last executing test programs:

15.155227295s ago: executing program 3 (id=5353):
syz_usb_connect$hid(0x0, 0x36, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
close(r0)
ioperm(0x5, 0x6, 0x1)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)=ANY=[], 0x2c}, 0x1, 0x0, 0x0, 0x40001}, 0x20008000)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xb4e02000)
syz_clone(0x2000, 0x0, 0xff36, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x1, 0x0)
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0x9, &(0x7f0000000000)=0x3, 0x4)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
fsopen(&(0x7f0000000100)='mqueue\x00', 0x1)
symlinkat(&(0x7f0000000280)='./file1\x00', 0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00')
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone(0x41000000, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x1)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', 0x0, 0x0, &(0x7f0000000400)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'})
socket$inet6(0xa, 0x2, 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84)

11.41394204s ago: executing program 3 (id=5358):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0xfffffffffffffe1f}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0xc8442, 0x19d)
r3 = semget(0x3, 0x0, 0x608)
semctl$GETZCNT(r3, 0x1, 0xf, &(0x7f0000000080)=""/81)
r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0, 0x0)
r5 = fanotify_init(0xf00, 0x1000)
fanotify_mark(r5, 0x105, 0x10000839, r4, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./bus\x00', 0x842, 0x0)
r6 = socket(0x10, 0x1, 0x0)
capset(&(0x7f00000001c0)={0x19980330, r0}, &(0x7f0000000300)={0x1, 0x5, 0x0, 0xffffffff, 0x9c96})
getsockopt$sock_cred(r6, 0x1, 0x11, &(0x7f0000000080)={0x0, <r7=>0x0}, &(0x7f0000cab000)=0xc)
setresuid(0x0, r7, r7)
quotactl$Q_SETQUOTA(0xffffffff80000802, &(0x7f0000000180)=@nullb, r7, &(0x7f0000000280)={0x9, 0x6, 0x4, 0x2, 0x1, 0x5, 0x6, 0x98, 0x1})
readv(r5, &(0x7f0000000c40)=[{&(0x7f0000000500)=""/169, 0xffffffa0}], 0x1)
r8 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r8, 0x6)
r9 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r9, 0x0, 0x0)

11.363128451s ago: executing program 1 (id=5359):
r0 = syz_open_dev$dvb_frontend(&(0x7f0000000080), 0x0, 0x2)
r1 = socket$kcm(0x11, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r5 = socket(0x400000000010, 0x3, 0x0)
rmdir(&(0x7f0000000080)='./cgroup/../file0\x00')
r6 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_SET_BINARY(r6, 0x6, 0x0, 0x0, 0x0)
r7 = fsmount(r6, 0x0, 0xc)
openat$cgroup_subtree(r7, &(0x7f0000000100), 0x2, 0x0)
r8 = getpid()
r9 = syz_pidfd_open(r8, 0x0)
setns(r9, 0x24020000)
