last executing test programs:

26.290171757s ago: executing program 3 (id=415):
r0 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
ioctl$BTRFS_IOC_GET_DEV_STATS(0xffffffffffffffff, 0xc4089434, &(0x7f00000003c0)={0x0, 0x7, 0x0, [0x0, 0x8, 0x9, 0x8, 0x9b0], [0x7fffffffffffffff, 0xeaf, 0x1f5, 0x3, 0x9, 0x7, 0x0, 0x8, 0x3, 0x8, 0x1, 0x0, 0x10, 0x6, 0x0, 0x4, 0x6, 0x9, 0x9, 0x9, 0x5, 0xffffffff7fffffff, 0xf, 0x8, 0x9, 0x76f, 0x1fffffffe0, 0x7, 0xa, 0xf, 0x6, 0x1, 0x80000001, 0x0, 0x88, 0x9, 0xdb, 0xfffffffffffffff4, 0xc25c, 0x7, 0x8, 0x8, 0x3, 0x4, 0x1, 0x9, 0x1, 0x9, 0x1, 0x117, 0x5, 0x8000000000000001, 0xfe, 0x4, 0x0, 0x3, 0x4, 0xb, 0xf, 0x0, 0x0, 0x8, 0x4, 0x5, 0x4, 0x2, 0xc66c, 0x9, 0x3, 0x10000, 0x8, 0x1, 0xc, 0x2, 0x8, 0x5, 0xa1, 0x6, 0x9, 0x6, 0x5, 0x2, 0x1, 0xffffffffbfd3f0e9, 0xffffffffd5f54280, 0x2, 0x5, 0x0, 0x0, 0xb7c, 0xffffffffffffff00, 0x96f0, 0x7ff, 0xe91, 0xb, 0x1, 0x8, 0x4, 0x5, 0x7fffffff, 0x1dee, 0x0, 0x8, 0x1, 0x4f48, 0xd, 0x80000000, 0x7fffffff, 0x100, 0x2, 0x3, 0xffff, 0x2, 0x8000000000000001, 0x7ff, 0x7, 0x0, 0x7, 0x1ac5cf3d, 0x7fffffffffffffff, 0xffffffff]})
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000480), 0x22401, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x43, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0, 0x3f}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_SET_GUEST_DEBUG(r3, 0x4048ae9b, &(0x7f0000000180)={0x20003, 0x0, [0x1, 0xe0e0, 0x2, 0xc, 0x0, 0x7, 0x0, 0x8000]})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x42002)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r4, 0xc08c5332, &(0x7f00000003c0)={0x0, 0x2000000, 0x0, 'queue1\x00'})
write$sndseq(r4, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick, {}, {}, @raw32}], 0xffc8)
r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(r5, 0x404c534a, &(0x7f00000001c0)={0x0, 0x0, 0x9})
close_range(r0, 0xffffffffffffffff, 0x0)

21.450516311s ago: executing program 3 (id=423):
syz_open_procfs(0x0, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000180))
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, &(0x7f0000000040)="0f01cb650f741065666765f36f0f330f09660f3a0cb9000000752066b9800000c00f326635004000000f300f01d7ba4100ed", 0x32}], 0x1, 0x12, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x218, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f00000003c0)={[0x0, 0x0, 0x8000, 0x40, 0x0, 0x0, 0x2004cb, 0x0, 0xfffffffffffffffe, 0x3, 0x0, 0x4, 0x0, 0x2, 0x0, 0x7fffffff], 0x80a0000})
ioctl$KVM_RUN(r4, 0xae80, 0x0)

17.382477608s ago: executing program 0 (id=431):
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000500)='percpu_free_percpu\x00', r0}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x4)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000040)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$nl_generic(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f000000d379)={&(0x7f0000000380)={0x18, 0x14, 0x609, 0x0, 0x0, {0x1e}, [@generic="c1"]}, 0x18}}, 0x8040)
bpf$MAP_CREATE(0x2000000000000000, &(0x7f0000000700)=@base={0x6, 0x4, 0x70be, 0x5c, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2}, 0x50)

15.2638796s ago: executing program 1 (id=434):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x10)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000003c0)='cpuacct.usage_sys\x00', 0x275a, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000019240)='ns/user\x00')
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
ioctl$BTRFS_IOC_GET_DEV_STATS(0xffffffffffffffff, 0xc4089434, &(0x7f0000000900)={0x0, 0x2, 0x1, [0xffff, 0x13a0000000000, 0x1, 0x88, 0x5], [0xffffffffffffff63, 0x8, 0xffffffffffffff4a, 0x80000001, 0x10000, 0x9, 0x2d9, 0x4, 0x40000003, 0xc5, 0x8001, 0x9, 0x4, 0x7e, 0x7d, 0x3ae7, 0x8, 0x101, 0x80, 0xffffffffffff8000, 0x3, 0x9, 0x7f, 0x6, 0x1, 0xc, 0x5, 0xff800000000000, 0x401, 0x7fffffff, 0xc333, 0x9, 0x6, 0x8001, 0x1, 0xd5d, 0x8, 0x1, 0x7, 0x5, 0x6cf2, 0x2, 0x9, 0xa, 0x0, 0xffffffff00000001, 0x7fffffffffffffff, 0x2, 0x5, 0x4cc2, 0xfffffffffffffff7, 0x6, 0x0, 0x3a67, 0x7f, 0x1aac, 0xfff, 0xffffffffffffffff, 0x8, 0x3, 0x706, 0x4002, 0x5b4, 0x8, 0xfffffffffffffffb, 0xb, 0xb88a, 0x6, 0x3, 0x6, 0x2, 0x77, 0x8, 0x346, 0x0, 0xfffffffffffffff9, 0x8, 0xffff800000000000, 0x7, 0xc67d, 0x7, 0xffffffffffffff92, 0x7, 0x5, 0xe39, 0x3, 0x9, 0x5, 0x8, 0x6, 0x40000000000000, 0x6, 0x684, 0x2, 0x401, 0x5, 0x6fc, 0xc90, 0xfff, 0xfffffffffffffeff, 0x72, 0x3, 0x6, 0x28, 0x3, 0x1, 0x8d45, 0x100000000, 0x3ff, 0xf2, 0x800, 0x8, 0x8, 0x8001, 0x5, 0x9, 0xa, 0x1ff, 0x2, 0x6b, 0x334]})
chdir(&(0x7f0000000140)='./bus\x00')
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.freeze\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000280), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000003, 0x28011, r0, 0x0)
r1 = socket(0x1, 0x2, 0x0)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r2=>0x0}, &(0x7f0000cab000)=0xc)
setresuid(0x0, r2, 0x0)
sendmsg$key(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x40408c1)
ioctl$FS_IOC_SETFLAGS(r0, 0xc0189436, &(0x7f0000000140))

14.926020341s ago: executing program 2 (id=435):
prlimit64(0x0, 0xe, &(0x7f0000000180)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_open_dev$sndctrl(0x0, 0x10000, 0x2000)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f00000005c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000730000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='contention_begin\x00', r3}, 0x18)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$fou(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$FOU_CMD_GET(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x14, r5, 0x701, 0x70bd25, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x20000090}, 0x40000)

14.902394518s ago: executing program 3 (id=437):
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
getsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f0000000500), &(0x7f0000000580)=0x8)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r3}, 0x10)
mkdirat(0xffffffffffffffff, 0x0, 0x194)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_GET(0xffffffffffffffff, 0x0, 0x20000090)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/stat\x00', 0x0, 0x0)
preadv(r4, &(0x7f0000003780)=[{&(0x7f0000001300)=""/170, 0xaa}], 0x1, 0xffff, 0x0)

14.809558081s ago: executing program 1 (id=438):
socket(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x8000002000000, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
gettid()
r1 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r1, &(0x7f0000000040)={0x18, 0x0, {0x1, @remote, 'sit0\x00'}}, 0x1e)
sendmmsg(r1, &(0x7f0000002340)=[{{0x0, 0x0, 0x0}}], 0x3e8, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
bind$netlink(0xffffffffffffffff, 0x0, 0x0)

13.603654925s ago: executing program 3 (id=440):
syz_usb_connect$uac1(0x7, 0x71, &(0x7f0000000040)={{0x12, 0x1, 0x110, 0x0, 0x0, 0x0, 0x40, 0x1d6b, 0x101, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x5f, 0x3, 0x1, 0x3, 0x80, 0xf4, {{0x9, 0x4, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, {{0xa, 0x24, 0x1, 0xf, 0x1}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {}, {{0x9, 0x5, 0x1, 0x9, 0x0, 0xf7, 0x9, 0x6, {0x7, 0x25, 0x1, 0x83, 0x2, 0xc}}}}, {}, {0x9, 0x4, 0x2, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {}, {{0x9, 0x5, 0x82, 0x9, 0x40, 0x26, 0x6, 0x1, {0x7, 0x25, 0x1, 0x3, 0x8, 0xdd60}}}}}}}]}}, 0x0)
r0 = syz_usb_connect(0x0, 0x1cb, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000122f0d4071040403dfe4000000010902"], 0x0)
syz_usb_connect$uac1(0x0, 0xb1, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000000000106b1d010140010102030109029f0003010000000904000000010100000a24010000000201020d24060000030800000031ce21c798329740594c137d0000000c24020201010608000010000c2402000000030000000000092406000601000000092403000000000500092406050001"], 0x0)
syz_usb_disconnect(r0)
r1 = syz_usb_connect(0x0, 0x24, &(0x7f0000001000)=ANY=[], 0x0)
syz_usb_control_io(r0, &(0x7f0000001380)={0x2c, 0x0, &(0x7f0000001180)={0x0, 0x3, 0x2, @string={0x2}}, 0x0, 0x0, 0x0}, 0x0)
syz_usb_control_io$cdc_ecm(r1, &(0x7f00000007c0)={0x14, 0x0, &(0x7f0000000780)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0)
syz_usb_control_io(r1, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r1, 0x0, 0x0)
syz_usb_control_io$printer(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r1, 0x0, &(0x7f0000000600)={0x44, &(0x7f0000000440)={0x20, 0x8, 0x1, "d7"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$cdc_ncm(r0, &(0x7f0000000140)={0xffffffffffffffae, 0x0, &(0x7f00000008c0)={0x0, 0x3, 0x1a, {0x3}}}, 0x0)
syz_usb_control_io$cdc_ecm(r1, 0x0, &(0x7f0000000380)={0x1c, &(0x7f0000000280)={0x20, 0x15, 0x1, "9c"}, 0x0, 0x0})

12.72309949s ago: executing program 1 (id=441):
r0 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101b01)
ioctl$USBDEVFS_SETINTERFACE(r0, 0x80045510, &(0x7f00000000c0)={0xfd})
r1 = socket$packet(0x11, 0x2, 0x300)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="30000000100001000000ce6bb9092919507f3400", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=0x0, @ANYBLOB="08001b"], 0x30}}, 0x0)
setsockopt$packet_int(r1, 0x107, 0x8, &(0x7f0000000100)=0x40049, 0x4)
recvmmsg(r1, &(0x7f0000000480)=[{{0x0, 0x30, 0x0, 0x0, &(0x7f00000003c0)=""/11, 0x17}}], 0x400000000000179, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r3 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r3, 0x107, 0x12, &(0x7f0000000000), 0x8)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f0000001800)=@raw={'raw\x00', 0x9, 0x3, 0x1c0, 0x0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x170, 0xffffffff, 0xffffffff, 0x170, 0xffffffff, 0x3, 0x0, {[{{@ip={@local, @remote, 0xff, 0x0, 'veth1_virt_wifi\x00', 'veth0_to_hsr\x00', {0xff}, {0x80}, 0x5e, 0x0, 0x23}, 0x0, 0x70, 0x90}, @unspec=@NOTRACK={0x20}}, {{@ip={@local, @local, 0x0, 0xffffffff, 'veth0_macvtap\x00', 'syzkaller0\x00', {0xff}, {}, 0x1, 0x0, 0x8}, 0x0, 0x70, 0x98}, @common=@unspec=@NFQUEUE0={0x28, 'NFQUEUE\x00', 0x0, {0x8}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x220)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
bpf$MAP_CREATE(0x0, 0x0, 0x0)

12.722892456s ago: executing program 2 (id=442):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = socket$kcm(0x2d, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r4, 0x89e2, &(0x7f0000000100)={<r5=>r4})
bind$xdp(r5, &(0x7f0000000080)={0x2d, 0x0, 0x0, 0xc}, 0x10)
close(r4)

12.369701614s ago: executing program 0 (id=444):
syz_open_dev$vcsa(&(0x7f0000000040), 0x1, 0x40002)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xe}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000002c0)='contention_begin\x00', r0, 0x0, 0xd}, 0x18)
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
pselect6(0x40, &(0x7f00000001c0)={0x1, 0x0, 0x3, 0xfffffffffffffffd}, 0x0, 0x0, 0x0, 0x0)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r3 = dup(r2)
write$UHID_INPUT(r3, &(0x7f0000001040)={0xf, {"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", 0x1000}}, 0x1006)

11.634762834s ago: executing program 2 (id=445):
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$SNDCTL_DSP_CHANNELS(r0, 0xc0045006, &(0x7f0000000080)=0x7f)
ioctl$SNDCTL_DSP_SPEED(r0, 0xc0045002, &(0x7f0000000000)=0x2)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
socket$can_raw(0x1d, 0x3, 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0/file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
read$dsp(r0, &(0x7f00000011c0)=""/4103, 0x1007)

10.25429466s ago: executing program 0 (id=446):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r2)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0)
close(r4)
r5 = socket$unix(0x1, 0x1, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000440)=@newqdisc={0x60, 0x24, 0x4ee4e6a52ff56541, 0x70bd29, 0xfffffffe, {0x0, 0x0, 0x0, r7, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x30, 0x2, {{0x100, 0x7, 0x6361, 0x5, 0x1, 0x6}, [@TCA_NETEM_RATE={0x14, 0x6, {0xea, 0x5, 0x8, 0x887}}]}}}]}, 0x60}, 0x1, 0x0, 0x0, 0x20000001}, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70b923, 0x80000, {0x0, 0x0, 0x0, r7, {}, {0x2, 0xb}, {0xd, 0xb}}, [@qdisc_kind_options=@q_bfifo={{0xa}, {0x8, 0x2, 0x2}}]}, 0x38}, 0x1, 0x0, 0x0, 0x2000c065}, 0x4008000)
ioctl$SIOCSIFHWADDR(r4, 0x8922, &(0x7f0000002280)={'syzkaller0\x00', @random="2b0100004ec6"})

9.9365383s ago: executing program 4 (id=448):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000001c40)=ANY=[@ANYBLOB="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"/3590], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000380)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = syz_io_uring_setup(0x10a, &(0x7f0000000140)={0x0, 0x5883, 0x8, 0x0, 0xfffffdfc}, &(0x7f0000000040)=<r5=>0x0, &(0x7f0000000400)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r5, r6, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x4004, @fd_index=0x3, 0x0, 0x0})
io_uring_enter(r4, 0x3516, 0x0, 0x0, 0x0, 0x0)

