3b51c57c42ab7a750ffff7c7cbe7398c0376560290dd84c414501eaebda4bf2debd02b45d967ed2d9b4e25cb833fa770d6a12bc6b6ce00ec0128ee3829026110c2810f36650ccc4446c734c4db56738d36e0522"}}, {0x4, &(0x7f00000004c0)=@lang_id={0x4, 0x3, 0x1401}}, {0x4, &(0x7f0000000500)=@lang_id={0x4, 0x3, 0x180a}}, {0x6e, &(0x7f0000000540)=@string={0x6e, 0x3, "84e1c873666def2fe68782f05a39772a9179f00696169f56c1ec50ddf526283d459b068ee8f99668f8f697b3408706785d8f9bfea350c1055b6879f2e0691f700cc662aa4eb27920fb593f1e49c614529a26142eaef755004ca5c403f4d821456a5b8b16ec918c620a94bb85"}}]})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000400)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='GPL\x00'}, 0x94)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r5, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
r6 = socket$l2tp(0x2, 0x2, 0x73)
setsockopt$IP_VS_SO_SET_ZERO(r6, 0x0, 0x48f, &(0x7f00000002c0)={0x84, @multicast1, 0x4e20, 0x0, 'fo\x00', 0x2a, 0x7ffc, 0x43}, 0x2c)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r7, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010005"], 0x3c}}, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)

9m30.326522243s ago: executing program 35 (id=473):
r0 = socket$igmp(0x2, 0x3, 0x2)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000003c0)={'wlan0\x00'})
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000240)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_FRAME(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)={0x24, r2, 0x1, 0x70bd26, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_CSA_C_OFFSETS_TX={0x4}, @NL80211_ATTR_TX_NO_CCK_RATE={0x4}]}, 0x24}, 0x1, 0x0, 0x0, 0xc0}, 0x40)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f0000002140)={0x26, 'aead\x00', 0x0, 0x0, 'authencesn(michael_mic-generic,xchacha20-generic)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x7, &(0x7f00000000c0)="fee5bc77", 0x4)
setsockopt$MRT_ADD_MFC_PROXY(r0, 0x0, 0xd2, &(0x7f0000000280)={@multicast2, @multicast2, 0x0, "614af285791a63abd0f993af8077b5cd01e03d64a831683fdc3fd440829c82ae", 0x1000000}, 0x3c)
setsockopt$MRT_ADD_MFC(r0, 0x0, 0xcc, &(0x7f0000000080)={@multicast2, @multicast2, 0x0, "b18c89f8ec85752dace37a71e337f670bfac54f9a317850eaa73a3eb92f19456", 0xa, 0x8, 0x8, 0x1ff}, 0x3c)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)=ANY=[@ANYBLOB="f80000003e000701feffffff00000000017c0000040042800c00018006000600800a0000d1000280cb001480080007"], 0xf8}, 0x1, 0x0, 0x0, 0x4048011}, 0xc000)
sendmsg$NL80211_CMD_DEL_PMK(r5, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000001c0)={0xfffffffffffffffe}}, 0x4000800)
r6 = socket$inet_sctp(0x2, 0x1, 0x84)
sendto$inet(r6, &(0x7f0000000180)="01", 0x1, 0x0, &(0x7f0000004ff0)={0x2, 0x0, @rand_addr=0xfffffffffffffffe}, 0x10)
listen(r6, 0xda90)
r7 = accept4(r6, 0x0, 0x0, 0x0)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r8, &(0x7f0000000000)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r8, 0x0)
setsockopt$inet_sctp_SCTP_RTOINFO(r7, 0x84, 0x0, &(0x7f00000000c0)={0x0, 0x5, 0x2, 0x6}, 0x10)
syz_usb_connect$uac1(0x0, 0xaa, &(0x7f00000000c0)=ANY=[@ANYBLOB="12010000000000106b1d01014000010203010902980003010000000904000000010100000a2401000000020102132406040006030000000000000000000000000924030000010000ff0924050000f8431cfd0924030604030204001b240404020904", @ANYBLOB="06c930f017"], 0x0)
getsockopt$EBT_SO_GET_INIT_INFO(0xffffffffffffffff, 0x0, 0x82, &(0x7f0000000000)={'filter\x00', 0x0, 0x0, 0x0, [0x8001, 0x4f54, 0x0, 0xfffffffffffffffc, 0x7, 0x100000000]}, &(0x7f0000000100)=0x78)

8m8.263354915s ago: executing program 2 (id=506):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000000)={'team0\x00', <r1=>0x0})
r2 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x10, &(0x7f0000007fc0)=[@in={0x2, 0x0, @rand_addr=0x64010102}]}, &(0x7f0000000100)=0x10)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='net_prio.prioidx\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000040), 0x55af)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r3, 0x0)
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r2, 0x84, 0x66, &(0x7f0000000080), &(0x7f0000000000)=0x8)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000002c0)=ANY=[@ANYBLOB="640000001000ffff25bd7000fbdbdf2500000000", @ANYRES32=0x0, @ANYBLOB="1414000021200000340012800c0001006d6163766c616e002400028008000300030000000800010010000000100005800a000400bff7740a5244000008000500", @ANYRES32=r1, @ANYBLOB="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", @ANYRES32=r1, @ANYBLOB], 0x64}, 0x1, 0x0, 0x0, 0x40000021}, 0x8000002)
socket$inet_udp(0x2, 0x2, 0x0)

8m7.235020851s ago: executing program 2 (id=507):
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r0, &(0x7f00000000c0), 0x10)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000100)={'vxcan0\x00', <r1=>0x0})
sendmsg$can_bcm(r0, &(0x7f0000000280)={&(0x7f0000000040)={0x1d, r1}, 0x10, &(0x7f0000000180)={&(0x7f0000000200)={0x4, 0x0, 0x0, {0x0, 0x2710}, {}, {}, 0x1, @can={{}, 0x84, 0x0, 0x4, 0x0, "c4f40c848d97a447"}}, 0x48}}, 0x0)
pwrite64(r0, &(0x7f0000002f40)="5d4836bddaffde35931835cfa4dbd9def81c0bded749344797ca9e75c4d97d0ac643fc7529ff557a728dc84194894bb82b46099bb8e444366dbde20395e64d17891196d8224e2aa2a3e2681abb2dd677fc27655bc491e7beceed7cccab6b710ef3974399a0fc02849021bb729d966832e2949c58ea46ff9931cbf78928ffc64c", 0x80, 0x6)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
setsockopt$inet6_tcp_TLS_TX(r2, 0x11a, 0x1, &(0x7f0000000280)=@ccm_128={{0x304}, "8ce26ba70d1d064a", "b98a2b8bb5e66173976106a6e64eea82", "2d30013e", "64ca528c14d7fb19"}, 0x28)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = dup(r5)
getsockname$packet(r6, &(0x7f00000000c0)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000140)=0x14)
ioctl$INCFS_IOC_READ_FILE_SIGNATURE(r3, 0x8010671f, &(0x7f00000003c0)={&(0x7f00000002c0)=""/233, 0xe9})
r8 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_STRSET_GET(r6, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="5c001000", @ANYRES16=r8, @ANYBLOB="00022dbd7000fcdbdf250100000020000180140002007665746830000000000000000000000008000100", @ANYRES32=r7, @ANYBLOB="100002800c000180080001000f0000001800018014000200766c616e3000"/40], 0x5c}, 0x1, 0x0, 0x0, 0x40800}, 0x10)
fstat(r4, &(0x7f0000002fc0)={0x0, 0x0, 0x0, 0x0, <r9=>0x0})
getsockopt$inet_IP_IPSEC_POLICY(r6, 0x0, 0x10, &(0x7f0000000a40)={{{@in=@broadcast, @in6=@private1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r10=>0x0}}, {{@in6=@mcast2}, 0x0, @in=@empty}}, &(0x7f00000004c0)=0xe8)
statx(r6, &(0x7f0000000b40)='./file0\x00', 0x0, 0x40, &(0x7f0000000b80)={0x0, 0x0, 0x0, 0x0, <r11=>0x0})
getresuid(&(0x7f0000000c80), &(0x7f0000000cc0), &(0x7f0000000d00)=<r12=>0x0)
read$FUSE(r6, &(0x7f0000000d40)={0x2020, 0x0, 0x0, <r13=>0x0}, 0x2020)
getsockopt$inet_IP_XFRM_POLICY(r6, 0x0, 0x11, &(0x7f0000002d80)={{{@in6=@mcast2, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r14=>0x0}}, {{@in6=@mcast1}, 0x0, @in6=@private2}}, &(0x7f0000002e80)=0xe8)
r15 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r15, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="180000002400010300000000000000000100"], 0x18}, 0x1, 0x0, 0x0, 0x8001}, 0x4000)
recvmmsg(r15, &(0x7f0000001c00)=[{{0x0, 0x0, 0x0}, 0xc}, {{0x0, 0x0, 0x0}, 0x24c9ddb}, {{0x0, 0x0, 0x0}, 0xf04}, {{0x0, 0x0, 0x0}, 0x1}], 0x4, 0x40000020, 0x0)
fsetxattr$system_posix_acl(r2, &(0x7f0000000400)='system.posix_acl_default\x00', &(0x7f0000002ec0)=ANY=[@ANYBLOB="02000000010006000000000002041c41", @ANYRES32=r9, @ANYBLOB="02000500", @ANYRES32=r10, @ANYBLOB="02000200", @ANYRES32=r11, @ANYBLOB="02000300", @ANYRES32=r12, @ANYBLOB="02000500", @ANYRES32=r13, @ANYBLOB="02000500", @ANYRES32=r14, @ANYBLOB="04000c000000000008000100", @ANYRES32=0xee01, @ANYBLOB="10000400000000002000010000000000"], 0x5c, 0x1)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x60303, 0x0)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r16=>0xffffffffffffffff})
r17 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_STAT_DEL(r17, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)=ANY=[@ANYBLOB="300000001214010028bd7000fcdbdf250800", @ANYRES16=r16], 0x30}, 0x1, 0x0, 0x0, 0x4000014}, 0x20000000)
write$uinput_user_dev(r6, &(0x7f00000005c0)={'syz1\x00', {0x3, 0x5, 0x0, 0x7}, 0x2c, [0x2, 0x7, 0x1, 0x3, 0x273, 0x1, 0x1, 0x71d4, 0x101, 0x8, 0x6, 0x1, 0x6, 0x22, 0x4, 0xd, 0x6, 0x9, 0x7f, 0x5, 0xb4, 0x800, 0x200, 0x8, 0x4, 0x8001, 0x9, 0x7, 0x1f, 0x8, 0x0, 0x7ff, 0x40, 0x4, 0x1, 0xfff, 0x0, 0x8, 0x4, 0x7, 0xfffffffc, 0x1c, 0x0, 0x7fffffff, 0xffffffa0, 0x3, 0x0, 0x6, 0x7fff, 0x7, 0x2, 0x81, 0x0, 0x1c0000, 0xba, 0xd, 0x4cf7, 0xfffffffe, 0x8, 0x0, 0x0, 0x9, 0x66d4, 0x4], [0xc, 0x3, 0x4, 0x4, 0x1, 0x6, 0x6, 0x80000000, 0x2, 0x3ff, 0x7fffffff, 0xb26, 0x1, 0x6, 0xd3, 0xac1be71b, 0x1f, 0x6, 0x10, 0x5, 0x5a92, 0x4, 0x3, 0xd, 0x10000, 0x6, 0x1000, 0x3ff, 0x1, 0x6, 0xc9, 0x8, 0x1, 0x2, 0x4be3, 0x1, 0x958, 0xcdc, 0x8, 0x2, 0x7, 0xe21e, 0x0, 0xfffffff9, 0xf, 0x5, 0xffffffed, 0x5a46, 0x101, 0x80000001, 0xfff, 0x0, 0x7fff, 0x2c0, 0x7fff, 0x3, 0x5, 0x9, 0x7ff, 0x7, 0x8, 0x9, 0x9, 0x56], [0x1, 0x1b82b293, 0x8000, 0x3ff, 0x6, 0x53, 0x2, 0x1000, 0x101, 0x5, 0x2, 0x7ff, 0x400, 0x0, 0x101, 0x8, 0x1, 0x2, 0x8, 0xff, 0xad8, 0x9, 0x1, 0x10001, 0x6, 0x9, 0x401, 0x320, 0x4, 0x7, 0x1, 0x2, 0x7fff, 0x2, 0x4, 0x0, 0x2, 0x1, 0x4, 0x4, 0x0, 0x3, 0x8000000, 0xb, 0x6b0, 0x6, 0x3, 0x33e, 0x8, 0x0, 0x6, 0x4, 0x8, 0xf, 0x7f, 0xd6, 0xe3, 0x8, 0xb, 0x18, 0x8, 0x100, 0x2, 0x6], [0x7fffffff, 0x8, 0x0, 0x7f, 0x1, 0x3, 0x10, 0x2ed, 0x40, 0x275b, 0x4, 0x6, 0x8, 0x5, 0x7, 0x200, 0x6, 0x1, 0x3, 0x3, 0xa5e, 0x800, 0x7, 0x40, 0xff, 0x8, 0x773e, 0x0, 0x401, 0x5, 0x3, 0x0, 0x8, 0x0, 0x7, 0x1, 0x10001, 0x6d84, 0x100, 0x156bb183, 0x0, 0x9, 0x7fffffff, 0x1, 0xfffffffb, 0x2, 0x1, 0x2, 0xfff, 0x6, 0x3, 0x3, 0xc7, 0x9, 0x4, 0x7, 0x44c, 0x9, 0x2, 0x9eba, 0x1, 0x5, 0x354, 0x92]}, 0x45c)
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)=ANY=[@ANYBLOB="ec0000001000010800"/20, @ANYRES32=r7, @ANYBLOB="0000000000000000cc001a801800028014000700fe8000000000000000000000000000aa30000280040001800300000000000000080000000000000004000000000000000800000000000000080000000000000018000280140001801100000000004000080000000000000018000a80140007"], 0xec}}, 0x0)

8m6.471163975s ago: executing program 2 (id=508):
r0 = socket$kcm(0x2, 0x200000000000001, 0x106)
getsockopt(r0, 0x4, 0x17, 0x0, 0x0)
sendmsg$NL80211_CMD_SET_NOACK_MAP(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x14, 0x0, 0x20, 0x70bd27, 0x25dfdbfb, {{}, {@void, @void}}}, 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x4040040)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040))
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(r1, 0x2285, &(0x7f00000005c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x3, 0x0}, &(0x7f0000000380)="1aa302ae2f62", 0x0, 0x5, 0x0, 0x0, 0x0})

8m6.29159888s ago: executing program 2 (id=509):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000100)='sched_switch\x00'}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFVLAN_SET_VLAN_FLAG_CMD(r0, 0x8982, &(0x7f0000000440)={0x7, 'vlan0\x00', {0x6}, 0xc000})
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
syz_open_procfs$namespace(0x0, 0x0)
getpid()
unshare(0x20000400)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000001c0)='net/tcp\x00')
cachestat(r1, &(0x7f0000000000)={0x264, 0x1}, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x2000, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_SET_IRQCHIP(r4, 0xc048aec8, &(0x7f0000000700)={0x6, 0x0, @ioapic={0x4, 0x2, 0x102, 0x6, 0x0, [{0x1, 0x4, 0x5, '\x00', 0x81}, {0x7, 0x45, 0x0, '\x00', 0x7f}, {0x4, 0x5, 0x2, '\x00', 0x1}, {0x9, 0x4, 0x3, '\x00', 0x6}, {0x4, 0x0, 0xd, '\x00', 0x7}, {0x3, 0x5, 0x3e, '\x00', 0xa}, {0x81, 0x7, 0xd, '\x00', 0x9}, {0x1, 0xe, 0x6}, {0x6, 0x9, 0xf}, {0x6, 0x9, 0x2, '\x00', 0x9}, {0x10, 0x10, 0xc, '\x00', 0x7f}, {0x1, 0x4, 0x0, '\x00', 0x3}, {0x4, 0x0, 0xe0, '\x00', 0x80}, {0x2, 0x16, 0x40, '\x00', 0x9}, {0x80, 0x9, 0x2, '\x00', 0x47}, {0x2, 0x5, 0xa, '\x00', 0x4}, {0x60, 0x3, 0x5, '\x00', 0xb}, {0x16, 0x3, 0x9, '\x00', 0xfe}, {0x8c, 0x3, 0x7f}, {0x9, 0x0, 0x3, '\x00', 0x7}, {0x92, 0x4, 0xff, '\x00', 0x2}, {0x9, 0x10, 0x6, '\x00', 0x7}, {0x6, 0x9, 0x1}, {0x40, 0x0, 0x7, '\x00', 0xe}]}})

8m5.215635318s ago: executing program 2 (id=510):
r0 = signalfd(0xffffffffffffffff, &(0x7f0000000140), 0x8)
r1 = syz_io_uring_setup(0x38a9, &(0x7f0000000300)={0x0, 0x1595, 0x10100, 0x0, 0x17c}, &(0x7f0000000040)=<r2=>0x0, &(0x7f00000003c0)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x20, 0x3, r0})
io_uring_enter(r1, 0x44fd, 0x3, 0x1, 0x0, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r4}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r5 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f0000000480)=@file={0x0, './file0/file0\x00'}, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x651, 0x0)
prlimit64(0x0, 0x2, 0x0, 0x0)
mremap(&(0x7f000000a000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000ffe000/0x1000)=nil)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r8 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_SET_BINARY(r8, 0x6, 0x0, 0x0, 0x0)
r9 = fsmount(r8, 0x0, 0xc)
r10 = openat$cgroup_subtree(r9, &(0x7f0000000100), 0x2, 0x0)
write$cgroup_subtree(r10, &(0x7f0000000980)=ANY=[@ANYBLOB='.pids'], 0x1f)
recvfrom$inet_nvme(r0, &(0x7f0000000400)=""/82, 0x52, 0x40000020, &(0x7f0000000500)=@nfc={0x27, 0x0, 0xffffffffffffffff, 0x5}, 0x80)
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8)
r11 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001480), 0x42002, 0x0)
ioctl$TIOCSETD(r11, 0x5423, 0x0)

8m3.767431056s ago: executing program 2 (id=511):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$BTRFS_IOC_QGROUP_LIMIT(r0, 0x8030942b, &(0x7f0000000040)={0x9, {0x10, 0xf, 0x91ba, 0x6, 0xc}})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendto(r2, &(0x7f00000000c0)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
recvmmsg(r2, &(0x7f0000000c40)=[{{0x0, 0x0, 0xffffffffffffffff}, 0x80009}], 0x1, 0x10002, 0x0)
r4 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r5 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r5, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r6 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000003c0)='net/ipv6_route\x00')
fsetxattr$trusted_overlay_origin(r4, &(0x7f0000000100), &(0x7f0000000180), 0x2, 0x1)
lseek(r6, 0x10001, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x14, 0x15, 0x1, 0x2, 0x0, {0xe}}, 0x14}}, 0x0)
lsm_set_self_attr(0x69, 0x0, 0x20, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={0x0}}, 0x0)

7m44.469638428s ago: executing program 36 (id=511):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$BTRFS_IOC_QGROUP_LIMIT(r0, 0x8030942b, &(0x7f0000000040)={0x9, {0x10, 0xf, 0x91ba, 0x6, 0xc}})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendto(r2, &(0x7f00000000c0)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
recvmmsg(r2, &(0x7f0000000c40)=[{{0x0, 0x0, 0xffffffffffffffff}, 0x80009}], 0x1, 0x10002, 0x0)
r4 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r5 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r5, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r6 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000003c0)='net/ipv6_route\x00')
fsetxattr$trusted_overlay_origin(r4, &(0x7f0000000100), &(0x7f0000000180), 0x2, 0x1)
lseek(r6, 0x10001, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x14, 0x15, 0x1, 0x2, 0x0, {0xe}}, 0x14}}, 0x0)
lsm_set_self_attr(0x69, 0x0, 0x20, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={0x0}}, 0x0)

28.917136974s ago: executing program 6 (id=631):
openat$sequencer(0xffffff9c, &(0x7f0000000100), 0x6f0380, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000001fc0)='/proc/crypto\x00', 0x0, 0x0)
mkdirat(r0, &(0x7f0000000200)='./file0\x00', 0x0) (async)
mount$overlay(0x0, &(0x7f00000025c0)='./file1\x00', &(0x7f0000000180), 0x0, &(0x7f0000002580)={[{@metacopy_on, 0x3a}], [], 0x2f})
r1 = socket$nl_generic(0x10, 0x3, 0x10) (async)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x40004)
r2 = socket(0x1e, 0x80004, 0x0) (async)
r3 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r3, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x7, 0x0, 0x1000004}, 0x10) (async)
setsockopt$packet_tx_ring(r2, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10) (async)
sendmmsg(r2, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x3514}], 0x1}}], 0x400000000000181, 0x9200000000000000)
r4 = dup3(r3, r2, 0x0)
recvmmsg(r4, &(0x7f0000004580)=[{{0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000600)=""/179, 0x3514}], 0x1}, 0xffffffff}], 0x1, 0x40000001, 0x0) (async)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYBLOB="340000003e000900000000000008000003000000040004001c000180180010"], 0x34}}, 0x84)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1) (async)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001900)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
sendmmsg$unix(r6, &(0x7f0000001fc0), 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r0, 0x4058534c, &(0x7f0000002000)={0xb306, 0x8001, 0x9d2, 0x8, 0x8, 0x4}) (async)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0) (async)
r7 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x5c3280, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x0) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000007, 0x38011, r7, 0x0)
syz_usb_connect$hid(0x0, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="12014f00000000107d1e38310000e1000001090224"], 0x0) (async)
r8 = syz_open_dev$vim2m(&(0x7f0000000080), 0x1, 0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x380000b, 0x28011, r8, 0xe5027000)
r9 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000100), 0x1c3902, 0x0)
sendfile(r9, r9, 0x0, 0x200000) (async)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000002500)={&(0x7f0000ffc000/0x4000)=nil, &(0x7f00001b5000/0x1000)=nil, &(0x7f00006b9000/0x3000)=nil, &(0x7f0000380000/0x2000)=nil, &(0x7f00003c5000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000498000/0x4000)=nil, &(0x7f0000914000/0x4000)=nil, &(0x7f0000058000/0x3000)=nil, &(0x7f000099b000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000002440)="de63dbd72fafd6cc0ba8605d04b216390f9683d8e884579ce5cfdfa9e1986905cdd98e49738c247836c8b331586f397e72016d7cdfe2f7f4162f132f7c93b1ac3a8e37e7989ea588618c52431a1bcf5a1e3e031e0c238e217a4e8aa9381099f7418ca251dc612b9a6277a65f5ce3328311886461f932dfed778f11e88e744d6a006c6bf945f19c59ce4a472323dacd9bad61dd0763345a56", 0x98, r1}, 0x68) (async)
r10 = syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000080)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
syz_usb_ep_write$ath9k_ep2(r10, 0x83, 0xff, &(0x7f0000000180)=ANY=[@ANYBLOB="070200f7aa91972cfa8d096d72310a808768740271a49076eb1174a7d6ab5eee1e14aad854dfc3d9e05648c0430731681f74e63647bc1398cedd78fd11cd39a3ec5346e9704a06126b680087bce90a1634947e803b89eb23c3e1a8caddc92891305cba7ef7803038ce3d3a7b7d24e836"])

28.690001731s ago: executing program 6 (id=632):
r0 = socket$kcm(0xa, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
shutdown(r0, 0x0)
open(&(0x7f0000000140)='./file0\x00', 0xa0000, 0xa1)
mkdir(0x0, 0x0)
r1 = socket(0x2, 0x80805, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x80000)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
prctl$PR_SET_VMA(0xd, 0x0, &(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000340)=0x6)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$SNDCTL_DSP_SPEED(0xffffffffffffffff, 0xc0045002, &(0x7f0000000480))
setsockopt$inet6_tcp_int(r5, 0x6, 0x1e, 0x0, 0x0)
connect$inet6(r5, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(0x0, r1)
setsockopt$IP_VS_SO_SET_ADD(r1, 0x0, 0x482, &(0x7f0000000040)={0x84, @rand_addr=0x64010101, 0x4e22, 0x3, 'dh\x00', 0x1, 0x80005, 0x6f}, 0x2c)
setsockopt$IP_VS_SO_SET_ADDDEST(r1, 0x0, 0x487, &(0x7f0000000000)={{0x84, @private=0xa010102, 0x4e21, 0x3, 'lc\x00', 0x5, 0x8, 0x77}, {@remote, 0x4e20, 0x2, 0xcd}}, 0x44)

27.406563217s ago: executing program 6 (id=633):
r0 = msgget$private(0x0, 0xfffffffffffffffd)
msgrcv(r0, 0x0, 0x0, 0x1, 0x3000)
msgrcv(r0, 0x0, 0x0, 0x2, 0x3000)
msgsnd(r0, &(0x7f0000000540)={0x1}, 0x8, 0x0) (fail_nth: 1)

26.389213122s ago: executing program 6 (id=634):
r0 = socket$inet6_sctp(0xa, 0x0, 0x84)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_MAX_BURST(r2, 0x84, 0x83, &(0x7f0000000000)=@assoc_value={<r3=>0x0}, &(0x7f0000000300)=0x8)
setsockopt$inet_sctp6_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f0000000140)={r3, 0xe0d, 0x4, 0x7, 0x2, 0x8001}, 0x14)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000100)={r3, 0x80, &(0x7f0000000080)=[@in6={0xa, 0x4e22, 0x7, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x5}, @in6={0xa, 0x4e20, 0x1, @mcast2, 0x2}, @in6={0xa, 0x4e24, 0xa700, @private2, 0xd3}, @in6={0xa, 0x4e23, 0x10, @mcast1, 0x1}, @in={0x2, 0x4e24, @multicast2}]}, &(0x7f0000000140)=0x10)
r4 = openat$rtc(0xffffff9c, &(0x7f0000000040), 0xa200, 0x0)
r5 = openat$drirender128(0xffffffffffffff9c, &(0x7f0000000200), 0x121000, 0x0)
ioctl$DRM_IOCTL_GEM_CLOSE(r5, 0x40086409, &(0x7f00000002c0))
ioctl$BTRFS_IOC_TREE_SEARCH(r4, 0x7005, 0x0)
readv(r4, &(0x7f0000000000)=[{&(0x7f00000012c0)=""/191, 0x4}], 0x3)

26.02009896s ago: executing program 6 (id=635):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000004300), 0x1, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CAP_X86_GUEST_MODE(r1, 0x4068aea3, &(0x7f0000000100)={0xb6, 0x80ffff})