move_mount(0xffffffffffffff9c, 0x0, 0xffffffffffffff9c, 0x0, 0x64)
r10 = openat(0xffffffffffffff9c, &(0x7f0000000680)='./file1\x00', 0x143041, 0x0)
write$UHID_INPUT(r10, &(0x7f00000021c0)={0x8, {"d093c7a9e8cc37eaf83e1340340aa5a2665a0d3428832da6fc77e1520bc983ee2dea8084b4bc01286683002339d3230996bfbc1f285426e9cbed36257db8b085b972b9bb0b3fe02690495574e22994030a73fa4c477e48edf9d58c7bf560034da548866a210f683af1c02efe3e5d2bd4fd6405bb02a5de3955322eb2f064407c1f7545596e1843ad5c9be9684ff81817d33fd9d3d526ff33292ecac87fb1a518520e91897857f40672b72fb6928eb627ebad83de041b7a2b5e811f9298b77d3a6396a67b0fc2c51f1e9f6e1c67132930d0675e38679c4e7d37623ac9f3c06561ef32cb5167b4ca24f114876d3e53d97701c5da4ff0aa68537bc0d426d25e6ace4b7affa48293649a16e1db1fb037f9afe3adf9dfb77452c697feca0ce63255c0d435c34f9f15c059288e477a3ea7448b43a273eba429bcddb6d447711af41516c13c1598dfef851a73d025b4d9281b479b3de3c675537338972f1d08c3eb7a784b61f6d3e99cd746c797abe0c19e93a4d0aa3021053088bc6e587a6c9859ebb677591d80e16000aba1be3236879ff5aedec8e68bfba46139fbbaff1003a5b7791cdc64534a879e0d3304e19990142414a919043210709b8814c95a89c441bc2f37d3053b124be8c86d37a2945cd1058f2d65e2c13a14ca328f1a5cb432498e553d990ccd9fb97b3d255f7061dea73ad4fb584760b2237988dbd74bee674c9e61f8cdfcf1c41828832456a0d99b4d12506d23d7ff3d96ddca6cbdce9866c1e548cf13f353449a5a7f33ade32fbb17422e9f3ce0ee581f51d102f76cae618c87f884872cef74cc36dc8c1b6a69d0cf342f44aac3fdbba438db3c0705b3042639ecdb63e6cc92ac3d6b77ab6f5113688ee0d359951f571642d4bea9e9b7aa458cc18e502fe5dd0659ee3f6e7bb340bc638275347845d5074acb98d8e3afef3725af209883f2cbdccbf283512fe23a97a8c1ec1729acd1937498e2c07fd6f99361ca5c2f83254178ab8c4843c898e6f015b9943d8e08e0f1843dfa9ce993f99d4d250573bf50da7ec226cd7983acac4a616295176ce1f39feca46cf027ef1283bf8ce38de1bfb8a629ec400a8edd7d1e74890e7bac000c3f43860543e83991188775e7149fe6c103b5fb69dad935ac90f1b6b02e4c5aef921792e16e77d6ef207831606b8d48a2234443e58a65aa023a0488be5ed71c99dc1fb19c61423dc73a9e80aa434e4690203e4ebc1827b5ebfed61c99d4429e41e572d46942b756846829621596a93434186f6a630624285eeed1d064013cd40e99e40fc387df96a755d224be8bcc58355a22bd9cbe8cbdd70a7fc0ec045ff8453f156221a05af2ceb410f422e2ea1248a9d93c308ea141758d3731748d508856ca3419e4c2b060f2d2a68d13b2bd7068e19c26fb2cd37132ee4b2ceeebffbbf53cb7bde0cd8a875163c37d3ffa6ab66992ac20a84d89b704379868a6e7bff130532f3db59a93531f3a4eab5d13b6bf4cf507b1bea8d8450b97a8b5dbc9d6dafa8b364516c68e0b7f3ae52f4fbcfbeb146acf3df151cf567e2af5738aa8cc406b1cac1f1b3179cdf7a09cfc56bb4f9b35c16043073d3bdd8ad98b0ca381438cdc6debaa0b8bb18d76d046a62f8d2786399b65a6824d71736dc696c89ef684025486e97162d0b485b4e6e7555890f1b0a04476702a2ef0af65dc8516cf828988fc6e355fc5a27291e310f75a24d3d0f2a483ab8c0d90f26d5b5c94e44db80242288b7