8.655912253s ago: executing program 2 (id=449):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x18, 0xc, 0x0, &(0x7f0000000180)='GPL\x00', 0x8}, 0x94)
syz_emit_ethernet(0x52, &(0x7f0000000100)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaabb08004c000078ac1414000a0101004414050300000000000000000a010101000000008903ce070200000000000000", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB='\\'], 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r0 = add_key$user(&(0x7f00000002c0), &(0x7f0000000300)={'syz', 0x0}, &(0x7f0000000280)="d25a9850a9d77f10", 0x8, 0xfffffffffffffffe)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000018c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="480000001000050400"/18, @ANYBLOB="ebffffffffffffff280012800b00010065"], 0x48}, 0x1, 0x0, 0x0, 0x4000011}, 0x0)
r1 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000140)={r0, r1, r0}, &(0x7f00000000c0)=""/83, 0xfffffffffffffe4f, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20042, 0x0)
add_key$user(&(0x7f0000000080), 0x0, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = dup(r3)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r3, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

8.397193477s ago: executing program 1 (id=450):
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x200000087}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000003900)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r0}, 0x10)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
flock(0xffffffffffffffff, 0xc)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000ac0)=@base={0x6, 0x4, 0x1010, 0x89}, 0x50)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000840)={0x0, &(0x7f0000000780)=""/106, &(0x7f0000000380), &(0x7f0000000000), 0x80, r4, 0x0, 0x7}, 0x38)

8.355723683s ago: executing program 3 (id=451):
socket(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x8000002000000, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
gettid()
r1 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r1, &(0x7f0000000040)={0x18, 0x0, {0x1, @remote, 'sit0\x00'}}, 0x1e)
syz_io_uring_setup(0x10a, 0x0, &(0x7f0000000040)=<r2=>0x0, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
bind$netlink(0xffffffffffffffff, 0x0, 0x0)

8.182475538s ago: executing program 0 (id=452):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000009c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x46, '\x00', 0x0, 0x2}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, r1, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
getsockopt$bt_BT_FLUSHABLE(0xffffffffffffffff, 0x112, 0x8, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x800)
ioctl$SG_GET_VERSION_NUM(r5, 0x2284, &(0x7f0000000080))

8.147049929s ago: executing program 4 (id=453):
socket$nl_netfilter(0x10, 0x3, 0xc)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000380)='./bus\x00', 0x0, 0x0)
fanotify_init(0x200, 0x0)
signalfd(0xffffffffffffffff, &(0x7f0000000600), 0x8)
socket$inet_udp(0x2, 0x2, 0x0)
syz_open_dev$mouse(&(0x7f0000000000), 0x0, 0x8042)
syz_open_dev$evdev(&(0x7f0000000000), 0x2, 0x822b01)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
r0 = syz_open_dev$dri(&(0x7f0000000440), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r0, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r0, 0xc01064b5, &(0x7f0000000040)={&(0x7f0000000100)=[<r1=>0x0], 0x1})
r2 = socket$phonet_pipe(0x23, 0x5, 0x2)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000240)={{}, 0x0, &(0x7f0000000200)=r2}, 0x1e)
ioctl$DRM_IOCTL_MODE_ATOMIC(r0, 0xc03864bc, &(0x7f0000000180)={0x1, 0x1, &(0x7f00000000c0)=[r1], &(0x7f0000000180), &(0x7f0000000200), &(0x7f00000001c0)=[0x7fffffff]})

6.710480468s ago: executing program 0 (id=454):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x9, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = socket$xdp(0x2c, 0x3, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000140)={'batadv_slave_1\x00', <r2=>0x0})
r3 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r3, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/74, 0x328000, 0x1000}, 0x1c)
setsockopt$XDP_UMEM_COMPLETION_RING(r3, 0x11b, 0x6, &(0x7f0000000080)=0x1, 0x4)
r4 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$XDP_RX_RING(r3, 0x11b, 0x2, &(0x7f0000001980)=0x100, 0x4)
setsockopt$XDP_UMEM_FILL_RING(r3, 0x11b, 0x5, &(0x7f0000000340)=0x8000, 0x4)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r4, 0x8933, &(0x7f0000000200)={'batadv_slave_1\x00', <r5=>0x0})
setsockopt$XDP_TX_RING(r0, 0x11b, 0x3, &(0x7f0000001780)=0x100000, 0x4)
bind$xdp(r3, &(0x7f0000000100)={0x2c, 0x0, r5}, 0x10)
bind$xdp(r0, &(0x7f0000000240)={0x2c, 0x1, r2, 0x0, r3}, 0x10)
setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f0000000580)={0x0, 0x7000, 0x800, 0x0, 0x2}, 0x20)

6.227763849s ago: executing program 1 (id=455):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x1, 0x0, 0x0, 0x40f00, 0x23, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[], 0x50)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = openat$fb0(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r4, 0x4601, &(0x7f0000000380)={0x3c0, 0x78, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x8, 0x3, 0x1ff, 0x3d, 0x963, 0x3, 0x53, 0x202, 0x1, 0xc})

6.226970519s ago: executing program 4 (id=456):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000003900)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r0}, 0x10)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bind$netlink(0xffffffffffffffff, 0x0, 0x0)
r4 = socket(0x840000000002, 0x3, 0x100)
connect$inet(r4, &(0x7f0000000000)={0x2, 0x3, @remote}, 0x10)
sendmmsg$inet(r4, &(0x7f0000005240), 0x4000095, 0x0)

4.947847301s ago: executing program 4 (id=457):
syz_open_dev$vcsa(&(0x7f0000000040), 0x1, 0x40002)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xe}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000002c0)='contention_begin\x00', r0, 0x0, 0xd}, 0x18)
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
pselect6(0x40, &(0x7f00000001c0)={0x1, 0x0, 0x3, 0xfffffffffffffffd}, 0x0, 0x0, 0x0, 0x0)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r3 = dup(r2)
write$UHID_INPUT(r3, &(0x7f0000001040)={0xf, {"a2e3ad21ed0d09f91b3d090987f70e06d038e7ff7fc6e5539b0d440e8b089b3f380068090890e0878f0e1ac6e7049b334d959b669a240d5b67f3988f7ef319520120ffe8d178708c523c921b1b5b5b070d074a0936cd3b78130daa61d8e8040000005802b77f07227227b7ba67e0e78657a6f5c2a874e62a9ccdc0d31a0c9f318c0da1993bd160e233df4a62179c6f30e065cd5b91cd0ae193973735b36d5b1b63dd1c00305d3f46635eb016d5b1dda98e2d749be7bd1df1fb3b231fdcdb5075a9aaa1b469c3090000000000000075271b286329d169934288fd789aa37d6e98b224fd44b65b31334ffc55cc82cd3ac32ecdb08ced6f9081b4dd0d8b38f3cd4498bee800490841bdb114f6b76383709d8f5c55432a909fda039aec54a1236e80f6a8abadea7662496bddbb42be6bfb2f17959d1f416e56c71b1931870262f5e801119242ca026bfc821e7e7daf2451138e645bb80c617669314e2fbe70de98ec76a9e40dad47f36fd9f7d0d42a4b5f1185ccdcf16ff46295d8a0fa17713c5802630933a9a34af674f3f39fe23491237c08822dec110911e893d0a8c4f677747abc360934b82910ff85bfd995083bba2987a67399eac427d145d546a40b9f6ff14ac488ec130fb3850a27af9544ae15a7e454dea05918b41243513f000000000000000a3621c56cea8d20fa911a0c41db6ebe8cac64f17679141d54b34bbc9963ac4f4bb3309603f1d4ab966203861b5b15a841f2b575a8bd0d78248ebe4d9a80002695104f674c2431dca141fae269cab70e9a66f3c3a9a63e9639e1f59c0ede26c6b5d74b078a5e15c31634e5ae098ce9ee70771aaa18119a867e1088334975e9f73483b6a62fa678ca14ffd9f9db2a7869d85864056526f889af43a6056080572286522449df466c632b3570243f989cce7cd9f465e41e610c20d80421d653a5520000008213b704c7fb082ff27590678ef9f190bae97909507041d860420c5664b27921b14dc1db8892fd32d0ad7bc946813591ad8deff4b05f60cea0da7710ac0000000000008000bea37ce0d0d4aa202f928f28381aab144a5d429a04a6a2b83c7068ae949ed06e288e810bac9c76600025e19c907f8ea2e2010000008271a1f5f8528f227e79c1389dbdfffe492f21579d2c15b8c70cdb1c332d86d87341432750861ec2bc3451edca194b221cfec4603d276bbaa1dfa6d4fb8a48a76eafc9a9a0270e4c10d64cd5a62427264f2377fe763c43470833ac96c45f357cbbaba8f1b1fdcc7cbb61a7cdb9744ed7f9129aede2be21ccfdc4e9134f8684b3a4f354da9a795e96334e207dff70f1988037b2ed3aaf575c0b88d8f146684078416d59fdee5325928974d12dad99dac44c3f0008047096a44002bebc2420aed92fa9b6578b4779415d4ac01b75d5495c118045651cf41c2fc48b778efa5ea5677747430af4162b987b80c3e001cd34e5c92f76cc4c24eeb8bc4e9ac2aed9e53803ed0ca4ae3a9737d214060005ea6f1783e287b3bee96e3a726eafe2fdfaa78d1f48c13b64df07847754b8400daaa69bf5c8f4350aeae9ca1207e78283cd0b20ceb360c7e658828163e2d25c4aa348561f927e88f63aa70e73a5e69b3df3495903f06572e1e007fa55a2999f596d067312f5779e8dbfdcf3427138f3d444d2639a10477f9bec4b0bbb6e3c04be68981f392203dd0ee3ef478e16dacfc5e3e03cf7ab8e3902f1b0ff034ef655b253ca509383815b1b6fc6522d4e4fdc11a48cf42d48604675fde2b94cf00500a2690891abf8ab9c015073014d9e08d4338b8780bdecd436cf0541359bafffa45237f104b96210403b2de9efed496f42355bc7872c827467cfa5c4e72730d56bd068ed211cf847535edecb7b373f78b095b68441a34cb51682a8ae4d24ad0465f3927f889b813076038e79a7962fb385a882e8020f06c4c2ba1dd5cac7c18876da865d258734dd73583df292892448039ef799cf0630becdcce04579b5561dc825ab829827945e020c1f67ee615feb6243378e0610060f02cca4e91b2f001edb3d78fb4b55668dda93aec92a5de203717aa49c2d284acfabe262fccfcbb2b75a2183c46eb65ca8104e1b4da7fbb77ab2fc043aead87c32ab875ee7c2e7b7019c982cd3b43eaeb1a5fb135c0c7dcee8fe6516a328032f88c042891824659e9e94265c803b35ee5f83a2b210520106b8a358b50ab7a1fa89af9c251fe5294b3d1802d5676d95f160ec97b1ad94872cb2044642c37b4a6cc6c04effc1672db7e4b68d787d9a7a508ae54b3cd7369dde50e8c77d95a3d361c040babb171607caac2a3559ad4f75465f49c0d0ae3716db6e00cb11db4a5fade2a57c10238e204a67737c3b42aae501b20f7694a00f16e2d0174035a2c22656dc29880acebdbe8ddbd75c2f998d8ac2dfad2ba3a504767b6b45a45957f24d758ed024b3849c11d412a2a03b4047497022d9c30e23ef4df5c89644f48bb536f7945b59d7bcddff754413d135273ea8e75f22f216c6b9990ae71806f2c00b4025c48b75c0f73cdb9a7b8fa367b50028067e7f16f4dd569d462f4f19eacdb3ed70eeebb4483f8fd777d443e8b40427db6fe29068c0ca3d2414442e8f3a154704b0e51bc664a137b26be719f4f7c9a5678a674dfc95df80b9ce375dd649c8c704e509bd88c8e63d8c7dd67071115c8982ba46af4d6adcc9f68a75b9397b035153faf46366e7205dd8d6f37525c1a0e94610dd94323f6c15d085197149bfd6655548cfd9c52c9711937f79abb1a124f1210465483cd3b2d78378cfb85ed82e7da0f6eb6d279f2ae455925d0f6f1ba571eba281f2a654fb39ddff3b484439ff158e7c5419e037f3e3ad038f2211f1033195563c7f93cd54b9094f226e783271e1e5a2a2c10712eab625d64931cd4ffe6738d97b9b5ef828ee9fb059fc01af0e79c1e14b1d25988c69a399567c1d93768f7971d31488b8658a20878b7c1dd7ba02fc42939dde3d4a3339a65d507dc59c51097b40517705da56e9ebf0afa53282bf86dbb58c548069ff6eb95aade7cc66d7bbef724779ca1f731b3346ff177050373d79ff7b3e7f9bc0c1b4b266a8878b90baaa039d3e3b63979ac3df6e6f4859afd50238c7547a39b60810938044ae185d2ba3e00a4e73676864ae090d81eaee5ee6cf1d0ab378dd4dd891e937c2ea5410e0513005000000000000003911fab964c271550027697b52160687461602f88df165d884b36ec2b6c25a2f33c715687e9d4afb96d6861aca47da73d6f3144345f48843dd014e5c5ad8fe995754bd9cf32fce1e31919c4b2082fb0a30b9deae84bed4b28045634073c9c58c89d9e99c81769177c6d594f88a4facfd4c735a20307c737afa2d60399473296b831dbd933d93994ba3064279b10ea0c5833f41f157ea2302993dbe433b1aa3a3766d5439020484f4113c4c859465c3b415c3432f81db8719539d5bf372aaaea1cc43a6c5cbe59758bfee2916580dac4b008e595f437491d87abed02cefcd9db53d94d02daee67918e5d6787463183b4b87c1050000002f7809959bc048850613d17ca51055f2f416a44fe180d2d50c312cca7cb14a2bdc331f57a9817139a206fc76957227ffff2de20a4b8e3737fbb42913777c06376f799eba367e21f94ca598705f5dcb767d6f0900d6b0f6095e53c4c4234d0c1fbe434f6ab8f43c0013ee93b83946ee7759e89d7bdd1a32d7b311711b757fe43c06d21a35810d8fe98b27faea8aa12bc8716eefc5c97c45ac33eeec964c5214bc3a9359bdea1cccab94f15e36319cb34ebcacedb82c2ed3de5a8a8f0011e8f74e82d7f96093530e76692839d7961939adfdeeeaff19d11efcafb6d546fef271e89d6cc2389e81ff58cefcce3fbf4625a7e7de40e42e07b34449e15e065cc7340002000000000000f288a4510de03dab19d26285eda89156d50dd385a60333ba5bbf5d77cd7007ad1519ad5470de3dd6d6080cafccf8a97406bb6b68a1f0c4549820a73c880f475f732ae00398e8bd1f4108b7807fb33b72685ec37a2d3f766413a60459516246e5a1d998a2017aef0948a68cf255315ab80dd349e891aef595dc4d470e8ac32a308e15fc37d06aeac289c0523f483e1ff7408c6087f1ab652f2ef91d4f2b01987b0f46da034e5c3f745a7ee8101a3934c54e24b48ec0275e2d0687dc746b0827cbf652f406c6b95f2722e58c05f752ce2126596e1cd7655b904801784c416b22f73d324678e2724f43f1fe687c7e8a60c28b82b6528341b648cdd56fed7cdcbb1575912d5ecd36dea3bca0b7427d8392c6289455e8f8d2ab2242729251ae033a9e02210e62df0546a74b333a1c48f95fd54acb5741259e8c5488efeee327415cc19451432c6f14c27693102a3cd84857cd6586fc5ca9a93eb0145fac0662ff86107f998a8ef7df8aa14046c55b03d3d47f88a8d60f7774a2ee08758897fb411a94b3c2fc5d5f0db42c0456ec015f08e5247d33ae2d35603ff8454c16f8342856935125102bb784ed7148b6ce431b63ee356b0c785f2f47b90e29389f22fc5b59a70efaea2bd40195af4486220d702e30bfc43c10ec23ea6283994a7dde4dcb61fea6b651fb1d62458d0741a12830052fcc460db043afe525629b40d7cee458e4cb5e930ed624806c43a006e39336d07c2b8081c128ad2706f48261f7897484c297a1a6613bc18f5a38d442768af38041efe03d152ef95ff569e76db2391f4509d7f339d92fdb4a89364949da398000000000000000d80a4fe654578376e599aff3565b1d531f30912b9945030b81ea9935fd46edb44a78f615255490a4b621501f2a9e4d24624c4dac9274118c67584f5d374755534d7f68f679c4ff516a9c861a0e7e65868fcb2bf1cb9aea4e05df72279fdb0d2b9e935c5af3cf474bed79dfc248c1f5aea4b8b32c5d295e57079d0fe662a46b7f71cd47744db86c50b704c971d90295c7b2c7439a2d78ccfa79b5fc2bff6bbf840262bf89394b3e0691953264d2700c838fa2c7b3425260f59554e502dcea39cb313b0000000000004ca7c12f45858d6284ca6270d6b2f0e58fded8a7b4a302a97bc641df07720ba2b26bbfcc807ca0abb1b44322269c21c5ec68cb068ea88067d905ea917bb03eefdaebdeabf2d0dce80997c915c8949de992587c2cb5fe36d7d3e5db21b094b8b77940b5f07722e47a08d367e5f84c96ec664b72934b99b3109af65d77e86abd6859cddf4bbae1f0930462df15fddbc48562ea3511a8065ef028cf12f14dcf6ebecd8d884836174faf1aa609e5f1ee1162dfa13bdc1fa7cfaadba85c72e9758f03a755d0be53f8d2a1dfb1c68cc164b0a0780d971a96ea2c4d4ca0398c2235980a9307b3d5bd3b01faffd0a5dbed2881a9700af561ac8c6b00000000000000f96f06817fb903729a7db6ff957697c9ede7885d94ffb0969be0daf60af93109eb1dee72e4363f51af62af6fb2a6df3bec89822a7a0b678058fa3fef86faec216eb6992162f8dcbf719c148cd2f9c55f4901203a9a8a2c3e90f3943dbc10360a1a49700d1dfbf66d69f6fbaf506c8bcce8bb0d872a02238926407a4eddd5d0fc5a752f9000", 0x1000}}, 0x1006)