16.93581015s ago: executing program 6 (id=636):
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x1d, 0x4, &(0x7f00000002c0)=@framed={{0x18, 0x2, 0x0, 0x0, 0xeffffffc}, [@call={0x85, 0x0, 0x0, 0x9d}]}, &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @lsm=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r3, 0x6, 0x7, &(0x7f0000000040)=0x100000001, 0x4)
connect$inet6(r3, &(0x7f0000000100)={0xa, 0x0, 0x0, @empty}, 0x1c)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r3, 0x6, 0x14, &(0x7f0000000400)=0x1, 0x4)
recvfrom$inet6(r3, &(0x7f0000000300)=""/218, 0xda, 0x102, 0x0, 0x0)
sendto$inet6(r3, &(0x7f00000001c0)="f7", 0x1, 0x4000000, 0x0, 0x0)
shutdown(r3, 0x0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)={0x3c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_TX_RATES={0x20, 0x5a, 0x0, 0x1, [@NL80211_BAND_5GHZ={0x1c, 0x1, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x9, 0x4, 0x9, 0x0, 0xc, 0x8000, 0x3, 0x8]}}, @NL80211_TXRATE_HT={0x4}]}]}]}, 0x3c}}, 0x4000)

0s ago: executing program 37 (id=636):
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x1d, 0x4, &(0x7f00000002c0)=@framed={{0x18, 0x2, 0x0, 0x0, 0xeffffffc}, [@call={0x85, 0x0, 0x0, 0x9d}]}, &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @lsm=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r3, 0x6, 0x7, &(0x7f0000000040)=0x100000001, 0x4)
connect$inet6(r3, &(0x7f0000000100)={0xa, 0x0, 0x0, @empty}, 0x1c)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r3, 0x6, 0x14, &(0x7f0000000400)=0x1, 0x4)
recvfrom$inet6(r3, &(0x7f0000000300)=""/218, 0xda, 0x102, 0x0, 0x0)
sendto$inet6(r3, &(0x7f00000001c0)="f7", 0x1, 0x4000000, 0x0, 0x0)
shutdown(r3, 0x0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)={0x3c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_TX_RATES={0x20, 0x5a, 0x0, 0x1, [@NL80211_BAND_5GHZ={0x1c, 0x1, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x9, 0x4, 0x9, 0x0, 0xc, 0x8000, 0x3, 0x8]}}, @NL80211_TXRATE_HT={0x4}]}]}]}, 0x3c}}, 0x4000)

kernel console output (not intermixed with test programs):