e98e619464b87014fc582a4722e8eafb974876076f01c55541cc18bf89278b3ad34fedfdbc2a9579d6cc471ddcb97c02e3b0f0fafc41ff925af9468a63c4add2b8fe02724834a6601f498290d0169dbdf78817d337a4335f4e3e9ec1c97b0d032014ea73bd1e258bdad289b19b158bdb103bf99723b56e09d7b46bc9def8a000f3b2e1941e2da3db6d9016b6784e79408ec2aaa0ff6eb6b2aaa7802bc82da79486586f077ccf5124f72214367049092685485e4c05d1d6887f7d47be71718512d4614fa246194e5f8f7332c3f272599cacefcc77bb6c0b96fa6b32fad8a8dbff513d26c6cb7ea045c2f5a1dc819a83bbcf278ed575d8fba2d902f667111d81758d584bfaa7af6ec365a97f5e29f0a42a53a58d1b3c7bf7880c872bf7dfb67f61d46ef7913a88ee32eed9b7049f38b9cb3cc28188a702469230aac224fdb69027d792fee48927f7aeee6231a5b1d8169991082987681e9b263cc9ef5c43b31de254ceac20795a75c85784cf72e2e21196ec02e85ab9927560fed107b92d04920c39f1a5ddc75b07306823620b789b8d1451a72a65cc0c05d98d716d2bd86befd2e31391787be2fc10851e22b060e5f3582649dc72a3cf71d6190c6d77f1b14f03f980397d6b3d067fb82e88e1f98e450a28b8959829f006caa43d2b9e500759472565cb6c56103cae24ced02fd500d4af691751100b09daaa48793e6c87d297bce2ed6615c1d57ecaaad3dbedb623f39543d6b4d5da1fff941bd430957b2538ff78b22ad2a43b97019c53ee3e9abeb165cfacb0549953116e09c22fa36ec651c80c4c3833d5d41160ea6b53830e0ced65eda0d143b0095c1a27a65bc017564cdf09b5f481a1bf417411385127d25b121fb7aa10784928d3ad5382581f50d0ae3c2c65e9a4a1c76f2edcf1b4b8aa19e0e3fbdc4caf1441cedbde4aec501dfad3b1cab1b663e86cec2c774b78e533bb9384164251c0073dac671d983e379ae4a3018db214befc556a9751f42ca96188d4f461f367fdd9251c0f2fc9123bd39dac72be042625aee0784543f4cbee3900f6c80de80062ec71d5fa55c945389edc8da4008e0e8324317a23a36f0e86cad3d879937b5cd35d8056e05fbda84d3d586a1cd3a3663818ae0271eda8712051f2e0a50b0fac86159f043fdd8bb51b55617a2006156fa60665e4bbe1c5814722443c3ab3bf154b2a3cf53ee26ffca07f6c745ace399b88f32edcc1c396f475b0bb80908486d1310d99475e0b3d2020de41bcf67eaf4b5af1276bb2770a96f7481aabdb0ebdfe80b6e869afd9af26b27f4a4fd876fab0c5d70be0bd3e0ff0ae38248474c9e4492e82838318e65697cca8519de852c262cb2a7d0603fbed0b1129ac7b8f04760cce4171b6596859ad49be03950ef607d12f48e055742281d49ad750a20e19d869e231b4b9f5c6a120945a28e3e9dbaf508c55d8926b187879b62e8234b3eddcf0b242a617933000e6f03809d7d1f9cce8c81064001f1ed8afa1db726292c5693b90381f78b6af1936d137bb4a160ac66c0296424d38febdbb8a2c3a00e34757256abfe1102d3520321929c9f12f1829c4e720a9079002ce4da2d472f1c821831f7598e2b2e896043c7faaf9baf942af69756c94aad3a1f97bcaef9fb78c933ef3d4ae02857574a6ae05cda9e2b82746e1c464d849441b3d3224cf5ca02d79584e70df2326185389d0080475082de812d5eaddd3f79451478e7a17ba614592733abbf3fe1a5986540c6bf1c7d8a7e4fe2aae85b0a0934b2d124761bee790eb32a6e57107bc23cf1ee1e285ab126ccfd04c525f1dd131313f96545ffdbcfa2c3d6f67ba024fbff356b0049ac183c265f29bfd07ad3d69875caa58891d0e49d561bac1ed2c632fe