4.93372178s ago: executing program 2 (id=458):
socket$alg(0x26, 0x5, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
epoll_create1(0x0)
epoll_create1(0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x3)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = socket(0x2000000000000021, 0x2, 0x10000000000002)
syz_fuse_handle_req(0xffffffffffffffff, &(0x7f0000006380)="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", 0x2000, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)={0x18, 0xfffffffffffffff5, 0xffffffff, {0x4}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
connect$rxrpc(r1, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x8, @multicast2}}, 0x24)
sendmmsg(r1, &(0x7f0000000180)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18, 0xe000}, 0x5}], 0x1, 0x0)
recvmmsg(r1, &(0x7f0000000d00), 0xf000, 0x10002, 0x0)

4.270016906s ago: executing program 1 (id=459):
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = syz_open_dev$dri(0x0, 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(0xffffffffffffffff, 0xc02064b2, &(0x7f0000000340)={0x200028, 0x8, 0x2})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(0xffffffffffffffff, 0xc02064b2, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, &(0x7f00000000c0)={'vxcan1\x00', <r4=>0x0})
setsockopt$SO_J1939_ERRQUEUE(r3, 0x6b, 0x4, &(0x7f0000000300)=0x1, 0x4)
bind$can_j1939(r3, &(0x7f0000000380)={0x1d, r4, 0x0, {0x2, 0xf0, 0x4}, 0xfe}, 0x18)
setsockopt$sock_int(r3, 0x1, 0x6, &(0x7f0000000040)=0x1, 0x4)
sendmsg$inet(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000540)="81b641f1f3843704b6", 0x9}], 0x1}, 0x4048001)
setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x25, &(0x7f0000000580)=0x3eba, 0x4)
sendmsg$nl_route_sched(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000440)=@newtfilter={0x24, 0x11, 0x1, 0x70bd28, 0x0, {0x0, 0x0, 0x74, r4, {0x5, 0xffeb}, {0x1, 0x7}, {0xfff2, 0xd}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0x4012}, 0x850)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000000c0)='cgroup.kill\x00', 0x275a, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

4.152141989s ago: executing program 2 (id=460):
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x8000, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r1=>0x0})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r2, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0)
sendmsg$NL80211_CMD_CONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)={0x44, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @NL80211_ATTR_MAC={0xa, 0x6, @from_mac}, @NL80211_ATTR_AUTH_TYPE={0x8}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}]]}, 0x44}}, 0x0)
syz_80211_inject_frame(&(0x7f00000002c0)=@device_b, &(0x7f0000000300)=@mgmt_frame=@probe_response={{{}, {}, @device_b, @device_a, @from_mac}, 0x0, @default, 0x1, @val={0x0, 0x6, @default_ap_ssid}, @val={0x1, 0x8, [{0x2, 0x1}, {0x4, 0x1}, {0xb, 0x1}, {0x16, 0x1}, {0xc}, {0x12}, {0x18}, {0x24}]}, @void, @void, @void, @void, @void, @void}, 0x36)
nanosleep(&(0x7f0000000340), &(0x7f0000000380))
syz_80211_inject_frame(&(0x7f00000003c0)=@device_b, &(0x7f0000000400)=@mgmt_frame=@auth={{{}, {}, @device_b, @device_a, @from_mac, {0x0, 0x1}}, 0x0, 0x2, 0x0, @void}, 0x1e)
nanosleep(&(0x7f0000000440)={0x0, 0x2faf080}, &(0x7f0000000480))
syz_80211_inject_frame(&(0x7f00000004c0)=@device_b, &(0x7f0000000500)=@mgmt_frame=@assoc_resp={{{}, {}, @device_b, @device_a, @from_mac, {0x0, 0x2}}, 0x1, 0x0, @default, @val={0x1, 0x8, [{0x2, 0x1}, {0x4, 0x1}, {0xb, 0x1}, {0x16, 0x1}, {0xc}, {0x12}, {0x18}, {0x24}]}, @void}, 0x28)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN_FLAGS(r0, 0x3ba0, &(0x7f0000000340)={0x48, 0x2, r1, 0x0, 0x0, 0x0, 0x0, 0x1})
ioctl$IOMMU_IOAS_MAP$PAGES(r0, 0x3b85, &(0x7f0000000500)={0x28, 0x6, r1, 0x0, &(0x7f0000800000/0x800000)=nil, 0x800000, 0x80000001})

3.219650713s ago: executing program 3 (id=461):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r2)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0)
close(r4)
r5 = socket$unix(0x1, 0x1, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000026c0)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2, 0xffff}}, [@qdisc_kind_options=@q_cbs={{0x8}, {0x1c, 0x2, @TCA_CBS_PARMS={0x18, 0x1, {0x0, '\x00', 0x1, 0x7, 0x100, 0x8}}}}]}, 0x48}, 0x1, 0x0, 0x0, 0x20000001}, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000340)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x70b923, 0x80000, {0x0, 0x0, 0x0, r7, {}, {0x2, 0xb}, {0x9, 0xb}}, [@qdisc_kind_options=@q_htb={{0x8}, {0x1c, 0x2, [@TCA_HTB_INIT={0x18, 0x2, {0x3, 0x6, 0xb12}}]}}]}, 0x48}, 0x1, 0x0, 0x0, 0x2000c061}, 0x4008000)
ioctl$SIOCSIFHWADDR(r4, 0x8922, &(0x7f0000002280)={'syzkaller0\x00', @random="2b0100004ec6"})

3.089686456s ago: executing program 0 (id=462):
syz_usb_connect(0x0, 0x4a, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_procfs(0x0, &(0x7f00000001c0)='pagemap\x00')
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0xb, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000240), 0xaaa43, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f00000005c0), 0x40000000008d82, 0x0)
r2 = syz_io_uring_setup(0xbdc, &(0x7f0000000640)={0x0, 0xec25, 0x8, 0x1, 0x40000333}, &(0x7f00000006c0)=<r3=>0x0, &(0x7f00000001c0)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd=r1, 0x0, &(0x7f0000000600)=[{0x0}], 0x1})
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x14, &(0x7f0000000580)=ANY=[@ANYBLOB="1802000000000000000000000000000018010000786c6c2500000000070000007b1af8ff00000000bfa100000000000007010000f8ffffffb700000000000000b7030000000000fd850000007300000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
io_uring_enter(r2, 0x847ba, 0x0, 0xe, 0x0, 0x0)

2.251380949s ago: executing program 4 (id=463):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x10, 0xffffffffffffffff, 0x62ca3000)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
socket$packet(0x11, 0x3, 0x300)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x102}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}, {@nfs_export_on}]})
chdir(&(0x7f00000000c0)='./bus\x00')
r1 = creat(&(0x7f0000000440)='./file0\x00', 0x0)
open_by_handle_at(r1, &(0x7f0000000140)=ANY=[], 0x830200)

0s ago: executing program 4 (id=464):
socket$packet(0x11, 0x3, 0x300)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000002c0)='contention_begin\x00', r0, 0x0, 0xd}, 0x18)
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f00000001c0), 0x80280, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
shutdown(r2, 0x2)
socket$inet6_sctp(0xa, 0x1, 0x84)
r3 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000580)="39000000140081ae50003c00fbff008311001f9f660fcf065c05acb612f691f3bd3508abca1be6eeb89c44ebb37358582bb8b7d553b4e92155", 0x39}], 0x1}, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, 0x0)