92.879697][ T8281] bridge0: port 2(bridge_slave_1) entered disabled state
[  592.879982][ T8281] bridge_slave_1: entered allmulticast mode
[  592.905472][ T8281] bridge_slave_1: entered promiscuous mode
[  593.592479][ T8285] bridge0: port 1(bridge_slave_0) entered blocking state
[  593.592649][ T8285] bridge0: port 1(bridge_slave_0) entered disabled state
[  593.592891][ T8285] bridge_slave_0: entered allmulticast mode
[  593.629027][ T8285] bridge_slave_0: entered promiscuous mode
[  594.181784][ T8267] team0: Port device team_slave_0 added
[  594.198826][ T8285] bridge0: port 2(bridge_slave_1) entered blocking state
[  594.198970][ T8285] bridge0: port 2(bridge_slave_1) entered disabled state
[  594.199610][ T8285] bridge_slave_1: entered allmulticast mode
[  594.232727][ T8285] bridge_slave_1: entered promiscuous mode
[  595.151638][ T8278] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  595.176045][ T8267] team0: Port device team_slave_1 added
[  595.624289][ T8290] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  595.630778][ T8281] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  596.017769][ T8278] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  596.366361][ T8290] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  596.370049][ T8281] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  597.366903][ T5849] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  597.387498][ T5849] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  597.389850][ T5849] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  597.391936][ T5849] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  597.421513][ T5849] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  597.459755][ T8285] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  599.472407][ T5839] Bluetooth: hci0: command tx timeout
[  601.552438][ T5839] Bluetooth: hci0: command tx timeout
[  602.657202][ T8285] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  603.633086][ T5839] Bluetooth: hci0: command tx timeout
[  604.035876][ T8278] team0: Port device team_slave_0 added
[  604.479607][ T8290] team0: Port device team_slave_0 added
[  604.494359][ T8281] team0: Port device team_slave_0 added
[  604.501174][ T8278] team0: Port device team_slave_1 added
[  605.177695][ T8290] team0: Port device team_slave_1 added
[  605.191420][ T8281] team0: Port device team_slave_1 added
[  605.506153][ T8285] team0: Port device team_slave_0 added
[  605.712445][ T5839] Bluetooth: hci0: command tx timeout
[  607.063405][ T5849] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  607.066880][ T5849] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  607.068062][ T5849] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  607.070074][ T5849] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  607.071835][ T5849] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  607.563866][ T8285] team0: Port device team_slave_1 added
[  609.232306][ T5839] Bluetooth: hci1: command tx timeout
[  609.523544][ T8290] batman_adv: batadv0: Adding interface: batadv_slave_0
[  609.523560][ T8290] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  609.523586][ T8290] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  610.084615][ T5849] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  610.101893][ T5849] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  610.110858][ T5849] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  610.121656][ T5849] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  610.250912][ T5849] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  610.781195][ T8290] batman_adv: batadv0: Adding interface: batadv_slave_1
[  610.781213][ T8290] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  610.781239][ T8290] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  610.842204][ T8285] batman_adv: batadv0: Adding interface: batadv_slave_0
[  610.842222][ T8285] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  610.842248][ T8285] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  611.312459][ T5849] Bluetooth: hci1: command tx timeout
[  611.713748][ T8285] batman_adv: batadv0: Adding interface: batadv_slave_1
[  611.713764][ T8285] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  611.713791][ T8285] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  612.352292][ T5849] Bluetooth: hci2: command tx timeout
[  613.392580][ T5849] Bluetooth: hci1: command tx timeout
[  613.972121][ T8290] hsr_slave_0: entered promiscuous mode
[  613.973578][ T8290] hsr_slave_1: entered promiscuous mode
[  614.432608][ T5849] Bluetooth: hci2: command tx timeout
[  615.204180][ T8285] hsr_slave_0: entered promiscuous mode
[  615.212944][ T8285] hsr_slave_1: entered promiscuous mode
[  615.213835][ T8285] debugfs: 'hsr0' already exists in 'hsr'
[  615.213859][ T8285] Cannot create hsr debugfs directory
[  615.472415][ T5849] Bluetooth: hci1: command tx timeout
[  616.512554][ T5849] Bluetooth: hci2: command tx timeout
[  618.592268][ T5849] Bluetooth: hci2: command tx timeout
[  624.004660][ T5839] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  624.032810][ T5839] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  624.034856][ T5839] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  624.047243][ T5839] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  624.048080][ T5839] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  624.542989][ T1324] ieee802154 phy0 wpan0: encryption failed: -22
[  624.543066][ T1324] ieee802154 phy1 wpan1: encryption failed: -22
[  625.016014][ T5839] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  625.038645][ T5839] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  625.040532][ T5839] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  625.041751][ T5839] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  625.064707][ T5839] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  626.272352][ T5849] Bluetooth: hci3: command tx timeout
[  628.352323][ T5849] Bluetooth: hci3: command tx timeout
[  630.432377][ T5839] Bluetooth: hci3: command tx timeout
[  630.672860][ T5839] Bluetooth: hci4: command tx timeout
[  631.067948][ T1131] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  631.436036][ T1131] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  631.608822][ T8359] chnl_net:caif_netlink_parms(): no params data found
[  631.803390][ T1131] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  632.276839][ T1131] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  632.410029][ T8381] chnl_net:caif_netlink_parms(): no params data found
[  632.481633][ T8385] chnl_net:caif_netlink_parms(): no params data found
[  632.512183][ T5839] Bluetooth: hci3: command tx timeout
[  632.753876][ T5839] Bluetooth: hci4: command tx timeout
[  633.204597][ T8359] bridge0: port 1(bridge_slave_0) entered blocking state
[  633.204736][ T8359] bridge0: port 1(bridge_slave_0) entered disabled state
[  633.204972][ T8359] bridge_slave_0: entered allmulticast mode
[  633.207793][ T8359] bridge_slave_0: entered promiscuous mode
[  633.384318][ T8359] bridge0: port 2(bridge_slave_1) entered blocking state
[  633.384455][ T8359] bridge0: port 2(bridge_slave_1) entered disabled state
[  633.384712][ T8359] bridge_slave_1: entered allmulticast mode
[  633.388264][ T8359] bridge_slave_1: entered promiscuous mode
[  633.971474][ T8359] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  634.110811][ T8381] bridge0: port 1(bridge_slave_0) entered blocking state
[  634.112824][ T8381] bridge0: port 1(bridge_slave_0) entered disabled state
[  634.113049][ T8381] bridge_slave_0: entered allmulticast mode
[  634.116801][ T8381] bridge_slave_0: entered promiscuous mode
[  634.130609][ T8359] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  634.145295][ T8385] bridge0: port 1(bridge_slave_0) entered blocking state
[  634.145457][ T8385] bridge0: port 1(bridge_slave_0) entered disabled state
[  634.145688][ T8385] bridge_slave_0: entered allmulticast mode
[  634.148999][ T8385] bridge_slave_0: entered promiscuous mode
[  634.185309][ T8381] bridge0: port 2(bridge_slave_1) entered blocking state
[  634.185460][ T8381] bridge0: port 2(bridge_slave_1) entered disabled state
[  634.185707][ T8381] bridge_slave_1: entered allmulticast mode
[  634.190781][ T8381] bridge_slave_1: entered promiscuous mode
[  634.290664][ T8385] bridge0: port 2(bridge_slave_1) entered blocking state
[  634.290803][ T8385] bridge0: port 2(bridge_slave_1) entered disabled state
[  634.291005][ T8385] bridge_slave_1: entered allmulticast mode
[  634.294766][ T8385] bridge_slave_1: entered promiscuous mode
[  634.619771][ T1131] bridge_slave_1: left allmulticast mode
[  634.619803][ T1131] bridge_slave_1: left promiscuous mode
[  634.620115][ T1131] bridge0: port 2(bridge_slave_1) entered disabled state
[  634.676203][ T1131] bridge_slave_0: left allmulticast mode
[  634.676235][ T1131] bridge_slave_0: left promiscuous mode
[  634.676483][ T1131] bridge0: port 1(bridge_slave_0) entered disabled state
[  634.748663][ T1131] bridge_slave_1: left allmulticast mode
[  634.748696][ T1131] bridge_slave_1: left promiscuous mode
[  634.748959][ T1131] bridge0: port 2(bridge_slave_1) entered disabled state
[  634.813700][ T1131] bridge_slave_0: left allmulticast mode
[  634.813730][ T1131] bridge_slave_0: left promiscuous mode
[  634.814080][ T1131] bridge0: port 1(bridge_slave_0) entered disabled state
[  634.832207][ T5839] Bluetooth: hci4: command tx timeout
[  634.897948][ T1131] bridge_slave_1: left allmulticast mode
[  634.897981][ T1131] bridge_slave_1: left promiscuous mode
[  634.898264][ T1131] bridge0: port 2(bridge_slave_1) entered disabled state
[  634.973646][ T1131] bridge_slave_0: left allmulticast mode
[  634.973678][ T1131] bridge_slave_0: left promiscuous mode
[  634.973928][ T1131] bridge0: port 1(bridge_slave_0) entered disabled state
[  635.105809][ T1131] bridge_slave_1: left allmulticast mode
[  635.105843][ T1131] bridge_slave_1: left promiscuous mode
[  635.106110][ T1131] bridge0: port 2(bridge_slave_1) entered disabled state
[  635.165410][ T1131] bridge_slave_0: left allmulticast mode
[  635.165443][ T1131] bridge_slave_0: left promiscuous mode
[  635.165687][ T1131] bridge0: port 1(bridge_slave_0) entered disabled state
[  635.262555][ T1131] bridge_slave_1: left allmulticast mode
[  635.262589][ T1131] bridge_slave_1: left promiscuous mode
[  635.262882][ T1131] bridge0: port 2(bridge_slave_1) entered disabled state
[  635.326165][ T1131] bridge_slave_0: left allmulticast mode
[  635.326196][ T1131] bridge_slave_0: left promiscuous mode
[  635.326450][ T1131] bridge0: port 1(bridge_slave_0) entered disabled state
[  635.392866][ T1131] bridge_slave_1: left allmulticast mode
[  635.392899][ T1131] bridge_slave_1: left promiscuous mode
[  635.393150][ T1131] bridge0: port 2(bridge_slave_1) entered disabled state
[  635.453885][ T1131] bridge_slave_0: left allmulticast mode
[  635.453918][ T1131] bridge_slave_0: left promiscuous mode
[  635.454189][ T1131] bridge0: port 1(bridge_slave_0) entered disabled state
[  635.999000][ T1131] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  636.083306][ T1131] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  636.146959][ T1131] bond0 (unregistering): Released all slaves
[  636.383443][ T1131] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  636.463853][ T1131] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  636.530727][ T1131] bond0 (unregistering): Released all slaves
[  636.729976][ T1131] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  636.802932][ T1131] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  636.866945][ T1131] bond0 (unregistering): Released all slaves
[  636.912189][ T5839] Bluetooth: hci4: command tx timeout
[  637.063344][ T1131] bond0 (unregistering): Released all slaves
[  637.283539][ T1131] bond0 (unregistering): Released all slaves
[  637.623363][ T1131] bond0 (unregistering): Released all slaves
[  637.810936][ T1131] bond0 (unregistering): Released all slaves
[  639.593154][ T1131] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  639.655103][ T1131] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  639.699718][ T1131] bond0 (unregistering): Released all slaves
[  640.508343][ T1131] bond1 (unregistering): Released all slaves
[  641.298789][ T1131] bond2 (unregistering): Released all slaves
[  641.511479][ T1131] bond0 (unregistering): Released all slaves
[  641.713185][ T1131] bond0 (unregistering): Released all slaves
[  641.891744][ T1131] bond0 (unregistering): Released all slaves
[  642.133167][ T1131] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  642.197137][ T1131] bond0 (unregistering): Released all slaves
[  642.397909][ T8359] team0: Port device team_slave_0 added
[  642.678742][ T8381] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  642.721529][ T8359] team0: Port device team_slave_1 added
[  642.733695][ T8385] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  642.758722][ T8381] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  642.918820][ T8385] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  643.445176][ T8359] batman_adv: batadv0: Adding interface: batadv_slave_0
[  643.445192][ T8359] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  643.445217][ T8359] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  643.616386][ T8381] team0: Port device team_slave_0 added
[  643.634208][ T8359] batman_adv: batadv0: Adding interface: batadv_slave_1
[  643.634226][ T8359] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  643.634252][ T8359] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  643.642327][ T8404] chnl_net:caif_netlink_parms(): no params data found
[  643.652867][ T8385] team0: Port device team_slave_0 added
[  643.657494][ T8381] team0: Port device team_slave_1 added
[  643.658987][ T8411] chnl_net:caif_netlink_parms(): no params data found
[  643.779131][ T8385] team0: Port device team_slave_1 added
[  644.278452][ T8381] batman_adv: batadv0: Adding interface: batadv_slave_0
[  644.278468][ T8381] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  644.278490][ T8381] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  644.566118][ T8381] batman_adv: batadv0: Adding interface: batadv_slave_1
[  644.566134][ T8381] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  644.566159][ T8381] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  644.567498][ T8385] batman_adv: batadv0: Adding interface: batadv_slave_0
[  644.567511][ T8385] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  644.567536][ T8385] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  645.162493][ T8385] batman_adv: batadv0: Adding interface: batadv_slave_1
[  645.162509][ T8385] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  645.162531][ T8385] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  645.241871][ T8359] hsr_slave_0: entered promiscuous mode
[  645.251099][ T8359] hsr_slave_1: entered promiscuous mode
[  645.254605][ T8359] debugfs: 'hsr0' already exists in 'hsr'
[  645.254630][ T8359] Cannot create hsr debugfs directory
[  646.303615][ T8404] bridge0: port 1(bridge_slave_0) entered blocking state
[  646.303795][ T8404] bridge0: port 1(bridge_slave_0) entered disabled state
[  646.303992][ T8404] bridge_slave_0: entered allmulticast mode
[  646.306890][ T8404] bridge_slave_0: entered promiscuous mode
[  646.310577][ T8411] bridge0: port 1(bridge_slave_0) entered blocking state
[  646.310706][ T8411] bridge0: port 1(bridge_slave_0) entered disabled state
[  646.310932][ T8411] bridge_slave_0: entered allmulticast mode
[  646.314964][ T8411] bridge_slave_0: entered promiscuous mode
[  646.328144][ T8381] hsr_slave_0: entered promiscuous mode
[  646.329652][ T8381] hsr_slave_1: entered promiscuous mode
[  646.330592][ T8381] debugfs: 'hsr0' already exists in 'hsr'
[  646.330615][ T8381] Cannot create hsr debugfs directory
[  646.485759][ T8404] bridge0: port 2(bridge_slave_1) entered blocking state
[  646.485984][ T8404] bridge0: port 2(bridge_slave_1) entered disabled state
[  646.486187][ T8404] bridge_slave_1: entered allmulticast mode
[  646.488917][ T8404] bridge_slave_1: entered promiscuous mode
[  646.490711][ T8411] bridge0: port 2(bridge_slave_1) entered blocking state
[  646.490846][ T8411] bridge0: port 2(bridge_slave_1) entered disabled state
[  646.491037][ T8411] bridge_slave_1: entered allmulticast mode
[  646.541032][ T8411] bridge_slave_1: entered promiscuous mode
[  646.570864][ T8385] hsr_slave_0: entered promiscuous mode
[  646.578100][ T8385] hsr_slave_1: entered promiscuous mode
[  646.579084][ T8385] debugfs: 'hsr0' already exists in 'hsr'
[  646.579107][ T8385] Cannot create hsr debugfs directory
[  647.021313][ T8404] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  647.028279][ T8411] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  647.140308][ T8404] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  647.146468][ T8411] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  647.888920][ T8404] team0: Port device team_slave_0 added
[  647.891597][ T8411] team0: Port device team_slave_0 added
[  647.947004][ T8404] team0: Port device team_slave_1 added
[  647.950356][ T8411] team0: Port device team_slave_1 added
[  648.429276][ T8404] batman_adv: batadv0: Adding interface: batadv_slave_0
[  648.429293][ T8404] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  648.429316][ T8404] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  648.473122][ T8411] batman_adv: batadv0: Adding interface: batadv_slave_0
[  648.473139][ T8411] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  648.473163][ T8411] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  648.586627][ T8404] batman_adv: batadv0: Adding interface: batadv_slave_1
[  648.586652][ T8404] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  648.586677][ T8404] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  648.588034][ T8411] batman_adv: batadv0: Adding interface: batadv_slave_1
[  648.588045][ T8411] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  648.588069][ T8411] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  649.484426][ T8411] hsr_slave_0: entered promiscuous mode
[  649.489900][ T8411] hsr_slave_1: entered promiscuous mode
[  649.502924][ T8411] debugfs: 'hsr0' already exists in 'hsr'
[  649.502954][ T8411] Cannot create hsr debugfs directory
[  649.524067][ T8404] hsr_slave_0: entered promiscuous mode
[  649.525493][ T8404] hsr_slave_1: entered promiscuous mode
[  649.533285][ T8404] debugfs: 'hsr0' already exists in 'hsr'
[  649.533312][ T8404] Cannot create hsr debugfs directory
[  649.890005][ T8359] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  650.292506][ T1131] hsr_slave_0: left promiscuous mode
[  650.344127][ T1131] hsr_slave_1: left promiscuous mode
[  650.349437][ T1131] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  650.349468][ T1131] batman_adv: batadv0: Removing interface: batadv_slave_0
[  650.383760][ T1131] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  650.383790][ T1131] batman_adv: batadv0: Removing interface: batadv_slave_1
[  650.482417][ T1131] veth1_macvtap: left promiscuous mode
[  650.482536][ T1131] veth0_macvtap: left promiscuous mode
[  650.482834][ T1131] veth1_vlan: left promiscuous mode
[  650.483040][ T1131] veth0_vlan: left promiscuous mode
[  651.093165][ T1131] team0 (unregistering): Port device team_slave_1 removed
[  651.246007][ T1131] team0 (unregistering): Port device team_slave_0 removed
[  651.872974][ T1131] team0 (unregistering): Port device team_slave_1 removed
[  652.036734][ T1131] team0 (unregistering): Port device team_slave_0 removed
[  652.685833][ T1131] team0 (unregistering): Port device team_slave_1 removed
[  652.832884][ T1131] team0 (unregistering): Port device team_slave_0 removed
[  656.123246][ T1131] team0 (unregistering): Port device team_slave_1 removed
[  656.384875][ T1131] team0 (unregistering): Port device team_slave_0 removed
[  657.962903][ T5846] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  657.968516][ T5846] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  657.979476][ T5846] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  657.984307][ T5846] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  657.985879][ T5846] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  660.042704][ T5839] Bluetooth: hci5: command tx timeout
[  660.208149][ T8359] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  661.311076][ T8381] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  661.428914][ T8381] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  661.519003][ T8381] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  661.620982][ T8381] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  662.018182][ T8385] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  662.076113][ T8385] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  662.112436][ T5839] Bluetooth: hci5: command tx timeout
[  662.141901][ T8385] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  662.346087][ T8385] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  662.876737][ T8411] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  662.965542][ T8411] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  663.068901][ T8411] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  663.113880][ T8411] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  663.249611][ T8478] chnl_net:caif_netlink_parms(): no params data found
[  663.758986][ T8404] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  663.884703][ T8404] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  663.934481][ T8478] bridge0: port 1(bridge_slave_0) entered blocking state
[  663.934691][ T8478] bridge0: port 1(bridge_slave_0) entered disabled state
[  663.934935][ T8478] bridge_slave_0: entered allmulticast mode
[  663.937717][ T8478] bridge_slave_0: entered promiscuous mode
[  663.941788][ T8404] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  664.047324][ T8478] bridge0: port 2(bridge_slave_1) entered blocking state
[  664.047500][ T8478] bridge0: port 2(bridge_slave_1) entered disabled state
[  664.048121][ T8478] bridge_slave_1: entered allmulticast mode
[  664.050935][ T8478] bridge_slave_1: entered promiscuous mode
[  664.057368][ T8404] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  664.192123][ T5839] Bluetooth: hci5: command tx timeout
[  664.429464][ T8478] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  664.480604][ T8478] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  664.837030][ T8381] 8021q: adding VLAN 0 to HW filter on device bond0
[  664.844727][ T8478] team0: Port device team_slave_0 added
[  665.020646][ T8478] team0: Port device team_slave_1 added
[  665.371399][ T8478] batman_adv: batadv0: Adding interface: batadv_slave_0
[  665.371416][ T8478] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  665.371441][ T8478] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  665.390561][ T8478] batman_adv: batadv0: Adding interface: batadv_slave_1
[  665.390582][ T8478] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  665.390607][ T8478] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  665.526965][ T8381] 8021q: adding VLAN 0 to HW filter on device team0
[  665.766891][ T8478] hsr_slave_0: entered promiscuous mode
[  665.768328][ T8478] hsr_slave_1: entered promiscuous mode
[  665.769274][ T8478] debugfs: 'hsr0' already exists in 'hsr'
[  665.769298][ T8478] Cannot create hsr debugfs directory
[  665.782766][ T8385] 8021q: adding VLAN 0 to HW filter on device bond0
[  665.838315][   T67] bridge0: port 1(bridge_slave_0) entered blocking state
[  665.838553][   T67] bridge0: port 1(bridge_slave_0) entered forwarding state
[  666.067964][ T1545] bridge0: port 2(bridge_slave_1) entered blocking state
[  666.068209][ T1545] bridge0: port 2(bridge_slave_1) entered forwarding state
[  666.272711][ T5839] Bluetooth: hci5: command tx timeout
[  666.288234][ T8385] 8021q: adding VLAN 0 to HW filter on device team0
[  666.518355][ T8411] 8021q: adding VLAN 0 to HW filter on device bond0
[  666.535220][ T1545] bridge0: port 1(bridge_slave_0) entered blocking state
[  666.535412][ T1545] bridge0: port 1(bridge_slave_0) entered forwarding state
[  666.627763][ T1545] bridge0: port 2(bridge_slave_1) entered blocking state
[  666.628455][ T1545] bridge0: port 2(bridge_slave_1) entered forwarding state
[  667.009751][ T8411] 8021q: adding VLAN 0 to HW filter on device team0
[  667.117244][ T1545] bridge0: port 1(bridge_slave_0) entered blocking state
[  667.136237][ T1545] bridge0: port 1(bridge_slave_0) entered forwarding state
[  667.468944][  T162] bridge0: port 2(bridge_slave_1) entered blocking state
[  667.469162][  T162] bridge0: port 2(bridge_slave_1) entered forwarding state
[  667.536311][ T8404] 8021q: adding VLAN 0 to HW filter on device bond0
[  667.813323][ T5846] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  667.823382][ T5846] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  667.831378][ T5846] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  667.835757][ T5846] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  667.836686][ T5846] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  668.795399][ T8404] 8021q: adding VLAN 0 to HW filter on device team0
[  669.006699][ T1545] bridge0: port 1(bridge_slave_0) entered blocking state
[  669.006957][ T1545] bridge0: port 1(bridge_slave_0) entered forwarding state
[  669.189717][   T67] bridge0: port 2(bridge_slave_1) entered blocking state
[  669.189866][   T67] bridge0: port 2(bridge_slave_1) entered forwarding state
[  669.581379][ T8478] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  670.016642][ T8478] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  670.032430][ T5839] Bluetooth: hci0: command tx timeout
[  670.135174][ T8478] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  670.161759][ T5846] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  670.176942][ T5846] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  670.178424][ T5846] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  670.180064][ T5846] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  670.181663][ T5846] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  670.306308][ T8478] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  670.947863][ T8554] chnl_net:caif_netlink_parms(): no params data found
[  671.318123][ T8411] 8021q: adding VLAN 0 to HW filter on device batadv0
[  671.816896][ T8554] bridge0: port 1(bridge_slave_0) entered blocking state
[  671.817079][ T8554] bridge0: port 1(bridge_slave_0) entered disabled state
[  671.817363][ T8554] bridge_slave_0: entered allmulticast mode
[  671.820125][ T8554] bridge_slave_0: entered promiscuous mode
[  671.841170][ T8554] bridge0: port 2(bridge_slave_1) entered blocking state
[  671.841318][ T8554] bridge0: port 2(bridge_slave_1) entered disabled state
[  671.841585][ T8554] bridge_slave_1: entered allmulticast mode
[  671.844390][ T8554] bridge_slave_1: entered promiscuous mode
[  672.112189][ T5846] Bluetooth: hci0: command tx timeout
[  672.146144][ T8554] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  672.169322][ T8554] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  672.272256][ T5846] Bluetooth: hci1: command tx timeout
[  672.511280][ T8554] team0: Port device team_slave_0 added
[  672.663978][ T8554] team0: Port device team_slave_1 added
[  673.164660][ T8554] batman_adv: batadv0: Adding interface: batadv_slave_0
[  673.164677][ T8554] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  673.164702][ T8554] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  673.168506][ T8571] chnl_net:caif_netlink_parms(): no params data found
[  673.305913][ T8404] 8021q: adding VLAN 0 to HW filter on device batadv0
[  673.308031][ T8554] batman_adv: batadv0: Adding interface: batadv_slave_1
[  673.308045][ T8554] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  673.308070][ T8554] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  674.192303][ T5846] Bluetooth: hci0: command tx timeout
[  674.279502][ T8554] hsr_slave_0: entered promiscuous mode
[  674.280859][ T8554] hsr_slave_1: entered promiscuous mode
[  674.281780][ T8554] debugfs: 'hsr0' already exists in 'hsr'
[  674.281803][ T8554] Cannot create hsr debugfs directory
[  674.352216][ T5846] Bluetooth: hci1: command tx timeout
[  674.731434][ T8571] bridge0: port 1(bridge_slave_0) entered blocking state
[  674.731604][ T8571] bridge0: port 1(bridge_slave_0) entered disabled state
[  674.731770][ T8571] bridge_slave_0: entered allmulticast mode
[  674.756078][ T8571] bridge_slave_0: entered promiscuous mode
[  674.801662][ T8411] veth0_vlan: entered promiscuous mode
[  675.101055][ T8571] bridge0: port 2(bridge_slave_1) entered blocking state
[  675.101173][ T8571] bridge0: port 2(bridge_slave_1) entered disabled state
[  675.101368][ T8571] bridge_slave_1: entered allmulticast mode
[  675.105100][ T8571] bridge_slave_1: entered promiscuous mode