83114833f77f51096eb9eda70a064bcab6af77fe22e7347fe1b3948847c4c92f243f64a66b9de017145da59ac2a14c39c33b6fcecf233849a74fd22778789575dbb0b7b0b3e8fc56b97bb2813ab54a09117348e728b9eb5f8ff357f0470d4785f6704d13c69cfbd91f2e50a4a92ce773b05edd049f9d4a6674c821bf15a073bb407dda18143a77e6714d1319fabe4e9bf47ff90b385058814fbef7384152202d171785ccbd4a0efe4ddce2be36fb081542d5b4486ada2e755d37ed186ff507a3261df8181a1975e9bac087de161b4ea33bfbd2a171a1fdc5108fedee5e236b787d8fc3eb5ede60fcc9f0899e4c0064b9d0e77d9b11640983862c0dd6ecdf695c334a6586c1e2bf441a68103a242a095b1bccbebd3d1760ef900ddc09f3aa62b5ddc0f5198c6185ee75ea78f2116d7651b7bfa14ccab6dbbee71f82cffb3cd44c48333fef6c4d43d41833d0d867796a83ffd5cd6fd6dd1553e9727e3478c5203b9d7f86c39bc91a97c5501dbc141a9d3260ae1310b4d4d0714c76d94eb5acff3a77d1f079a3b28fcc02c23b2b508ea09f9f1aab214830bd8f1768a6a2452947aedebc7aa8a7e7e58377e615c082ef8d3fc5d3c57ec7351342ee8a27c3e78d52528022318fe6955da2e47a7d3b9d04363a764869ede31df10a6da1cd791177a187413c7b1af1a984a9ac6e3dca2ed86880f065303f917337872f75afc87ff199c9f996a79a199be35865311468e1f5131b2d57c081743bf0736f88bf21b6e766fb4939f5196e64e45df45633cee606bd76af4305f4f45c0448c56b6519170c6cabbcb8094d6507dc3be7a6f0fca2d2d54a17edbbd0c050ea99f0c451a29f9977ed944809c5ee28e6840cd71a893ac390d7eb147da9abd049fc4a5ad86481de4ac172c5557fae95ebe4cff1119cf001e5c275e6a0c09ddbfc361bd5e9b4a4e6047c5057ca5f0a4487760ac9e9e0589032592126a3a36192467577cfd65ccdca7583b013e78c1ac30f33703f2ed0efce0103b15d26d12c31fcd16b063992db11bf763851617e285a04625880bbc8375f1295063a47b46a4a2bd368a3a77f1d4e067f977631ed89a07284641233e6c38806db9faedf117547104190534a845de9983a392670db9aea24aa33f767d63d048ba2f61cda66bb6b29f4ece14491f1527f3b06732e64d25558cd394e09b2197bc63c933a531ab26f8a6367f57ddcdc0c2f08947d747db27f95040200ff76cca9f493b9530547dd4e187791e9e10d339d796d97e02e090a30bfbee6c34cead2f72f0281131120358953d30451c00dd8c44e2ef6b4d60c0de0b01469ecad512d0f6904521ec7a13c1f9771e889fe62a678ccd0d8a7ea3f6c7c2a0cc5948beb776afdd532c4239b60eb355ba94a8ee47cee0978d5a2d7ca83bbfdff94a6318a217cb15f90e472a9aee5ea1bcaff2200f27f0ef05281e3ef9c50cea2b97d632a6eaa8dcb535cf5f9239de2610f8bd51a7416db86fed03dc5a7d2e9f5bb0d8fe78894a40f83a31354f98bf5924b0171784dde8ccdde7236cc103f14d5632aac726959d270a037b2c0d809dd8743e91789a3b345c0d33ad56db696c8f0947c5d5ed2f0285d5f55ffe8b8a2f3048dc2eab55e33a43eccaf6c74abc1ac0ccec5b7c714f11429b09dd422660e79852a4cdc64f73ea3ecba8a61772712c53b79f44e63dfad0e661cb284965cf87aa1d9bb8f4deba5fcfe4c5be3b6ca23a3a449021239263650b7e455519610b67875669ef90dc9c22c6f9b8743d1304cd0054dbae67ee662b17e5f756374a580f219d47e5ad67025f901b75b437dee365bf5e5b4e07b9125d83017f6244481e3c6457190da31f4e32d3dde3ae910bd33d053a13e5bc5e9751a8de424a16af6a3a355fbf5a06bf9470add60e5213baffdee4e1307caa9d85f7493072627a1173b127c780aa9c9c16fd969e6d2253c604b8e419a76cfdb12aa8ee46eb24c4ab4c7d75844de00bb486b2a6283d03199d3dd4d27fcf5985fbae9d69a5ba71528e0d5b599ee1256a81a932c1a9dde02a777bedcb2d434fef6dfbd7b37270ea514e6b2762c31f6d12a700fb5a3e4902f3716f1fd7ca2d8315cf6df39b65152a2c104e29a358d2a1046d6a0a4e798135f5bc6cf745e38b388cb00", 0x1000}}, 0x1006)