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.1.100' (ED25519) to the list of known hosts.
[   83.540507][ T5824] cgroup: Unknown subsys name 'net'
[   83.693477][ T5824] cgroup: Unknown subsys name 'cpuset'
[   83.702832][ T5824] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   85.429359][ T5824] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   87.941174][ T5835] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   87.977942][ T5835] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   87.986175][ T5835] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   88.005993][   T51] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   88.014694][   T51] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   88.022598][   T51] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   88.030697][   T51] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   88.091984][ T5841] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   88.100435][ T5841] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   88.108210][ T5841] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   88.174608][ T5835] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   88.183020][ T5835] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   88.190878][ T5835] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   88.199195][ T5157] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   88.207010][ T5157] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   88.214829][ T5157] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   88.222890][ T5157] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   88.230769][ T5157] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   88.240441][ T5157] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   88.250606][ T5157] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   88.258641][ T5157] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   88.258781][ T5841] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   88.274996][ T5841] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   88.282963][ T5157] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   88.283797][ T5841] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   88.942295][ T5834] chnl_net:caif_netlink_parms(): no params data found
[   88.964159][ T5838] chnl_net:caif_netlink_parms(): no params data found
[   89.016387][ T5847] chnl_net:caif_netlink_parms(): no params data found
[   89.122334][ T5843] chnl_net:caif_netlink_parms(): no params data found
[   89.302720][ T5838] bridge0: port 1(bridge_slave_0) entered blocking state
[   89.314214][ T5838] bridge0: port 1(bridge_slave_0) entered disabled state
[   89.322313][ T5838] bridge_slave_0: entered allmulticast mode
[   89.330998][ T5838] bridge_slave_0: entered promiscuous mode
[   89.364096][ T5834] bridge0: port 1(bridge_slave_0) entered blocking state
[   89.371386][ T5834] bridge0: port 1(bridge_slave_0) entered disabled state
[   89.378790][ T5834] bridge_slave_0: entered allmulticast mode
[   89.386810][ T5834] bridge_slave_0: entered promiscuous mode
[   89.397494][ T5838] bridge0: port 2(bridge_slave_1) entered blocking state
[   89.404810][ T5838] bridge0: port 2(bridge_slave_1) entered disabled state
[   89.412126][ T5838] bridge_slave_1: entered allmulticast mode
[   89.419587][ T5838] bridge_slave_1: entered promiscuous mode
[   89.446975][ T5834] bridge0: port 2(bridge_slave_1) entered blocking state
[   89.456440][ T5834] bridge0: port 2(bridge_slave_1) entered disabled state
[   89.464037][ T5834] bridge_slave_1: entered allmulticast mode
[   89.472440][ T5834] bridge_slave_1: entered promiscuous mode
[   89.553936][ T5845] chnl_net:caif_netlink_parms(): no params data found
[   89.570478][ T5834] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   89.608082][ T5847] bridge0: port 1(bridge_slave_0) entered blocking state
[   89.617508][ T5847] bridge0: port 1(bridge_slave_0) entered disabled state
[   89.625409][ T5847] bridge_slave_0: entered allmulticast mode
[   89.634913][ T5847] bridge_slave_0: entered promiscuous mode
[   89.651556][ T5834] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   89.663371][ T5838] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   89.676438][ T5838] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   89.686097][ T5843] bridge0: port 1(bridge_slave_0) entered blocking state
[   89.693266][ T5843] bridge0: port 1(bridge_slave_0) entered disabled state
[   89.700580][ T5843] bridge_slave_0: entered allmulticast mode
[   89.707770][ T5843] bridge_slave_0: entered promiscuous mode
[   89.716282][ T5847] bridge0: port 2(bridge_slave_1) entered blocking state
[   89.723618][ T5847] bridge0: port 2(bridge_slave_1) entered disabled state
[   89.730881][ T5847] bridge_slave_1: entered allmulticast mode
[   89.738484][ T5847] bridge_slave_1: entered promiscuous mode
[   89.779946][ T5843] bridge0: port 2(bridge_slave_1) entered blocking state
[   89.787104][ T5843] bridge0: port 2(bridge_slave_1) entered disabled state
[   89.795104][ T5843] bridge_slave_1: entered allmulticast mode
[   89.802543][ T5843] bridge_slave_1: entered promiscuous mode
[   89.910143][ T5847] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   89.934664][ T5834] team0: Port device team_slave_0 added
[   89.943685][ T5838] team0: Port device team_slave_0 added
[   89.953453][ T5838] team0: Port device team_slave_1 added
[   89.962276][ T5843] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   89.977573][ T5847] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   89.996848][ T5834] team0: Port device team_slave_1 added
[   90.018574][ T5843] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   90.099893][ T5851] Bluetooth: hci0: command tx timeout
[   90.154867][ T5838] batman_adv: batadv0: Adding interface: batadv_slave_0
[   90.162722][ T5838] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   90.189080][ T5851] Bluetooth: hci1: command tx timeout
[   90.195009][ T5838] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   90.210380][ T5843] team0: Port device team_slave_0 added
[   90.219448][ T5847] team0: Port device team_slave_0 added
[   90.238723][ T5834] batman_adv: batadv0: Adding interface: batadv_slave_0
[   90.246227][ T5834] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   90.272356][ T5834] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   90.284056][ T5838] batman_adv: batadv0: Adding interface: batadv_slave_1
[   90.291318][ T5838] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   90.317431][ T5838] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   90.337021][ T5843] team0: Port device team_slave_1 added
[   90.342804][ T5851] Bluetooth: hci2: command tx timeout
[   90.343068][ T5851] Bluetooth: hci4: command tx timeout
[   90.348367][ T5841] Bluetooth: hci3: command tx timeout
[   90.373042][ T5847] team0: Port device team_slave_1 added
[   90.394400][ T5845] bridge0: port 1(bridge_slave_0) entered blocking state
[   90.403691][ T5845] bridge0: port 1(bridge_slave_0) entered disabled state
[   90.411726][ T5845] bridge_slave_0: entered allmulticast mode
[   90.419454][ T5845] bridge_slave_0: entered promiscuous mode
[   90.427397][ T5834] batman_adv: batadv0: Adding interface: batadv_slave_1
[   90.434713][ T5834] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   90.461491][ T5834] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   90.496225][ T5843] batman_adv: batadv0: Adding interface: batadv_slave_0
[   90.503406][ T5843] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   90.529943][ T5843] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   90.541323][ T5845] bridge0: port 2(bridge_slave_1) entered blocking state
[   90.548481][ T5845] bridge0: port 2(bridge_slave_1) entered disabled state
[   90.556131][ T5845] bridge_slave_1: entered allmulticast mode
[   90.563583][ T5845] bridge_slave_1: entered promiscuous mode
[   90.630712][ T5843] batman_adv: batadv0: Adding interface: batadv_slave_1
[   90.637745][ T5843] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   90.664018][ T5843] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   90.678016][ T5845] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   90.691841][ T5845] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   90.726958][ T5847] batman_adv: batadv0: Adding interface: batadv_slave_0
[   90.734587][ T5847] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   90.760937][ T5847] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   90.774686][ T5847] batman_adv: batadv0: Adding interface: batadv_slave_1
[   90.781965][ T5847] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   90.807954][ T5847] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   90.864312][ T5834] hsr_slave_0: entered promiscuous mode
[   90.871578][ T5834] hsr_slave_1: entered promiscuous mode
[   90.901219][ T5838] hsr_slave_0: entered promiscuous mode
[   90.907569][ T5838] hsr_slave_1: entered promiscuous mode
[   90.914684][ T5838] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   90.922530][ T5838] Cannot create hsr debugfs directory
[   90.961812][ T5845] team0: Port device team_slave_0 added
[   91.016715][ T5845] team0: Port device team_slave_1 added
[   91.042090][ T5843] hsr_slave_0: entered promiscuous mode
[   91.048433][ T5843] hsr_slave_1: entered promiscuous mode
[   91.055260][ T5843] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   91.063178][ T5843] Cannot create hsr debugfs directory
[   91.154049][ T5847] hsr_slave_0: entered promiscuous mode
[   91.161190][ T5847] hsr_slave_1: entered promiscuous mode
[   91.167261][ T5847] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   91.174940][ T5847] Cannot create hsr debugfs directory
[   91.187098][ T5845] batman_adv: batadv0: Adding interface: batadv_slave_0
[   91.194190][ T5845] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   91.221323][ T5845] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   91.234737][ T5845] batman_adv: batadv0: Adding interface: batadv_slave_1
[   91.241797][ T5845] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   91.267839][ T5845] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   91.554549][ T5845] hsr_slave_0: entered promiscuous mode
[   91.561161][ T5845] hsr_slave_1: entered promiscuous mode
[   91.567451][ T5845] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   91.575662][ T5845] Cannot create hsr debugfs directory
[   91.887947][ T5838] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   91.921779][ T5838] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   91.936677][ T5838] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   91.946007][  T977] cfg80211: failed to load regulatory.db
[   91.980419][ T5838] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   92.036895][ T5843] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   92.072647][ T5843] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   92.111419][ T5843] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   92.137065][ T5834] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   92.151597][ T5843] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   92.168760][ T5834] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   92.179615][ T5841] Bluetooth: hci0: command tx timeout
[   92.227636][ T5834] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   92.255622][ T5834] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   92.263595][ T5841] Bluetooth: hci1: command tx timeout
[   92.341045][ T5847] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   92.361122][ T5847] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   92.377275][ T5847] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   92.400834][ T5847] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   92.419472][ T5839] Bluetooth: hci3: command tx timeout
[   92.420046][ T5851] Bluetooth: hci2: command tx timeout
[   92.424970][ T5841] Bluetooth: hci4: command tx timeout
[   92.536811][ T5845] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   92.563730][ T5845] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   92.575341][ T5845] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   92.602498][ T5845] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   92.682235][ T5838] 8021q: adding VLAN 0 to HW filter on device bond0
[   92.725129][ T5843] 8021q: adding VLAN 0 to HW filter on device bond0
[   92.760020][ T5838] 8021q: adding VLAN 0 to HW filter on device team0
[   92.792696][ T1339] bridge0: port 1(bridge_slave_0) entered blocking state
[   92.800002][ T1339] bridge0: port 1(bridge_slave_0) entered forwarding state
[   92.831203][ T1339] bridge0: port 2(bridge_slave_1) entered blocking state
[   92.838397][ T1339] bridge0: port 2(bridge_slave_1) entered forwarding state
[   92.852634][ T5843] 8021q: adding VLAN 0 to HW filter on device team0
[   92.872136][ T3837] bridge0: port 1(bridge_slave_0) entered blocking state
[   92.879444][ T3837] bridge0: port 1(bridge_slave_0) entered forwarding state
[   92.931664][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[   92.938817][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[   92.985433][ T5834] 8021q: adding VLAN 0 to HW filter on device bond0
[   93.055820][ T5847] 8021q: adding VLAN 0 to HW filter on device bond0
[   93.075256][ T5845] 8021q: adding VLAN 0 to HW filter on device bond0
[   93.111872][ T5834] 8021q: adding VLAN 0 to HW filter on device team0
[   93.174122][ T5847] 8021q: adding VLAN 0 to HW filter on device team0
[   93.194860][ T5845] 8021q: adding VLAN 0 to HW filter on device team0
[   93.206295][   T64] bridge0: port 1(bridge_slave_0) entered blocking state
[   93.213530][   T64] bridge0: port 1(bridge_slave_0) entered forwarding state
[   93.252118][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[   93.259794][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[   93.316458][   T64] bridge0: port 2(bridge_slave_1) entered blocking state
[   93.323695][   T64] bridge0: port 2(bridge_slave_1) entered forwarding state
[   93.362999][   T64] bridge0: port 1(bridge_slave_0) entered blocking state
[   93.370280][   T64] bridge0: port 1(bridge_slave_0) entered forwarding state
[   93.397499][   T64] bridge0: port 2(bridge_slave_1) entered blocking state
[   93.404787][   T64] bridge0: port 2(bridge_slave_1) entered forwarding state
[   93.466761][   T64] bridge0: port 2(bridge_slave_1) entered blocking state
[   93.473982][   T64] bridge0: port 2(bridge_slave_1) entered forwarding state
[   93.642062][ T5838] 8021q: adding VLAN 0 to HW filter on device batadv0
[   93.723824][ T5843] 8021q: adding VLAN 0 to HW filter on device batadv0
[   93.872203][ T5838] veth0_vlan: entered promiscuous mode
[   93.973080][ T5838] veth1_vlan: entered promiscuous mode
[   94.063059][ T5838] veth0_macvtap: entered promiscuous mode
[   94.118562][ T5838] veth1_macvtap: entered promiscuous mode
[   94.245783][ T5838] batman_adv: batadv0: Interface activated: batadv_slave_0
[   94.265656][ T5841] Bluetooth: hci0: command tx timeout
[   94.329291][ T5838] batman_adv: batadv0: Interface activated: batadv_slave_1
[   94.341668][ T5841] Bluetooth: hci1: command tx timeout
[   94.374705][ T5838] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   94.387046][ T5838] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   94.396653][ T5838] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   94.406335][ T5838] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   94.452998][ T5847] 8021q: adding VLAN 0 to HW filter on device batadv0
[   94.467193][ T5845] 8021q: adding VLAN 0 to HW filter on device batadv0
[   94.500379][ T5841] Bluetooth: hci4: command tx timeout
[   94.501127][ T5851] Bluetooth: hci3: command tx timeout
[   94.506025][ T5841] Bluetooth: hci2: command tx timeout
[   94.524478][ T5834] 8021q: adding VLAN 0 to HW filter on device batadv0
[   94.659446][  T994] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   94.667477][  T994] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   94.694871][ T5843] veth0_vlan: entered promiscuous mode