[  675.278351][ T8478] 8021q: adding VLAN 0 to HW filter on device bond0
[  675.536815][ T8571] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  675.585069][ T8571] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  675.613896][ T8411] veth1_vlan: entered promiscuous mode
[  675.906203][ T8571] team0: Port device team_slave_0 added
[  676.008971][ T8571] team0: Port device team_slave_1 added
[  676.266790][ T8478] 8021q: adding VLAN 0 to HW filter on device team0
[  676.272445][ T5846] Bluetooth: hci0: command tx timeout
[  676.417201][ T8571] batman_adv: batadv0: Adding interface: batadv_slave_0
[  676.417213][ T8571] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  676.417227][ T8571] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  676.432238][ T5846] Bluetooth: hci1: command tx timeout
[  676.503644][ T8571] batman_adv: batadv0: Adding interface: batadv_slave_1
[  676.503662][ T8571] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  676.503687][ T8571] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  676.566061][   T43] bridge0: port 1(bridge_slave_0) entered blocking state
[  676.566279][   T43] bridge0: port 1(bridge_slave_0) entered forwarding state
[  677.004227][ T8404] veth0_vlan: entered promiscuous mode
[  677.008009][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[  677.008225][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[  677.316080][ T8571] hsr_slave_0: entered promiscuous mode
[  677.317418][ T8571] hsr_slave_1: entered promiscuous mode
[  677.318307][ T8571] debugfs: 'hsr0' already exists in 'hsr'
[  677.318329][ T8571] Cannot create hsr debugfs directory
[  677.645059][ T8404] veth1_vlan: entered promiscuous mode
[  677.649060][ T8411] veth0_macvtap: entered promiscuous mode
[  678.001149][ T8411] veth1_macvtap: entered promiscuous mode
[  678.309332][ T1131] bridge_slave_1: left allmulticast mode
[  678.309360][ T1131] bridge_slave_1: left promiscuous mode
[  678.309586][ T1131] bridge0: port 2(bridge_slave_1) entered disabled state
[  678.385229][ T1131] bridge_slave_0: left allmulticast mode
[  678.385260][ T1131] bridge_slave_0: left promiscuous mode
[  678.385501][ T1131] bridge0: port 1(bridge_slave_0) entered disabled state
[  678.456631][ T1131] bridge_slave_1: left allmulticast mode
[  678.456664][ T1131] bridge_slave_1: left promiscuous mode
[  678.456930][ T1131] bridge0: port 2(bridge_slave_1) entered disabled state
[  678.512432][ T5846] Bluetooth: hci1: command tx timeout
[  678.533824][ T1131] bridge_slave_0: left allmulticast mode
[  678.533856][ T1131] bridge_slave_0: left promiscuous mode
[  678.534126][ T1131] bridge0: port 1(bridge_slave_0) entered disabled state
[  678.618491][ T1131] bridge_slave_1: left allmulticast mode
[  678.618524][ T1131] bridge_slave_1: left promiscuous mode
[  678.618823][ T1131] bridge0: port 2(bridge_slave_1) entered disabled state
[  678.685422][ T1131] bridge_slave_0: left allmulticast mode
[  678.685457][ T1131] bridge_slave_0: left promiscuous mode
[  678.685756][ T1131] bridge0: port 1(bridge_slave_0) entered disabled state
[  678.757648][ T1131] bridge_slave_1: left allmulticast mode
[  678.757681][ T1131] bridge_slave_1: left promiscuous mode
[  678.757934][ T1131] bridge0: port 2(bridge_slave_1) entered disabled state
[  678.833884][ T1131] bridge_slave_0: left allmulticast mode
[  678.833917][ T1131] bridge_slave_0: left promiscuous mode
[  678.834188][ T1131] bridge0: port 1(bridge_slave_0) entered disabled state
[  678.910132][ T1131] bridge_slave_1: left allmulticast mode
[  678.910165][ T1131] bridge_slave_1: left promiscuous mode
[  678.910417][ T1131] bridge0: port 2(bridge_slave_1) entered disabled state
[  678.973943][ T1131] bridge_slave_0: left allmulticast mode
[  678.973977][ T1131] bridge_slave_0: left promiscuous mode
[  678.974236][ T1131] bridge0: port 1(bridge_slave_0) entered disabled state
[  680.874184][ T1131] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  680.943399][ T1131] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  680.972479][ T1131] bond0 (unregistering): Released all slaves
[  682.803416][ T1131] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  682.868809][ T1131] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  682.889426][ T1131] bond0 (unregistering): Released all slaves
[  683.164701][ T1131] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  683.253115][ T1131] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  683.327576][ T1131] bond0 (unregistering): Released all slaves
[  683.693118][ T1131] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  683.773081][ T1131] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  683.859936][ T5839] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  683.877986][ T5839] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  683.889323][ T5839] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  683.890412][ T5839] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  683.899871][ T5839] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  683.914948][ T1131] bond0 (unregistering): Released all slaves
[  684.266581][ T1131] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  684.385668][ T1131] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  684.473018][ T1131] bond0 (unregistering): Released all slaves
[  685.272084][ T8554] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  685.585641][ T8554] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  685.894580][ T5839] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  685.910417][ T5839] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  685.918753][ T5849] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  685.927484][ T5849] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  685.928234][ T5849] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  685.959188][ T5846] Bluetooth: hci2: command tx timeout
[  685.970483][ T1324] ieee802154 phy0 wpan0: encryption failed: -22
[  685.970557][ T1324] ieee802154 phy1 wpan1: encryption failed: -22
[  686.541171][ T8554] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  686.720282][ T8554] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  687.412248][ T1131] hsr_slave_0: left promiscuous mode
[  687.456881][ T1131] hsr_slave_1: left promiscuous mode
[  687.458106][ T1131] batman_adv: batadv0: Removing interface: batadv_slave_0
[  687.484416][ T1131] batman_adv: batadv0: Removing interface: batadv_slave_1
[  687.702237][ T1131] hsr_slave_0: left promiscuous mode
[  687.722333][ T1131] hsr_slave_1: left promiscuous mode
[  687.723350][ T1131] batman_adv: batadv0: Removing interface: batadv_slave_0
[  687.768401][ T1131] batman_adv: batadv0: Removing interface: batadv_slave_1
[  687.903706][ T1131] hsr_slave_0: left promiscuous mode
[  687.942372][ T1131] hsr_slave_1: left promiscuous mode
[  687.943332][ T1131] batman_adv: batadv0: Removing interface: batadv_slave_0
[  687.962213][ T5846] Bluetooth: hci3: command tx timeout
[  687.985262][ T1131] batman_adv: batadv0: Removing interface: batadv_slave_1
[  688.032451][ T5846] Bluetooth: hci2: command tx timeout
[  688.076202][ T1131] hsr_slave_0: left promiscuous mode
[  688.112476][ T1131] hsr_slave_1: left promiscuous mode
[  688.113496][ T1131] batman_adv: batadv0: Removing interface: batadv_slave_0
[  688.150312][ T1131] batman_adv: batadv0: Removing interface: batadv_slave_1
[  688.244101][ T1131] hsr_slave_0: left promiscuous mode
[  688.262532][ T1131] hsr_slave_1: left promiscuous mode
[  688.263460][ T1131] batman_adv: batadv0: Removing interface: batadv_slave_0
[  688.306232][ T1131] batman_adv: batadv0: Removing interface: batadv_slave_1
[  689.642953][ T1131] team0 (unregistering): Port device team_slave_1 removed
[  689.854496][ T1131] team0 (unregistering): Port device team_slave_0 removed
[  690.042503][ T5846] Bluetooth: hci3: command tx timeout
[  690.122481][ T5846] Bluetooth: hci2: command tx timeout
[  692.112203][ T5846] Bluetooth: hci3: command tx timeout
[  692.192702][ T5846] Bluetooth: hci2: command tx timeout
[  692.870590][ T1131] team0 (unregistering): Port device team_slave_1 removed
[  693.085149][ T1131] team0 (unregistering): Port device team_slave_0 removed
[  694.195380][ T5846] Bluetooth: hci3: command tx timeout
[  695.914390][ T1131] team0 (unregistering): Port device team_slave_1 removed
[  696.063157][ T1131] team0 (unregistering): Port device team_slave_0 removed
[  697.414824][ T1131] team0 (unregistering): Port device team_slave_1 removed
[  697.583053][ T1131] team0 (unregistering): Port device team_slave_0 removed
[  698.814474][ T1131] team0 (unregistering): Port device team_slave_1 removed
[  698.953057][ T1131] team0 (unregistering): Port device team_slave_0 removed
[  699.789312][ T8478] 8021q: adding VLAN 0 to HW filter on device batadv0
[  700.353523][ T8623] chnl_net:caif_netlink_parms(): no params data found
[  700.697471][ T8571] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  700.771757][ T8571] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  700.838254][ T8571] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  701.109686][ T8571] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  701.249349][ T8623] bridge0: port 1(bridge_slave_0) entered blocking state
[  701.249558][ T8623] bridge0: port 1(bridge_slave_0) entered disabled state
[  701.249795][ T8623] bridge_slave_0: entered allmulticast mode
[  701.278537][ T8623] bridge_slave_0: entered promiscuous mode
[  701.315608][ T8623] bridge0: port 2(bridge_slave_1) entered blocking state
[  701.315747][ T8623] bridge0: port 2(bridge_slave_1) entered disabled state
[  701.315970][ T8623] bridge_slave_1: entered allmulticast mode
[  701.318825][ T8623] bridge_slave_1: entered promiscuous mode
[  701.647477][ T8623] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  701.648817][ T8634] chnl_net:caif_netlink_parms(): no params data found
[  701.678695][ T8623] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  702.192658][ T8623] team0: Port device team_slave_0 added
[  702.235762][ T8623] team0: Port device team_slave_1 added
[  702.708347][ T8623] batman_adv: batadv0: Adding interface: batadv_slave_0
[  702.708364][ T8623] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  702.708389][ T8623] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  702.828667][ T8478] veth0_vlan: entered promiscuous mode
[  702.835583][ T8623] batman_adv: batadv0: Adding interface: batadv_slave_1
[  702.835599][ T8623] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  702.835624][ T8623] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  702.841767][ T8554] 8021q: adding VLAN 0 to HW filter on device bond0
[  702.851507][ T8634] bridge0: port 1(bridge_slave_0) entered blocking state
[  702.851720][ T8634] bridge0: port 1(bridge_slave_0) entered disabled state
[  702.852995][ T8634] bridge_slave_0: entered allmulticast mode
[  702.856447][ T8634] bridge_slave_0: entered promiscuous mode
[  702.885090][ T8634] bridge0: port 2(bridge_slave_1) entered blocking state
[  702.885251][ T8634] bridge0: port 2(bridge_slave_1) entered disabled state
[  702.885521][ T8634] bridge_slave_1: entered allmulticast mode
[  702.889597][ T8634] bridge_slave_1: entered promiscuous mode
[  703.318909][ T8634] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  703.485319][ T8634] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  703.493588][ T8478] veth1_vlan: entered promiscuous mode
[  703.551721][ T8623] hsr_slave_0: entered promiscuous mode
[  703.564768][ T8623] hsr_slave_1: entered promiscuous mode
[  703.841294][ T8554] 8021q: adding VLAN 0 to HW filter on device team0
[  703.851588][ T8634] team0: Port device team_slave_0 added
[  703.974915][ T8634] team0: Port device team_slave_1 added
[  704.471313][ T1144] bridge0: port 1(bridge_slave_0) entered blocking state
[  704.473966][ T1144] bridge0: port 1(bridge_slave_0) entered forwarding state
[  704.494125][ T8634] batman_adv: batadv0: Adding interface: batadv_slave_0
[  704.494141][ T8634] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  704.494162][ T8634] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  704.515941][ T8634] batman_adv: batadv0: Adding interface: batadv_slave_1
[  704.515959][ T8634] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  704.515984][ T8634] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  704.607305][ T6602] bridge0: port 2(bridge_slave_1) entered blocking state
[  704.607517][ T6602] bridge0: port 2(bridge_slave_1) entered forwarding state
[  705.010149][ T8634] hsr_slave_0: entered promiscuous mode
[  705.011482][ T8634] hsr_slave_1: entered promiscuous mode
[  705.024763][ T8634] debugfs: 'hsr0' already exists in 'hsr'
[  705.024790][ T8634] Cannot create hsr debugfs directory
[  705.328805][ T8478] veth0_macvtap: entered promiscuous mode
[  705.987106][ T8571] 8021q: adding VLAN 0 to HW filter on device bond0
[  705.988752][ T8478] veth1_macvtap: entered promiscuous mode
[  707.066421][ T8571] 8021q: adding VLAN 0 to HW filter on device team0
[  707.120425][ T8478] batman_adv: batadv0: Interface activated: batadv_slave_0
[  707.508284][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[  707.513293][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[  707.545372][ T8478] batman_adv: batadv0: Interface activated: batadv_slave_1
[  707.791670][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  707.791768][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  707.837277][ T3491] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  707.841314][ T3491] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  707.846212][ T3491] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  707.848177][ T3491] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  708.766439][ T8554] 8021q: adding VLAN 0 to HW filter on device batadv0
[  708.830252][ T3491] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  708.830271][ T3491] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  709.262322][ T3491] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  709.262341][ T3491] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  709.678753][ T1131] bridge_slave_1: left allmulticast mode
[  709.678786][ T1131] bridge_slave_1: left promiscuous mode
[  709.679043][ T1131] bridge0: port 2(bridge_slave_1) entered disabled state
[  709.775764][ T1131] bridge_slave_0: left allmulticast mode
[  709.775797][ T1131] bridge_slave_0: left promiscuous mode
[  709.778520][ T1131] bridge0: port 1(bridge_slave_0) entered disabled state
[  709.898217][ T1131] bridge_slave_1: left allmulticast mode
[  709.898250][ T1131] bridge_slave_1: left promiscuous mode
[  709.898509][ T1131] bridge0: port 2(bridge_slave_1) entered disabled state
[  710.013725][ T1131] bridge_slave_0: left allmulticast mode
[  710.013757][ T1131] bridge_slave_0: left promiscuous mode
[  710.014010][ T1131] bridge0: port 1(bridge_slave_0) entered disabled state
[  711.854922][ T1131] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  711.923116][ T1131] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  711.946918][ T1131] bond0 (unregistering): Released all slaves
[  713.594884][ T1131] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  713.653257][ T1131] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  713.695408][ T1131] bond0 (unregistering): Released all slaves
[  714.100518][ T8571] 8021q: adding VLAN 0 to HW filter on device batadv0
[  714.468734][ T8554] veth0_vlan: entered promiscuous mode
[  714.662110][ T1131] hsr_slave_0: left promiscuous mode
[  714.738132][ T1131] hsr_slave_1: left promiscuous mode
[  714.739056][ T1131] batman_adv: batadv0: Removing interface: batadv_slave_0
[  714.798441][ T1131] batman_adv: batadv0: Removing interface: batadv_slave_1
[  714.992210][ T1131] hsr_slave_0: left promiscuous mode
[  715.038930][ T1131] hsr_slave_1: left promiscuous mode
[  715.039844][ T1131] batman_adv: batadv0: Removing interface: batadv_slave_0
[  715.052227][ T5928] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  715.083053][ T1131] batman_adv: batadv0: Removing interface: batadv_slave_1
[  715.214566][ T5928] usb 7-1: config index 0 descriptor too short (expected 23569, got 27)
[  715.214633][ T5928] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  715.216176][ T5928] usb 7-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  715.216203][ T5928] usb 7-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  715.216222][ T5928] usb 7-1: Manufacturer: syz
[  715.251172][ T5928] usb 7-1: config 0 descriptor??
[  715.307405][ T1131] veth1_macvtap: left promiscuous mode
[  715.307532][ T1131] veth0_macvtap: left promiscuous mode
[  715.307825][ T1131] veth1_vlan: left promiscuous mode
[  715.308040][ T1131] veth0_vlan: left promiscuous mode
[  715.333861][ T1131] veth1_vlan: left promiscuous mode
[  715.334078][ T1131] veth0_vlan: left promiscuous mode
[  715.392384][ T5928] rc_core: IR keymap rc-hauppauge not found
[  715.392403][ T5928] Registered IR keymap rc-empty
[  715.404671][ T5928] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.6/usb7/7-1/7-1:0.0/rc/rc0
[  715.419173][ T5928] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.6/usb7/7-1/7-1:0.0/rc/rc0/input5
[  715.491514][    C1] igorplugusb 7-1:0.0: Error: urb status = -32
[  718.755601][ T1131] team0 (unregistering): Port device team_slave_1 removed
[  719.092877][ T1131] team0 (unregistering): Port device team_slave_0 removed
[  724.482875][ T1131] team0 (unregistering): Port device team_slave_1 removed
[  724.794332][ T1131] team0 (unregistering): Port device team_slave_0 removed
[  727.933371][ T8779] netlink: 'syz.6.513': attribute type 29 has an invalid length.
[  727.933395][ T8779] netlink: 8 bytes leftover after parsing attributes in process `syz.6.513'.
[  728.275433][ T6584] usb 7-1: USB disconnect, device number 2
[  729.243404][ T8623] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  729.418233][ T8623] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  729.468312][ T5849] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  729.487686][ T5849] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  729.491553][ T5849] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  729.511445][ T5849] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  729.520340][ T5849] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  729.935836][ T8623] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  730.068356][ T8623] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  731.703814][ T5846] Bluetooth: hci4: command tx timeout
[  731.808067][ T8634] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  731.996227][ T8634] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  732.262251][ T8634] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  732.405711][ T8634] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  733.055522][ T5849] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  733.078088][ T5849] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  733.080067][ T5849] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  733.082363][ T5849] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  733.084103][ T5849] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  733.712088][ T5849] Bluetooth: hci4: command tx timeout
[  735.162165][ T5849] Bluetooth: hci0: command tx timeout
[  735.291727][ T8809] chnl_net:caif_netlink_parms(): no params data found
[  735.821244][ T5849] Bluetooth: hci4: command tx timeout
[  737.232111][ T5849] Bluetooth: hci0: command tx timeout
[  737.538317][ T8623] 8021q: adding VLAN 0 to HW filter on device bond0
[  737.553929][ T8809] bridge0: port 1(bridge_slave_0) entered blocking state
[  737.554005][ T8809] bridge0: port 1(bridge_slave_0) entered disabled state
[  737.554184][ T8809] bridge_slave_0: entered allmulticast mode
[  737.555657][ T8809] bridge_slave_0: entered promiscuous mode
[  737.576243][ T8809] bridge0: port 2(bridge_slave_1) entered blocking state
[  737.576471][ T8809] bridge0: port 2(bridge_slave_1) entered disabled state
[  737.576705][ T8809] bridge_slave_1: entered allmulticast mode
[  737.584715][ T8809] bridge_slave_1: entered promiscuous mode
[  737.882261][ T5849] Bluetooth: hci4: command tx timeout
[  737.933276][ T8809] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  738.032733][ T8809] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  738.567099][ T8623] 8021q: adding VLAN 0 to HW filter on device team0
[  738.595822][ T8809] team0: Port device team_slave_0 added
[  738.665367][ T8809] team0: Port device team_slave_1 added
[  738.686920][ T8858] chnl_net:caif_netlink_parms(): no params data found
[  738.825427][ T8918] netlink: 84 bytes leftover after parsing attributes in process `syz.6.522'.
[  739.012944][   T57] bridge0: port 1(bridge_slave_0) entered blocking state
[  739.013158][   T57] bridge0: port 1(bridge_slave_0) entered forwarding state
[  739.033240][ T8809] batman_adv: batadv0: Adding interface: batadv_slave_0
[  739.033256][ T8809] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  739.033288][ T8809] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  739.094304][ T8634] 8021q: adding VLAN 0 to HW filter on device bond0
[  739.175936][ T8809] batman_adv: batadv0: Adding interface: batadv_slave_1
[  739.175953][ T8809] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  739.175978][ T8809] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  739.251556][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[  739.251859][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[  739.312069][ T5849] Bluetooth: hci0: command tx timeout
[  741.402314][ T5849] Bluetooth: hci0: command tx timeout
[  742.090953][ T8858] bridge0: port 1(bridge_slave_0) entered blocking state
[  742.091160][ T8858] bridge0: port 1(bridge_slave_0) entered disabled state
[  742.091368][ T8858] bridge_slave_0: entered allmulticast mode
[  742.099447][ T8858] bridge_slave_0: entered promiscuous mode
[  742.133812][ T8809] hsr_slave_0: entered promiscuous mode
[  742.135177][ T8809] hsr_slave_1: entered promiscuous mode
[  742.136103][ T8809] debugfs: 'hsr0' already exists in 'hsr'
[  742.136126][ T8809] Cannot create hsr debugfs directory
[  742.154685][ T8858] bridge0: port 2(bridge_slave_1) entered blocking state
[  742.154823][ T8858] bridge0: port 2(bridge_slave_1) entered disabled state
[  742.155043][ T8858] bridge_slave_1: entered allmulticast mode
[  742.159226][ T8858] bridge_slave_1: entered promiscuous mode
[  742.274397][ T5987] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  742.421736][ T8634] 8021q: adding VLAN 0 to HW filter on device team0
[  742.426963][ T5987] usb 7-1: config 255 contains an unexpected descriptor of type 0x2, skipping
[  742.426989][ T5987] usb 7-1: config 255 has an invalid descriptor of length 0, skipping remainder of the config
[  742.427008][ T5987] usb 7-1: config 255 has 0 interfaces, different from the descriptor's value: 1
[  742.427044][ T5987] usb 7-1: New USB device found, idVendor=041e, idProduct=3f19, bcdDevice=74.47
[  742.427066][ T5987] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  742.657097][ T5987] usb 7-1: string descriptor 0 read error: -71
[  742.693061][ T5987] usb 7-1: USB disconnect, device number 3
[  742.866939][ T8858] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  742.922750][ T8858] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  743.144968][   T57] bridge0: port 1(bridge_slave_0) entered blocking state
[  743.145187][   T57] bridge0: port 1(bridge_slave_0) entered forwarding state
[  743.316791][ T8858] team0: Port device team_slave_0 added
[  744.224689][ T8858] team0: Port device team_slave_1 added
[  744.296866][   T57] bridge0: port 2(bridge_slave_1) entered blocking state
[  744.297032][   T57] bridge0: port 2(bridge_slave_1) entered forwarding state
[  744.580737][ T8858] batman_adv: batadv0: Adding interface: batadv_slave_0
[  744.580753][ T8858] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  744.580778][ T8858] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  744.755079][ T8858] batman_adv: batadv0: Adding interface: batadv_slave_1
[  744.755097][ T8858] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  744.755122][ T8858] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  745.454450][ T1131] bridge_slave_1: left allmulticast mode
[  745.454491][ T1131] bridge_slave_1: left promiscuous mode
[  745.457610][ T1131] bridge0: port 2(bridge_slave_1) entered disabled state
[  745.486818][ T5846] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  745.490817][ T5846] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  745.492939][ T5846] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  745.513939][ T5846] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  745.514769][ T5846] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  745.624485][ T1131] bridge_slave_0: left allmulticast mode
[  745.624517][ T1131] bridge_slave_0: left promiscuous mode
[  745.624807][ T1131] bridge0: port 1(bridge_slave_0) entered disabled state
[  745.916417][ T1131] bridge_slave_1: left allmulticast mode
[  745.916450][ T1131] bridge_slave_1: left promiscuous mode
[  745.916702][ T1131] bridge0: port 2(bridge_slave_1) entered disabled state
[  746.943765][ T1131] bridge_slave_0: left allmulticast mode
[  746.943799][ T1131] bridge_slave_0: left promiscuous mode
[  746.944058][ T1131] bridge0: port 1(bridge_slave_0) entered disabled state
[  747.422938][ T1324] ieee802154 phy0 wpan0: encryption failed: -22
[  747.423014][ T1324] ieee802154 phy1 wpan1: encryption failed: -22
[  747.786430][ T5846] Bluetooth: hci1: command tx timeout
[  748.717562][ T5849] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  748.742351][ T5849] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  748.761529][ T5849] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  748.777559][ T8962] netlink: 48 bytes leftover after parsing attributes in process `syz.6.530'.
[  748.789928][ T5849] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  748.792883][ T5849] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  749.653807][ T8966] netlink: 'syz.6.531': attribute type 4 has an invalid length.
[  749.653830][ T8966] netlink: 152 bytes leftover after parsing attributes in process `syz.6.531'.
[  749.813202][ T5846] Bluetooth: hci1: command tx timeout
[  750.453079][ T1131] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  750.514786][ T1131] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  750.541601][ T1131] bond0 (unregistering): Released all slaves
[  750.832250][ T5846] Bluetooth: hci2: command tx timeout
[  751.886584][ T5846] Bluetooth: hci1: command tx timeout
[  752.046247][ T1131] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  752.106864][ T1131] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  752.132989][ T1131] bond0 (unregistering): Released all slaves
[  752.555299][ T8966] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[  752.571690][ T8858] hsr_slave_0: entered promiscuous mode
[  752.593643][ T8858] hsr_slave_1: entered promiscuous mode
[  752.594489][ T8858] debugfs: 'hsr0' already exists in 'hsr'
[  752.594511][ T8858] Cannot create hsr debugfs directory
[  752.912155][ T5846] Bluetooth: hci2: command tx timeout
[  753.952207][ T5846] Bluetooth: hci1: command tx timeout
[  754.172138][ T1131] hsr_slave_0: left promiscuous mode
[  755.182144][ T5846] Bluetooth: hci2: command tx timeout
[  755.184038][ T1131] hsr_slave_1: left promiscuous mode
[  755.184990][ T1131] batman_adv: batadv0: Removing interface: batadv_slave_0
[  755.296823][ T1131] batman_adv: batadv0: Removing interface: batadv_slave_1
[  755.315444][ T8978] netlink: 'syz.6.534': attribute type 3 has an invalid length.
[  755.762127][ T1131] hsr_slave_0: left promiscuous mode
[  756.656612][ T1131] hsr_slave_1: left promiscuous mode
[  756.657557][ T1131] batman_adv: batadv0: Removing interface: batadv_slave_0
[  756.742969][ T1131] batman_adv: batadv0: Removing interface: batadv_slave_1
[  756.941738][ T1131] veth0_vlan: left promiscuous mode
[  757.234297][ T5846] Bluetooth: hci2: command tx timeout
[  760.202965][ T1131] team0 (unregistering): Port device team_slave_1 removed
[  760.482834][ T1131] team0 (unregistering): Port device team_slave_0 removed
[  764.294433][ T1131] team0 (unregistering): Port device team_slave_1 removed
[  764.566172][ T1131] team0 (unregistering): Port device team_slave_0 removed
[  768.696212][ T9000] block device autoloading is deprecated and will be removed.
[  768.902347][ T8716] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  769.062439][ T8716] usb 7-1: Using ep0 maxpacket: 32
[  769.079257][ T8716] usb 7-1: New USB device found, idVendor=22b8, idProduct=6027, bcdDevice=c2.80
[  769.079286][ T8716] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  769.079305][ T8716] usb 7-1: Product: syz
[  769.079319][ T8716] usb 7-1: Manufacturer: syz
[  769.079332][ T8716] usb 7-1: SerialNumber: syz
[  769.118139][ T8716] usb 7-1: config 0 descriptor??