ioctl$sock_SIOCETHTOOL(r5, 0x89ff, &(0x7f0000001440)={'bridge0\x00', &(0x7f0000000400)=@ethtool_ringparam={0x11, 0x0, 0x20040001, 0x0, 0x7, 0x0, 0x0, 0xa1}})
setsockopt$sock_attach_bpf(r1, 0x107, 0xf, &(0x7f0000000000), 0x4)
sendmsg$kcm(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000001c0)=[{0x0}], 0x1}, 0x40000)
ioctl$FE_SET_PROPERTY(r0, 0x40106f52, &(0x7f0000000100)={0x3, &(0x7f0000000380)=[{0x13, '\x00', @st={0x4, [{0x3, @svalue=0x9}, {0x3, @uvalue=0x7}, {0x1, @uvalue=0x5}, {0x1, @uvalue=0x9}]}, 0x4}, {0x2, '\x00', @buffer={"156074847dff3ec92fd15c5a5ab6e820b94f2a1ade3e311b88351c3481518fff", 0x20}, 0x9}, {0x15, '\x00', @data=0x7, 0xe6}, {0x4, '\x00', @st={0x4, [{0x3, @uvalue=0x9}, {0x3, @svalue=0xab}, {0x2, @uvalue=0x4}, {0x3, @svalue}]}, 0x4}, {0x24, '\x00', @buffer={"86219b3d1c24e63b6a8241d98c8356e548b6dcc9acc234fcecbd724cef9ca73d", 0x20}, 0x205}]})

10.391568128s ago: executing program 1 (id=5361):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x341, &(0x7f0000006680))
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
r1 = socket$inet_mptcp(0x2, 0x1, 0x106)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x4088080, 0x0, 0x0, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000180)=0x400000bce)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000032680)=""/102400, 0x19000)
socketpair(0x1d, 0x800, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0b00000005000000000400000900000001"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0xc, &(0x7f0000000040)=ANY=[@ANYRES32, @ANYRESOCT=r0, @ANYRES32=r1], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
setsockopt$sock_attach_bpf(r5, 0x1, 0x32, &(0x7f0000000180)=r4, 0x4)
sendmsg$inet(r6, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x20000000)
bpf$BPF_BTF_GET_NEXT_ID(0x17, 0x0, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r8 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
connect$bt_l2cap(r8, &(0x7f0000000080)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x7ff}, 0xe)
ioctl$sock_bt_hidp_HIDPCONNADD(0xffffffffffffffff, 0x400448c8, &(0x7f0000000600)={r8, r8, 0x8, 0x0, 0x0, 0x6, 0xfe, 0x10cf, 0x5, 0x5, 0x2, 0x1, 'syz0\x00'})
shutdown(r8, 0x1)
sendmsg$NL80211_CMD_RELOAD_REGDB(r7, &(0x7f00000006c0)={0x0, 0x0, &(0x7f00000002c0)={0x0}, 0x1, 0x0, 0x0, 0xc35d4f6d52288271}, 0x200048c4)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)