[   94.713059][ T5834] veth0_vlan: entered promiscuous mode
[   94.765155][ T5843] veth1_vlan: entered promiscuous mode
[   94.774799][ T5845] veth0_vlan: entered promiscuous mode
[   94.791242][   T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   94.799522][   T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   94.815781][ T5847] veth0_vlan: entered promiscuous mode
[   94.825142][ T5845] veth1_vlan: entered promiscuous mode
[   94.834195][ T5834] veth1_vlan: entered promiscuous mode
[   94.863309][ T5847] veth1_vlan: entered promiscuous mode
[   94.937120][ T5838] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   94.958585][ T5845] veth0_macvtap: entered promiscuous mode
[   94.972041][ T5845] veth1_macvtap: entered promiscuous mode
[   94.983152][ T5843] veth0_macvtap: entered promiscuous mode
[   94.993594][ T5843] veth1_macvtap: entered promiscuous mode
[   95.037491][ T5834] veth0_macvtap: entered promiscuous mode
[   95.073711][ T5845] batman_adv: batadv0: Interface activated: batadv_slave_0
[   95.103382][ T5845] batman_adv: batadv0: Interface activated: batadv_slave_1
[   95.112474][ T5847] veth0_macvtap: entered promiscuous mode
[   95.141436][ T5843] batman_adv: batadv0: Interface activated: batadv_slave_0
[   95.168550][ T5843] batman_adv: batadv0: Interface activated: batadv_slave_1
[   95.188746][ T5843] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   95.198663][ T5843] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   95.213033][ T5843] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   95.223320][ T5843] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   95.238834][ T5834] veth1_macvtap: entered promiscuous mode
[   95.284134][ T5847] veth1_macvtap: entered promiscuous mode
[   95.357793][ T5834] batman_adv: batadv0: Interface activated: batadv_slave_0
[   95.370085][ T5834] batman_adv: batadv0: Interface activated: batadv_slave_1
[   95.383693][ T5834] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   95.392586][ T5834] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   95.401645][ T5834] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   95.410895][ T5834] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   95.830923][ T5845] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   95.877526][ T5845] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   95.924171][ T5845] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   95.977409][ T5845] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   96.124699][ T5847] batman_adv: batadv0: Interface activated: batadv_slave_0
[   96.148816][ T5847] batman_adv: batadv0: Interface activated: batadv_slave_1
[   96.248635][ T5847] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   96.258655][ T5847] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   96.268638][ T5847] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   96.277881][ T5847] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   96.291184][ T5957] netlink: 'syz.3.6': attribute type 12 has an invalid length.
[   96.346047][ T3530] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   96.352496][ T5841] Bluetooth: hci0: command tx timeout
[   96.361875][ T3530] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   96.425723][ T5841] Bluetooth: hci1: command tx timeout
[   96.474632][   T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   96.506797][   T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   96.571940][   T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   96.582793][ T5841] Bluetooth: hci3: command tx timeout
[   96.588262][ T5841] Bluetooth: hci4: command tx timeout
[   96.593836][ T5839] Bluetooth: hci2: command tx timeout
[   96.616207][   T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   96.661685][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   96.694231][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   96.708917][   T64] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   96.760672][   T64] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   96.850543][   T64] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   96.858429][   T64] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   97.169502][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   97.189636][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   97.230333][ T3837] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   97.309454][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   97.338495][ T3837] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   97.389444][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   97.398212][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   97.469476][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   97.635400][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   98.515354][ T5974] netlink: 384 bytes leftover after parsing attributes in process `syz.0.1'.
[   98.527073][ T5974] netlink: 'syz.0.1': attribute type 2 has an invalid length.
[   99.069465][    T0] NOHZ tick-stop error: local softirq work is pending, handler #342!!!
[   99.529420][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   99.826014][ T5976] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   99.910780][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   99.953498][   T37] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  100.023483][   T37] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  101.024374][ T5991] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  101.095648][ T5993] netlink: 4 bytes leftover after parsing attributes in process `syz.4.11'.
[  101.147551][ T5988] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[  102.427494][ T5993] bridge_slave_1: left allmulticast mode
[  102.476730][ T5993] bridge_slave_1: left promiscuous mode
[  102.598501][ T5993] bridge0: port 2(bridge_slave_1) entered disabled state
[  102.676404][ T5993] bridge_slave_0: left allmulticast mode
[  102.730048][ T5993] bridge_slave_0: left promiscuous mode
[  102.736549][ T5993] bridge0: port 1(bridge_slave_0) entered disabled state
[  104.535083][ T6006] platform regulatory.0: loading /lib/firmware/regulatory.db failed with error -12
[  104.545294][ T6006] platform regulatory.0: Direct firmware load for regulatory.db failed with error -12
[  104.555034][ T6006] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  104.569788][   T30] audit: type=1800 audit(1752101410.945:2): pid=6006 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.1.13" name="regulatory.db" dev="sda1" ino=448 res=0 errno=0
[  104.667674][ T6023] netlink: 'syz.2.18': attribute type 6 has an invalid length.
[  106.531964][ T6031] orangefs_mount: mount request failed with -4
[  107.559722][   T30] audit: type=1326 audit(1752101413.955:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6041 comm="syz.0.23" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f79f958e929 code=0x7ffc0000
[  107.648559][   T30] audit: type=1326 audit(1752101413.965:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6041 comm="syz.0.23" exe="/root/syz-executor" sig=0 arch=c000003e syscall=297 compat=0 ip=0x7f79f958e929 code=0x7ffc0000
[  107.676252][   T30] audit: type=1326 audit(1752101413.965:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6041 comm="syz.0.23" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f79f958e929 code=0x7ffc0000
[  107.725958][   T30] audit: type=1326 audit(1752101413.995:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6041 comm="syz.0.23" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f79f958e929 code=0x7ffc0000
[  108.315371][   T30] audit: type=1326 audit(1752101413.995:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6041 comm="syz.0.23" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f79f958e929 code=0x7ffc0000
[  108.337138][   T30] audit: type=1326 audit(1752101413.995:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6041 comm="syz.0.23" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f79f958e929 code=0x7ffc0000
[  108.362872][   T30] audit: type=1326 audit(1752101413.995:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6041 comm="syz.0.23" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f79f958e929 code=0x7ffc0000
[  108.575088][   T30] audit: type=1326 audit(1752101413.995:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6041 comm="syz.0.23" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f79f958e929 code=0x7ffc0000
[  108.933225][   T30] audit: type=1326 audit(1752101414.005:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6041 comm="syz.0.23" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f79f958e929 code=0x7ffc0000
[  108.977382][ T6052] overlayfs: failed to get inode (-116)
[  109.125370][ T6057] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  109.783862][ T6052] overlayfs: failed to get inode (-116)
[  109.969142][   T30] audit: type=1326 audit(1752101414.005:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6041 comm="syz.0.23" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f79f958e929 code=0x7ffc0000
[  110.134348][   T30] audit: type=1326 audit(1752101414.005:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6041 comm="syz.0.23" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f79f958e929 code=0x7ffc0000
[  110.156438][   T30] audit: type=1326 audit(1752101414.005:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6041 comm="syz.0.23" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f79f958e929 code=0x7ffc0000
[  110.178329][   T30] audit: type=1326 audit(1752101414.125:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6041 comm="syz.0.23" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f79f958e929 code=0x7ffc0000
[  110.551998][   T30] audit: type=1326 audit(1752101414.125:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6041 comm="syz.0.23" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f79f958e929 code=0x7ffc0000
[  111.518580][   T30] audit: type=1326 audit(1752101414.125:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6041 comm="syz.0.23" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f79f958e929 code=0x7ffc0000
[  111.655161][   T30] audit: type=1326 audit(1752101414.165:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6041 comm="syz.0.23" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f79f958e929 code=0x7ffc0000
[  111.759141][   T30] audit: type=1326 audit(1752101414.165:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6041 comm="syz.0.23" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f79f958e929 code=0x7ffc0000
[  111.830703][   T30] audit: type=1326 audit(1752101414.165:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6041 comm="syz.0.23" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f79f958e929 code=0x7ffc0000
[  111.853573][   T30] audit: type=1326 audit(1752101414.165:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6041 comm="syz.0.23" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f79f958e929 code=0x7ffc0000
[  113.296922][ T6084] Zero length message leads to an empty skb
[  114.934792][ T6074] kvm: kvm [6072]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc1) = 0x800
[  115.819871][ T6101] syz.2.38: attempt to access beyond end of device
[  115.819871][ T6101] nbd2: rw=0, sector=0, nr_sectors = 1 limit=0
[  115.833996][ T6101] (syz.2.38,6101,0):ocfs2_get_sector:1714 ERROR: status = -5
[  115.842998][ T6101] (syz.2.38,6101,0):ocfs2_sb_probe:753 ERROR: status = -5
[  115.850761][ T6101] (syz.2.38,6101,0):ocfs2_fill_super:989 ERROR: superblock probe failed!
[  115.860848][ T6101] (syz.2.38,6101,0):ocfs2_fill_super:1177 ERROR: status = -5
[  118.579995][ T6124] netlink: 4 bytes leftover after parsing attributes in process `syz.4.44'.
[  118.588890][ T6124] netlink: 4 bytes leftover after parsing attributes in process `syz.4.44'.
[  118.597793][ T6124] netlink: 4 bytes leftover after parsing attributes in process `syz.4.44'.
[  118.606690][ T6124] netlink: 4 bytes leftover after parsing attributes in process `syz.4.44'.
[  118.615591][ T6124] netlink: 4 bytes leftover after parsing attributes in process `syz.4.44'.
[  118.625609][ T6124] netlink: 4 bytes leftover after parsing attributes in process `syz.4.44'.
[  118.636877][ T6124] netlink: 4 bytes leftover after parsing attributes in process `syz.4.44'.
[  118.645780][ T6124] netlink: 4 bytes leftover after parsing attributes in process `syz.4.44'.
[  118.654651][ T6124] netlink: 4 bytes leftover after parsing attributes in process `syz.4.44'.
[  118.663867][ T6124] netlink: 4 bytes leftover after parsing attributes in process `syz.4.44'.
[  126.928521][ T6168] Set syz1 is full, maxelem 65536 reached
[  127.262483][ T6182] ptrace attach of "./syz-executor exec"[5843] was attempted by "./syz-executor exec"[6182]
[  127.353276][ T6176] syzkaller0: entered promiscuous mode
[  127.357209][ T6182] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  127.367388][ T6182] overlayfs: failed to set xattr on upper
[  127.373566][ T6182] overlayfs: ...falling back to redirect_dir=nofollow.
[  127.381254][ T6182] overlayfs: ...falling back to index=off.
[  127.387256][ T6182] overlayfs: ...falling back to uuid=null.
[  127.393457][ T6182] overlayfs: maximum fs stacking depth exceeded
[  127.743964][ T6176] syzkaller0: entered allmulticast mode
[  127.976455][ T6173] tipc: Started in network mode
[  128.081759][ T6173] tipc: Node identity c2c510646e53, cluster identity 4711
[  128.255440][ T6173] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  128.411410][ T6188] tipc: Resetting bearer <eth:syzkaller0>
[  128.609941][ T6169] tipc: Resetting bearer <eth:syzkaller0>
[  128.671389][ T6169] tipc: Disabling bearer <eth:syzkaller0>
[  129.050042][ T6200] random: crng reseeded on system resumption
[  132.156617][ T6219] __nla_validate_parse: 42 callbacks suppressed
[  132.156666][ T6219] netlink: 12 bytes leftover after parsing attributes in process `syz.2.66'.
[  132.176337][ T6219] netlink: 56 bytes leftover after parsing attributes in process `syz.2.66'.
[  132.973357][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  132.989403][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  135.068153][ T6238] netlink: 28 bytes leftover after parsing attributes in process `syz.3.69'.
[  136.717924][ T6248] netlink: 212376 bytes leftover after parsing attributes in process `syz.2.75'.
[  141.499504][ T6288] kernel read not supported for file / 
�7���âW)�s���!Q���fs�l{T�r�)r��O���2:"��T+͟v|�ղDvc���֠�6�x�c: (pid: 6288 comm: syz.1.84)
[  141.514779][   T30] kauditd_printk_skb: 2 callbacks suppressed
[  141.514795][   T30] audit: type=1800 audit(1752101447.935:24): pid=6288 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.1.84" name=20019C1437B3CFFCC3A25729EB7393A7C721518FF6ECA56673F56C7B548772D22972A7D6084F9A98F5323A22F412C0542BCD9F767C8DD5B24476638E93D8D6A0C536D278E3633A dev="mqueue" ino=8175 res=0 errno=0
[  143.080809][ T6311] netlink: 4 bytes leftover after parsing attributes in process `syz.1.90'.
[  143.095758][ T6311] netlink: 8 bytes leftover after parsing attributes in process `syz.1.90'.
[  144.940252][ T6315] syz.2.89: attempt to access beyond end of device
[  144.940252][ T6315] nbd2: rw=6144, sector=128, nr_sectors = 8 limit=0
[  145.239348][ T6315] gfs2: error -5 reading superblock
[  145.980222][ T6339] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  145.992090][ T6339] xt_SECMARK: unable to map security context 'system_u:object_r:dbusd_etc_t:s0'
[  146.844668][ T6347] syz.1.97 uses obsolete (PF_INET,SOCK_PACKET)
[  147.976393][ T6356] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  150.770784][ T6369] netlink: 4 bytes leftover after parsing attributes in process `syz.3.103'.
[  151.969242][ T6369] netlink: 12 bytes leftover after parsing attributes in process `syz.3.103'.
[  152.179677][ T6377] netlink: 12 bytes leftover after parsing attributes in process `syz.0.105'.
[  153.063818][ T6387] xt_SECMARK: unable to map security context 'system_u:object_r:dbusd_etc_t:s0'
[  154.432773][ T6389] syz.4.107: attempt to access beyond end of device