[  769.140662][ T8716] cdc_ether 7-1:0.0: More than one union descriptor, skipping ...
[  769.140691][ T8716] usb 7-1: bad CDC descriptors
[  769.158476][ T8716] usb 7-1: unsupported MDLM descriptors
[  769.396486][ T8716] usb 7-1: USB disconnect, device number 4
[  769.772248][ T8809] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  770.015815][ T8809] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  770.982653][ T8809] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  772.085194][ T8809] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  772.275970][ T8946] chnl_net:caif_netlink_parms(): no params data found
[  772.645503][ T8959] chnl_net:caif_netlink_parms(): no params data found
[  776.446606][ T9048] 9pnet_fd: Insufficient options for proto=fd
[  776.692278][ T6585] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  776.837598][ T8946] bridge0: port 1(bridge_slave_0) entered blocking state
[  776.837848][ T8946] bridge0: port 1(bridge_slave_0) entered disabled state
[  776.838111][ T8946] bridge_slave_0: entered allmulticast mode
[  776.840112][ T8946] bridge_slave_0: entered promiscuous mode
[  776.844546][ T6585] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  776.844594][ T6585] usb 7-1: New USB device found, idVendor=05ac, idProduct=0323, bcdDevice= 0.00
[  776.844616][ T6585] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  776.872496][ T6585] usb 7-1: config 0 descriptor??
[  776.907094][ T8959] bridge0: port 1(bridge_slave_0) entered blocking state
[  776.907233][ T8959] bridge0: port 1(bridge_slave_0) entered disabled state
[  776.907491][ T8959] bridge_slave_0: entered allmulticast mode
[  776.910299][ T8959] bridge_slave_0: entered promiscuous mode
[  777.065228][ T8946] bridge0: port 2(bridge_slave_1) entered blocking state
[  777.065384][ T8946] bridge0: port 2(bridge_slave_1) entered disabled state
[  777.065609][ T8946] bridge_slave_1: entered allmulticast mode
[  777.068398][ T8946] bridge_slave_1: entered promiscuous mode
[  777.099558][ T8959] bridge0: port 2(bridge_slave_1) entered blocking state
[  777.099814][ T8959] bridge0: port 2(bridge_slave_1) entered disabled state
[  777.100217][ T8959] bridge_slave_1: entered allmulticast mode
[  777.114513][ T8959] bridge_slave_1: entered promiscuous mode
[  777.309031][ T6585] magicmouse 0003:05AC:0323.0014: item fetching failed at offset 5/7
[  777.309818][ T6585] magicmouse 0003:05AC:0323.0014: magicmouse hid parse failed
[  777.309917][ T6585] magicmouse 0003:05AC:0323.0014: probe with driver magicmouse failed with error -22
[  777.516305][ T9048] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  777.517487][ T9048] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  777.542462][ T9048] netlink: 'syz.6.545': attribute type 1 has an invalid length.
[  777.580419][ T8946] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  777.644502][ T9048] 8021q: adding VLAN 0 to HW filter on device bond1
[  777.648707][ T8959] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  777.660350][ T6585] usb 7-1: USB disconnect, device number 5
[  777.678852][ T8946] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  777.836610][ T8959] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  778.200656][ T8946] team0: Port device team_slave_0 added
[  778.339404][ T8946] team0: Port device team_slave_1 added
[  778.345926][ T8959] team0: Port device team_slave_0 added
[  778.409011][ T9053] netlink: 84 bytes leftover after parsing attributes in process `syz.6.546'.
[  778.684739][ T8858] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  778.718329][ T8959] team0: Port device team_slave_1 added
[  778.945817][ T8858] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  779.264590][ T8946] batman_adv: batadv0: Adding interface: batadv_slave_0
[  779.264606][ T8946] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  779.264631][ T8946] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  779.265472][ T8858] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  779.483950][ T9059] devpts: Unknown parameter ':ønd(açu”‰ý°�Wí4Ã\¶«ž^eÖ'
[  779.512373][ T8946] batman_adv: batadv0: Adding interface: batadv_slave_1
[  779.512392][ T8946] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  779.512428][ T8946] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  779.516347][ T8858] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  779.566781][ T9060] netlink: 'syz.6.547': attribute type 1 has an invalid length.
[  779.566802][ T9060] netlink: 168864 bytes leftover after parsing attributes in process `syz.6.547'.
[  779.677075][ T8959] batman_adv: batadv0: Adding interface: batadv_slave_0
[  779.677090][ T8959] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  779.677111][ T8959] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  780.197835][ T5846] Bluetooth: hci5: command 0x0406 tx timeout
[  780.219070][ T8959] batman_adv: batadv0: Adding interface: batadv_slave_1
[  780.219081][ T8959] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  780.219095][ T8959] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  780.863297][ T8946] hsr_slave_0: entered promiscuous mode
[  780.871199][ T8946] hsr_slave_1: entered promiscuous mode
[  780.906718][ T8946] debugfs: 'hsr0' already exists in 'hsr'
[  780.906748][ T8946] Cannot create hsr debugfs directory
[  781.230300][ T8959] hsr_slave_0: entered promiscuous mode
[  781.231681][ T8959] hsr_slave_1: entered promiscuous mode
[  781.257913][ T8959] debugfs: 'hsr0' already exists in 'hsr'
[  781.257940][ T8959] Cannot create hsr debugfs directory
[  783.281392][ T8809] 8021q: adding VLAN 0 to HW filter on device bond0
[  786.621300][ T8809] 8021q: adding VLAN 0 to HW filter on device team0
[  786.658718][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[  786.658940][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[  786.697545][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[  786.698193][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[  786.958748][ T8858] 8021q: adding VLAN 0 to HW filter on device bond0
[  787.095799][ T8858] 8021q: adding VLAN 0 to HW filter on device team0
[  787.143075][ T1545] bridge0: port 1(bridge_slave_0) entered blocking state
[  787.143364][ T1545] bridge0: port 1(bridge_slave_0) entered forwarding state
[  787.183167][ T9027] bridge0: port 2(bridge_slave_1) entered blocking state
[  787.183312][ T9027] bridge0: port 2(bridge_slave_1) entered forwarding state
[  787.585608][ T1131] bridge_slave_1: left allmulticast mode
[  787.585642][ T1131] bridge_slave_1: left promiscuous mode
[  787.585918][ T1131] bridge0: port 2(bridge_slave_1) entered disabled state
[  787.686627][ T1131] bridge_slave_0: left allmulticast mode
[  787.686657][ T1131] bridge_slave_0: left promiscuous mode
[  787.686904][ T1131] bridge0: port 1(bridge_slave_0) entered disabled state
[  787.787649][ T1131] bridge_slave_1: left allmulticast mode
[  787.787683][ T1131] bridge_slave_1: left promiscuous mode
[  787.787952][ T1131] bridge0: port 2(bridge_slave_1) entered disabled state
[  787.883856][ T1131] bridge_slave_0: left allmulticast mode
[  787.883888][ T1131] bridge_slave_0: left promiscuous mode
[  787.884140][ T1131] bridge0: port 1(bridge_slave_0) entered disabled state
[  788.592217][ T9111] netlink: 'syz.6.555': attribute type 6 has an invalid length.
[  788.966482][ T5846] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  788.981186][ T5846] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  788.995918][ T5846] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  788.997784][ T5846] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  788.998917][ T5846] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  789.365216][ T9112] syz.6.555 (9112) used greatest stack depth: 18008 bytes left
[  789.488579][ T9116] Bluetooth: MGMT ver 1.23
[  789.488611][ T9116] Bluetooth: hci0: invalid length 0, exp 2 for type 21
[  789.605151][ T9118] F2FS-fs (nullb0): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[  789.605181][ T9118] F2FS-fs (nullb0): Can't find valid F2FS filesystem in 1th superblock
[  789.605605][ T9118] F2FS-fs (nullb0): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[  789.605626][ T9118] F2FS-fs (nullb0): Can't find valid F2FS filesystem in 2th superblock
[  790.398296][ T1131] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  790.475798][ T1131] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  790.535358][ T9122] FAULT_INJECTION: forcing a failure.
[  790.535358][ T9122] name failslab, interval 1, probability 0, space 0, times 0
[  790.535406][ T9122] CPU: 1 UID: 0 PID: 9122 Comm: syz.6.557 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  790.535427][ T9122] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  790.535442][ T9122] Call Trace:
[  790.535450][ T9122]  <TASK>
[  790.535458][ T9122]  dump_stack_lvl+0x189/0x250
[  790.535487][ T9122]  ? __pfx____ratelimit+0x10/0x10
[  790.535512][ T9122]  ? __pfx_dump_stack_lvl+0x10/0x10
[  790.535535][ T9122]  ? __pfx__printk+0x10/0x10
[  790.535559][ T9122]  ? __pfx___might_resched+0x10/0x10
[  790.535577][ T9122]  ? fs_reclaim_acquire+0x7d/0x100
[  790.535599][ T9122]  should_fail_ex+0x46c/0x600
[  790.535626][ T9122]  ? getname_flags+0xb8/0x540
[  790.535648][ T9122]  should_failslab+0xa8/0x100
[  790.535671][ T9122]  ? getname_flags+0xb8/0x540
[  790.535691][ T9122]  kmem_cache_alloc_noprof+0x6e/0x310
[  790.535718][ T9122]  getname_flags+0xb8/0x540
[  790.535745][ T9122]  do_sys_openat2+0xbc/0x1c0
[  790.535765][ T9122]  ? __pfx_do_sys_openat2+0x10/0x10
[  790.535784][ T9122]  ? ksys_write+0x230/0x260
[  790.535806][ T9122]  ? __pfx_ksys_write+0x10/0x10
[  790.535823][ T9122]  ? rcu_is_watching+0x15/0xb0
[  790.535852][ T9122]  __x64_sys_openat+0x138/0x170
[  790.535875][ T9122]  do_syscall_64+0xfa/0x3b0
[  790.535900][ T9122]  ? lockdep_hardirqs_on+0x9c/0x150
[  790.535923][ T9122]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  790.535941][ T9122]  ? clear_bhb_loop+0x60/0xb0
[  790.535962][ T9122]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  790.535983][ T9122] RIP: 0033:0x7f9774a7d710
[  790.535999][ T9122] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 69 95 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 bc 95 02 00 8b 44
[  790.536014][ T9122] RSP: 002b:00007f9772cbcf10 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  790.536033][ T9122] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f9774a7d710
[  790.536046][ T9122] RDX: 0000000000000002 RSI: 00007f9772cbcfa0 RDI: 00000000ffffff9c
[  790.536058][ T9122] RBP: 00007f9772cbcfa0 R08: 0000000000000000 R09: 0000000000000000
[  790.536069][ T9122] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  790.536079][ T9122] R13: 00007f9774cd6128 R14: 00007f9774cd6090 R15: 00007ffeeac5f798
[  790.536108][ T9122]  </TASK>
[  791.072457][ T5846] Bluetooth: hci3: command tx timeout
[  791.325831][ T1131] bond0 (unregistering): Released all slaves
[  793.569767][ T5846] Bluetooth: hci3: command tx timeout
[  794.331704][ T5849] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  794.371413][ T5849] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  794.373705][ T5849] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  794.375388][ T5849] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  794.376590][ T5849] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  794.564568][ T9138] netlink: 56 bytes leftover after parsing attributes in process `syz.6.561'.
[  794.602602][ T1131] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  794.683925][ T1131] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  794.712419][ T1131] bond0 (unregistering): Released all slaves
[  795.632014][ T5849] Bluetooth: hci3: command tx timeout
[  795.854892][ T1131] hsr_slave_0: left promiscuous mode
[  795.903640][ T1131] hsr_slave_1: left promiscuous mode
[  795.904513][ T1131] batman_adv: batadv0: Removing interface: batadv_slave_0
[  795.987371][ T1131] batman_adv: batadv0: Removing interface: batadv_slave_1
[  796.312284][ T1131] hsr_slave_0: left promiscuous mode
[  796.359974][ T9158] FAULT_INJECTION: forcing a failure.
[  796.359974][ T9158] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  796.360007][ T9158] CPU: 1 UID: 0 PID: 9158 Comm: syz.6.564 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  796.360027][ T9158] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  796.360038][ T9158] Call Trace:
[  796.360045][ T9158]  <TASK>
[  796.360052][ T9158]  dump_stack_lvl+0x189/0x250
[  796.360082][ T9158]  ? __pfx____ratelimit+0x10/0x10
[  796.360107][ T9158]  ? __pfx_dump_stack_lvl+0x10/0x10
[  796.360130][ T9158]  ? __pfx__printk+0x10/0x10
[  796.360149][ T9158]  ? __might_fault+0xb0/0x130
[  796.360184][ T9158]  should_fail_ex+0x46c/0x600
[  796.360213][ T9158]  _copy_from_user+0x2d/0xb0
[  796.360235][ T9158]  ___sys_sendmsg+0x158/0x2a0
[  796.360257][ T9158]  ? __pfx____sys_sendmsg+0x10/0x10
[  796.360310][ T9158]  ? __fget_files+0x2a/0x420
[  796.360331][ T9158]  ? __fget_files+0x3a6/0x420
[  796.360364][ T9158]  __x64_sys_sendmsg+0x1a1/0x260
[  796.360384][ T9158]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  796.360412][ T9158]  ? __pfx_ksys_write+0x10/0x10
[  796.360435][ T9158]  ? rcu_is_watching+0x15/0xb0
[  796.360464][ T9158]  ? do_syscall_64+0xbe/0x3b0
[  796.360486][ T9158]  do_syscall_64+0xfa/0x3b0
[  796.360502][ T9158]  ? lockdep_hardirqs_on+0x9c/0x150
[  796.360524][ T9158]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  796.360541][ T9158]  ? clear_bhb_loop+0x60/0xb0
[  796.360569][ T9158]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  796.360587][ T9158] RIP: 0033:0x7f9774a7eec9
[  796.360602][ T9158] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  796.360617][ T9158] RSP: 002b:00007f9772cde038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  796.360636][ T9158] RAX: ffffffffffffffda RBX: 00007f9774cd5fa0 RCX: 00007f9774a7eec9
[  796.360650][ T9158] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000003
[  796.360662][ T9158] RBP: 00007f9772cde090 R08: 0000000000000000 R09: 0000000000000000
[  796.360673][ T9158] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  796.360684][ T9158] R13: 00007f9774cd6038 R14: 00007f9774cd5fa0 R15: 00007ffeeac5f798
[  796.360713][ T9158]  </TASK>
[  796.432401][ T5849] Bluetooth: hci6: command tx timeout
[  796.593532][ T1131] hsr_slave_1: left promiscuous mode
[  796.594704][ T1131] batman_adv: batadv0: Removing interface: batadv_slave_0
[  796.882986][ T1131] batman_adv: batadv0: Removing interface: batadv_slave_1
[  797.715120][ T5849] Bluetooth: hci3: command tx timeout
[  797.886938][ T9175] netlink: 84 bytes leftover after parsing attributes in process `syz.6.568'.
[  798.132906][ T1131] team0 (unregistering): Port device team_slave_1 removed
[  798.283064][ T1131] team0 (unregistering): Port device team_slave_0 removed
[  798.527724][ T5849] Bluetooth: hci6: command tx timeout
[  798.742441][ T9177] netlink: 24 bytes leftover after parsing attributes in process `syz.6.569'.
[  798.744591][ T9177] netlink: 512 bytes leftover after parsing attributes in process `syz.6.569'.
[  800.592219][ T5849] Bluetooth: hci6: command tx timeout
[  801.927464][ T9198] FAULT_INJECTION: forcing a failure.
[  801.927464][ T9198] name failslab, interval 1, probability 0, space 0, times 0
[  801.927511][ T9198] CPU: 0 UID: 0 PID: 9198 Comm: syz.6.576 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  801.927533][ T9198] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  801.927543][ T9198] Call Trace:
[  801.927551][ T9198]  <TASK>
[  801.927559][ T9198]  dump_stack_lvl+0x189/0x250
[  801.927588][ T9198]  ? __pfx____ratelimit+0x10/0x10
[  801.927613][ T9198]  ? __pfx_dump_stack_lvl+0x10/0x10
[  801.927635][ T9198]  ? __pfx__printk+0x10/0x10
[  801.927661][ T9198]  ? __pfx___might_resched+0x10/0x10
[  801.927679][ T9198]  ? fs_reclaim_acquire+0x7d/0x100
[  801.927701][ T9198]  should_fail_ex+0x46c/0x600
[  801.927788][ T9198]  ? perf_event_alloc+0x1c8/0x2c00
[  801.927806][ T9198]  should_failslab+0xa8/0x100
[  801.927829][ T9198]  ? perf_event_alloc+0x1c8/0x2c00
[  801.927845][ T9198]  kmem_cache_alloc_node_noprof+0x77/0x330
[  801.927875][ T9198]  perf_event_alloc+0x1c8/0x2c00
[  801.927895][ T9198]  ? __pfx_ptrace_triggered+0x10/0x10
[  801.927924][ T9198]  ? __lock_acquire+0xab9/0xd20
[  801.927954][ T9198]  ? __pfx_perf_event_alloc+0x10/0x10
[  801.927971][ T9198]  ? perf_event_create_kernel_counter+0xeb/0x630
[  801.928002][ T9198]  ? __pfx_ptrace_triggered+0x10/0x10
[  801.928022][ T9198]  perf_event_create_kernel_counter+0x12c/0x630
[  801.928045][ T9198]  ? perf_event_create_kernel_counter+0xeb/0x630
[  801.928068][ T9198]  ptrace_set_debugreg+0x37b/0xba0
[  801.928093][ T9198]  ? rcu_is_watching+0x15/0xb0
[  801.928121][ T9198]  ? __pfx_ptrace_set_debugreg+0x10/0x10
[  801.928139][ T9198]  ? __pv_queued_spin_lock_slowpath+0xa05/0xb60
[  801.928168][ T9198]  ? __pfx___pv_queued_spin_lock_slowpath+0x10/0x10
[  801.928192][ T9198]  ? __lock_acquire+0xab9/0xd20
[  801.928220][ T9198]  ? queued_spin_lock_slowpath+0x43/0x50
[  801.928240][ T9198]  ? do_raw_spin_lock+0x21f/0x290
[  801.928257][ T9198]  ? raw_spin_rq_lock_nested+0x2a/0x140
[  801.928287][ T9198]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  801.928312][ T9198]  ? lockdep_hardirqs_on+0x9c/0x150
[  801.928337][ T9198]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  801.928395][ T9198]  ? irqentry_exit+0x74/0x90
[  801.928412][ T9198]  ? lockdep_hardirqs_on+0x9c/0x150
[  801.928451][ T9198]  arch_ptrace+0x361/0x410
[  801.928474][ T9198]  __se_sys_ptrace+0x150/0x390
[  801.928499][ T9198]  ? __pfx___se_sys_ptrace+0x10/0x10
[  801.928528][ T9198]  ? do_syscall_64+0xbe/0x3b0
[  801.928548][ T9198]  do_syscall_64+0xfa/0x3b0
[  801.928565][ T9198]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  801.928581][ T9198]  ? asm_sysvec_call_function_single+0x1a/0x20
[  801.928598][ T9198]  ? clear_bhb_loop+0x60/0xb0
[  801.928620][ T9198]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  801.928636][ T9198] RIP: 0033:0x7f9774a7eec9
[  801.928652][ T9198] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  801.928667][ T9198] RSP: 002b:00007f9772cbd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000065
[  801.928687][ T9198] RAX: ffffffffffffffda RBX: 00007f9774cd6090 RCX: 00007f9774a7eec9
[  801.928701][ T9198] RDX: 0000000000000358 RSI: 00000000000000f0 RDI: 0000000000000006
[  801.928711][ T9198] RBP: 00007f9772cbd090 R08: 0000000000000000 R09: 0000000000000000
[  801.928728][ T9198] R10: 0000800000000000 R11: 0000000000000246 R12: 0000000000000001
[  801.928739][ T9198] R13: 00007f9774cd6128 R14: 00007f9774cd6090 R15: 00007ffeeac5f798
[  801.928768][ T9198]  </TASK>
[  802.672070][ T5849] Bluetooth: hci6: command tx timeout
[  802.893036][ T1131] team0 (unregistering): Port device team_slave_1 removed
[  803.155499][ T1131] team0 (unregistering): Port device team_slave_0 removed
[  806.201455][ T5846] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  806.219616][ T5846] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  806.229626][ T5846] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  806.230724][ T5846] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  806.236790][ T5846] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  806.334073][ T9219] netlink: 84 bytes leftover after parsing attributes in process `syz.6.578'.
[  808.272178][ T5846] Bluetooth: hci0: command tx timeout
[  808.839060][ T1324] ieee802154 phy0 wpan0: encryption failed: -22
[  808.839149][ T1324] ieee802154 phy1 wpan1: encryption failed: -22
[  809.189128][ T9236] FAULT_INJECTION: forcing a failure.
[  809.189128][ T9236] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  809.189186][ T9236] CPU: 0 UID: 0 PID: 9236 Comm: syz.6.580 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  809.189208][ T9236] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  809.189219][ T9236] Call Trace:
[  809.189226][ T9236]  <TASK>
[  809.189234][ T9236]  dump_stack_lvl+0x189/0x250
[  809.189263][ T9236]  ? __pfx____ratelimit+0x10/0x10
[  809.189288][ T9236]  ? __pfx_dump_stack_lvl+0x10/0x10
[  809.189311][ T9236]  ? __pfx__printk+0x10/0x10
[  809.189331][ T9236]  ? __might_fault+0xb0/0x130
[  809.189365][ T9236]  should_fail_ex+0x46c/0x600
[  809.189395][ T9236]  _copy_from_user+0x2d/0xb0
[  809.189417][ T9236]  ucma_write+0x161/0x2f0
[  809.189444][ T9236]  ? __pfx_ucma_write+0x10/0x10
[  809.189471][ T9236]  ? rw_verify_area+0x25b/0x4e0
[  809.189491][ T9236]  ? __pfx_ucma_write+0x10/0x10
[  809.189515][ T9236]  vfs_write+0x284/0xb40
[  809.189544][ T9236]  ? __pfx_vfs_write+0x10/0x10
[  809.189569][ T9236]  ? __rcu_read_unlock+0x84/0xe0
[  809.189590][ T9236]  ? __fget_files+0x2a/0x420
[  809.189611][ T9236]  ? __fget_files+0x3a6/0x420
[  809.189632][ T9236]  ? __fget_files+0x2a/0x420
[  809.189664][ T9236]  ksys_write+0x14b/0x260
[  809.189687][ T9236]  ? __pfx_ksys_write+0x10/0x10
[  809.189705][ T9236]  ? rcu_is_watching+0x15/0xb0
[  809.189734][ T9236]  ? do_syscall_64+0xbe/0x3b0
[  809.189755][ T9236]  do_syscall_64+0xfa/0x3b0
[  809.189774][ T9236]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  809.189791][ T9236]  ? asm_sysvec_reschedule_ipi+0x1a/0x20
[  809.189808][ T9236]  ? clear_bhb_loop+0x60/0xb0
[  809.189829][ T9236]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  809.189846][ T9236] RIP: 0033:0x7f9774a7eec9
[  809.189861][ T9236] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  809.189877][ T9236] RSP: 002b:00007f9772c9c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  809.189896][ T9236] RAX: ffffffffffffffda RBX: 00007f9774cd6180 RCX: 00007f9774a7eec9
[  809.189910][ T9236] RDX: 0000000000000010 RSI: 0000200000000100 RDI: 0000000000000005
[  809.189921][ T9236] RBP: 00007f9772c9c090 R08: 0000000000000000 R09: 0000000000000000
[  809.189933][ T9236] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  809.189943][ T9236] R13: 00007f9774cd6218 R14: 00007f9774cd6180 R15: 00007ffeeac5f798
[  809.189980][ T9236]  </TASK>
[  809.702611][ T9113] chnl_net:caif_netlink_parms(): no params data found
[  809.748625][ T9136] chnl_net:caif_netlink_parms(): no params data found
[  810.178257][ T5849] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  810.181727][ T5849] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  810.198155][ T5849] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  810.216504][ T5849] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  810.217244][ T5849] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  810.352053][ T5846] Bluetooth: hci0: command tx timeout
[  810.549295][ T9251] FAULT_INJECTION: forcing a failure.
[  810.549295][ T9251] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  810.549328][ T9251] CPU: 1 UID: 0 PID: 9251 Comm: syz.6.583 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  810.549349][ T9251] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  810.549360][ T9251] Call Trace:
[  810.549367][ T9251]  <TASK>
[  810.549375][ T9251]  dump_stack_lvl+0x189/0x250
[  810.549404][ T9251]  ? __pfx____ratelimit+0x10/0x10
[  810.549429][ T9251]  ? __pfx_dump_stack_lvl+0x10/0x10
[  810.549452][ T9251]  ? __pfx__printk+0x10/0x10
[  810.549473][ T9251]  ? __might_fault+0xb0/0x130
[  810.549507][ T9251]  should_fail_ex+0x46c/0x600
[  810.549536][ T9251]  _copy_from_user+0x2d/0xb0
[  810.549559][ T9251]  ___sys_recvmsg+0x12e/0x510
[  810.549584][ T9251]  ? __pfx____sys_recvmsg+0x10/0x10
[  810.549628][ T9251]  ? __fget_files+0x3a6/0x420
[  810.549661][ T9251]  __x64_sys_recvmsg+0x19e/0x260
[  810.549683][ T9251]  ? __pfx___x64_sys_recvmsg+0x10/0x10
[  810.549711][ T9251]  ? __pfx_ksys_write+0x10/0x10
[  810.549730][ T9251]  ? rcu_is_watching+0x15/0xb0
[  810.549760][ T9251]  ? do_syscall_64+0xbe/0x3b0
[  810.549781][ T9251]  do_syscall_64+0xfa/0x3b0
[  810.549797][ T9251]  ? lockdep_hardirqs_on+0x9c/0x150
[  810.549819][ T9251]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  810.549837][ T9251]  ? clear_bhb_loop+0x60/0xb0
[  810.549858][ T9251]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  810.549876][ T9251] RIP: 0033:0x7f9774a7eec9
[  810.549892][ T9251] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  810.549905][ T9251] RSP: 002b:00007f9772cbd038 EFLAGS: 00000246 ORIG_RAX: 000000000000002f
[  810.549926][ T9251] RAX: ffffffffffffffda RBX: 00007f9774cd6090 RCX: 00007f9774a7eec9
[  810.549939][ T9251] RDX: 0000000000000002 RSI: 0000200000000300 RDI: 0000000000000003
[  810.549950][ T9251] RBP: 00007f9772cbd090 R08: 0000000000000000 R09: 0000000000000000
[  810.549961][ T9251] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  810.549971][ T9251] R13: 00007f9774cd6128 R14: 00007f9774cd6090 R15: 00007ffeeac5f798
[  810.550001][ T9251]  </TASK>
[  812.272362][ T5846] Bluetooth: hci1: command tx timeout
[  812.432330][ T5846] Bluetooth: hci0: command tx timeout
[  814.352215][ T5846] Bluetooth: hci1: command tx timeout
[  814.512224][ T5846] Bluetooth: hci0: command tx timeout
[  814.812565][ T9217] chnl_net:caif_netlink_parms(): no params data found
[  816.442156][ T5846] Bluetooth: hci1: command tx timeout
[  817.816699][ T9259] netlink: 84 bytes leftover after parsing attributes in process `syz.6.585'.
[  818.512314][ T5846] Bluetooth: hci1: command tx timeout
[  818.742559][ T9113] bridge0: port 1(bridge_slave_0) entered blocking state
[  818.742706][ T9113] bridge0: port 1(bridge_slave_0) entered disabled state
[  818.742986][ T9113] bridge_slave_0: entered allmulticast mode
[  818.812318][ T9113] bridge_slave_0: entered promiscuous mode
[  819.218727][ T9136] bridge0: port 1(bridge_slave_0) entered blocking state
[  819.218871][ T9136] bridge0: port 1(bridge_slave_0) entered disabled state
[  819.219138][ T9136] bridge_slave_0: entered allmulticast mode
[  819.246034][ T9136] bridge_slave_0: entered promiscuous mode
[  819.251700][ T9113] bridge0: port 2(bridge_slave_1) entered blocking state
[  819.254809][ T9113] bridge0: port 2(bridge_slave_1) entered disabled state
[  819.276454][ T9113] bridge_slave_1: entered allmulticast mode
[  819.279231][ T9113] bridge_slave_1: entered promiscuous mode
[  820.101504][ T9267] fuse: Bad value for 'fd'
[  821.060307][ T9274] FAULT_INJECTION: forcing a failure.
[  821.060307][ T9274] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  821.060368][ T9274] CPU: 1 UID: 0 PID: 9274 Comm: syz.6.589 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  821.060389][ T9274] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  821.060400][ T9274] Call Trace:
[  821.060408][ T9274]  <TASK>
[  821.060416][ T9274]  dump_stack_lvl+0x189/0x250
[  821.060445][ T9274]  ? __pfx____ratelimit+0x10/0x10
[  821.060471][ T9274]  ? __pfx_dump_stack_lvl+0x10/0x10
[  821.060494][ T9274]  ? __pfx__printk+0x10/0x10
[  821.060517][ T9274]  ? __might_fault+0xb0/0x130
[  821.060549][ T9274]  should_fail_ex+0x46c/0x600
[  821.060579][ T9274]  _copy_from_user+0x2d/0xb0
[  821.060601][ T9274]  __sys_sendto+0x262/0x520
[  821.060629][ T9274]  ? __pfx___sys_sendto+0x10/0x10
[  821.060665][ T9274]  ? __pfx_preempt_schedule_irq+0x10/0x10
[  821.060699][ T9274]  ? lockdep_hardirqs_on+0x9c/0x150
[  821.060742][ T9274]  __x64_sys_sendto+0xde/0x100
[  821.060769][ T9274]  do_syscall_64+0xfa/0x3b0
[  821.060788][ T9274]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  821.060805][ T9274]  ? asm_sysvec_reschedule_ipi+0x1a/0x20
[  821.060822][ T9274]  ? clear_bhb_loop+0x60/0xb0
[  821.060844][ T9274]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  821.060861][ T9274] RIP: 0033:0x7f9774a7eec9
[  821.060877][ T9274] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  821.060892][ T9274] RSP: 002b:00007f9772c9c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  821.060912][ T9274] RAX: ffffffffffffffda RBX: 00007f9774cd6180 RCX: 00007f9774a7eec9
[  821.060926][ T9274] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000000d
[  821.060937][ T9274] RBP: 00007f9772c9c090 R08: 0000200000000080 R09: 0000000000000014
[  821.060949][ T9274] R10: 0000000020000080 R11: 0000000000000246 R12: 0000000000000001
[  821.060960][ T9274] R13: 00007f9774cd6218 R14: 00007f9774cd6180 R15: 00007ffeeac5f798
[  821.060989][ T9274]  </TASK>
[  822.050787][ T9136] bridge0: port 2(bridge_slave_1) entered blocking state
[  822.050928][ T9136] bridge0: port 2(bridge_slave_1) entered disabled state
[  822.051158][ T9136] bridge_slave_1: entered allmulticast mode
[  822.079850][ T9136] bridge_slave_1: entered promiscuous mode
[  825.993834][ T9289] netlink: 84 bytes leftover after parsing attributes in process `syz.6.593'.
[  832.093989][ T9298] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  832.917718][ T9306] netlink: zone id is out of range
[  832.917734][ T9306] netlink: zone id is out of range
[  832.917742][ T9306] netlink: zone id is out of range
[  832.917749][ T9306] netlink: zone id is out of range
[  832.917756][ T9306] netlink: zone id is out of range
[  832.917765][ T9306] netlink: zone id is out of range
[  832.917771][ T9306] netlink: zone id is out of range