9.459134244s ago: executing program 1 (id=5362):
syz_usb_connect$printer(0x0, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
syz_mount_image$btrfs(&(0x7f0000000100), &(0x7f0000000000)='./bus\x00', 0x810, &(0x7f0000000180)={[{@discard}, {@compress_algo={'compress', 0x3d, 'zstd'}}, {@discard_async}, {@usebackuproot}, {@skip_balance}, {@autodefrag}, {@commit={'commit', 0x3d, 0x9}}, {@acl}]}, 0xff, 0x5122, &(0x7f0000006440)="$eJzs3U+IVWUfB/Dnzp1x5lVw7isEtsoikGrh4CYioqtMUFF0y8VgBE4tgnThJEi0EMQW/Vt4S4paWLOSWiSzMILauJDCCNyGhrlwoxhILtpp3HvOc+fe53jPvTONjennIzPnPOd3nuc893IW93udc04AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAEMJzv31ypKx++vr02fMz9d2Hts1cOTC94UwIlfb2Sl7ftf3pl17fsev5idhh9sVsWav1GzLreiFrrOnZ2OrX+/NqCGEsGaCaL59aVxi1e3VfccBSNy7tPbZlf33ziaPN6rXL504VXzotE6s9gdWSn1cXF8+levv3SLJHp9116lV6TtGsf3rC/SsvAgBYkqlGe9H5OJp/xO20D6b1pF1P2s2kHT8hNLsby5GNu6bfPDel9VWaZz2LCuN955nU8/e/026k/ZN2EjWWMM/eXfNIM9FvnnNJfbXmCQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHA7eejN0QfK6qevT589P1PffWjbzJUD0xvOhFBrb69k5crad4/W//xm+/FDP2z98sTFZx+p5v3icrRr5/BrXHlsMoTXuioX47CX1ofQ6C20m+HzYuGN9sozsQAAAMCd5N7275FOO4uDYz3tSjtNVtr/oiws3ri099iW/fXNJ442q9cunzu1/PEafcar33S8Tru2+FPpCsYx/qbjLdbjrvsK45RLR0zz/KMXpv4q61/I/7Xy/B/fOfkfAACAf0L+T8cpNyj/f/vK7x+V9S/k/009hyzk/zjjmP9HwvLyPwAAANzObnX+rxfGKTco/4+/MPZVWf9C/p8aLv+Pdk87bvwlTnjPZAhTg6YOAAAA9BH/333xq4WY17NvDtK8/sTDh8+XjVfI//Xh8v9Y+GJ+RV8YAAAAsGzzn+18sKxeyP+N4fL/+C2dNQAAALAUb70/8V5ZvZD/Z4fL/2vzZX7lQ9bpx/hXCEcmQ5horcxlhZ9C88lOAQAAAFghMaf/8fHu78v2K+T/ufL7/8c7HcTr/3vu/1e4/r+rkN3173E3BgAAAOBuVLyeP94eP3tyQb/n7w97/f99/zv8ctnxC/n/4HD5v9q9XMnn/wEAAMAy/Nee/7ezME65Qff/v+eDt38u61/I/83h8n9crut+eScrlez9eWcyhI2tlfxugl/Hw+1JCgtjXYW2RtJjR+yRFxbGuwptc0mPrZMh3N9aOZgU/h8LzaRwdX1emE8KZ2IhPx86heNJ4WQ80z5dn083LXwXC/kFFgvxCop1nUsikh7X+vVoFW7a41zn4AAAAHeVGJ7zLDvW2wxplF2oDNph7aAdRgbtUB20w2iyQ7pjv+1htrcQtzfPbl7a8//nh8v/8a1Yky36Xf8f4vX/+XMNO9f/z8ZCLSksxEIjvWNAIx4jC7sfxmPUGnmPqxs7BQAAALijxe8Fqqs8DwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgL/Zu9cYua76AOBnn+N9eHcTqAgpggXqGBe8XtvhoTYV6zRVUShlXVKiClFs7HVYvMHGdgqOADk2KEURNC2R4EOjOEKozoekFgkKNIniRsIoah4oVSOSKBFpnSCi0DSAQiESrmbuPbN3zt15+LGON/39JO+cmf953nl4zr13zgUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOD/hyNf+szftorf/9tLHn/q8qlP7t9w+fOfv+Tch0OYrj3elYW7Bq+9cernt1582/671t10x7FL396fl8vjYaj6pzu/88VY67HlIdzZFUJvGlg9nAX68vvDsb43DIdwTpgP1EvMDGYl0obD9wdCOBjmA/WqvjcQwnAhcNkj9937lWrihoEQVoQQKmkbT1ayNgbSwAX9WWAwDezozQK/Op6pB77bnQXglMU3Q/1Ff3i6McPYwuWavP76TlvHXlnp8HpiYqx5vp9tWOROFfSnD0yf0tNWqo5FUXp7HPFuWwLvttJ2vt7TVvwilX9DOT4fqoTurTPbNl81tyc+0h0mJnqa1bRIz/NjL35uy4mkl8zrMHZg7LS8Dr/60Ipbe1