[  154.432773][ T6389] nbd4: rw=0, sector=0, nr_sectors = 1 limit=0
[  154.448339][ T6389] (syz.4.107,6389,0):ocfs2_get_sector:1714 ERROR: status = -5
[  154.456652][ T6389] (syz.4.107,6389,0):ocfs2_sb_probe:753 ERROR: status = -5
[  154.464459][ T6389] (syz.4.107,6389,0):ocfs2_fill_super:989 ERROR: superblock probe failed!
[  154.475644][ T6389] (syz.4.107,6389,0):ocfs2_fill_super:1177 ERROR: status = -5
[  155.634690][ T6400] ptrace attach of "./syz-executor exec"[6401] was attempted by "./syz-executor exec"[6400]
[  157.526230][ T5931] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[  157.990341][ T5931] usb 3-1: Using ep0 maxpacket: 16
[  158.000617][ T5931] usb 3-1: config 0 has no interfaces?
[  158.017368][ T5931] usb 3-1: New USB device found, idVendor=1604, idProduct=8007, bcdDevice=af.a6
[  158.049091][ T5931] usb 3-1: New USB device strings: Mfr=1, Product=23, SerialNumber=3
[  158.078352][ T5931] usb 3-1: Product: syz
[  158.088476][ T5931] usb 3-1: Manufacturer: syz
[  158.098860][ T5931] usb 3-1: SerialNumber: syz
[  158.145141][ T5931] usb 3-1: config 0 descriptor??
[  158.168111][ T6418] macvtap1: entered allmulticast mode
[  158.173735][ T6418] veth0_macvtap: entered allmulticast mode
[  158.704596][ T6426] bond0: (slave bond_slave_0): Releasing backup interface
[  158.726739][ T6429] syz.1.119: attempt to access beyond end of device
[  158.726739][ T6429] nbd1: rw=6144, sector=128, nr_sectors = 8 limit=0
[  158.745445][ T6429] gfs2: error -5 reading superblock
[  158.842125][ T6433] netlink: 28 bytes leftover after parsing attributes in process `syz.2.112'.
[  158.889870][ T6426] bond0: (slave bond_slave_1): Releasing backup interface
[  158.895804][ T6433] netlink: 28 bytes leftover after parsing attributes in process `syz.2.112'.
[  159.044671][ T6426] team0: Port device team_slave_0 removed
[  159.952185][ T6426] team0: Port device team_slave_1 removed
[  159.964664][ T6426] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  159.974464][ T6426] batman_adv: batadv0: Removing interface: batadv_slave_0
[  159.992514][ T6426] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  160.009227][ T6426] batman_adv: batadv0: Removing interface: batadv_slave_1
[  161.048887][ T6433] bond0: entered promiscuous mode
[  161.105512][ T6433] bond_slave_0: entered promiscuous mode
[  161.200106][ T6433] bond_slave_1: entered promiscuous mode
[  161.478238][ T6433] batadv_slave_1: entered promiscuous mode
[  162.169922][ T5892] usb 3-1: USB disconnect, device number 2
[  163.889783][ T6460] syz.1.126: attempt to access beyond end of device
[  163.889783][ T6460] nbd1: rw=0, sector=0, nr_sectors = 1 limit=0
[  163.907955][ T6460] (syz.1.126,6460,0):ocfs2_get_sector:1714 ERROR: status = -5
[  163.915852][ T6460] (syz.1.126,6460,0):ocfs2_sb_probe:753 ERROR: status = -5
[  163.923732][ T6460] (syz.1.126,6460,0):ocfs2_fill_super:989 ERROR: superblock probe failed!
[  163.932690][ T6460] (syz.1.126,6460,0):ocfs2_fill_super:1177 ERROR: status = -5
[  166.915767][ T6486] syz.0.133: attempt to access beyond end of device
[  166.915767][ T6486] nbd0: rw=6144, sector=128, nr_sectors = 8 limit=0
[  166.929227][ T6486] gfs2: error -5 reading superblock
[  170.242506][ T6525] netlink: 384 bytes leftover after parsing attributes in process `syz.4.143'.
[  170.252450][ T6525] netlink: 'syz.4.143': attribute type 2 has an invalid length.
[  173.850512][ T6545] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(8)
[  173.857286][ T6545] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  173.865838][ T6545] vhci_hcd vhci_hcd.0: Device attached
[  173.929768][ T6550] vhci_hcd: connection closed
[  174.099666][ T6224] vhci_hcd: stop threads
[  174.238018][ T6224] vhci_hcd: release socket
[  174.274513][ T6556] netlink: 4 bytes leftover after parsing attributes in process `syz.2.149'.
[  174.308105][ T6224] vhci_hcd: disconnect device
[  177.997594][ T6588] netlink: 48 bytes leftover after parsing attributes in process `syz.4.155'.
[  178.586088][ T6589] netlink: 129704 bytes leftover after parsing attributes in process `syz.4.155'.
[  179.165319][ T6575] loop6: detected capacity change from 0 to 2560
[  179.222481][ T6257] Buffer I/O error on dev loop6, logical block 0, async page read
[  179.238089][ T6593] netlink: 4 bytes leftover after parsing attributes in process `syz.0.156'.
[  179.278631][ T6257] Buffer I/O error on dev loop6, logical block 0, async page read
[  179.290606][ T6257] Buffer I/O error on dev loop6, logical block 0, async page read
[  179.298857][ T6257] Buffer I/O error on dev loop6, logical block 0, async page read
[  179.307576][ T6257] Buffer I/O error on dev loop6, logical block 0, async page read
[  179.316947][ T6257] Buffer I/O error on dev loop6, logical block 0, async page read
[  179.325258][ T6257] Buffer I/O error on dev loop6, logical block 0, async page read
[  179.333763][ T6257] Buffer I/O error on dev loop6, logical block 0, async page read
[  179.392113][ T6257] ldm_validate_partition_table(): Disk read failed.
[  179.398883][ T6257] Buffer I/O error on dev loop6, logical block 0, async page read
[  179.408711][ T6593] dummy0: entered promiscuous mode
[  179.433333][ T6257] Buffer I/O error on dev loop6, logical block 0, async page read
[  179.442387][ T6257] Dev loop6: unable to read RDB block 0
[  179.454953][ T6257]  loop6: unable to read partition table
[  179.464870][ T6575] ldm_validate_partition_table(): Disk read failed.
[  179.496569][ T6575] Dev loop6: unable to read RDB block 0
[  179.515793][ T6575]  loop6: unable to read partition table
[  179.522367][ T6593] dummy0: left promiscuous mode
[  179.601324][ T6575] loop_reread_partitions: partition scan of loop6 (3�����) failed (rc=-5)
[  182.007739][ T5959] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[  182.713922][ T5959] usb 2-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice= 0.00
[  182.846471][ T5959] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  183.361589][ T5959] usb 2-1: Product: syz
[  183.458459][ T5959] usb 2-1: Manufacturer: syz
[  183.465735][ T5959] usb 2-1: SerialNumber: syz
[  183.522505][ T5959] usb 2-1: config 0 descriptor??
[  183.846445][ T5959] usb-storage 2-1:0.0: USB Mass Storage device detected
[  185.157105][ T5959] usb 2-1: USB disconnect, device number 2
[  191.800615][ T6699] netlink: 8 bytes leftover after parsing attributes in process `syz.0.179'.
[  191.847753][ T6699] netlink: 8 bytes leftover after parsing attributes in process `syz.0.179'.
[  191.948796][ T5959] libceph: connect (1)[c::]:6789 error -101
[  191.972609][ T5959] libceph: mon0 (1)[c::]:6789 connect error
[  192.074635][ T6701] ceph: No mds server is up or the cluster is laggy
[  194.150399][ T6714] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  194.172279][ T6714] syzkaller0: entered promiscuous mode
[  194.177824][ T6714] syzkaller0: entered allmulticast mode
[  194.231488][ T6714] tipc: Resetting bearer <eth:syzkaller0>
[  194.258098][ T6713] tipc: Resetting bearer <eth:syzkaller0>
[  194.296887][ T6713] tipc: Disabling bearer <eth:syzkaller0>
[  194.329565][  T977] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  194.359405][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  194.419356][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  194.504578][  T977] usb 5-1: config 0 has an invalid interface number: 156 but max is 0
[  194.549254][  T977] usb 5-1: config 0 has no interface number 0
[  194.619106][  T977] usb 5-1: New USB device found, idVendor=abcd, idProduct=cdee, bcdDevice= 5.b9
[  194.660591][  T977] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  196.385392][  T977] usb 5-1: config 0 descriptor??
[  196.422212][  T977] gspca_main: spca561-2.14.0 probing abcd:cdee
[  196.637620][ T6716] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  196.646764][ T6716] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  196.656607][ T6716] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  196.666003][ T6716] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  196.905457][ T6716] team0: Port device vxlan0 added
[  196.936683][  T977] spca561 5-1:0.156: probe with driver spca561 failed with error -22
[  197.970615][  T977] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  197.977830][  T977] usb 5-1: MIDIStreaming interface descriptor not found
[  199.432214][  T977] usb 5-1: USB disconnect, device number 2
[  199.541035][ T6747] netlink: 212376 bytes leftover after parsing attributes in process `syz.0.190'.
[  200.682229][ T6749] syz.3.191 (6749) used greatest stack depth: 16536 bytes left
[  200.726949][ T6122] udevd[6122]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.156/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  200.797887][ T6754] binder: 6752:6754 ioctl 400c620e 200000000600 returned -22
[  201.388813][ T6754] binder: 6752:6754 ioctl c0306201 2000000003c0 returned -14
[  201.419817][ T6755] netlink: 'syz.2.194': attribute type 10 has an invalid length.
[  201.427634][ T6755] netlink: 40 bytes leftover after parsing attributes in process `syz.2.194'.
[  201.521213][ T6755] batman_adv: batadv0: Adding interface: virt_wifi0
[  201.541660][ T6755] batman_adv: batadv0: The MTU of interface virt_wifi0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  201.589002][ T6755] batman_adv: batadv0: Interface activated: virt_wifi0
[  202.151567][ T6783] netlink: 4 bytes leftover after parsing attributes in process `syz.4.202'.
[  202.380239][ T6772] kvm: vcpu 0: requested 56 ns lapic timer period limited to 200000 ns
[  203.562712][ T6794] netlink: 384 bytes leftover after parsing attributes in process `syz.1.203'.
[  203.573177][ T6794] netlink: 'syz.1.203': attribute type 2 has an invalid length.
[  204.311842][ T6797] =======================================================
[  204.311842][ T6797] WARNING: The mand mount option has been deprecated and
[  204.311842][ T6797]          and is ignored by this kernel. Remove the mand
[  204.311842][ T6797]          option from the mount to silence this warning.
[  204.311842][ T6797] =======================================================
[  204.979331][ T6804] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'filter'
[  206.896760][ T6815] syz.3.208: attempt to access beyond end of device
[  206.896760][ T6815] nbd3: rw=0, sector=0, nr_sectors = 1 limit=0
[  206.911783][ T6815] (syz.3.208,6815,0):ocfs2_get_sector:1714 ERROR: status = -5
[  206.919419][ T6815] (syz.3.208,6815,0):ocfs2_sb_probe:753 ERROR: status = -5
[  206.927047][ T6815] (syz.3.208,6815,0):ocfs2_fill_super:989 ERROR: superblock probe failed!
[  206.936042][ T6815] (syz.3.208,6815,0):ocfs2_fill_super:1177 ERROR: status = -5
[  207.375477][ T6819] mmap: syz.2.212 (6819) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  207.940947][ T6822] tipc: Started in network mode
[  207.945890][ T6822] tipc: Node identity 96857279f9f4, cluster identity 4711
[  208.009264][ T6822] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  208.017410][ T6822] syzkaller0: entered promiscuous mode
[  208.029708][ T6822] syzkaller0: entered allmulticast mode
[  208.049045][ T5913] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  208.319041][ T5913] usb 5-1: Using ep0 maxpacket: 16
[  209.252483][  T977] tipc: Node number set to 1869705849
[  209.260552][ T5913] usb 5-1: New USB device found, idVendor=046a, idProduct=0027, bcdDevice= 0.00
[  209.269989][ T5913] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  209.281453][ T5913] usb 5-1: config 0 descriptor??
[  210.155856][ T6821] tipc: Resetting bearer <eth:syzkaller0>
[  210.204466][ T6836] ptrace attach of "./syz-executor exec"[5838] was attempted by "./syz-executor exec"[6836]
[  210.280600][ T6821] tipc: Disabling bearer <eth:syzkaller0>
[  211.423499][ T6849] netlink: 'syz.0.229': attribute type 1 has an invalid length.
[  211.431652][ T6849] netlink: 'syz.0.229': attribute type 2 has an invalid length.
[  212.269109][ T6834] Bluetooth: hci0: command 0x0406 tx timeout
[  212.275307][ T6834] Bluetooth: hci1: command 0x0406 tx timeout
[  212.291161][ T6834] Bluetooth: hci3: command 0x0406 tx timeout
[  212.297320][ T6834] Bluetooth: hci2: command 0x0406 tx timeout
[  212.350003][ T5157] Bluetooth: hci4: command 0x0406 tx timeout
[  212.426762][ T6855] netlink: 384 bytes leftover after parsing attributes in process `syz.2.218'.
[  212.436957][ T6855] netlink: 'syz.2.218': attribute type 2 has an invalid length.
[  213.215145][ T5913] usbhid 5-1:0.0: can't add hid device: -71
[  213.225204][ T5913] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  214.194219][ T5913] usb 5-1: USB disconnect, device number 3
[  214.732616][ T6869] netlink: 48 bytes leftover after parsing attributes in process `syz.3.223'.
[  214.963160][ T6874] tipc: Started in network mode
[  214.968115][ T6874] tipc: Node identity 461a1435cdc7, cluster identity 4711
[  214.996593][ T6874] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  215.205555][ T6874] syzkaller0: entered promiscuous mode
[  215.297766][ T6874] syzkaller0: entered allmulticast mode
[  215.557859][ T6869] netlink: 129704 bytes leftover after parsing attributes in process `syz.3.223'.
[  216.100174][ T5959] tipc: Node number set to 2346521653
[  216.943750][ T6876] tipc: Resetting bearer <eth:syzkaller0>
[  217.295716][ T6873] tipc: Resetting bearer <eth:syzkaller0>
[  217.542415][ T6873] tipc: Disabling bearer <eth:syzkaller0>
[  217.967951][ T6886] tipc: Enabled bearer <udp:syz2>, priority 10
[  219.104956][ T5892] tipc: Node number set to 2895515748
[  220.400209][ T6906] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(8)
[  220.406811][ T6906] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  220.416534][ T6906] vhci_hcd vhci_hcd.0: Device attached
[  220.647902][ T6909] vhci_hcd: connection closed
[  221.136920][ T3837] vhci_hcd: stop threads
[  221.150277][ T5892] usb 37-1: new high-speed USB device number 2 using vhci_hcd
[  221.262574][ T3837] vhci_hcd: release socket
[  221.267993][ T3837] vhci_hcd: disconnect device
[  221.314680][ T5892] usb 37-1: enqueue for inactive port 0
[  221.449153][ T5892] vhci_hcd: vhci_device speed not set
[  221.537265][ T6917] netlink: 'syz.4.237': attribute type 1 has an invalid length.
[  221.546455][ T6917] netlink: 'syz.4.237': attribute type 2 has an invalid length.
[  222.935020][ T6920] Bluetooth: MGMT ver 1.23
[  223.889810][ T6923] ceph: No mds server is up or the cluster is laggy
[  223.949879][ T5913] libceph: connect (1)[c::]:6789 error -101
[  223.963503][ T5913] libceph: mon0 (1)[c::]:6789 connect error
[  224.187408][ T6927] capability: warning: `syz.4.241' uses deprecated v2 capabilities in a way that may be insecure
[  224.370691][ T5913] libceph: connect (1)[c::]:6789 error -101
[  224.377316][ T5913] libceph: mon0 (1)[c::]:6789 connect error
[  224.926006][ T5931] libceph: connect (1)[c::]:6789 error -101
[  225.208458][ T5931] libceph: mon0 (1)[c::]:6789 connect error
[  225.520269][ T6947] syz.0.243: attempt to access beyond end of device
[  225.520269][ T6947] nbd0: rw=0, sector=0, nr_sectors = 1 limit=0
[  225.536406][ T6947] (syz.0.243,6947,0):ocfs2_get_sector:1714 ERROR: status = -5
[  225.544261][ T6947] (syz.0.243,6947,0):ocfs2_sb_probe:753 ERROR: status = -5
[  225.551908][ T6947] (syz.0.243,6947,0):ocfs2_fill_super:989 ERROR: superblock probe failed!
[  225.560813][ T6947] (syz.0.243,6947,0):ocfs2_fill_super:1177 ERROR: status = -5
[  226.541217][ T6953] netlink: 199836 bytes leftover after parsing attributes in process `syz.4.245'.
[  230.871142][ T6980] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(8)
[  230.877730][ T6980] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  230.885736][ T6980] vhci_hcd vhci_hcd.0: Device attached
[  231.048108][ T6981] vhci_hcd: connection closed
[  231.050226][   T12] vhci_hcd: stop threads
[  231.802282][   T12] vhci_hcd: release socket
[  231.885585][   T12] vhci_hcd: disconnect device
[  231.959072][   T44] vhci_hcd: vhci_device speed not set
[  232.108543][ T6986] bridge_slave_0: left allmulticast mode
[  232.513498][ T6986] bridge_slave_0: left promiscuous mode