[  832.917778][ T9306] netlink: zone id is out of range
[  832.917785][ T9306] netlink: zone id is out of range
[  832.917793][ T9306] netlink: zone id is out of range
[  833.010734][ T9113] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  833.100064][ T9136] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  833.136447][ T9113] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  833.136551][ T9306] netlink: 40 bytes leftover after parsing attributes in process `syz.6.597'.
[  833.736421][ T9136] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  850.247051][ T9340] FAULT_INJECTION: forcing a failure.
[  850.247051][ T9340] name failslab, interval 1, probability 0, space 0, times 0
[  850.247108][ T9340] CPU: 1 UID: 0 PID: 9340 Comm: syz.6.604 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  850.247129][ T9340] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  850.247140][ T9340] Call Trace:
[  850.247148][ T9340]  <TASK>
[  850.247156][ T9340]  dump_stack_lvl+0x189/0x250
[  850.247184][ T9340]  ? __pfx____ratelimit+0x10/0x10
[  850.247210][ T9340]  ? __pfx_dump_stack_lvl+0x10/0x10
[  850.247233][ T9340]  ? __pfx__printk+0x10/0x10
[  850.247259][ T9340]  ? __pfx___might_resched+0x10/0x10
[  850.247279][ T9340]  ? fs_reclaim_acquire+0x7d/0x100
[  850.247301][ T9340]  should_fail_ex+0x46c/0x600
[  850.247331][ T9340]  should_failslab+0xa8/0x100
[  850.247355][ T9340]  __kmalloc_noprof+0xcb/0x430
[  850.247376][ T9340]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  850.247406][ T9340]  tomoyo_realpath_from_path+0xe3/0x5d0
[  850.247432][ T9340]  ? tomoyo_domain+0xda/0x130
[  850.247461][ T9340]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  850.247482][ T9340]  tomoyo_path_number_perm+0x1e8/0x5a0
[  850.247506][ T9340]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  850.247526][ T9340]  ? lockdep_hardirqs_on+0x9c/0x150
[  850.247552][ T9340]  ? finish_task_switch+0x266/0x950
[  850.247588][ T9340]  ? rcu_is_watching+0x15/0xb0
[  850.247632][ T9340]  ? lockdep_hardirqs_on+0x9c/0x150
[  850.247671][ T9340]  security_file_ioctl+0xcb/0x2d0
[  850.247695][ T9340]  __se_sys_ioctl+0x47/0x170
[  850.247718][ T9340]  do_syscall_64+0xfa/0x3b0
[  850.247737][ T9340]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  850.247753][ T9340]  ? asm_sysvec_reschedule_ipi+0x1a/0x20
[  850.247770][ T9340]  ? clear_bhb_loop+0x60/0xb0
[  850.247792][ T9340]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  850.247808][ T9340] RIP: 0033:0x7f9774a7eec9
[  850.247824][ T9340] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  850.247839][ T9340] RSP: 002b:00007f9772c9c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  850.247859][ T9340] RAX: ffffffffffffffda RBX: 00007f9774cd6180 RCX: 00007f9774a7eec9
[  850.247872][ T9340] RDX: 0000200000000080 RSI: 00000000c0405668 RDI: 0000000000000005
[  850.247885][ T9340] RBP: 00007f9772c9c090 R08: 0000000000000000 R09: 0000000000000000
[  850.247896][ T9340] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  850.247907][ T9340] R13: 00007f9774cd6218 R14: 00007f9774cd6180 R15: 00007ffeeac5f798
[  850.247938][ T9340]  </TASK>
[  850.247998][ T9340] ERROR: Out of memory at tomoyo_realpath_from_path.
[  851.786750][ T5839] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  851.827931][ T5839] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  851.829167][ T5839] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  851.830355][ T5839] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  851.842246][ T5839] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  852.552299][ T9349] gfs2: not a GFS2 filesystem
[  853.333285][ T9353] 9pnet_fd: Insufficient options for proto=fd
[  853.952204][ T5846] Bluetooth: hci2: command tx timeout
[  856.032194][ T5846] Bluetooth: hci2: command tx timeout
[  857.008326][ T5849] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  857.028799][ T5849] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  857.030095][ T5849] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  857.059991][ T5849] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  857.060907][ T5849] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  858.004842][ T9217] bridge0: port 1(bridge_slave_0) entered blocking state
[  858.015255][ T9217] bridge0: port 1(bridge_slave_0) entered disabled state
[  858.015532][ T9217] bridge_slave_0: entered allmulticast mode
[  858.039514][ T9217] bridge_slave_0: entered promiscuous mode
[  858.112456][ T5849] Bluetooth: hci2: command tx timeout
[  859.153720][ T5849] Bluetooth: hci4: command tx timeout
[  859.903452][ T9217] bridge0: port 2(bridge_slave_1) entered blocking state
[  859.903616][ T9217] bridge0: port 2(bridge_slave_1) entered disabled state
[  859.903886][ T9217] bridge_slave_1: entered allmulticast mode
[  859.964448][ T9217] bridge_slave_1: entered promiscuous mode
[  860.193780][ T5849] Bluetooth: hci2: command tx timeout
[  861.277365][ T5849] Bluetooth: hci4: command tx timeout
[  861.398327][ T9364] netlink: 'syz.6.608': attribute type 1 has an invalid length.
[  861.398403][ T9364] netlink: 224 bytes leftover after parsing attributes in process `syz.6.608'.
[  863.312044][ T5849] Bluetooth: hci4: command tx timeout
[  863.723313][ T9367] FAULT_INJECTION: forcing a failure.
[  863.723313][ T9367] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  863.723347][ T9367] CPU: 0 UID: 0 PID: 9367 Comm: syz.6.609 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  863.723369][ T9367] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  863.723379][ T9367] Call Trace:
[  863.723387][ T9367]  <TASK>
[  863.723394][ T9367]  dump_stack_lvl+0x189/0x250
[  863.723423][ T9367]  ? __pfx____ratelimit+0x10/0x10
[  863.723448][ T9367]  ? __pfx_dump_stack_lvl+0x10/0x10
[  863.723471][ T9367]  ? __pfx__printk+0x10/0x10
[  863.723506][ T9367]  should_fail_ex+0x46c/0x600
[  863.723536][ T9367]  _copy_to_user+0x31/0xb0
[  863.723560][ T9367]  simple_read_from_buffer+0xe1/0x170
[  863.723594][ T9367]  proc_fail_nth_read+0x1b6/0x220
[  863.723616][ T9367]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  863.723638][ T9367]  ? rw_verify_area+0x2ac/0x4e0
[  863.723658][ T9367]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  863.723678][ T9367]  vfs_read+0x203/0xa30
[  863.723708][ T9367]  ? __pfx_vfs_read+0x10/0x10
[  863.723724][ T9367]  ? try_to_take_rt_mutex+0x7fd/0xac0
[  863.723755][ T9367]  ? mutex_lock_nested+0x154/0x1d0
[  863.723774][ T9367]  ? fdget_pos+0x253/0x320
[  863.723806][ T9367]  ksys_read+0x14b/0x260
[  863.723829][ T9367]  ? __pfx_ksys_read+0x10/0x10
[  863.723855][ T9367]  ? do_syscall_64+0xbe/0x3b0
[  863.723877][ T9367]  do_syscall_64+0xfa/0x3b0
[  863.723897][ T9367]  ? lockdep_hardirqs_on+0x9c/0x150
[  863.723921][ T9367]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  863.723939][ T9367]  ? clear_bhb_loop+0x60/0xb0
[  863.723960][ T9367]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  863.723977][ T9367] RIP: 0033:0x7f9774a7d8dc
[  863.723994][ T9367] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  863.724009][ T9367] RSP: 002b:00007f9772cde030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  863.724029][ T9367] RAX: ffffffffffffffda RBX: 00007f9774cd5fa0 RCX: 00007f9774a7d8dc
[  863.724043][ T9367] RDX: 000000000000000f RSI: 00007f9772cde0a0 RDI: 0000000000000005
[  863.724054][ T9367] RBP: 00007f9772cde090 R08: 0000000000000000 R09: 0000000000000000
[  863.724066][ T9367] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  863.724077][ T9367] R13: 00007f9774cd6038 R14: 00007f9774cd5fa0 R15: 00007ffeeac5f798
[  863.724108][ T9367]  </TASK>
[  864.807196][ T9374] netlink: 12 bytes leftover after parsing attributes in process `syz.6.611'.
[  864.811277][ T9374] BTRFS info: 'norecovery' is for compatibility only, recommended to use 'rescue=nologreplay'
[  865.811940][ T5849] Bluetooth: hci4: command tx timeout
[  868.257934][ T5849] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  868.277308][ T5849] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  868.278573][ T5849] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  868.279811][ T5849] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  868.280719][ T5849] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  870.523250][ T1324] ieee802154 phy0 wpan0: encryption failed: -22
[  870.532187][ T1324] ieee802154 phy1 wpan1: encryption failed: -22
[  871.306861][ T5846] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[  871.310573][ T5846] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[  871.313256][ T5846] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[  871.314710][ T5846] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[  871.315483][ T5846] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[  873.189870][ T5849] Bluetooth: hci7: command tx timeout
[  873.846559][ T9392] FAULT_INJECTION: forcing a failure.
[  873.846559][ T9392] name failslab, interval 1, probability 0, space 0, times 0
[  873.846597][ T9392] CPU: 1 UID: 0 PID: 9392 Comm: syz.6.614 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  873.846618][ T9392] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  873.846629][ T9392] Call Trace:
[  873.846637][ T9392]  <TASK>
[  873.846646][ T9392]  dump_stack_lvl+0x189/0x250
[  873.846675][ T9392]  ? __pfx____ratelimit+0x10/0x10
[  873.846700][ T9392]  ? __pfx_dump_stack_lvl+0x10/0x10
[  873.846722][ T9392]  ? __pfx__printk+0x10/0x10
[  873.846746][ T9392]  ? __pfx___might_resched+0x10/0x10
[  873.846764][ T9392]  ? fs_reclaim_acquire+0x7d/0x100
[  873.846785][ T9392]  should_fail_ex+0x46c/0x600
[  873.846813][ T9392]  ? __alloc_skb+0x112/0x2d0
[  873.846836][ T9392]  should_failslab+0xa8/0x100
[  873.846859][ T9392]  ? __alloc_skb+0x112/0x2d0
[  873.846879][ T9392]  kmem_cache_alloc_node_noprof+0x77/0x330
[  873.846909][ T9392]  __alloc_skb+0x112/0x2d0
[  873.846936][ T9392]  netlink_sendmsg+0x5c6/0xb30
[  873.846969][ T9392]  ? __pfx_netlink_sendmsg+0x10/0x10
[  873.847001][ T9392]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  873.847018][ T9392]  ? __pfx_netlink_sendmsg+0x10/0x10
[  873.847041][ T9392]  __sock_sendmsg+0x21c/0x270
[  873.847067][ T9392]  sock_sendmsg+0x158/0x230
[  873.847090][ T9392]  ? __pfx_sock_sendmsg+0x10/0x10
[  873.847124][ T9392]  ? __asan_memset+0x22/0x50
[  873.847142][ T9392]  ? iov_iter_bvec+0xb8/0x180
[  873.847166][ T9392]  splice_to_socket+0x902/0xf10
[  873.847212][ T9392]  ? __pfx_splice_to_socket+0x10/0x10
[  873.847260][ T9392]  ? get_pid_task+0x20/0x1f0
[  873.847306][ T9392]  ? rw_verify_area+0x25b/0x4e0
[  873.847329][ T9392]  ? __pfx_splice_to_socket+0x10/0x10
[  873.847350][ T9392]  do_splice+0xc8e/0x1680
[  873.847406][ T9392]  ? __pfx_do_splice+0x10/0x10
[  873.847439][ T9392]  __se_sys_splice+0x2e1/0x460
[  873.847468][ T9392]  ? __pfx___se_sys_splice+0x10/0x10
[  873.847486][ T9392]  ? rcu_is_watching+0x15/0xb0
[  873.847519][ T9392]  ? __x64_sys_splice+0x21/0xf0
[  873.847545][ T9392]  do_syscall_64+0xfa/0x3b0
[  873.847562][ T9392]  ? lockdep_hardirqs_on+0x9c/0x150
[  873.847586][ T9392]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  873.847603][ T9392]  ? clear_bhb_loop+0x60/0xb0
[  873.847624][ T9392]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  873.847642][ T9392] RIP: 0033:0x7f9774a7eec9
[  873.847658][ T9392] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  873.847674][ T9392] RSP: 002b:00007f9772cde038 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  873.847693][ T9392] RAX: ffffffffffffffda RBX: 00007f9774cd5fa0 RCX: 00007f9774a7eec9
[  873.847706][ T9392] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 0000000000000003
[  873.847717][ T9392] RBP: 00007f9772cde090 R08: 00000000000074c6 R09: 0000000000000000
[  873.847729][ T9392] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  873.847739][ T9392] R13: 00007f9774cd6038 R14: 00007f9774cd5fa0 R15: 00007ffeeac5f798
[  873.847769][ T9392]  </TASK>
[  874.700827][ T9395] FAULT_INJECTION: forcing a failure.
[  874.700827][ T9395] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  874.700862][ T9395] CPU: 1 UID: 0 PID: 9395 Comm: syz.6.615 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  874.700883][ T9395] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  874.700894][ T9395] Call Trace:
[  874.700901][ T9395]  <TASK>
[  874.700910][ T9395]  dump_stack_lvl+0x189/0x250
[  874.700938][ T9395]  ? __pfx____ratelimit+0x10/0x10
[  874.700972][ T9395]  ? __pfx_dump_stack_lvl+0x10/0x10
[  874.700995][ T9395]  ? __pfx__printk+0x10/0x10
[  874.701014][ T9395]  ? __might_fault+0xb0/0x130
[  874.701049][ T9395]  should_fail_ex+0x46c/0x600
[  874.701078][ T9395]  _copy_from_user+0x2d/0xb0
[  874.701100][ T9395]  ___sys_sendmsg+0x158/0x2a0
[  874.701122][ T9395]  ? __pfx____sys_sendmsg+0x10/0x10
[  874.701175][ T9395]  ? __fget_files+0x2a/0x420
[  874.701196][ T9395]  ? __fget_files+0x3a6/0x420
[  874.701229][ T9395]  __sys_sendmmsg+0x22d/0x430
[  874.701254][ T9395]  ? __pfx___sys_sendmmsg+0x10/0x10
[  874.701281][ T9395]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  874.701317][ T9395]  ? ksys_write+0x230/0x260
[  874.701341][ T9395]  ? __pfx_ksys_write+0x10/0x10
[  874.701360][ T9395]  ? rcu_is_watching+0x15/0xb0
[  874.701390][ T9395]  __x64_sys_sendmmsg+0xa0/0xc0
[  874.701410][ T9395]  do_syscall_64+0xfa/0x3b0
[  874.701435][ T9395]  ? lockdep_hardirqs_on+0x9c/0x150
[  874.701458][ T9395]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  874.701476][ T9395]  ? clear_bhb_loop+0x60/0xb0
[  874.701497][ T9395]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  874.701515][ T9395] RIP: 0033:0x7f9774a7eec9
[  874.701530][ T9395] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  874.701545][ T9395] RSP: 002b:00007f9772cde038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  874.701566][ T9395] RAX: ffffffffffffffda RBX: 00007f9774cd5fa0 RCX: 00007f9774a7eec9
[  874.701579][ T9395] RDX: 0000000000000002 RSI: 0000200000001ec0 RDI: 0000000000000004
[  874.701592][ T9395] RBP: 00007f9772cde090 R08: 0000000000000000 R09: 0000000000000000
[  874.701603][ T9395] R10: 0000000000004000 R11: 0000000000000246 R12: 0000000000000001
[  874.701615][ T9395] R13: 00007f9774cd6038 R14: 00007f9774cd5fa0 R15: 00007ffeeac5f798
[  874.701645][ T9395]  </TASK>
[  875.232294][ T5846] Bluetooth: hci7: command tx timeout
[  875.232682][ T5846] Bluetooth: hci8: command tx timeout
[  877.312130][ T5849] Bluetooth: hci8: command tx timeout
[  877.312171][ T5849] Bluetooth: hci7: command tx timeout
[  879.393696][ T5846] Bluetooth: hci7: command tx timeout
[  879.393731][ T5846] Bluetooth: hci8: command tx timeout
[  881.473132][ T5849] Bluetooth: hci8: command tx timeout
[  884.852240][ T9398] netlink: 96 bytes leftover after parsing attributes in process `syz.6.616'.
[  885.151075][ T9409] netlink: 20 bytes leftover after parsing attributes in process `syz.6.617'.
[  891.093415][ T9422] Driver unsupported XDP return value 0 on prog  (id 125) dev N/A, expect packet loss!
[  893.896753][ T9430] FAULT_INJECTION: forcing a failure.
[  893.896753][ T9430] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  893.896818][ T9430] CPU: 1 UID: 0 PID: 9430 Comm: syz.6.621 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  893.896843][ T9430] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  893.896854][ T9430] Call Trace:
[  893.896863][ T9430]  <TASK>
[  893.896871][ T9430]  dump_stack_lvl+0x189/0x250
[  893.896901][ T9430]  ? __pfx____ratelimit+0x10/0x10
[  893.896927][ T9430]  ? __pfx_dump_stack_lvl+0x10/0x10
[  893.896949][ T9430]  ? __pfx__printk+0x10/0x10
[  893.896970][ T9430]  ? __might_fault+0xb0/0x130
[  893.897004][ T9430]  should_fail_ex+0x46c/0x600
[  893.897034][ T9430]  _copy_from_user+0x2d/0xb0
[  893.897058][ T9430]  __sys_sendto+0x262/0x520
[  893.897085][ T9430]  ? __pfx___sys_sendto+0x10/0x10
[  893.897149][ T9430]  __x64_sys_sendto+0xde/0x100
[  893.897177][ T9430]  do_syscall_64+0xfa/0x3b0
[  893.897195][ T9430]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  893.897213][ T9430]  ? asm_sysvec_reschedule_ipi+0x1a/0x20
[  893.897230][ T9430]  ? clear_bhb_loop+0x60/0xb0
[  893.897251][ T9430]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  893.897268][ T9430] RIP: 0033:0x7f9774a7eec9
[  893.897285][ T9430] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  893.897300][ T9430] RSP: 002b:00007f9772c9c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  893.897321][ T9430] RAX: ffffffffffffffda RBX: 00007f9774cd6180 RCX: 00007f9774a7eec9
[  893.897335][ T9430] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000008
[  893.897346][ T9430] RBP: 00007f9772c9c090 R08: 0000200000000080 R09: 0000000000000014
[  893.897359][ T9430] R10: 0000000020000080 R11: 0000000000000246 R12: 0000000000000001
[  893.897371][ T9430] R13: 00007f9774cd6218 R14: 00007f9774cd6180 R15: 00007ffeeac5f798
[  893.897401][ T9430]  </TASK>
[  897.645414][ T9435] overlayfs: workdir and upperdir must be separate subtrees
[  897.764855][ T9437] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  899.083790][ T5928] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  899.233382][ T5928] usb 7-1: Using ep0 maxpacket: 8
[  899.236053][ T5928] usb 7-1: config 11 has an invalid interface number: 95 but max is 0
[  899.236078][ T5928] usb 7-1: config 11 has no interface number 0
[  899.236127][ T5928] usb 7-1: config 11 interface 95 has no altsetting 0
[  899.239224][ T5928] usb 7-1: New USB device found, idVendor=10f0, idProduct=2002, bcdDevice=dc.4d
[  899.239251][ T5928] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  899.239270][ T5928] usb 7-1: Product: syz
[  899.239284][ T5928] usb 7-1: Manufacturer: syz
[  899.239298][ T5928] usb 7-1: SerialNumber: syz
[  899.749551][ T9449] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  899.941160][ T9449] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  901.358563][ T5928] usb 7-1: USB disconnect, device number 6
[  902.195773][ T9355] chnl_net:caif_netlink_parms(): no params data found
[  902.304579][ T9341] chnl_net:caif_netlink_parms(): no params data found
[  912.413082][ T9383] chnl_net:caif_netlink_parms(): no params data found
[  916.689224][ T9476] 8021q: VLANs not supported on ip_vti0
[  917.822331][ T9386] chnl_net:caif_netlink_parms(): no params data found
[  918.444226][ T5846] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  918.474059][ T5846] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  918.475605][ T5846] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  918.476824][ T5846] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  918.480227][ T5846] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  918.614064][ T9482] binder: 9481:9482 ioctl c0306201 0 returned -14
[  918.938120][ T9483] binder: 9481:9483 ioctl c0306201 0 returned -14
[  920.003501][ T9485] binder: 9484:9485 ioctl c0306201 0 returned -14
[  920.405290][ T5846] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  920.433695][ T5846] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  920.436030][ T5846] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  920.437291][ T5846] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  920.438536][ T5846] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  920.468376][ T9489] binder: 9484:9489 ioctl c0306201 0 returned -14
[  920.471026][ T9489] FAULT_INJECTION: forcing a failure.
[  920.471026][ T9489] name failslab, interval 1, probability 0, space 0, times 0
[  920.471058][ T9489] CPU: 0 UID: 0 PID: 9489 Comm: syz.6.630 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  920.471077][ T9489] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  920.471087][ T9489] Call Trace:
[  920.471093][ T9489]  <TASK>
[  920.471099][ T9489]  dump_stack_lvl+0x189/0x250
[  920.471127][ T9489]  ? __pfx____ratelimit+0x10/0x10
[  920.471150][ T9489]  ? __pfx_dump_stack_lvl+0x10/0x10
[  920.471171][ T9489]  ? __pfx__printk+0x10/0x10
[  920.471195][ T9489]  ? __pfx___might_resched+0x10/0x10
[  920.471211][ T9489]  ? fs_reclaim_acquire+0x7d/0x100
[  920.471233][ T9489]  should_fail_ex+0x46c/0x600
[  920.471262][ T9489]  should_failslab+0xa8/0x100
[  920.471286][ T9489]  __kvmalloc_node_noprof+0x15a/0x550
[  920.471307][ T9489]  ? seq_read_iter+0x1fe/0xe10
[  920.471327][ T9489]  ? seq_read_iter+0xb8/0xe10
[  920.471349][ T9489]  seq_read_iter+0x1fe/0xe10
[  920.471368][ T9489]  ? _parse_integer_limit+0x1ae/0x1f0
[  920.471391][ T9489]  ? __asan_memset+0x22/0x50
[  920.471413][ T9489]  seq_read+0x36c/0x480
[  920.471440][ T9489]  ? __pfx_seq_read+0x10/0x10
[  920.471459][ T9489]  ? __debugfs_file_get+0x5dd/0x710
[  920.471486][ T9489]  ? __pfx___debugfs_file_get+0x10/0x10
[  920.471509][ T9489]  ? __lock_acquire+0xab9/0xd20
[  920.471538][ T9489]  full_proxy_read+0x124/0x1f0
[  920.471554][ T9489]  ? __pfx_full_proxy_read+0x10/0x10
[  920.471572][ T9489]  vfs_read+0x203/0xa30
[  920.471601][ T9489]  ? __pfx_vfs_read+0x10/0x10
[  920.471614][ T9489]  ? try_to_take_rt_mutex+0x7fd/0xac0
[  920.471639][ T9489]  ? mutex_lock_nested+0x154/0x1d0
[  920.471654][ T9489]  ? fdget_pos+0x253/0x320
[  920.471688][ T9489]  ksys_read+0x14b/0x260
[  920.471706][ T9489]  ? __pfx_ksys_read+0x10/0x10
[  920.471731][ T9489]  ? do_syscall_64+0xbe/0x3b0
[  920.471748][ T9489]  do_syscall_64+0xfa/0x3b0
[  920.471762][ T9489]  ? lockdep_hardirqs_on+0x9c/0x150
[  920.471781][ T9489]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  920.471797][ T9489]  ? clear_bhb_loop+0x60/0xb0
[  920.471821][ T9489]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  920.471836][ T9489] RIP: 0033:0x7f9774a7eec9
[  920.471850][ T9489] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  920.471863][ T9489] RSP: 002b:00007f9772cbd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  920.471880][ T9489] RAX: ffffffffffffffda RBX: 00007f9774cd6090 RCX: 00007f9774a7eec9
[  920.471892][ T9489] RDX: 000000000000143b RSI: 0000200000000180 RDI: 0000000000000006
[  920.471902][ T9489] RBP: 00007f9772cbd090 R08: 0000000000000000 R09: 0000000000000000
[  920.471912][ T9489] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  920.471926][ T9489] R13: 00007f9774cd6128 R14: 00007f9774cd6090 R15: 00007ffeeac5f798
[  920.471950][ T9489]  </TASK>
[  921.312551][ T5846] Bluetooth: hci0: command tx timeout
[  922.392244][ T8209] IPVS: starting estimator thread 0...
[  922.482582][ T9499] IPVS: using max 7 ests per chain, 16800 per kthread
[  922.749575][ T9503] FAULT_INJECTION: forcing a failure.
[  922.749575][ T9503] name failslab, interval 1, probability 0, space 0, times 0
[  922.749610][ T9503] CPU: 1 UID: 0 PID: 9503 Comm: syz.6.633 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  922.749631][ T9503] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  922.749642][ T9503] Call Trace:
[  922.749649][ T9503]  <TASK>
[  922.749658][ T9503]  dump_stack_lvl+0x189/0x250
[  922.749687][ T9503]  ? __pfx____ratelimit+0x10/0x10
[  922.749712][ T9503]  ? __pfx_dump_stack_lvl+0x10/0x10
[  922.749736][ T9503]  ? __pfx__printk+0x10/0x10
[  922.749760][ T9503]  ? __pfx___might_resched+0x10/0x10
[  922.749779][ T9503]  ? fs_reclaim_acquire+0x7d/0x100
[  922.749800][ T9503]  should_fail_ex+0x46c/0x600
[  922.749829][ T9503]  should_failslab+0xa8/0x100
[  922.749854][ T9503]  __kmalloc_node_noprof+0xd5/0x460
[  922.749876][ T9503]  ? load_msg+0x41/0x3b0
[  922.749897][ T9503]  load_msg+0x41/0x3b0
[  922.749914][ T9503]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  922.749943][ T9503]  do_msgsnd+0x19a/0x13d0
[  922.749979][ T9503]  ? __might_fault+0xb0/0x130
[  922.750004][ T9503]  ? fput+0xa0/0xd0
[  922.750022][ T9503]  ? __pfx_do_msgsnd+0x10/0x10
[  922.750044][ T9503]  ? __might_fault+0xb0/0x130
[  922.750071][ T9503]  ? __x64_sys_msgsnd+0xee/0x120
[  922.750094][ T9503]  do_syscall_64+0xfa/0x3b0
[  922.750110][ T9503]  ? lockdep_hardirqs_on+0x9c/0x150
[  922.750134][ T9503]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  922.750152][ T9503]  ? clear_bhb_loop+0x60/0xb0
[  922.750173][ T9503]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  922.750187][ T9503] RIP: 0033:0x7f9774a7eec9
[  922.750201][ T9503] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  922.750213][ T9503] RSP: 002b:00007f9772c9c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000045
[  922.750230][ T9503] RAX: ffffffffffffffda RBX: 00007f9774cd6180 RCX: 00007f9774a7eec9
[  922.750241][ T9503] RDX: 0000000000000008 RSI: 0000200000000540 RDI: 0000000000000000
[  922.750251][ T9503] RBP: 00007f9772c9c090 R08: 0000000000000000 R09: 0000000000000000
[  922.750263][ T9503] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  922.750274][ T9503] R13: 00007f9774cd6218 R14: 00007f9774cd6180 R15: 00007ffeeac5f798
[  922.750304][ T9503]  </TASK>
[  923.392166][ T5846] Bluetooth: hci0: command tx timeout
[  925.472297][ T5839] Bluetooth: hci0: command tx timeout
[  926.992399][ T5839] Bluetooth: hci1: command tx timeout
[  927.552078][ T5839] Bluetooth: hci0: command tx timeout
[  929.072034][ T5839] Bluetooth: hci1: command tx timeout
[  930.025038][ T5849] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  930.047410][ T5849] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  930.048615][ T5849] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  930.049772][ T5849] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  930.050525][ T5849] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  931.152043][ T5849] Bluetooth: hci1: command tx timeout
[  932.325764][ T5846] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  932.344822][ T5846] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  932.346087][ T5846] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  932.347276][ T5846] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  932.376514][ T8636] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  932.412853][ T1324] ieee802154 phy0 wpan0: encryption failed: -22
[  932.412930][ T1324] ieee802154 phy1 wpan1: encryption failed: -22
[  933.046927][ T9383] workqueue: Failed to create a rescuer kthread for wq "wg-crypt-wg1": -EINTR
[  933.234140][ T8636] Bluetooth: hci1: command tx timeout
[  937.357545][ T5849] Bluetooth: hci3: command tx timeout
[  937.364677][ T5839] Bluetooth: hci2: command tx timeout
[  939.405651][ T8636] Bluetooth: hci2: command tx timeout
[  939.405687][ T8636] Bluetooth: hci3: command tx timeout
[  943.125589][ T5839] Bluetooth: hci3: command tx timeout
[  943.125624][ T5839] Bluetooth: hci2: command tx timeout
[  945.602657][ T5839] Bluetooth: hci2: command tx timeout
[  945.602694][ T5839] Bluetooth: hci3: command tx timeout
[  998.997091][ T1324] ieee802154 phy0 wpan0: encryption failed: -22
[  999.022526][ T1324] ieee802154 phy1 wpan1: encryption failed: -22
[ 1021.248597][ T8636] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1021.625665][ T8636] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1021.807927][ T8636] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1021.888420][ T8636] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1021.889995][ T8636] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1025.133749][ T8636] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1026.172034][ T8636] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1027.223449][ T8636] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1029.356740][ T9532] Bluetooth: hci4: Opcode 0x0c23 failed: -110
[ 1036.795746][ T5839] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 1036.808486][ T5839] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 1038.363270][ T5839] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 1040.728534][ T8636] Bluetooth: hci6: Opcode 0x1009 failed: -110
[ 1043.447612][ T5849] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 1043.469221][ T5849] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 1044.009269][ T5849] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 1044.148156][ T5849] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 1044.148942][ T5849] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 1049.462664][ T8636] Bluetooth: hci0: command 0x0406 tx timeout
[ 1057.149123][ T8636] Bluetooth: hci9: Opcode 0x0c03 failed: -110
[ 1057.543661][ T9547] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1
[ 1059.424949][ T9541] Bluetooth: hci9: Opcode 0x0c03 failed: -110
[ 1059.664966][ T9546] Bluetooth: hci3: command 0x0406 tx timeout
[ 1059.665005][ T9546] Bluetooth: hci2: command 0x0406 tx timeout
[ 1059.665029][ T9546] Bluetooth: hci1: command 0x0406 tx timeout
[ 1065.649643][ T9546] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[ 1069.155230][ T1324] ieee802154 phy0 wpan0: encryption failed: -22
[ 1069.780188][ T9547] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1
[ 1071.658983][ T9547] Bluetooth: hci10: unexpected cc 0x1003 length: 249 > 9
[ 1072.598325][ T9547] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1072.598830][ T1324] ieee802154 phy1 wpan1: encryption failed: -22
[ 1074.192487][ T9547] Bluetooth: hci10: command 0x1001 tx timeout
[ 1074.618314][ T9552] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[ 1075.856749][ T9546] Bluetooth: hci10: Opcode 0x1001 failed: -110