[  232.693515][ T6986] bridge0: port 1(bridge_slave_0) entered disabled state
[  233.394410][ T6986] bridge_slave_1: left allmulticast mode
[  233.456800][ T6986] bridge_slave_1: left promiscuous mode
[  233.474183][ T6986] bridge0: port 2(bridge_slave_1) entered disabled state
[  233.522851][ T6986] bond0: (slave bond_slave_0): Releasing backup interface
[  233.544551][ T6986] bond_slave_0: left promiscuous mode
[  233.583711][ T6986] bond0: (slave bond_slave_1): Releasing backup interface
[  233.607500][ T6986] bond_slave_1: left promiscuous mode
[  233.804021][    T9] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  233.822867][ T6986] team0: Port device team_slave_0 removed
[  233.846211][ T6986] team0: Port device team_slave_1 removed
[  233.874134][ T6986] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  234.518152][ T6986] batman_adv: batadv0: Removing interface: batadv_slave_0
[  234.557789][ T6986] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  234.592595][ T6986] batman_adv: batadv0: Removing interface: batadv_slave_1
[  234.658820][ T6986] batman_adv: batadv0: Interface deactivated: virt_wifi0
[  234.667334][ T6986] batman_adv: batadv0: Removing interface: virt_wifi0
[  234.739229][    T9] usb 5-1: Using ep0 maxpacket: 8
[  234.749801][    T9] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  234.769444][    T9] usb 5-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  234.778505][    T9] usb 5-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58
[  235.329516][    T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  235.366635][    T9] usb 5-1: config 0 descriptor??
[  236.213057][    T9] usb 5-1: can't set config #0, error -71
[  236.440828][    T9] usb 5-1: USB disconnect, device number 4
[  241.504587][ T7047] input: syz0 as /devices/virtual/input/input6
[  243.025947][ T7058] bridge_slave_0: left allmulticast mode
[  243.140657][ T7058] bridge_slave_0: left promiscuous mode
[  243.169335][ T7058] bridge0: port 1(bridge_slave_0) entered disabled state
[  244.237447][ T7066] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  244.499178][ T7066] Bluetooth: hci0: Error when powering off device on rfkill (-4)
[  245.151697][ T7066] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  245.157841][ T7066] Bluetooth: hci1: Error when powering off device on rfkill (-4)
[  245.173603][ T7066] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  245.179690][ T7066] Bluetooth: hci2: Error when powering off device on rfkill (-4)
[  245.189763][ T7066] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  245.196499][ T7066] Bluetooth: hci3: Error when powering off device on rfkill (-4)
[  245.225746][ T7058] bridge_slave_1: left allmulticast mode
[  245.235173][ T7066] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  245.241229][ T7066] Bluetooth: hci4: Error when powering off device on rfkill (-4)
[  245.442901][ T7058] bridge_slave_1: left promiscuous mode
[  245.448764][ T7058] bridge0: port 2(bridge_slave_1) entered disabled state
[  246.509771][ T7058] bond0: (slave bond_slave_0): Releasing backup interface
[  246.545606][ T7058] bond0: (slave bond_slave_1): Releasing backup interface
[  247.241143][ T7058] team0: Port device team_slave_0 removed
[  247.319243][ T7058] team0: Port device team_slave_1 removed
[  247.354705][ T7058] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  247.388524][ T7058] batman_adv: batadv0: Removing interface: batadv_slave_0
[  247.433972][ T7058] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  247.436498][ T7077] netlink: 4 bytes leftover after parsing attributes in process `syz.2.278'.
[  247.465101][ T7058] batman_adv: batadv0: Removing interface: batadv_slave_1
[  247.654851][ T7077] dummy0: entered promiscuous mode
[  247.703932][ T7077] dummy0: left promiscuous mode
[  248.397756][ T7085] IPVS: sync thread started: state = BACKUP, mcast_ifn = bridge0, syncid = 0, id = 0
[  249.711225][ T7088] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  250.964009][ T7093] netlink: 4 bytes leftover after parsing attributes in process `syz.0.284'.
[  251.288877][ T7101] (syz.1.286,7101,1):ocfs2_fill_super:989 ERROR: superblock probe failed!
[  251.297625][ T7101] (syz.1.286,7101,1):ocfs2_fill_super:1177 ERROR: status = -22
[  252.278416][   T30] audit: type=1326 audit(1752101558.685:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7107 comm="syz.3.277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfd2d8e929 code=0x7ffc0000
[  252.727189][   T30] audit: type=1326 audit(1752101558.685:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7107 comm="syz.3.277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fbfd2d8d290 code=0x7ffc0000
[  252.802266][   T30] audit: type=1326 audit(1752101558.685:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7107 comm="syz.3.277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7fbfd2d90157 code=0x7ffc0000
[  252.822694][ T7109] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  252.909618][   T30] audit: type=1326 audit(1752101558.685:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7107 comm="syz.3.277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fbfd2d8e929 code=0x7ffc0000
[  252.952502][ T7109] infiniband srz1: RDMA CMA: cma_listen_on_dev, error -98
[  252.999061][   T30] audit: type=1326 audit(1752101558.695:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7107 comm="syz.3.277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7fbfd2d90157 code=0x7ffc0000
[  253.221836][   T30] audit: type=1326 audit(1752101558.695:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7107 comm="syz.3.277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fbfd2d8d58a code=0x7ffc0000
[  253.595362][   T30] audit: type=1326 audit(1752101558.695:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7107 comm="syz.3.277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfd2d8e929 code=0x7ffc0000
[  253.617086][   T30] audit: type=1326 audit(1752101558.695:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7107 comm="syz.3.277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfd2d8e929 code=0x7ffc0000
[  253.658188][   T30] audit: type=1326 audit(1752101558.715:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7107 comm="syz.3.277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7fbfd2d8e929 code=0x7ffc0000
[  253.685027][ T7124] tipc: Started in network mode
[  253.690877][ T7124] tipc: Node identity 080211000001, cluster identity 4711
[  253.711897][ T7124] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  253.726759][ T7124] mac80211_hwsim hwsim8 syzkaller0: entered promiscuous mode
[  253.734579][   T30] audit: type=1326 audit(1752101558.715:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7107 comm="syz.3.277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfd2d8e929 code=0x7ffc0000
[  253.757579][ T7124] mac80211_hwsim hwsim8 syzkaller0: entered allmulticast mode
[  253.766511][  T977] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[  253.788671][ T7124] tipc: Resetting bearer <eth:syzkaller0>
[  253.987892][  T977] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  254.029049][  T977] usb 3-1: config 0 has no interfaces?
[  254.048105][  T977] usb 3-1: New USB device found, idVendor=046d, idProduct=c293, bcdDevice= 0.00
[  254.080633][  T977] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  254.093773][ T7128] bridge_slave_0: left allmulticast mode
[  254.114150][ T7128] bridge_slave_0: left promiscuous mode
[  254.130208][  T977] usb 3-1: config 0 descriptor??
[  254.144966][ T7128] bridge0: port 1(bridge_slave_0) entered disabled state
[  254.305964][ T7128] bridge_slave_1: left allmulticast mode
[  254.328761][ T7128] bridge_slave_1: left promiscuous mode
[  254.343289][ T7128] bridge0: port 2(bridge_slave_1) entered disabled state
[  254.397129][ T7128] bond0: (slave bond_slave_0): Releasing backup interface
[  254.462914][ T7128] bond0: (slave bond_slave_1): Releasing backup interface
[  254.705584][ T7128] team0: Port device team_slave_0 removed
[  254.775180][ T5913] tipc: Node number set to 134418688
[  255.799933][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  255.806793][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  256.003567][ T7128] team0: Port device team_slave_1 removed
[  256.010863][ T7128] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  256.018782][ T7128] batman_adv: batadv0: Removing interface: batadv_slave_0
[  256.323310][ T7128] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  256.494205][ T7128] batman_adv: batadv0: Removing interface: batadv_slave_1
[  257.600725][ T7153] tipc: Enabled bearer <udp:syz2>, priority 10
[  257.619673][    T9] usb 3-1: USB disconnect, device number 3
[  258.642022][ T7165] ip6t_REJECT: TCP_RESET illegal for non-tcp
[  259.590480][ T7182] netlink: 12 bytes leftover after parsing attributes in process `syz.2.305'.
[  261.352763][ T7195] netlink: 'syz.2.305': attribute type 13 has an invalid length.
[  261.879720][ T7195] gretap0: refused to change device tx_queue_len
[  261.906586][ T7195] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  263.217526][ T7206] ptrace attach of "./syz-executor exec"[5845] was attempted by "./syz-executor exec"[7206]
[  263.459262][ T7205] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  263.640083][ T7205] overlayfs: failed to set xattr on upper
[  263.892492][ T7205] overlayfs: ...falling back to redirect_dir=nofollow.
[  263.929210][ T7205] overlayfs: ...falling back to index=off.
[  263.973771][ T7205] overlayfs: ...falling back to uuid=null.
[  263.989961][ T7205] overlayfs: maximum fs stacking depth exceeded
[  264.005742][ T7213] kvm: pic: non byte write
[  266.290420][ T7233] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  268.053794][ T7258] netlink: 12 bytes leftover after parsing attributes in process `syz.1.322'.
[  268.434815][ T7261] ptrace attach of "./syz-executor exec"[5838] was attempted by "                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                              
[  270.869541][ T7262] bridge1: port 1(veth3) entered blocking state
[  270.999910][ T7262] bridge1: port 1(veth3) entered disabled state
[  271.021315][ T7262] veth3: entered allmulticast mode
[  271.057605][ T7262] veth3: entered promiscuous mode
[  271.099994][ T7263] vlan2: entered allmulticast mode
[  271.117068][ T7263] veth1: entered allmulticast mode
[  271.149384][ T7263] bridge1: port 2(vlan2) entered blocking state
[  271.189244][ T7263] bridge1: port 2(vlan2) entered disabled state
[  271.214907][ T7263] vlan2: entered promiscuous mode
[  271.220875][ T7263] veth1: entered promiscuous mode
[  271.236228][ T7281] netlink: 'syz.4.328': attribute type 4 has an invalid length.
[  274.771556][ T7310] xt_hashlimit: size too large, truncated to 1048576
[  275.278641][   T30] kauditd_printk_skb: 16 callbacks suppressed
[  275.278662][   T30] audit: type=1804 audit(1752101581.325:51): pid=7314 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz.0.337" name="/newroot/72/file0" dev="tmpfs" ino=393 res=1 errno=0
[  275.340139][ T7308] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  275.611956][ T7315] syzkaller0: entered promiscuous mode
[  275.617536][ T7315] syzkaller0: entered allmulticast mode
[  275.793469][ T7308] tipc: Resetting bearer <eth:syzkaller0>
[  276.785246][ T7307] tipc: Resetting bearer <eth:syzkaller0>
[  279.107544][ T7325] syz.1.340 (7325): drop_caches: 2
[  279.129545][ T7325] syz.1.340 (7325): drop_caches: 2
[  279.271272][ T7307] tipc: Disabling bearer <eth:syzkaller0>
[  279.424231][ T7328] netlink: 'syz.2.341': attribute type 1 has an invalid length.
[  280.382054][ T7342] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  280.454952][ T7342] kvm: pic: non byte read
[  280.652748][ T7342] kvm: pic: level sensitive irq not supported
[  280.652925][ T7342] kvm: pic: non byte read
[  280.725711][ T7335] 8021q: adding VLAN 0 to HW filter on device bond1
[  281.637612][ T7340] veth3: entered promiscuous mode
[  288.527662][ T5913] usb 2-1: new full-speed USB device number 3 using dummy_hcd
[  290.446483][ T7400] sctp: sctp_transport_update_pmtu: Reported pmtu 68 too low, using default minimum of 512
[  290.503912][ T7400] sctp: sctp_transport_update_pmtu: Reported pmtu 68 too low, using default minimum of 512
[  290.517865][ T7400] sctp: sctp_transport_update_pmtu: Reported pmtu 68 too low, using default minimum of 512
[  290.552268][ T7400] sctp: sctp_transport_update_pmtu: Reported pmtu 68 too low, using default minimum of 512
[  290.573508][ T7400] sctp: sctp_transport_update_pmtu: Reported pmtu 68 too low, using default minimum of 512
[  290.585665][ T7400] sctp: sctp_transport_update_pmtu: Reported pmtu 68 too low, using default minimum of 512
[  290.597926][ T7400] sctp: sctp_transport_update_pmtu: Reported pmtu 68 too low, using default minimum of 512
[  290.610309][ T7400] sctp: sctp_transport_update_pmtu: Reported pmtu 68 too low, using default minimum of 512
[  290.622173][ T7400] sctp: sctp_transport_update_pmtu: Reported pmtu 68 too low, using default minimum of 512
[  290.634252][ T7400] sctp: sctp_transport_update_pmtu: Reported pmtu 68 too low, using default minimum of 512
[  292.779155][    T9] usb 4-1: new full-speed USB device number 2 using dummy_hcd
[  293.811810][    T9] usb 4-1: not running at top speed; connect to a high speed hub
[  294.026693][    T9] usb 4-1: config 1 interface 0 has no altsetting 0
[  294.060786][    T9] usb 4-1: New USB device found, idVendor=05ac, idProduct=0230, bcdDevice= 0.40
[  294.077372][    T9] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  294.086155][    T9] usb 4-1: Product: syz
[  294.090780][    T9] usb 4-1: Manufacturer: syz
[  294.098329][    T9] usb 4-1: SerialNumber: syz
[  294.349293][    T9] input: bcm5974 as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/input/input7
[  294.364992][ T5192] bcm5974 4-1:1.0: could not read from device
[  295.030484][    T9] usb 4-1: USB disconnect, device number 2
[  295.035802][ T5192] bcm5974 4-1:1.0: could not read from device
[  295.173486][ T7441] netlink: 4 bytes leftover after parsing attributes in process `syz.2.370'.
[  295.397897][ T7441] hsr_slave_0: left promiscuous mode
[  296.111514][ T7441] hsr_slave_1: left promiscuous mode
[  302.728792][ T7480] sp0: Synchronizing with TNC
[  303.769068][ T7482] sp0: Found TNC
[  317.381854][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  317.398746][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  319.347292][ T7594] fanotify: failed to encode fid (type=0, len=0, err=-2)
[  319.347421][ T7598] fanotify: failed to encode fid (type=0, len=0, err=-2)
[  319.586124][ T7602] ipvlan2: entered promiscuous mode
[  319.593715][ T7602] bridge0: port 1(ipvlan2) entered blocking state
[  319.594274][ T7602] bridge0: port 1(ipvlan2) entered disabled state
[  319.595189][ T7602] ipvlan2: entered allmulticast mode
[  319.595230][ T7602] bridge0: entered allmulticast mode
[  319.611282][ T7602] ipvlan2: left allmulticast mode
[  319.611350][ T7602] bridge0: left allmulticast mode
[  320.509598][ T7601] tty tty1: ldisc open failed (-12), clearing slot 0
[  322.033465][ T7606] Process accounting resumed
[  323.189865][ T7629] input: syz0 as /devices/virtual/input/input8
[  327.810370][ T7658] netlink: 20 bytes leftover after parsing attributes in process `syz.2.421'.
[  328.526835][ T7670] netlink: 'syz.4.427': attribute type 1 has an invalid length.
[  328.722282][ T7670] 8021q: adding VLAN 0 to HW filter on device bond1
[  330.448758][ T7673] bond1: (slave geneve2): making interface the new active one
[  330.466073][ T7673] bond1: (slave geneve2): Enslaving as an active interface with an up link
[  330.516518][ T7670] vlan2: entered allmulticast mode
[  330.624807][ T7670] bond1: entered allmulticast mode
[  330.630124][ T7670] geneve2: entered allmulticast mode
[  330.637217][ T7670] bond1: (slave vlan2): the slave hw address is in use by the bond; couldn't find a slave with a free hw address to give it (this should not have happened)