[ 1075.880637][ T9553] Bluetooth: hci10: unexpected cc 0x1001 length: 249 > 9
[ 1075.999366][ T9553] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1
[ 1075.999921][ T9553] Bluetooth: hci10: unexpected cc 0x1003 length: 249 > 9
[ 1076.000338][ T9553] Bluetooth: hci10: unexpected cc 0x1001 length: 249 > 9
[ 1076.001543][ T9553] Bluetooth: hci10: unexpected cc 0x0c23 length: 249 > 4
[ 1076.002485][ T9553] Bluetooth: hci10: unexpected cc 0x0c38 length: 249 > 2
[ 1087.895949][   T38] INFO: task kworker/u8:2:43 blocked for more than 146 seconds.
[ 1087.895974][   T38]       Not tainted syzkaller #0
[ 1087.895984][   T38] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1087.895993][   T38] task:kworker/u8:2    state:D stack:20488 pid:43    tgid:43    ppid:2      task_flags:0x4208060 flags:0x00004000
[ 1087.896038][   T38] Workqueue: ipv6_addrconf addrconf_dad_work
[ 1087.896070][   T38] Call Trace:
[ 1087.896077][   T38]  <TASK>
[ 1087.896090][   T38]  __schedule+0x16f3/0x4c20
[ 1087.896142][   T38]  ? __pfx___schedule+0x10/0x10
[ 1087.896185][   T38]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1087.896213][   T38]  rt_mutex_schedule+0x77/0xf0
[ 1087.896231][   T38]  rt_mutex_slowlock_block+0x5ba/0x6d0
[ 1087.896250][   T38]  ? task_blocks_on_rt_mutex+0x78c/0x1380
[ 1087.896287][   T38]  rt_mutex_slowlock+0x2b1/0x6e0
[ 1087.896311][   T38]  ? rt_mutex_slowlock+0x1c9/0x6e0
[ 1087.896333][   T38]  ? __pfx_rt_mutex_slowlock+0x10/0x10
[ 1087.896364][   T38]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1087.896393][   T38]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 1087.896433][   T38]  ? addrconf_dad_work+0x119/0x15a0
[ 1087.896451][   T38]  mutex_lock_nested+0x16a/0x1d0
[ 1087.896471][   T38]  ? addrconf_dad_work+0x119/0x15a0
[ 1087.896494][   T38]  addrconf_dad_work+0x119/0x15a0
[ 1087.896516][   T38]  ? __lock_acquire+0xab9/0xd20
[ 1087.896546][   T38]  ? __pfx_addrconf_dad_work+0x10/0x10
[ 1087.896567][   T38]  ? process_scheduled_works+0x9ef/0x17b0
[ 1087.896595][   T38]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1087.896618][   T38]  ? process_scheduled_works+0x9ef/0x17b0
[ 1087.896638][   T38]  ? process_scheduled_works+0x9ef/0x17b0
[ 1087.896662][   T38]  process_scheduled_works+0xae1/0x17b0
[ 1087.896713][   T38]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1087.896748][   T38]  worker_thread+0x8a0/0xda0
[ 1087.896785][   T38]  ? __kthread_parkme+0x7b/0x200
[ 1087.896817][   T38]  kthread+0x711/0x8a0
[ 1087.896844][   T38]  ? __pfx_worker_thread+0x10/0x10
[ 1087.896865][   T38]  ? __pfx_kthread+0x10/0x10
[ 1087.896894][   T38]  ? __pfx_kthread+0x10/0x10
[ 1087.896919][   T38]  ret_from_fork+0x436/0x7d0
[ 1087.896944][   T38]  ? __pfx_ret_from_fork+0x10/0x10
[ 1087.896972][   T38]  ? __switch_to_asm+0x39/0x70
[ 1087.896988][   T38]  ? __switch_to_asm+0x33/0x70
[ 1087.897004][   T38]  ? __pfx_kthread+0x10/0x10
[ 1087.897029][   T38]  ret_from_fork_asm+0x1a/0x30
[ 1087.897070][   T38]  </TASK>
[ 1087.897122][   T38] INFO: task kworker/u8:7:1131 blocked for more than 146 seconds.
[ 1087.897135][   T38]       Not tainted syzkaller #0
[ 1087.897144][   T38] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1087.897153][   T38] task:kworker/u8:7    state:D stack:20152 pid:1131  tgid:1131  ppid:2      task_flags:0x4208060 flags:0x00004000
[ 1087.897194][   T38] Workqueue: netns cleanup_net
[ 1087.897216][   T38] Call Trace:
[ 1087.897222][   T38]  <TASK>
[ 1087.897234][   T38]  __schedule+0x16f3/0x4c20
[ 1087.897267][   T38]  ? arch_stack_walk+0x11c/0x150
[ 1087.897296][   T38]  ? ret_from_fork_asm+0x1a/0x30
[ 1087.897316][   T38]  ? __pfx___schedule+0x10/0x10
[ 1087.897358][   T38]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1087.897386][   T38]  rt_mutex_schedule+0x77/0xf0
[ 1087.897404][   T38]  rt_mutex_slowlock_block+0x5ba/0x6d0
[ 1087.897424][   T38]  ? task_blocks_on_rt_mutex+0xf12/0x1380
[ 1087.897463][   T38]  rt_mutex_slowlock+0x2b1/0x6e0
[ 1087.897487][   T38]  ? rt_mutex_slowlock+0x1c9/0x6e0
[ 1087.897509][   T38]  ? __pfx_rt_mutex_slowlock+0x10/0x10
[ 1087.897528][   T38]  ? __lock_acquire+0xab9/0xd20
[ 1087.897561][   T38]  ? nsim_create+0x800/0xf20
[ 1087.897582][   T38]  ? kmemdup_noprof+0x55/0x70
[ 1087.897604][   T38]  ? __asan_memcpy+0x40/0x70
[ 1087.897628][   T38]  ? nsim_create+0x800/0xf20
[ 1087.897645][   T38]  mutex_lock_nested+0x16a/0x1d0
[ 1087.897670][   T38]  nsim_create+0x800/0xf20
[ 1087.897696][   T38]  __nsim_dev_port_add+0x6b6/0xb10
[ 1087.897725][   T38]  ? __pfx___nsim_dev_port_add+0x10/0x10
[ 1087.897746][   T38]  ? queue_delayed_work_on+0x1f7/0x280
[ 1087.897771][   T38]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 1087.897814][   T38]  nsim_dev_port_add_all+0x37/0xf0
[ 1087.897837][   T38]  nsim_dev_reload_up+0x451/0x780
[ 1087.897866][   T38]  ? __pfx_nsim_dev_reload_up+0x10/0x10
[ 1087.897903][   T38]  devlink_reload+0x4f8/0x8d0
[ 1087.897933][   T38]  ? __pfx_devlink_reload+0x10/0x10
[ 1087.897950][   T38]  ? xa_get_mark+0x70f/0x7b0
[ 1087.897983][   T38]  devlink_pernet_pre_exit+0x1d9/0x3d0
[ 1087.898006][   T38]  ? __pfx_devlink_pernet_pre_exit+0x10/0x10
[ 1087.898034][   T38]  ? class_remove_file_ns+0x124/0x160
[ 1087.898069][   T38]  ops_undo_list+0x187/0x990
[ 1087.898100][   T38]  ? __pfx_ops_undo_list+0x10/0x10
[ 1087.898134][   T38]  cleanup_net+0x4cb/0x800
[ 1087.898161][   T38]  ? __pfx_cleanup_net+0x10/0x10
[ 1087.898187][   T38]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1087.898209][   T38]  ? process_scheduled_works+0x9ef/0x17b0
[ 1087.898230][   T38]  ? process_scheduled_works+0x9ef/0x17b0
[ 1087.898253][   T38]  process_scheduled_works+0xae1/0x17b0
[ 1087.898304][   T38]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1087.898343][   T38]  worker_thread+0x8a0/0xda0
[ 1087.898391][   T38]  kthread+0x711/0x8a0
[ 1087.898419][   T38]  ? __pfx_worker_thread+0x10/0x10
[ 1087.898439][   T38]  ? __pfx_kthread+0x10/0x10
[ 1087.898468][   T38]  ? __pfx_kthread+0x10/0x10
[ 1087.898493][   T38]  ret_from_fork+0x436/0x7d0
[ 1087.898518][   T38]  ? __pfx_ret_from_fork+0x10/0x10
[ 1087.898546][   T38]  ? __switch_to_asm+0x39/0x70
[ 1087.898562][   T38]  ? __switch_to_asm+0x33/0x70
[ 1087.898578][   T38]  ? __pfx_kthread+0x10/0x10
[ 1087.898603][   T38]  ret_from_fork_asm+0x1a/0x30
[ 1087.898636][   T38]  </TASK>
[ 1087.898702][   T38] INFO: task dhcpcd:5501 blocked for more than 146 seconds.
[ 1087.898715][   T38]       Not tainted syzkaller #0
[ 1087.898724][   T38] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1087.898733][   T38] task:dhcpcd          state:D stack:24904 pid:5501  tgid:5501  ppid:1      task_flags:0x400140 flags:0x00004002
[ 1087.898774][   T38] Call Trace:
[ 1087.898779][   T38]  <TASK>
[ 1087.898791][   T38]  __schedule+0x16f3/0x4c20
[ 1087.898835][   T38]  ? __kernel_text_address+0xd/0x40
[ 1087.898864][   T38]  ? __pfx___schedule+0x10/0x10
[ 1087.898906][   T38]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1087.898931][   T38]  rt_mutex_schedule+0x77/0xf0
[ 1087.898948][   T38]  rt_mutex_slowlock_block+0x5ba/0x6d0
[ 1087.898970][   T38]  ? task_blocks_on_rt_mutex+0x78c/0x1380
[ 1087.899013][   T38]  rt_mutex_slowlock+0x2b1/0x6e0
[ 1087.899037][   T38]  ? rt_mutex_slowlock+0x1c9/0x6e0
[ 1087.899066][   T38]  ? __pfx_rt_mutex_slowlock+0x10/0x10
[ 1087.899098][   T38]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1087.899126][   T38]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 1087.899150][   T38]  ? genl_family_rcv_msg_attrs_parse+0xa3/0x2a0
[ 1087.899177][   T38]  ? nl80211_pre_doit+0x5f/0x930
[ 1087.899195][   T38]  mutex_lock_nested+0x16a/0x1d0
[ 1087.899216][   T38]  ? nl80211_pre_doit+0x5f/0x930
[ 1087.899238][   T38]  nl80211_pre_doit+0x5f/0x930
[ 1087.899256][   T38]  ? genl_family_rcv_msg_attrs_parse+0x212/0x2a0
[ 1087.899284][   T38]  genl_family_rcv_msg_doit+0x1be/0x300
[ 1087.899310][   T38]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[ 1087.899425][   T38]  genl_rcv_msg+0x60e/0x790
[ 1087.899450][   T38]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1087.899467][   T38]  ? __pfx_nl80211_pre_doit+0x10/0x10
[ 1087.899485][   T38]  ? __pfx_nl80211_get_wiphy+0x10/0x10
[ 1087.899503][   T38]  ? __pfx_nl80211_post_doit+0x10/0x10
[ 1087.899526][   T38]  ? __lock_acquire+0xab9/0xd20
[ 1087.899554][   T38]  netlink_rcv_skb+0x205/0x470
[ 1087.899580][   T38]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1087.899601][   T38]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1087.899644][   T38]  ? netlink_deliver_tap+0x2e/0x1b0
[ 1087.899667][   T38]  ? netlink_deliver_tap+0x2e/0x1b0
[ 1087.899694][   T38]  genl_rcv+0x28/0x40
[ 1087.899712][   T38]  netlink_unicast+0x843/0xa10
[ 1087.899746][   T38]  ? __pfx_netlink_unicast+0x10/0x10
[ 1087.899770][   T38]  ? netlink_sendmsg+0x642/0xb30
[ 1087.899791][   T38]  ? skb_put+0x11b/0x210
[ 1087.899820][   T38]  netlink_sendmsg+0x805/0xb30
[ 1087.899846][   T38]  ? __might_fault+0xb0/0x130
[ 1087.899897][   T38]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1087.899924][   T38]  ? __lock_acquire+0xab9/0xd20
[ 1087.899950][   T38]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[ 1087.899970][   T38]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1087.899995][   T38]  __sock_sendmsg+0x21c/0x270
[ 1087.900022][   T38]  ____sys_sendmsg+0x508/0x820
[ 1087.900112][   T38]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1087.900142][   T38]  ? import_iovec+0x74/0xa0
[ 1087.900169][   T38]  ___sys_sendmsg+0x21f/0x2a0
[ 1087.900191][   T38]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1087.900264][   T38]  __x64_sys_sendmsg+0x1a1/0x260
[ 1087.900287][   T38]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[ 1087.900321][   T38]  ? __secure_computing+0xe2/0x2a0
[ 1087.900357][   T38]  do_syscall_64+0xfa/0x3b0
[ 1087.900378][   T38]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1087.900395][   T38]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1087.900412][   T38]  ? clear_bhb_loop+0x60/0xb0
[ 1087.900434][   T38]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1087.900453][   T38] RIP: 0033:0x7f5baf8f3407
[ 1087.900471][   T38] RSP: 002b:00007ffce98e2830 EFLAGS: 00000202 ORIG_RAX: 000000000000002e
[ 1087.900504][   T38] RAX: ffffffffffffffda RBX: 00007f5baf869740 RCX: 00007f5baf8f3407
[ 1087.900519][   T38] RDX: 0000000000000000 RSI: 00007ffce98e28b0 RDI: 000000000000000e
[ 1087.900531][   T38] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1087.900542][   T38] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 1087.900554][   T38] R13: 000000000000000e R14: 00007ffce98e73b0 R15: 000055f1134642a0
[ 1087.900584][   T38]  </TASK>
[ 1087.900656][   T38] INFO: task kworker/u8:19:9381 blocked for more than 146 seconds.
[ 1087.900671][   T38]       Not tainted syzkaller #0
[ 1087.900681][   T38] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1087.900689][   T38] task:kworker/u8:19   state:D stack:23944 pid:9381  tgid:9381  ppid:2      task_flags:0x4208060 flags:0x00004000
[ 1087.900736][   T38] Workqueue: events_unbound linkwatch_event
[ 1087.900757][   T38] Call Trace:
[ 1087.900763][   T38]  <TASK>
[ 1087.900775][   T38]  __schedule+0x16f3/0x4c20
[ 1087.900826][   T38]  ? __pfx___schedule+0x10/0x10
[ 1087.900871][   T38]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1087.900899][   T38]  rt_mutex_schedule+0x77/0xf0
[ 1087.900916][   T38]  rt_mutex_slowlock_block+0x5ba/0x6d0
[ 1087.900939][   T38]  ? task_blocks_on_rt_mutex+0x78c/0x1380
[ 1087.900979][   T38]  rt_mutex_slowlock+0x2b1/0x6e0
[ 1087.901003][   T38]  ? rt_mutex_slowlock+0x1c9/0x6e0
[ 1087.901034][   T38]  ? __pfx_rt_mutex_slowlock+0x10/0x10
[ 1087.901068][   T38]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[ 1087.901100][   T38]  ? process_scheduled_works+0x9ef/0x17b0
[ 1087.901126][   T38]  ? linkwatch_event+0xe/0x60
[ 1087.901143][   T38]  mutex_lock_nested+0x16a/0x1d0
[ 1087.901164][   T38]  ? linkwatch_event+0xe/0x60
[ 1087.901181][   T38]  ? process_scheduled_works+0x9ef/0x17b0
[ 1087.901205][   T38]  linkwatch_event+0xe/0x60
[ 1087.901220][   T38]  process_scheduled_works+0xae1/0x17b0
[ 1087.901277][   T38]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1087.901318][   T38]  worker_thread+0x8a0/0xda0
[ 1087.901343][   T38]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 1087.901378][   T38]  ? __kthread_parkme+0x7b/0x200
[ 1087.901409][   T38]  kthread+0x711/0x8a0
[ 1087.901437][   T38]  ? __pfx_worker_thread+0x10/0x10
[ 1087.901458][   T38]  ? __pfx_kthread+0x10/0x10
[ 1087.901487][   T38]  ? __pfx_kthread+0x10/0x10
[ 1087.901512][   T38]  ret_from_fork+0x436/0x7d0
[ 1087.901538][   T38]  ? __pfx_ret_from_fork+0x10/0x10
[ 1087.901567][   T38]  ? __switch_to_asm+0x39/0x70
[ 1087.901583][   T38]  ? __switch_to_asm+0x33/0x70
[ 1087.901599][   T38]  ? __pfx_kthread+0x10/0x10
[ 1087.901624][   T38]  ret_from_fork_asm+0x1a/0x30
[ 1087.901658][   T38]  </TASK>
[ 1087.901670][   T38] INFO: task syz-executor:9479 blocked for more than 146 seconds.
[ 1087.901683][   T38]       Not tainted syzkaller #0
[ 1087.901691][   T38] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1087.901700][   T38] task:syz-executor    state:D stack:25928 pid:9479  tgid:9479  ppid:1      task_flags:0x400140 flags:0x00004004
[ 1087.935889][   T38] Call Trace:
[ 1087.935898][   T38]  <TASK>
[ 1087.935912][   T38]  __schedule+0x16f3/0x4c20
[ 1087.935969][   T38]  ? __pfx___schedule+0x10/0x10
[ 1087.936011][   T38]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1087.936046][   T38]  rt_mutex_schedule+0x77/0xf0
[ 1087.936065][   T38]  rt_mutex_slowlock_block+0x5ba/0x6d0
[ 1087.936086][   T38]  ? task_blocks_on_rt_mutex+0x78c/0x1380
[ 1087.936126][   T38]  rt_mutex_slowlock+0x2b1/0x6e0
[ 1087.936150][   T38]  ? rt_mutex_slowlock+0x1c9/0x6e0
[ 1087.936172][   T38]  ? __pfx_rt_mutex_slowlock+0x10/0x10
[ 1087.936203][   T38]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1087.936232][   T38]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 1087.936266][   T38]  ? inet_rtm_newaddr+0x3b0/0x18b0
[ 1087.936283][   T38]  mutex_lock_nested+0x16a/0x1d0
[ 1087.936303][   T38]  ? inet_rtm_newaddr+0x3b0/0x18b0
[ 1087.936326][   T38]  inet_rtm_newaddr+0x3b0/0x18b0
[ 1087.936355][   T38]  ? __pfx_inet_rtm_newaddr+0x10/0x10
[ 1087.936394][   T38]  ? __pfx_inet_rtm_newaddr+0x10/0x10
[ 1087.936413][   T38]  rtnetlink_rcv_msg+0x7cf/0xb70
[ 1087.936436][   T38]  ? __lock_acquire+0xab9/0xd20
[ 1087.936460][   T38]  ? rtnetlink_rcv_msg+0x1ab/0xb70
[ 1087.936482][   T38]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 1087.936522][   T38]  netlink_rcv_skb+0x205/0x470
[ 1087.936545][   T38]  ? __lock_acquire+0xab9/0xd20
[ 1087.936567][   T38]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 1087.936591][   T38]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1087.936627][   T38]  ? netlink_deliver_tap+0x2e/0x1b0
[ 1087.936658][   T38]  netlink_unicast+0x843/0xa10
[ 1087.936689][   T38]  ? __pfx_netlink_unicast+0x10/0x10
[ 1087.936713][   T38]  ? netlink_sendmsg+0x642/0xb30
[ 1087.936733][   T38]  ? skb_put+0x11b/0x210
[ 1087.936762][   T38]  netlink_sendmsg+0x805/0xb30
[ 1087.936794][   T38]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1087.936826][   T38]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[ 1087.936844][   T38]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1087.936867][   T38]  __sock_sendmsg+0x21c/0x270
[ 1087.936893][   T38]  __sys_sendto+0x3c7/0x520
[ 1087.936920][   T38]  ? __pfx___sys_sendto+0x10/0x10
[ 1087.936957][   T38]  ? fput_close_sync+0x119/0x200
[ 1087.936989][   T38]  ? __pfx_fput_close_sync+0x10/0x10
[ 1087.937009][   T38]  ? rt_spin_unlock+0x65/0x80
[ 1087.937044][   T38]  __x64_sys_sendto+0xde/0x100
[ 1087.937072][   T38]  do_syscall_64+0xfa/0x3b0
[ 1087.937089][   T38]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1087.937117][   T38]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1087.937135][   T38]  ? clear_bhb_loop+0x60/0xb0
[ 1087.937157][   T38]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1087.937175][   T38] RIP: 0033:0x7f640a000d5c
[ 1087.937191][   T38] RSP: 002b:00007fff78d1f6d0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[ 1087.937211][   T38] RAX: ffffffffffffffda RBX: 00007f640ad84620 RCX: 00007f640a000d5c
[ 1087.937225][   T38] RDX: 0000000000000028 RSI: 00007f640ad84670 RDI: 0000000000000003
[ 1087.937237][   T38] RBP: 0000000000000000 R08: 00007fff78d1f724 R09: 000000000000000c
[ 1087.937249][   T38] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[ 1087.937261][   T38] R13: 0000000000000000 R14: 00007f640ad84670 R15: 0000000000000000
[ 1087.937290][   T38]  </TASK>
[ 1087.937299][   T38] INFO: task syz-executor:9486 blocked for more than 146 seconds.
[ 1087.937312][   T38]       Not tainted syzkaller #0
[ 1087.937321][   T38] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1087.937330][   T38] task:syz-executor    state:D stack:26952 pid:9486  tgid:9486  ppid:1      task_flags:0x400140 flags:0x00004004
[ 1087.937376][   T38] Call Trace:
[ 1087.937382][   T38]  <TASK>
[ 1087.937394][   T38]  __schedule+0x16f3/0x4c20
[ 1087.937438][   T38]  ? __kernel_text_address+0xd/0x40
[ 1087.937463][   T38]  ? __pfx___schedule+0x10/0x10
[ 1087.937505][   T38]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1087.937532][   T38]  rt_mutex_schedule+0x77/0xf0
[ 1087.937550][   T38]  rt_mutex_slowlock_block+0x5ba/0x6d0
[ 1087.937571][   T38]  ? task_blocks_on_rt_mutex+0x78c/0x1380
[ 1087.937611][   T38]  rt_mutex_slowlock+0x2b1/0x6e0
[ 1087.937634][   T38]  ? rt_mutex_slowlock+0x1c9/0x6e0
[ 1087.937657][   T38]  ? __pfx_rt_mutex_slowlock+0x10/0x10
[ 1087.937688][   T38]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1087.937716][   T38]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 1087.937742][   T38]  ? bpf_lsm_capable+0x9/0x20
[ 1087.937762][   T38]  ? security_capable+0x7e/0x2e0
[ 1087.937790][   T38]  ? rtnl_newlink+0x8db/0x1c70
[ 1087.937810][   T38]  mutex_lock_nested+0x16a/0x1d0
[ 1087.937830][   T38]  ? rtnl_newlink+0x8db/0x1c70
[ 1087.937856][   T38]  rtnl_newlink+0x8db/0x1c70
[ 1087.937887][   T38]  ? __lock_acquire+0xab9/0xd20
[ 1087.937911][   T38]  ? __pfx_rtnl_newlink+0x10/0x10
[ 1087.937941][   T38]  ? __lock_acquire+0xab9/0xd20
[ 1087.937970][   T38]  ? __lock_acquire+0xab9/0xd20
[ 1087.938005][   T38]  ? __lock_acquire+0xab9/0xd20
[ 1087.938054][   T38]  ? is_bpf_text_address+0x26/0x2b0
[ 1087.938087][   T38]  ? is_bpf_text_address+0x292/0x2b0
[ 1087.938109][   T38]  ? is_bpf_text_address+0x26/0x2b0
[ 1087.938140][   T38]  ? __lock_acquire+0xab9/0xd20
[ 1087.938187][   T38]  ? __pfx_rtnl_newlink+0x10/0x10
[ 1087.938209][   T38]  rtnetlink_rcv_msg+0x7cf/0xb70
[ 1087.938230][   T38]  ? __lock_acquire+0xab9/0xd20
[ 1087.938253][   T38]  ? rtnetlink_rcv_msg+0x1ab/0xb70
[ 1087.938273][   T38]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 1087.938314][   T38]  netlink_rcv_skb+0x205/0x470
[ 1087.938334][   T38]  ? __lock_acquire+0xab9/0xd20
[ 1087.938356][   T38]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 1087.938381][   T38]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1087.938415][   T38]  ? netlink_deliver_tap+0x2e/0x1b0
[ 1087.938446][   T38]  netlink_unicast+0x843/0xa10
[ 1087.938476][   T38]  ? __pfx_netlink_unicast+0x10/0x10
[ 1087.938499][   T38]  ? netlink_sendmsg+0x642/0xb30
[ 1087.938520][   T38]  ? skb_put+0x11b/0x210
[ 1087.938547][   T38]  netlink_sendmsg+0x805/0xb30
[ 1087.938580][   T38]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1087.938612][   T38]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[ 1087.938629][   T38]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1087.938653][   T38]  __sock_sendmsg+0x21c/0x270
[ 1087.938678][   T38]  __sys_sendto+0x3c7/0x520
[ 1087.938704][   T38]  ? __pfx___sys_sendto+0x10/0x10
[ 1087.938741][   T38]  ? fput_close_sync+0x119/0x200
[ 1087.938772][   T38]  ? __pfx_fput_close_sync+0x10/0x10
[ 1087.938791][   T38]  ? rt_spin_unlock+0x65/0x80
[ 1087.938818][   T38]  __x64_sys_sendto+0xde/0x100
[ 1087.938846][   T38]  do_syscall_64+0xfa/0x3b0
[ 1087.938862][   T38]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1087.938885][   T38]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1087.938903][   T38]  ? clear_bhb_loop+0x60/0xb0
[ 1087.938925][   T38]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1087.938942][   T38] RIP: 0033:0x7f9c49b10d5c
[ 1087.938957][   T38] RSP: 002b:00007ffd7692cbb0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[ 1087.938974][   T38] RAX: ffffffffffffffda RBX: 00007f9c4a894620 RCX: 00007f9c49b10d5c
[ 1087.938988][   T38] RDX: 000000000000002c RSI: 00007f9c4a894670 RDI: 0000000000000003
[ 1087.939000][   T38] RBP: 0000000000000000 R08: 00007ffd7692cc04 R09: 000000000000000c
[ 1087.939012][   T38] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[ 1087.939030][   T38] R13: 0000000000000000 R14: 00007f9c4a894670 R15: 0000000000000000
[ 1087.939060][   T38]  </TASK>
[ 1087.939068][   T38] INFO: task syz-executor:9513 blocked for more than 146 seconds.
[ 1087.939081][   T38]       Not tainted syzkaller #0
[ 1087.939090][   T38] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1087.939098][   T38] task:syz-executor    state:D stack:26816 pid:9513  tgid:9513  ppid:1      task_flags:0x400140 flags:0x00004004
[ 1087.939142][   T38] Call Trace:
[ 1087.939148][   T38]  <TASK>
[ 1087.939159][   T38]  __schedule+0x16f3/0x4c20
[ 1087.939210][   T38]  ? __pfx___schedule+0x10/0x10
[ 1087.939252][   T38]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1087.939279][   T38]  rt_mutex_schedule+0x77/0xf0
[ 1087.939297][   T38]  rt_mutex_slowlock_block+0x5ba/0x6d0
[ 1087.939318][   T38]  ? task_blocks_on_rt_mutex+0xf12/0x1380
[ 1087.939358][   T38]  rt_mutex_slowlock+0x2b1/0x6e0
[ 1087.939382][   T38]  ? rt_mutex_slowlock+0x1c9/0x6e0
[ 1087.939404][   T38]  ? __pfx_rt_mutex_slowlock+0x10/0x10
[ 1087.939423][   T38]  ? __lock_acquire+0xab9/0xd20
[ 1087.939456][   T38]  ? inet_rtm_newaddr+0x3b0/0x18b0
[ 1087.939482][   T38]  ? is_bpf_text_address+0x26/0x2b0
[ 1087.939509][   T38]  ? inet_rtm_newaddr+0x3b0/0x18b0
[ 1087.939525][   T38]  mutex_lock_nested+0x16a/0x1d0
[ 1087.939551][   T38]  inet_rtm_newaddr+0x3b0/0x18b0
[ 1087.939580][   T38]  ? __pfx_inet_rtm_newaddr+0x10/0x10
[ 1087.939619][   T38]  ? __pfx_inet_rtm_newaddr+0x10/0x10
[ 1087.939638][   T38]  rtnetlink_rcv_msg+0x7cf/0xb70
[ 1087.939659][   T38]  ? __lock_acquire+0xab9/0xd20
[ 1087.939683][   T38]  ? rtnetlink_rcv_msg+0x1ab/0xb70
[ 1087.939705][   T38]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 1087.939745][   T38]  netlink_rcv_skb+0x205/0x470
[ 1087.939766][   T38]  ? __lock_acquire+0xab9/0xd20
[ 1087.939787][   T38]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 1087.939812][   T38]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1087.939847][   T38]  ? netlink_deliver_tap+0x2e/0x1b0
[ 1087.939900][   T38]  netlink_unicast+0x843/0xa10
[ 1087.939932][   T38]  ? __pfx_netlink_unicast+0x10/0x10
[ 1087.939955][   T38]  ? netlink_sendmsg+0x642/0xb30
[ 1087.939976][   T38]  ? skb_put+0x11b/0x210
[ 1087.940003][   T38]  netlink_sendmsg+0x805/0xb30
[ 1087.940042][   T38]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1087.940074][   T38]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[ 1087.940091][   T38]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1087.940115][   T38]  __sock_sendmsg+0x21c/0x270
[ 1087.940140][   T38]  __sys_sendto+0x3c7/0x520
[ 1087.940166][   T38]  ? __pfx___sys_sendto+0x10/0x10
[ 1087.940217][   T38]  ? exc_page_fault+0x76/0xf0
[ 1087.940246][   T38]  ? do_user_addr_fault+0xc8a/0x1390
[ 1087.940271][   T38]  __x64_sys_sendto+0xde/0x100
[ 1087.940299][   T38]  do_syscall_64+0xfa/0x3b0
[ 1087.940315][   T38]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1087.940339][   T38]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1087.940356][   T38]  ? clear_bhb_loop+0x60/0xb0
[ 1087.940378][   T38]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1087.940395][   T38] RIP: 0033:0x7fd1364b0d5c
[ 1087.940410][   T38] RSP: 002b:00007fffe31dca20 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[ 1087.940429][   T38] RAX: ffffffffffffffda RBX: 00007fd137234620 RCX: 00007fd1364b0d5c
[ 1087.940442][   T38] RDX: 0000000000000028 RSI: 00007fd137234670 RDI: 0000000000000003
[ 1087.940454][   T38] RBP: 0000000000000000 R08: 00007fffe31dca74 R09: 000000000000000c
[ 1087.940466][   T38] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[ 1087.940478][   T38] R13: 0000000000000000 R14: 00007fd137234670 R15: 0000000000000000
[ 1087.940507][   T38]  </TASK>
[ 1087.940515][   T38] INFO: task syz-executor:9517 blocked for more than 146 seconds.
[ 1087.940527][   T38]       Not tainted syzkaller #0
[ 1087.940536][   T38] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1087.940544][   T38] task:syz-executor    state:D stack:26952 pid:9517  tgid:9517  ppid:1      task_flags:0x400140 flags:0x00004004
[ 1087.940588][   T38] Call Trace:
[ 1087.940594][   T38]  <TASK>
[ 1087.940605][   T38]  __schedule+0x16f3/0x4c20
[ 1087.940655][   T38]  ? __pfx___schedule+0x10/0x10
[ 1087.940698][   T38]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1087.940726][   T38]  rt_mutex_schedule+0x77/0xf0
[ 1087.940743][   T38]  rt_mutex_slowlock_block+0x5ba/0x6d0
[ 1087.940764][   T38]  ? task_blocks_on_rt_mutex+0xf12/0x1380
[ 1087.940804][   T38]  rt_mutex_slowlock+0x2b1/0x6e0
[ 1087.940828][   T38]  ? rt_mutex_slowlock+0x1c9/0x6e0
[ 1087.940850][   T38]  ? __pfx_rt_mutex_slowlock+0x10/0x10
[ 1087.940869][   T38]  ? __lock_acquire+0xab9/0xd20
[ 1087.940902][   T38]  ? inet_rtm_newaddr+0x3b0/0x18b0
[ 1087.940928][   T38]  ? is_bpf_text_address+0x26/0x2b0
[ 1087.940954][   T38]  ? inet_rtm_newaddr+0x3b0/0x18b0
[ 1087.940971][   T38]  mutex_lock_nested+0x16a/0x1d0
[ 1087.940998][   T38]  inet_rtm_newaddr+0x3b0/0x18b0
[ 1087.941033][   T38]  ? __pfx_inet_rtm_newaddr+0x10/0x10
[ 1087.941068][   T38]  ? __pfx_inet_rtm_newaddr+0x10/0x10
[ 1087.941086][   T38]  rtnetlink_rcv_msg+0x7cf/0xb70
[ 1087.941108][   T38]  ? __lock_acquire+0xab9/0xd20
[ 1087.941130][   T38]  ? rtnetlink_rcv_msg+0x1ab/0xb70
[ 1087.941152][   T38]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 1087.941192][   T38]  netlink_rcv_skb+0x205/0x470
[ 1087.941212][   T38]  ? __lock_acquire+0xab9/0xd20
[ 1087.941234][   T38]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 1087.941257][   T38]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1087.941292][   T38]  ? netlink_deliver_tap+0x2e/0x1b0
[ 1087.941324][   T38]  netlink_unicast+0x843/0xa10
[ 1087.941355][   T38]  ? __pfx_netlink_unicast+0x10/0x10
[ 1087.941378][   T38]  ? netlink_sendmsg+0x642/0xb30
[ 1087.941398][   T38]  ? skb_put+0x11b/0x210
[ 1087.941425][   T38]  netlink_sendmsg+0x805/0xb30
[ 1087.941458][   T38]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1087.941490][   T38]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[ 1087.941507][   T38]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1087.941531][   T38]  __sock_sendmsg+0x21c/0x270
[ 1087.941555][   T38]  __sys_sendto+0x3c7/0x520
[ 1087.941581][   T38]  ? __pfx___sys_sendto+0x10/0x10
[ 1087.941633][   T38]  ? exc_page_fault+0x76/0xf0
[ 1087.941660][   T38]  ? do_user_addr_fault+0xc8a/0x1390
[ 1087.941686][   T38]  __x64_sys_sendto+0xde/0x100
[ 1087.941713][   T38]  do_syscall_64+0xfa/0x3b0
[ 1087.976180][   T38]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1087.976217][   T38]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1087.976237][   T38]  ? clear_bhb_loop+0x60/0xb0
[ 1087.976260][   T38]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1087.976276][   T38] RIP: 0033:0x7fa788e10d5c
[ 1087.976291][   T38] RSP: 002b:00007fffa2fc9eb0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[ 1087.976312][   T38] RAX: ffffffffffffffda RBX: 00007fa789b94620 RCX: 00007fa788e10d5c
[ 1087.976325][   T38] RDX: 0000000000000028 RSI: 00007fa789b94670 RDI: 0000000000000003
[ 1087.976337][   T38] RBP: 0000000000000000 R08: 00007fffa2fc9f04 R09: 000000000000000c
[ 1087.976349][   T38] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[ 1087.976359][   T38] R13: 0000000000000000 R14: 00007fa789b94670 R15: 0000000000000000
[ 1087.976389][   T38]  </TASK>
[ 1087.976424][   T38] 
[ 1087.976424][   T38] Showing all locks held in the system:
[ 1087.976433][   T38] 6 locks held by kworker/u8:0/12:
[ 1087.976444][   T38]  #0: ffff8880579d5138 ((wq_completion)wg-kex-wg0){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 1087.976492][   T38]  #1: ffffc90000117bc0 ((work_completion)(&peer->transmit_handshake_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 1087.976537][   T38]  #2: ffff8880350955f8 (&wg->static_identity.lock){++++}-{4:4}, at: wg_noise_handshake_create_initiation+0x10a/0x7e0
[ 1087.976583][   T38]  #3: ffff88805a550e90 (&handshake->lock){++++}-{4:4}, at: wg_noise_handshake_create_initiation+0x11b/0x7e0