[  335.060744][ T7718] 8021q: adding VLAN 0 to HW filter on device bond0
[  335.095656][ T7718] bond0: (slave rose0): Enslaving as an active interface with an up link
[  335.289027][    T9] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  335.376866][ T7724] bridge_slave_0: left allmulticast mode
[  335.466873][ T7724] bridge_slave_0: left promiscuous mode
[  335.494994][    T9] usb 4-1: config 0 has no interfaces?
[  335.539780][    T9] usb 4-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  335.704154][    T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  336.168178][    T9] usb 4-1: config 0 descriptor??
[  336.188418][ T7724] bridge0: port 1(bridge_slave_0) entered disabled state
[  336.271547][ T7724] bridge_slave_1: left allmulticast mode
[  336.300574][ T7724] bridge_slave_1: left promiscuous mode
[  336.319402][ T7724] bridge0: port 2(bridge_slave_1) entered disabled state
[  337.303129][ T7716] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  337.527791][ T7724] bond0: (slave bond_slave_0): Releasing backup interface
[  337.537233][ T7716] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  337.563045][    T9] usb 4-1: USB disconnect, device number 3
[  337.592226][ T7724] bond0: (slave bond_slave_1): Releasing backup interface
[  337.684786][ T7724] team0: Port device team_slave_0 removed
[  337.745907][ T7724] team0: Port device team_slave_1 removed
[  337.773594][ T7724] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  337.784006][ T7724] batman_adv: batadv0: Removing interface: batadv_slave_0
[  337.802562][ T7724] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  337.814028][ T7724] batman_adv: batadv0: Removing interface: batadv_slave_1
[  337.880915][ T7724] veth3: left allmulticast mode
[  337.894811][ T7724] veth3: left promiscuous mode
[  337.904602][ T7724] bridge1: port 1(veth3) entered disabled state
[  337.946707][ T7724] vlan2: left promiscuous mode
[  337.954367][ T7724] veth1: left promiscuous mode
[  337.982363][ T7724] bridge1: port 2(vlan2) entered disabled state
[  337.999008][    T9] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  338.206857][ T5892] srz1: Port: 1 Link DOWN
[  338.218817][ T7757] tipc: Enabling of bearer <eth:syzkaller0> rejected, already enabled
[  344.359801][ T7812] netlink: 4 bytes leftover after parsing attributes in process `syz.1.459'.
[  344.867272][ T7821] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  344.913238][ T7821] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  345.927491][ T7821] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  346.667268][ T7830] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  347.941187][    C1] ==================================================================
[  347.949344][    C1] BUG: KASAN: slab-use-after-free in rose_timer_expiry+0x471/0x4b0
[  347.957288][    C1] Read of size 2 at addr ffff888056d2342a by task kworker/R-bat_e/3414
[  347.965547][    C1] 
[  347.967912][    C1] CPU: 1 UID: 0 PID: 3414 Comm: kworker/R-bat_e Not tainted 6.16.0-rc5-syzkaller-00053-g8c2e52ebbe88 #0 PREEMPT(full) 
[  347.967958][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  347.967973][    C1] Workqueue: bat_events batadv_tt_purge
[  347.968026][    C1] Call Trace:
[  347.968044][    C1]  <IRQ>
[  347.968054][    C1]  dump_stack_lvl+0x189/0x250
[  347.968080][    C1]  ? __virt_addr_valid+0x1c8/0x5c0
[  347.968106][    C1]  ? rcu_is_watching+0x15/0xb0
[  347.968129][    C1]  ? __pfx_dump_stack_lvl+0x10/0x10
[  347.968152][    C1]  ? rcu_is_watching+0x15/0xb0
[  347.968175][    C1]  ? lock_release+0x4b/0x3e0
[  347.968197][    C1]  ? __virt_addr_valid+0x1c8/0x5c0
[  347.968222][    C1]  ? __virt_addr_valid+0x4a5/0x5c0
[  347.968248][    C1]  print_report+0xd2/0x2b0
[  347.968281][    C1]  ? rose_timer_expiry+0x471/0x4b0
[  347.968301][    C1]  kasan_report+0x118/0x150
[  347.968333][    C1]  ? rose_timer_expiry+0x471/0x4b0
[  347.968358][    C1]  rose_timer_expiry+0x471/0x4b0
[  347.968381][    C1]  call_timer_fn+0x17e/0x5f0
[  347.968400][    C1]  ? __pfx_rose_timer_expiry+0x10/0x10
[  347.968420][    C1]  ? call_timer_fn+0xbe/0x5f0
[  347.968457][    C1]  ? __pfx_call_timer_fn+0x10/0x10
[  347.968481][    C1]  ? _raw_spin_unlock_irq+0x23/0x50
[  347.968511][    C1]  ? lockdep_hardirqs_on+0x9c/0x150
[  347.968552][    C1]  ? __pfx_rose_timer_expiry+0x10/0x10
[  347.968592][    C1]  __run_timer_base+0x61a/0x860
[  347.968631][    C1]  ? __pfx___run_timer_base+0x10/0x10
[  347.968666][    C1]  ? lapic_next_event+0x11/0x20
[  347.968687][    C1]  ? clockevents_program_event+0x24d/0x360
[  347.968723][    C1]  run_timer_softirq+0xb7/0x180
[  347.968755][    C1]  handle_softirqs+0x283/0x870
[  347.968780][    C1]  ? do_softirq+0xec/0x180
[  347.968805][    C1]  ? __pfx_handle_softirqs+0x10/0x10
[  347.968830][    C1]  ? batadv_tt_purge+0x4d1/0x9e0
[  347.968861][    C1]  do_softirq+0xec/0x180
[  347.968882][    C1]  </IRQ>
[  347.968890][    C1]  <TASK>
[  347.968898][    C1]  ? __pfx_do_softirq+0x10/0x10
[  347.968922][    C1]  ? batadv_tt_purge+0x4d1/0x9e0
[  347.968956][    C1]  ? lockdep_softirqs_on+0x13b/0x1c0
[  347.968992][    C1]  __local_bh_enable_ip+0x17d/0x1c0
[  347.969022][    C1]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  347.969047][    C1]  ? do_raw_spin_unlock+0x122/0x240
[  347.969078][    C1]  ? batadv_tt_purge+0x4d1/0x9e0
[  347.969110][    C1]  batadv_tt_purge+0x4d1/0x9e0
[  347.969146][    C1]  ? process_scheduled_works+0x9ef/0x17b0
[  347.969171][    C1]  process_scheduled_works+0xade/0x17b0
[  347.969210][    C1]  ? __pfx_process_scheduled_works+0x10/0x10
[  347.969240][    C1]  ? assign_work+0x381/0x410
[  347.969264][    C1]  rescuer_thread+0x53c/0xdd0
[  347.969294][    C1]  ? rescuer_thread+0xbb/0xdd0
[  347.969330][    C1]  kthread+0x711/0x8a0
[  347.969361][    C1]  ? __pfx_rescuer_thread+0x10/0x10
[  347.969387][    C1]  ? __pfx_kthread+0x10/0x10
[  347.969417][    C1]  ? _raw_spin_unlock_irq+0x23/0x50
[  347.969447][    C1]  ? lockdep_hardirqs_on+0x9c/0x150
[  347.969479][    C1]  ? __pfx_kthread+0x10/0x10
[  347.969508][    C1]  ret_from_fork+0x3f9/0x770
[  347.969531][    C1]  ? __pfx_ret_from_fork+0x10/0x10
[  347.969555][    C1]  ? __switch_to_asm+0x39/0x70
[  347.969582][    C1]  ? __switch_to_asm+0x33/0x70
[  347.969609][    C1]  ? __pfx_kthread+0x10/0x10
[  347.969637][    C1]  ret_from_fork_asm+0x1a/0x30
[  347.969674][    C1]  </TASK>
[  347.969682][    C1] 
[  348.293622][    C1] Allocated by task 36:
[  348.297781][    C1]  kasan_save_track+0x3e/0x80
[  348.302479][    C1]  __kasan_kmalloc+0x93/0xb0
[  348.307083][    C1]  __kmalloc_cache_noprof+0x230/0x3d0
[  348.312470][    C1]  batadv_forw_packet_alloc+0x1e9/0x390
[  348.318119][    C1]  batadv_iv_ogm_queue_add+0x85f/0xd30
[  348.323593][    C1]  batadv_iv_ogm_schedule+0xabd/0xea0
[  348.328985][    C1]  batadv_iv_send_outstanding_bat_ogm_packet+0x6c6/0x7e0
[  348.336042][    C1]  process_scheduled_works+0xade/0x17b0
[  348.341596][    C1]  worker_thread+0x8a0/0xda0
[  348.346195][    C1]  kthread+0x711/0x8a0
[  348.350279][    C1]  ret_from_fork+0x3f9/0x770
[  348.354875][    C1]  ret_from_fork_asm+0x1a/0x30
[  348.359653][    C1] 
[  348.361980][    C1] Freed by task 3837:
[  348.365966][    C1]  kasan_save_track+0x3e/0x80
[  348.371456][    C1]  kasan_save_free_info+0x46/0x50
[  348.376490][    C1]  __kasan_slab_free+0x62/0x70
[  348.381270][    C1]  kfree+0x18e/0x440
[  348.385179][    C1]  process_scheduled_works+0xade/0x17b0
[  348.390744][    C1]  worker_thread+0x8a0/0xda0
[  348.395347][    C1]  kthread+0x711/0x8a0
[  348.399429][    C1]  ret_from_fork+0x3f9/0x770
[  348.404029][    C1]  ret_from_fork_asm+0x1a/0x30
[  348.408805][    C1] 
[  348.411136][    C1] Last potentially related work creation:
[  348.416853][    C1]  kasan_save_stack+0x3e/0x60
[  348.421541][    C1]  kasan_record_aux_stack+0xbd/0xd0
[  348.426747][    C1]  insert_work+0x3d/0x330
[  348.431081][    C1]  __queue_work+0xbd9/0xfe0
[  348.435591][    C1]  call_timer_fn+0x17e/0x5f0
[  348.440190][    C1]  __run_timer_base+0x646/0x860
[  348.445068][    C1]  run_timer_softirq+0xb7/0x180
[  348.449924][    C1]  handle_softirqs+0x283/0x870
[  348.454691][    C1]  __irq_exit_rcu+0xca/0x1f0
[  348.459285][    C1]  irq_exit_rcu+0x9/0x30
[  348.463530][    C1]  sysvec_apic_timer_interrupt+0xa6/0xc0
[  348.469171][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  348.475152][    C1] 
[  348.477477][    C1] The buggy address belongs to the object at ffff888056d23400
[  348.477477][    C1]  which belongs to the cache kmalloc-512 of size 512
[  348.491535][    C1] The buggy address is located 42 bytes inside of
[  348.491535][    C1]  freed 512-byte region [ffff888056d23400, ffff888056d23600)
[  348.505363][    C1] 
[  348.507779][    C1] The buggy address belongs to the physical page:
[  348.514204][    C1] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff888056d23800 pfn:0x56d20
[  348.524280][    C1] head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  348.532781][    C1] flags: 0xfff00000000240(workingset|head|node=0|zone=1|lastcpupid=0x7ff)
[  348.541302][    C1] page_type: f5(slab)
[  348.545294][    C1] raw: 00fff00000000240 ffff88801a441c80 ffffea00016e6e10 ffffea0001590d10
[  348.553887][    C1] raw: ffff888056d23800 000000000010000c 00000000f5000000 0000000000000000
[  348.562481][    C1] head: 00fff00000000240 ffff88801a441c80 ffffea00016e6e10 ffffea0001590d10
[  348.571172][    C1] head: ffff888056d23800 000000000010000c 00000000f5000000 0000000000000000
[  348.579893][    C1] head: 00fff00000000002 ffffea00015b4801 00000000ffffffff 00000000ffffffff
[  348.588691][    C1] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000004
[  348.597368][    C1] page dumped because: kasan: bad access detected
[  348.603812][    C1] page_owner tracks the page as allocated
[  348.609537][    C1] page last allocated via order 2, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5845, tgid 5845 (syz-executor), ts 93311564072, free_ts 29314450155
[  348.630915][    C1]  post_alloc_hook+0x240/0x2a0
[  348.635703][    C1]  get_page_from_freelist+0x21d5/0x22b0
[  348.641259][    C1]  __alloc_frozen_pages_noprof+0x181/0x370
[  348.647091][    C1]  alloc_pages_mpol+0x232/0x4a0
[  348.652055][    C1]  allocate_slab+0x8a/0x3b0
[  348.656565][    C1]  ___slab_alloc+0xbfc/0x1480
[  348.661250][    C1]  __kmalloc_noprof+0x305/0x4f0
[  348.666112][    C1]  fib6_info_alloc+0x30/0xf0
[  348.670708][    C1]  ip6_route_info_create+0x142/0x860
[  348.676088][    C1]  ip6_route_add+0x49/0x1b0
[  348.680612][    C1]  inet6_addr_add+0x6b2/0xc00
[  348.685292][    C1]  inet6_rtm_newaddr+0x93d/0xd20
[  348.690243][    C1]  rtnetlink_rcv_msg+0x7cc/0xb70
[  348.695192][    C1]  netlink_rcv_skb+0x205/0x470
[  348.699993][    C1]  netlink_unicast+0x758/0x8d0
[  348.704762][    C1]  netlink_sendmsg+0x805/0xb30
[  348.709532][    C1] page last free pid 1 tgid 1 stack trace:
[  348.715339][    C1]  __free_frozen_pages+0xc65/0xe60
[  348.720469][    C1]  free_contig_range+0x1bd/0x4a0
[  348.725441][    C1]  destroy_args+0x7e/0x5d0
[  348.729869][    C1]  debug_vm_pgtable+0x412/0x450
[  348.734732][    C1]  do_one_initcall+0x233/0x820
[  348.739515][    C1]  do_initcall_level+0x137/0x1f0
[  348.744469][    C1]  do_initcalls+0x69/0xd0
[  348.748823][    C1]  kernel_init_freeable+0x3d9/0x570
[  348.754035][    C1]  kernel_init+0x1d/0x1d0
[  348.758385][    C1]  ret_from_fork+0x3f9/0x770
[  348.763073][    C1]  ret_from_fork_asm+0x1a/0x30
[  348.767846][    C1] 
[  348.770186][    C1] Memory state around the buggy address:
[  348.775827][    C1]  ffff888056d23300: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  348.783891][    C1]  ffff888056d23380: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  348.791955][    C1] >ffff888056d23400: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  348.800017][    C1]                                   ^
[  348.805389][    C1]  ffff888056d23480: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  348.813456][    C1]  ffff888056d23500: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  348.821520][    C1] ==================================================================
[  348.829668][    C1] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  348.836909][    C1] CPU: 1 UID: 0 PID: 3414 Comm: kworker/R-bat_e Not tainted 6.16.0-rc5-syzkaller-00053-g8c2e52ebbe88 #0 PREEMPT(full) 
[  348.849351][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  348.859449][    C1] Workqueue: bat_events batadv_tt_purge
[  348.865030][    C1] Call Trace:
[  348.868340][    C1]  <IRQ>
[  348.871199][    C1]  dump_stack_lvl+0x99/0x250
[  348.875804][    C1]  ? __asan_memcpy+0x40/0x70
[  348.880431][    C1]  ? __pfx_dump_stack_lvl+0x10/0x10
[  348.885657][    C1]  ? __pfx__printk+0x10/0x10
[  348.890272][    C1]  panic+0x2db/0x790
[  348.894186][    C1]  ? __pfx_panic+0x10/0x10
[  348.898636][    C1]  ? _raw_spin_unlock_irqrestore+0xa8/0x110
[  348.904641][    C1]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  348.910582][    C1]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  348.916941][    C1]  ? print_memory_metadata+0x314/0x400
[  348.922438][    C1]  ? rose_timer_expiry+0x471/0x4b0
[  348.927563][    C1]  check_panic_on_warn+0x89/0xb0
[  348.932518][    C1]  ? rose_timer_expiry+0x471/0x4b0
[  348.937635][    C1]  end_report+0x78/0x160
[  348.941941][    C1]  kasan_report+0x129/0x150
[  348.946480][    C1]  ? rose_timer_expiry+0x471/0x4b0
[  348.951611][    C1]  rose_timer_expiry+0x471/0x4b0
[  348.956571][    C1]  call_timer_fn+0x17e/0x5f0
[  348.961184][    C1]  ? __pfx_rose_timer_expiry+0x10/0x10
[  348.966658][    C1]  ? call_timer_fn+0xbe/0x5f0
[  348.971346][    C1]  ? __pfx_call_timer_fn+0x10/0x10
[  348.976471][    C1]  ? _raw_spin_unlock_irq+0x23/0x50
[  348.981679][    C1]  ? lockdep_hardirqs_on+0x9c/0x150
[  348.986892][    C1]  ? __pfx_rose_timer_expiry+0x10/0x10
[  348.992358][    C1]  __run_timer_base+0x61a/0x860
[  348.997233][    C1]  ? __pfx___run_timer_base+0x10/0x10
[  349.002625][    C1]  ? lapic_next_event+0x11/0x20
[  349.007491][    C1]  ? clockevents_program_event+0x24d/0x360
[  349.013310][    C1]  run_timer_softirq+0xb7/0x180
[  349.018208][    C1]  handle_softirqs+0x283/0x870
[  349.023011][    C1]  ? do_softirq+0xec/0x180
[  349.027460][    C1]  ? __pfx_handle_softirqs+0x10/0x10
[  349.032766][    C1]  ? batadv_tt_purge+0x4d1/0x9e0
[  349.037746][    C1]  do_softirq+0xec/0x180
[  349.042014][    C1]  </IRQ>
[  349.044960][    C1]  <TASK>
[  349.047910][    C1]  ? __pfx_do_softirq+0x10/0x10
[  349.052775][    C1]  ? batadv_tt_purge+0x4d1/0x9e0
[  349.057740][    C1]  ? lockdep_softirqs_on+0x13b/0x1c0
[  349.063129][    C1]  __local_bh_enable_ip+0x17d/0x1c0
[  349.068339][    C1]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  349.074068][    C1]  ? do_raw_spin_unlock+0x122/0x240
[  349.079278][    C1]  ? batadv_tt_purge+0x4d1/0x9e0
[  349.084243][    C1]  batadv_tt_purge+0x4d1/0x9e0
[  349.089028][    C1]  ? process_scheduled_works+0x9ef/0x17b0
[  349.094760][    C1]  process_scheduled_works+0xade/0x17b0
[  349.100339][    C1]  ? __pfx_process_scheduled_works+0x10/0x10
[  349.106341][    C1]  ? assign_work+0x381/0x410
[  349.110943][    C1]  rescuer_thread+0x53c/0xdd0
[  349.115638][    C1]  ? rescuer_thread+0xbb/0xdd0
[  349.120434][    C1]  kthread+0x711/0x8a0
[  349.124527][    C1]  ? __pfx_rescuer_thread+0x10/0x10
[  349.129743][    C1]  ? __pfx_kthread+0x10/0x10
[  349.134346][    C1]  ? _raw_spin_unlock_irq+0x23/0x50
[  349.139559][    C1]  ? lockdep_hardirqs_on+0x9c/0x150
[  349.144783][    C1]  ? __pfx_kthread+0x10/0x10
[  349.149387][    C1]  ret_from_fork+0x3f9/0x770
[  349.153995][    C1]  ? __pfx_ret_from_fork+0x10/0x10
[  349.159119][    C1]  ? __switch_to_asm+0x39/0x70
[  349.163906][    C1]  ? __switch_to_asm+0x33/0x70
[  349.168683][    C1]  ? __pfx_kthread+0x10/0x10
[  349.173283][    C1]  ret_from_fork_asm+0x1a/0x30
[  349.178059][    C1]  </TASK>
[  349.181428][    C1] Kernel Offset: disabled
[  349.185764][    C1] Rebooting in 86400 seconds..