[ 1087.976626][   T38]  #4: ffffffff8d84a9a0 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[ 1087.976670][   T38]  #5: ffff8880b8823d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[ 1087.976714][   T38] 2 locks held by ksoftirqd/0/15:
[ 1087.976724][   T38]  #0: ffffffff8d84a9a0 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[ 1087.976767][   T38]  #1: ffff8880b8823d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[ 1087.976812][   T38] 2 locks held by rcuc/0/20:
[ 1087.976822][   T38]  #0: ffffffff8d84a9a0 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[ 1087.976866][   T38]  #1: ffff8880b8823d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[ 1087.976912][   T38] 8 locks held by ktimers/1/29:
[ 1087.976922][   T38] 5 locks held by kworker/1:0/31:
[ 1087.976932][   T38]  #0: ffff8880316c1538 ((wq_completion)wg-kex-wg0#4){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 1087.976982][   T38]  #1: ffffc90000a5fbc0 ((work_completion)(&({ do { const void *__vpp_verify = (typeof((worker) + 0))((void *)0); (void)__vpp_verify; } while (0); ({ unsigned long __ptr; __ptr = (unsigned long) ((__typeof_unqual__(*((worker))) *)(( unsigned long)((worker)))); (typeof((__typeof_unqual__(*((worker))) *)(( unsigned long)((worker))))) (__ptr + (((__per_cpu_offset[(cpu)])))); }); })->work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 1087.977047][   T38]  #2: ffff88805a40a3c0 (&handshake->lock){++++}-{4:4}, at: wg_noise_handshake_begin_session+0x38/0xbe0
[ 1087.977090][   T38]  #3: ffffffff8dac5768 (remove_cache_srcu){.+.+}-{0:0}, at: srcu_read_lock+0x27/0x60
[ 1087.977138][   T38]  #4: ffff88801dac7858 (&n->list_lock){+.+.}-{3:3}, at: __slab_free+0x19e/0x390
[ 1087.977181][   T38] 1 lock held by khungtaskd/38:
[ 1087.977191][   T38]  #0: ffffffff8d9a8dc0 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x2e/0x180
[ 1087.977233][   T38] 3 locks held by kworker/u8:2/43:
[ 1087.977244][   T38]  #0: ffff8880302aa938 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 1087.977288][   T38]  #1: ffffc90000b47bc0 ((work_completion)(&(&ifa->dad_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 1087.977334][   T38]  #2: ffffffff8ecd38b8 (rtnl_mutex){+.+.}-{4:4}, at: addrconf_dad_work+0x119/0x15a0
[ 1087.977379][   T38] 5 locks held by kworker/u8:3/57:
[ 1087.977390][   T38]  #0: ffff888019881138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 1087.977433][   T38]  #1: ffffc9000123fbc0 ((work_completion)(&rdev->wiphy_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 1087.977478][   T38]  #2: ffff88805b550898 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: cfg80211_wiphy_work+0xc4/0x470
[ 1087.977525][   T38]  #3: ffffffff8d84a9a0 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[ 1087.977569][   T38]  #4: ffff8880b8823d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[ 1087.977618][   T38] 7 locks held by kworker/u8:5/162:
[ 1087.977628][   T38]  #0: ffff888019881138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 1087.977673][   T38]  #1: ffffc90003b2fbc0 ((work_completion)(&(&nsim_dev->trap_data->trap_report_dw)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 1087.977719][   T38]  #2: ffff88805a2df300 (&devlink->lock_key#2){+.+.}-{4:4}, at: nsim_dev_trap_report_work+0x57/0xbc0
[ 1087.977772][   T38]  #3: ffff888039251d20 (&nsim_trap_data->trap_lock){+.+.}-{3:3}, at: nsim_dev_trap_report_work+0x1ad/0xbc0
[ 1087.977819][   T38]  #4: ffffffff8d9a8dc0 (rcu_read_lock){....}-{1:3}, at: rt_spin_lock+0x1bb/0x2c0
[ 1087.977862][   T38]  #5: ffffffff8d84a9a0 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[ 1087.977906][   T38]  #6: ffff8880b8823d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[ 1087.977955][   T38] 6 locks held by kworker/u8:7/1131:
[ 1087.977965][   T38]  #0: ffff88801a6f4138 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 1087.978009][   T38]  #1: ffffc90004b97bc0 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 1087.978060][   T38]  #2: ffffffff8ecc69a0 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xf7/0x800
[ 1087.978106][   T38]  #3: ffff88805dc6e0d8 (&dev->mutex){....}-{4:4}, at: devlink_pernet_pre_exit+0x10a/0x3d0
[ 1087.978149][   T38]  #4: ffff888029190300 (&devlink->lock_key#16){+.+.}-{4:4}, at: devlink_pernet_pre_exit+0x11c/0x3d0
[ 1087.978195][   T38]  #5: ffffffff8ecd38b8 (rtnl_mutex){+.+.}-{4:4}, at: nsim_create+0x800/0xf20
[ 1087.978237][   T38] 7 locks held by kworker/u8:8/1144:
[ 1087.978247][   T38]  #0: ffff888019881138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 1087.978291][   T38]  #1: ffffc90004a57bc0 ((work_completion)(&(&nsim_dev->trap_data->trap_report_dw)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 1087.978336][   T38]  #2: ffff888028936300 (&devlink->lock_key#11){+.+.}-{4:4}, at: nsim_dev_trap_report_work+0x57/0xbc0
[ 1087.978388][   T38]  #3: ffff88805b3bc120 (&nsim_trap_data->trap_lock){+.+.}-{3:3}, at: nsim_dev_trap_report_work+0x1ad/0xbc0
[ 1087.978435][   T38]  #4: ffffffff8d9a8dc0 (rcu_read_lock){....}-{1:3}, at: rt_spin_lock+0x1bb/0x2c0
[ 1087.978479][   T38]  #5: ffffffff8d84a9a0 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[ 1087.978523][   T38]  #6: ffff8880b8823d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[ 1087.978568][   T38] 2 locks held by kworker/0:2/1231:
[ 1087.978579][   T38] 5 locks held by kworker/u8:9/1545:
[ 1087.978589][   T38]  #0: ffff888019881138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 1087.978634][   T38]  #1: ffffc900057e7bc0 ((work_completion)(&rdev->wiphy_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 1087.978679][   T38]  #2: ffff88805b7e0898 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: cfg80211_wiphy_work+0xc4/0x470
[ 1087.978725][   T38]  #3: ffffffff8d84a9a0 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[ 1087.978768][   T38]  #4: ffff8880b8823d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[ 1087.978825][   T38] 7 locks held by kworker/u8:11/3577:
[ 1087.978835][   T38]  #0: ffff888019881138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 1087.978880][   T38]  #1: ffffc9000d76fbc0 ((work_completion)(&(&nsim_dev->trap_data->trap_report_dw)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 1087.978925][   T38]  #2: ffff888021fab300 (&devlink->lock_key#4){+.+.}-{4:4}, at: nsim_dev_trap_report_work+0x57/0xbc0
[ 1087.978977][   T38]  #3: ffff88805a5af520 (&nsim_trap_data->trap_lock){+.+.}-{3:3}, at: nsim_dev_trap_report_work+0x1ad/0xbc0
[ 1087.979030][   T38]  #4: ffffffff8d9a8dc0 (rcu_read_lock){....}-{1:3}, at: rt_spin_lock+0x1bb/0x2c0
[ 1087.979073][   T38]  #5: ffffffff8d84a9a0 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[ 1087.979116][   T38]  #6: ffff8880b8823d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[ 1087.979161][   T38] 3 locks held by udevd/5207:
[ 1087.979171][   T38]  #0: ffffffff8e0b0ad0 (tomoyo_ss){.+.+}-{0:0}, at: tomoyo_path_perm+0x1e3/0x4b0
[ 1087.979228][   T38]  #1: ffffffff8dac5768 (remove_cache_srcu){.+.+}-{0:0}, at: srcu_read_lock+0x27/0x60
[ 1087.979269][   T38]  #2: ffff88801dac7858 (&n->list_lock){+.+.}-{3:3}, at: __slab_free+0x19e/0x390
[ 1087.979311][   T38] 2 locks held by dhcpcd/5501:
[ 1087.979321][   T38]  #0: ffffffff8ed398c0 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40
[ 1087.979362][   T38]  #1: ffffffff8ecd38b8 (rtnl_mutex){+.+.}-{4:4}, at: nl80211_pre_doit+0x5f/0x930
[ 1087.979417][   T38] 2 locks held by getty/5601:
[ 1087.979427][   T38]  #0: ffff88823bf420a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[ 1087.979468][   T38]  #1: ffffc90003e832e0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x444/0x1410
[ 1087.979514][   T38] 4 locks held by kworker/u9:2/5839:
[ 1087.979523][   T38]  #0: ffff8880574a9138 ((wq_completion)hci6#2){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 1087.979571][   T38]  #1: ffffc90004bb7bc0 ((work_completion)(&hdev->rx_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 1087.979613][   T38]  #2: ffff8880318ec0a8 (&hdev->lock){+.+.}-{4:4}, at: hci_remote_features_evt+0x9b/0x8e0
[ 1087.979655][   T38]  #3: ffffffff8ee3b358 (hci_cb_list_lock){+.+.}-{4:4}, at: hci_remote_features_evt+0x516/0x8e0
[ 1087.979700][   T38] 5 locks held by kworker/u9:4/5846:
[ 1087.979715][   T38]  #0: ffff888059e7d138 ((wq_completion)hci1){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 1087.979759][   T38]  #1: ffffc90004c37bc0 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 1087.979803][   T38]  #2: ffff888037084e80 (&hdev->req_lock){+.+.}-{4:4}, at: hci_cmd_sync_work+0x1d4/0x3a0
[ 1087.979846][   T38]  #3: ffff8880370840a8 (&hdev->lock){+.+.}-{4:4}, at: hci_abort_conn_sync+0x242/0xe30
[ 1087.979913][   T38]  #4: ffffffff8ee3b358 (hci_cb_list_lock){+.+.}-{4:4}, at: hci_conn_failed+0x165/0x310
[ 1087.979959][   T38] 5 locks held by kworker/u9:6/5849:
[ 1087.979978][   T38]  #0: ffff88805e128938 ((wq_completion)hci0){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 1087.980029][   T38]  #1: ffffc90004c67bc0 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 1087.980074][   T38]  #2: ffff88806b314e80 (&hdev->req_lock){+.+.}-{4:4}, at: hci_cmd_sync_work+0x1d4/0x3a0
[ 1087.980117][   T38]  #3: ffff88806b3140a8 (&hdev->lock){+.+.}-{4:4}, at: hci_abort_conn_sync+0x242/0xe30
[ 1087.980163][   T38]  #4: ffffffff8ee3b358 (hci_cb_list_lock){+.+.}-{4:4}, at: hci_conn_failed+0x165/0x310
[ 1087.980210][   T38] 2 locks held by napi/wg1-0/5903:
[ 1087.980220][   T38]  #0: ffffffff8d84a9a0 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[ 1087.980264][   T38]  #1: ffff8880b8823d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[ 1087.980308][   T38] 3 locks held by kworker/1:6/5987:
[ 1087.980318][   T38]  #0: ffff888019898538 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 1087.980363][   T38]  #1: ffffc90005797bc0 (deferred_process_work){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 1087.980416][   T38]  #2: ffffffff8ecd38b8 (rtnl_mutex){+.+.}-{4:4}, at: switchdev_deferred_process_work+0xe/0x20
[ 1087.980460][   T38] 4 locks held by kworker/0:9/6585:
[ 1087.980470][   T38]  #0: ffff888019899938 ((wq_completion)events_power_efficient){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 1087.980516][   T38]  #1: ffffc9000c91fbc0 ((work_completion)(&(&tbl->gc_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 1087.980560][   T38]  #2: ffffffff8d84a9a0 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[ 1087.980604][   T38]  #3: ffff8880b8823d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[ 1087.980647][   T38] 4 locks held by kworker/u8:14/6599:
[ 1087.980658][   T38]  #0: ffff888060670138 ((wq_completion)wg-kex-wg0#3){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 1087.980707][   T38]  #1: ffffc9000c7b7bc0 ((work_completion)(&peer->transmit_handshake_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 1087.980752][   T38]  #2: ffffffff8d84a9a0 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[ 1087.980795][   T38]  #3: ffff8880b8823d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[ 1087.980839][   T38] 6 locks held by kworker/u8:17/6602:
[ 1087.980849][   T38]  #0: ffff88803b770938 ((wq_completion)wg-kex-wg2){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 1087.980894][   T38]  #1: ffffc9000c98fbc0 ((work_completion)(&peer->transmit_handshake_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 1087.980939][   T38]  #2: ffff888035b595f8 (&wg->static_identity.lock){++++}-{4:4}, at: wg_noise_handshake_create_initiation+0x10a/0x7e0
[ 1087.980984][   T38]  #3: ffff88805a40ce20 (&handshake->lock){++++}-{4:4}, at: wg_noise_handshake_create_initiation+0x11b/0x7e0
[ 1087.981035][   T38]  #4: ffffffff8d84a9a0 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[ 1087.981078][   T38]  #5: ffff8880b8823d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[ 1087.981123][   T38] 2 locks held by kworker/u8:18/7197:
[ 1087.981138][   T38] 4 locks held by kworker/0:0/8540:
[ 1087.981147][   T38]  #0: ffff8880316c1538 ((wq_completion)wg-kex-wg0#4){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 1087.981196][   T38]  #1: ffffc90005057bc0 ((work_completion)(&({ do { const void *__vpp_verify = (typeof((worker) + 0))((void *)0); (void)__vpp_verify; } while (0); ({ unsigned long __ptr; __ptr = (unsigned long) ((__typeof_unqual__(*((worker))) *)(( unsigned long)((worker)))); (typeof((__typeof_unqual__(*((worker))) *)(( unsigned long)((worker))))) (__ptr + (((__per_cpu_offset[(cpu)])))); }); })->work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 1087.981253][   T38]  #2: ffffffff8d84a9a0 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[ 1087.981294][   T38]  #3: ffff8880b8823d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[ 1087.981337][   T38] 5 locks held by kworker/u9:0/8636:
[ 1087.981345][   T38]  #0: ffff88805c503138 ((wq_completion)hci3){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 1087.981395][   T38]  #1: ffffc90003e3fbc0 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 1087.981435][   T38]  #2: ffff888062118e80 (&hdev->req_lock){+.+.}-{4:4}, at: hci_cmd_sync_work+0x1d4/0x3a0
[ 1087.981475][   T38]  #3: ffff8880621180a8 (&hdev->lock){+.+.}-{4:4}, at: hci_abort_conn_sync+0x242/0xe30
[ 1087.981520][   T38]  #4: ffffffff8ee3b358 (hci_cb_list_lock){+.+.}-{4:4}, at: hci_conn_failed+0x165/0x310
[ 1087.981570][   T38] 5 locks held by kworker/u8:12/9028:
[ 1087.981582][   T38] 7 locks held by kworker/u8:13/9090:
[ 1087.981592][   T38]  #0: ffff888019881138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 1087.981635][   T38]  #1: ffffc90005027bc0 ((work_completion)(&(&nsim_dev->trap_data->trap_report_dw)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 1087.981678][   T38]  #2: ffff888037678300 (&devlink->lock_key#17){+.+.}-{4:4}, at: nsim_dev_trap_report_work+0x57/0xbc0
[ 1088.121345][   T38]  #3: ffff88803585bd20 (&nsim_trap_data->trap_lock){+.+.}-{3:3}, at: nsim_dev_trap_report_work+0x1ad/0xbc0
[ 1088.121410][   T38]  #4: ffffffff8d9a8dc0 (rcu_read_lock){....}-{1:3}, at: rt_spin_lock+0x1bb/0x2c0
[ 1088.121457][   T38]  #5: ffffffff8d84a9a0 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[ 1088.121503][   T38]  #6: ffff8880b8823d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[ 1088.121550][   T38] 4 locks held by syz.6.576/9199:
[ 1088.121561][   T38]  #0: ffff888032964e80 (&hdev->req_lock){+.+.}-{4:4}, at: hci_unregister_dev+0x212/0x510
[ 1088.121606][   T38]  #1: ffff8880329640a8 (&hdev->lock){+.+.}-{4:4}, at: hci_dev_close_sync+0x66a/0x1330
[ 1088.121653][   T38]  #2: ffffffff8ee3b358 (hci_cb_list_lock){+.+.}-{4:4}, at: hci_conn_hash_flush+0xa1/0x230
[ 1088.121695][   T38]  #3: ffff8880391dbb58 (&conn->lock#2){+.+.}-{4:4}, at: l2cap_conn_del+0x70/0x680
[ 1088.198522][   T38] 7 locks held by kworker/u8:15/9275:
[ 1088.299466][   T38]  #0: ffff888019881138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 1088.299530][   T38]  #1: ffffc90005327bc0 ((work_completion)(&(&nsim_dev->trap_data->trap_report_dw)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 1088.299575][   T38]  #2: ffff88805a43f300 (&devlink->lock_key#3){+.+.}-{4:4}, at: nsim_dev_trap_report_work+0x57/0xbc0
[ 1088.299628][   T38]  #3: ffff88805999dd20 (&nsim_trap_data->trap_lock){+.+.}-{3:3}, at: nsim_dev_trap_report_work+0x1ad/0xbc0
[ 1088.299674][   T38]  #4: ffffffff8d9a8dc0 (rcu_read_lock){....}-{1:3}, at: rt_spin_lock+0x1bb/0x2c0
[ 1088.299719][   T38]  #5: ffffffff8d84a9a0 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[ 1088.299762][   T38]  #6: ffff8880b8923d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[ 1088.299807][   T38] 7 locks held by kworker/u8:16/9316:
[ 1088.299818][   T38]  #0: ffff888019881138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 1088.299881][   T38]  #1: ffffc90005177bc0 ((work_completion)(&(&nsim_dev->trap_data->trap_report_dw)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 1088.299926][   T38]  #2: ffff88803d850300 (&devlink->lock_key#5){+.+.}-{4:4}, at: nsim_dev_trap_report_work+0x57/0xbc0
[ 1088.299976][   T38]  #3: ffff88805a3c2920 (&nsim_trap_data->trap_lock){+.+.}-{3:3}, at: nsim_dev_trap_report_work+0x1ad/0xbc0
[ 1088.300022][   T38]  #4: ffffffff8d9a8dc0 (rcu_read_lock){....}-{1:3}, at: rt_spin_lock+0x1bb/0x2c0
[ 1088.300064][   T38]  #5: ffffffff8d84a9a0 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[ 1088.300106][   T38]  #6: ffff8880b8823d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[ 1088.300149][   T38] 1 lock held by syz-executor/9341:
[ 1088.300160][   T38]  #0: ffffffff8ecd38b8 (rtnl_mutex){+.+.}-{4:4}, at: tun_chr_close+0x41/0x1c0
[ 1088.300207][   T38] 1 lock held by syz-executor/9355:
[ 1088.300217][   T38]  #0: ffffffff8ecd38b8 (rtnl_mutex){+.+.}-{4:4}, at: tun_chr_close+0x41/0x1c0
[ 1088.300283][   T38] 3 locks held by kworker/u8:19/9381:
[ 1088.300292][   T38]  #0: ffff888019881138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 1088.300336][   T38]  #1: ffffc90005097bc0 ((linkwatch_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 1088.300378][   T38]  #2: ffffffff8ecd38b8 (rtnl_mutex){+.+.}-{4:4}, at: linkwatch_event+0xe/0x60
[ 1088.300421][   T38] 3 locks held by syz-executor/9383:
[ 1088.300431][   T38]  #0: ffff888050fb8e80 (&hdev->req_lock){+.+.}-{4:4}, at: hci_unregister_dev+0x212/0x510
[ 1088.300470][   T38]  #1: ffff888050fb80a8 (&hdev->lock){+.+.}-{4:4}, at: hci_dev_close_sync+0x66a/0x1330
[ 1088.300515][   T38]  #2: ffffffff8ee3b358 (hci_cb_list_lock){+.+.}-{4:4}, at: hci_conn_hash_flush+0xa1/0x230
[ 1088.300557][   T38] 2 locks held by syz-executor/9386:
[ 1088.300567][   T38]  #0: ffff888034c40e80 (&hdev->req_lock){+.+.}-{4:4}, at: hci_unregister_dev+0x212/0x510
[ 1088.300608][   T38]  #1: ffff888034c400a8 (&hdev->lock){+.+.}-{4:4}, at: hci_dev_close_sync+0x66a/0x1330
[ 1088.300655][   T38] 1 lock held by syz-executor/9479:
[ 1088.300665][   T38]  #0: ffffffff8ecd38b8 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x3b0/0x18b0
[ 1088.300706][   T38] 1 lock held by syz-executor/9486:
[ 1088.300716][   T38]  #0: ffffffff8ecd38b8 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_newlink+0x8db/0x1c70
[ 1088.300761][   T38] 1 lock held by syz-executor/9513:
[ 1088.300771][   T38]  #0: ffffffff8ecd38b8 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x3b0/0x18b0
[ 1088.300812][   T38] 1 lock held by syz-executor/9517:
[ 1088.300822][   T38]  #0: ffffffff8ecd38b8 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x3b0/0x18b0
[ 1088.300863][   T38] 4 locks held by kworker/0:10/9535:
[ 1088.300874][   T38] 5 locks held by kworker/0:11/9537:
[ 1088.300883][   T38]  #0: ffff88805868e138 ((wq_completion)wg-kex-wg1#2){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 1088.300931][   T38]  #1: ffffc9000413fbc0 ((work_completion)(&({ do { const void *__vpp_verify = (typeof((worker) + 0))((void *)0); (void)__vpp_verify; } while (0); ({ unsigned long __ptr; __ptr = (unsigned long) ((__typeof_unqual__(*((worker))) *)(( unsigned long)((worker)))); (typeof((__typeof_unqual__(*((worker))) *)(( unsigned long)((worker))))) (__ptr + (((__per_cpu_offset[(cpu)])))); }); })->work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 1088.300987][   T38]  #2: ffff8880587495f8 (&wg->static_identity.lock){++++}-{4:4}, at: wg_noise_handshake_consume_response+0x1c7/0xb00
[ 1088.301022][   T38]  #3: ffffffff8d84a9a0 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[ 1088.301064][   T38]  #4: ffff8880b8823d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[ 1088.301108][   T38] 1 lock held by syz-executor/9539:
[ 1088.301118][   T38]  #0: ffffffff8ecd38b8 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x3b0/0x18b0
[ 1088.301158][   T38] 4 locks held by syz-executor/9549:
[ 1088.301168][   T38]  #0: ffff88803d183878 (&sb->s_type->i_mutex_key#10){+.+.}-{4:4}, at: sock_close+0x9b/0x240
[ 1088.301216][   T38]  #1: ffff88806b2a9350 (sk_lock-AF_BLUETOOTH-BTPROTO_HCI){+.+.}-{0:0}, at: hci_sock_release+0x5b/0x540
[ 1088.301262][   T38]  #2: ffffffff8d84a9a0 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[ 1088.301304][   T38]  #3: ffff8880b8823d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[ 1088.301348][   T38] 2 locks held by syz-executor/9543:
[ 1088.301358][   T38] 5 locks held by kworker/u9:1/9544:
[ 1088.301368][   T38]  #0: ffff888029006138 ((wq_completion)hci2#2){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 1088.301416][   T38]  #1: ffffc900052bfbc0 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 1088.301460][   T38]  #2: ffff888023848e80 (&hdev->req_lock){+.+.}-{4:4}, at: hci_cmd_sync_work+0x1d4/0x3a0
[ 1088.301501][   T38]  #3: ffff8880238480a8 (&hdev->lock){+.+.}-{4:4}, at: hci_abort_conn_sync+0x242/0xe30
[ 1088.301546][   T38]  #4: ffffffff8ee3b358 (hci_cb_list_lock){+.+.}-{4:4}, at: hci_conn_failed+0x165/0x310
[ 1088.301592][   T38] 4 locks held by kworker/0:12/9545:
[ 1088.301602][   T38]  #0: ffff888019899938 ((wq_completion)events_power_efficient){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 1088.301646][   T38]  #1: ffffc90005407bc0 ((work_completion)(&(&tbl->managed_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 1088.301691][   T38]  #2: ffffffff8d84a9a0 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[ 1088.301806][   T38]  #3: ffff8880b8823d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[ 1088.301853][   T38] 4 locks held by kworker/u9:5/9547:
[ 1088.301863][   T38]  #0: ffff88805e5af938 ((wq_completion)hci10#2){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 1088.301910][   T38]  #1: ffffc90005457bc0 ((work_completion)(&hdev->rx_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 1088.301954][   T38]  #2: ffff888062ae00a8 (&hdev->lock){+.+.}-{4:4}, at: hci_remote_features_evt+0x9b/0x8e0
[ 1088.301997][   T38]  #3: ffffffff8ee3b358 (hci_cb_list_lock){+.+.}-{4:4}, at: hci_remote_features_evt+0x516/0x8e0
[ 1088.302041][   T38] 2 locks held by syz-executor/9550:
[ 1088.302052][   T38]  #0: ffffffff8dac5768 (remove_cache_srcu){.+.+}-{0:0}, at: srcu_read_lock+0x27/0x60
[ 1088.302094][   T38]  #1: ffff88801dac7858 (&n->list_lock){+.+.}-{3:3}, at: __slab_free+0x19e/0x390
[ 1088.302136][   T38] 4 locks held by kworker/u9:7/9553:
[ 1088.302147][   T38]  #0: ffff888030958938 ((wq_completion)krxrpcd){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 1088.302190][   T38]  #1: ffffc900049c7bc0 ((work_completion)(&rxnet->peer_keepalive_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 1088.302241][   T38]  #2: ffffffff8d84a9a0 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[ 1088.302283][   T38]  #3: ffff8880b8823d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[ 1088.302326][   T38] 1 lock held by syz-executor/9554:
[ 1088.302336][   T38]  #0: ffffffff8ecd38b8 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x3b0/0x18b0
[ 1088.302377][   T38] 4 locks held by kworker/1:11/9557:
[ 1088.302387][   T38] 3 locks held by udevd/9558:
[ 1088.302397][   T38]  #0: ffff88803d183f38 (&sb->s_type->i_mutex_key#10){+.+.}-{4:4}, at: sock_close+0x9b/0x240
[ 1088.302443][   T38]  #1: ffffffff8d84a9a0 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[ 1088.302485][   T38]  #2: ffff8880b8823d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[ 1088.302530][   T38] 
[ 1088.302535][   T38] =============================================
[ 1088.302535][   T38] 
[ 1088.302557][   T38] NMI backtrace for cpu 1
[ 1088.302571][   T38] CPU: 1 UID: 0 PID: 38 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[ 1088.302591][   T38] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 1088.302601][   T38] Call Trace:
[ 1088.302609][   T38]  <TASK>
[ 1088.302617][   T38]  dump_stack_lvl+0x189/0x250
[ 1088.302645][   T38]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1088.302668][   T38]  ? __pfx__printk+0x10/0x10
[ 1088.302698][   T38]  nmi_cpu_backtrace+0x39e/0x3d0
[ 1088.302722][   T38]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[ 1088.302746][   T38]  ? __pfx__printk+0x10/0x10
[ 1088.302768][   T38]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[ 1088.302791][   T38]  nmi_trigger_cpumask_backtrace+0x17a/0x300
[ 1088.302815][   T38]  watchdog+0xf93/0xfe0
[ 1088.302841][   T38]  ? watchdog+0x1de/0xfe0
[ 1088.302866][   T38]  kthread+0x711/0x8a0
[ 1088.302893][   T38]  ? __pfx_watchdog+0x10/0x10
[ 1088.302912][   T38]  ? __pfx_kthread+0x10/0x10
[ 1088.302939][   T38]  ? __pfx_kthread+0x10/0x10
[ 1088.302963][   T38]  ret_from_fork+0x436/0x7d0
[ 1088.302986][   T38]  ? __pfx_ret_from_fork+0x10/0x10
[ 1088.303011][   T38]  ? __switch_to_asm+0x39/0x70
[ 1088.303024][   T38]  ? __switch_to_asm+0x33/0x70
[ 1088.303038][   T38]  ? __pfx_kthread+0x10/0x10
[ 1088.303061][   T38]  ret_from_fork_asm+0x1a/0x30
[ 1088.303092][   T38]  </TASK>
[ 1088.303099][   T38] Sending NMI from CPU 1 to CPUs 0:
[ 1088.303127][    C0] NMI backtrace for cpu 0
[ 1088.303139][    C0] CPU: 0 UID: 0 PID: 17 Comm: pr/legacy Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[ 1088.303157][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 1088.303166][    C0] RIP: 0010:io_serial_in+0x77/0xc0
[ 1088.303186][    C0] Code: e8 ce 32 7f fc 44 89 f9 d3 e3 49 83 ee 80 4c 89 f0 48 c1 e8 03 42 80 3c 20 00 74 08 4c 89 f7 e8 5f 79 de fc 41 03 1e 89 da ec <0f> b6 c0 5b 41 5c 41 5e 41 5f c3 cc cc cc cc cc 44 89 f9 80 e1 07
[ 1088.303199][    C0] RSP: 0018:ffffc90000167890 EFLAGS: 00000202
[ 1088.303212][    C0] RAX: 1ffffffff3275c00 RBX: 00000000000003fd RCX: 0000000000000000
[ 1088.303223][    C0] RDX: 00000000000003fd RSI: 0000000000000000 RDI: 0000000000000000
[ 1088.303233][    C0] RBP: ffffffff993ae890 R08: 0000000000000000 R09: 0000000000000000
[ 1088.303243][    C0] R10: dffffc0000000000 R11: ffffffff853f38a0 R12: dffffc0000000000
[ 1088.303255][    C0] R13: 0000000000000000 R14: ffffffff993ae600 R15: 0000000000000000
[ 1088.303266][    C0] FS:  0000000000000000(0000) GS:ffff8881268bc000(0000) knlGS:0000000000000000
[ 1088.303279][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1088.303290][    C0] CR2: 00007f74bbec0910 CR3: 000000000d7a6000 CR4: 00000000003526f0
[ 1088.303305][    C0] Call Trace:
[ 1088.303311][    C0]  <TASK>
[ 1088.303319][    C0]  wait_for_lsr+0x1aa/0x2f0
[ 1088.303341][    C0]  serial8250_console_write+0x11bd/0x1b40
[ 1088.303365][    C0]  ? __pfx_serial8250_console_write+0x10/0x10
[ 1088.303381][    C0]  ? console_flush_all+0x13a/0xcd0
[ 1088.303400][    C0]  ? console_flush_all+0x476/0xcd0
[ 1088.303417][    C0]  console_flush_all+0x698/0xcd0
[ 1088.303435][    C0]  ? console_flush_all+0x13a/0xcd0
[ 1088.303453][    C0]  ? __pfx_console_flush_all+0x10/0x10
[ 1088.303469][    C0]  ? __lock_acquire+0xab9/0xd20
[ 1088.303492][    C0]  __console_flush_and_unlock+0xa4/0x240
[ 1088.303509][    C0]  ? __pfx___console_flush_and_unlock+0x10/0x10
[ 1088.303530][    C0]  legacy_kthread_func+0x13b/0x1a0
[ 1088.303548][    C0]  ? __pfx_legacy_kthread_func+0x10/0x10
[ 1088.303564][    C0]  ? __pfx_autoremove_wake_function+0x10/0x10
[ 1088.303583][    C0]  ? __kthread_parkme+0x7b/0x200
[ 1088.303600][    C0]  ? __kthread_parkme+0x1a1/0x200
[ 1088.303621][    C0]  kthread+0x711/0x8a0
[ 1088.303640][    C0]  ? __pfx_legacy_kthread_func+0x10/0x10
[ 1088.303657][    C0]  ? __pfx_kthread+0x10/0x10
[ 1088.303677][    C0]  ? __pfx_kthread+0x10/0x10
[ 1088.303698][    C0]  ret_from_fork+0x436/0x7d0
[ 1088.303716][    C0]  ? __pfx_ret_from_fork+0x10/0x10
[ 1088.303737][    C0]  ? __switch_to_asm+0x39/0x70
[ 1088.303750][    C0]  ? __switch_to_asm+0x33/0x70
[ 1088.303763][    C0]  ? __pfx_kthread+0x10/0x10
[ 1088.303782][    C0]  ret_from_fork_asm+0x1a/0x30
[ 1088.303803][    C0]  </TASK>
[ 1088.304126][   T38] Kernel panic - not syncing: hung_task: blocked tasks
[ 1088.304139][   T38] CPU: 1 UID: 0 PID: 38 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[ 1088.304159][   T38] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 1088.304169][   T38] Call Trace:
[ 1088.304176][   T38]  <TASK>
[ 1088.304183][   T38]  dump_stack_lvl+0x99/0x250
[ 1088.304206][   T38]  ? __asan_memcpy+0x40/0x70
[ 1088.304225][   T38]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1088.304253][   T38]  ? __pfx__printk+0x10/0x10
[ 1088.304281][   T38]  vpanic+0x281/0x750
[ 1088.304303][   T38]  ? __pfx_vpanic+0x10/0x10
[ 1088.304321][   T38]  ? __x2apic_send_IPI_mask+0x1e4/0x260
[ 1088.304338][   T38]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1088.304367][   T38]  panic+0xb9/0xc0
[ 1088.304408][   T38]  ? __pfx_panic+0x10/0x10
[ 1088.304431][   T38]  ? irq_work_queue+0xc3/0x140
[ 1088.304453][   T38]  ? nmi_trigger_cpumask_backtrace+0x234/0x300
[ 1088.304475][   T38]  watchdog+0xfd2/0xfe0
[ 1088.304505][   T38]  ? watchdog+0x1de/0xfe0
[ 1088.304530][   T38]  kthread+0x711/0x8a0
[ 1088.304553][   T38]  ? __pfx_watchdog+0x10/0x10
[ 1088.304571][   T38]  ? __pfx_kthread+0x10/0x10
[ 1088.304597][   T38]  ? __pfx_kthread+0x10/0x10
[ 1088.304621][   T38]  ret_from_fork+0x436/0x7d0
[ 1088.304643][   T38]  ? __pfx_ret_from_fork+0x10/0x10
[ 1088.304669][   T38]  ? __switch_to_asm+0x39/0x70
[ 1088.304685][   T38]  ? __switch_to_asm+0x33/0x70
[ 1088.304699][   T38]  ? __pfx_kthread+0x10/0x10
[ 1088.304721][   T38]  ret_from_fork_asm+0x1a/0x30
[ 1088.304753][   T38]  </TASK>
[ 1088.305164][   T38] Kernel Offset: disabled