Z94ME7Vq949tA7Djx3qt38UWGTFtOLrRLy19ySeR6jKZ8nS+DtV/qWNO5LVwhh2yd+74Ot4qX5/1jr+X98Ocfb7obcsdaXR7K5eXxkOCZeGMnm5gAAALBkLIW9pjsm7nlPofhoJamvNP8f7+z4fzzkn0/ms9EeCWGqljgwGsJ5tcezwC2xuY+PhvDmWmq6MbAhCRwJ4fW1xKp6VUmJZbHEeBL4yUgemEoCR2NgOgl8KwauTwJfjIHDSWBLDBxJAhfHQJhtHMfvj+Tj6DgwEAObso14OJ6F8IuR2FqyrZ6oVwUAAHCa5LPDvsa7hXMdTjVDnF4eHmiXIZ6B3TRDJakhncHWp1VNa+htV0N3uxrq497Xevilmrva1Vw6DaOrMcONv/ybD4UWSvP/ydbz/8oCHekqHf8PYWPtb8zdnUfm6vFN0w0ZAAAAgFMw9L9Pf7NVvDT/n+rs/P+4T6SnkDk8EHdDbB8NYbIxkFX7h+VAdtR7KA8AAADAUlA/Hl8/Fj6b32anaKfz6XL+6RPMHw/8Ty2Yv//I3Zta9bc0/5/u7Pz/wcbbrBNHYy++NhrCskLgB7GX1UDNeAz8+L2NgXz8R+MGuC5WlZ+YUK/qulhiUwxMJoGDzUr8sF7ivMZA/mTVGz9QH8dsXqIQAAAAgDMu7g6Ix+Xj+f9v+c26z7QqV5r/bzqx8/9r8+DS6f1zQyGs6Q2hJ/1hwAOD2cKAMTDclSfuGczq6kmrumYwhIuqA0urejpf/783XWPwkYGsqhg47y2HXrygmvjmQAhrioFHP3LzO6uJPUmg3vhfDoTwpupo08a/syxrvC9t/OvLQnhjIVCv6uPLQqg21p9WdV8lv45BWtU/V0J4TSFQr+pdlRD2BgCWqPhf6dbig7v3Xr1989zczK5FTMR9+ANh2+zczMSWHXNbK036tDXpc8MyRteUx9TplW+eyJco+vDtG4c7Sdd/JzhZbCvfj186cTC/H78L9dXGua6v4e76dMhve2u5iVD4JtVsyN2LPOTBYiXzT2Kp/pi/PwyFZVftntk18dnNe/bsWpv97TT7uuxvPMyUbau16bYaXKhvHbw8mq6WlTjZbbWyWMmaPVfuXLN779WrZ6/cfMXMFTOfWvuudZMXTq6ffPeFa6qjmsz+thnqyoWqToZ6/OYOx3Uah3p+b6GSM/GpISEhsdQSO4ZWtvw/uTT/39l6/h8/deInf74+Q7Pj/2PxMH/2+Pxh/k0xcLDT4/9jzY7m108MGE8C+2Jgn8P8AAAAvDrESX7cmxn3Sv901XeebVWuNP/f19nv/0/T+v/1pesvbbbM/6pYYrLZ+v/pMv/19f/3NVv/P13mv77+/8FXYP3/q+qBZJP8wvr/AADAq8GZW/+/7fL+6QUCShnaLu+fXiCglKHtMv6dXiDghNf/f/I//+q/Qwul+f/1nc3/LdwPAAAAZ48v/NlnfqdVvDT/P9jZ/P/Mr/8Xmp3/P94sMN1sYUDr/wEAALBENVv/b+zawY+1Klea/x/ubP4fT7vobsgda315JFvTLqRr2r0wUv/JAAAAACwN3WFioq/DvA0ro244+TYfy5cCbZUuevpPjp3Y+f9HOpv/N/wu46sPrbi1Z9UHHnz5jtUrnj30jgPPzR//BwAAABZPp/slAAAAAAAAAAAAAACAV97T/7F/fat46ff/YWPt8Wa//4/X/Yu/L3htQ+5Ya/v1//L7l73/tr21JQsfGAnhrcXA9v3bzwn5tflXFgP3fnTV66qJ/WmJu5+6+Jlq4mNp4H2rz32pmrgoCWyKiyS+Pg3Eqyq+tDwJxOUV/z0NxO1xOA3054EvL8/G0ZVuq58OZ9uqK91Wjw+HMFoI1LfVncNZG13pAG9IAvUBfjoNxAH+eR7oTnt121DWqxgYjkVvGsp6BQDAWSt+C+wL22bnZibjV/h4e35v423UsGTZNeVquzps/ol8abIP375xuJN0T/pddP5a432hUh3C2tLX1WKWrtooT08tbTbda5sMud1qb91NyqVOdNP1Nx/RQDaiiS075rb2tR34+vZZ1vW2zbK2NNkpZumubdIOaumgLx2MqMNt00GX4/3uMDHRk+T6gxgcCw3avSI6/b1+cZ2/Zq+CYp5PHTvwq1b1leb/Y53N/yvFcb2UXwxgX7yy3t+NWuYfAAAAFteXN/z6G/Hfh669/9FWeUvz//HO5v9xD1Z+KDjb23EkXv//wGgItUvrj2WBW2JzHx8N4c211HQskV1Q/9JYYjIL3BJ3mKyKJTZNN1a1LAYOJ4GfjOSBI0ngaAzkeykOhXxXzt+PhPDOWmpjY4mdscRYEvhgDIwngYkYmEwCy2NgKgk8vzwPTCeBf4uBMNu4rW5fnm8rAACADtWu4ZbPs+Lx5zjtSud5h3vbZehql2GwXYbudhkqLTP0hcPNRhHvfztm6EtOXukqZOpLmx1IailliBfDb9rxtlu3fvj/h40504KlpuP5B/XzDboaM9z1nt5KaKE0/5/sbP4/2HibtX40zv/nr/+XBX4Qu/e1eOr4eAz8+L2NgXzHwNE42b2uXtV0XiKftF8XS0zFwHgS2BkDU0lg08Y8cPB1jYF8pl1v/EC98dm8RCEAAAAAZ1zcQRB308T5/027vzTUqlxp/j/V2fw/tjdUbOyLsdZjy0O4s2u+N/XA6uEsEPdjDMefx79hOIRzCjs46iVmBrMS/UnD4fsD2S/U+9OqvjeQ/fgg3r/skfvu/Uo1ccNACCsKe1/qbTxZydoYSAMX9GeBwTSwozcLxD0/9cB3u7MAnLL6XsH4gspPdakbW7hck9ffq+WaoOnwSvtAF8i30G+uFktph2u+T7XuxJ62lvtvOW1Kb48j3m1L8d025t1W/CKVf0M5Ph+qhO6tM9s2XzW3Jz5S/CVrySI9z8VfqXaSPg2vw30n39v2KmkHJpOPj8mFyy38OuyK1X31oRW39qz6wIN3rF7x7KF3HHiu4240EX8ofN/n/3X4R4XNu9gqIX/NLbnPk2mfJ0viv4Hk3T3uaQshbHz+69e1ipfm/9Odzf97k9uaX8eNuXs0hLcVNu4DcfP/8Wj2OVgIZJ+SrykHskPu/zXS9JMTAAAATrf67o76/oLZ/DY7ITydJ5fzT4dwfPQE8sf9FVML5u+034N//dEVreKl+f+m1vP/ZUk3Hf93/J9F4vj/gs72XdHL0gf2ndKu6FJ1LArH/xd0tr/bHP9fkOP/jv8vxPH/Nhz/X9DZ/rSVviXt9KUrhPDsH93zeKt4af6/s7P5v/X/Fl60r77+36Zm6//tbLb+3z7r/wEAAIuqyUJz6TyvtHpfKUO6el8pQ9sFAtsuMdh6/b8W6+y9atb/K23Uduv/PXP+k78JLZTm//s6m//Hl8NQsfWlsv7f+MYmVV0fAzstDAgAAMDZqNm+CQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAF5Zd/3D/2xtFb//t5c8/tTlU5/cv+Hy5z9/ybkPhzBbe7wrC3cNXnvj1M9vvfi2/Xetu+mOY5e+vZKX68tvf7chd6z15ZEQDhYeGY6JF0aqd+YDl73/tr291cQDIyG8NQsM55VsP6f691sjIawslrj3o6teV03sny+RBe5+6uJnqomPpYH3rT73pWriojzQlXb3H5dn3e1Ku/uV5SGMFgL17n5yeWNV9Tb+NA90p23803DWRgwMx6LfGM7aiIG5WGJ2WQhrekPoSau6v5JV1ZNW9S+VrKqetKovVEK4KITQm1b1VH9WVW868of7s6pi4Ly3HHrxgmriYH8Ia4qBRz9y8zuriU8ngXrjf9EfwpuqL5m08W/3ZY33pY3f0BfCG0MI/WmJX/ZmJfrTEk/3hvCaQqDe+Cd6Q9gbeFWIHz4Nn2i79169ffPc3MyuxUh8JEv0520NhG2zczMTW3bMba0kfWqmq5A+fs3Jj/2JFz+3pXr74ds3DneS7s3L9dW6vK6v4e76s733sV+DxUrmn5hS/TF/fxgKy67aPbNr4rOb9+zZtTb722n2ddnfnjyabau1S2VbrSxWsmbPlTvX7N579erZKzdfMXPFzKfWvmvd5IWT6yfffeGa6qgms7+nY6g3N4QGzsRQz+8tVLKoHwASEhJnILF2EWrubvh0mzzbP8hLX/TnO9oXKrUP6NK0opilqzbK0zHoDSc54pP5ntJ2RGtLE4dSlnULZLmmMcv60mRivpaBLEvte11pclhsrLu2SeP97jAx0dNsO4w13i1u3p+dwuZ9LN90naYBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA+D924EAAAAAAAMj/tRGqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqsAMHAgAAAABA/q+NUFVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVYUdOBYAAAAAEOZvHUbPBgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAXAoAAP//t/8lBw==")
syz_mount_image$nilfs2(&(0x7f0000000180), &(0x7f0000000300)='./file3\x00', 0x0, &(0x7f0000001040)=ANY=[], 0x1, 0xadc, &(0x7f0000001900)="$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")
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_buf(r0, 0x29, 0x1e, 0x0, 0x0)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x82)
ioctl$FITRIM(r1, 0xc0185879, &(0x7f0000000040)={0x3, 0x40000cca4, 0xfffffffffffffbfd})
r2 = open(&(0x7f0000000280)='./bus\x00', 0x64042, 0x0)
inotify_add_watch(0xffffffffffffffff, &(0x7f0000000000)='.\x00', 0x400017e)
socket$netlink(0x10, 0x3, 0x0)
socket$unix(0x1, 0x1, 0x0)
syz_open_dev$radio(&(0x7f0000000000), 0xffffffffffffffff, 0x2)
socket$inet6_sctp(0xa, 0x5, 0x84)
openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0xc0701, 0x0)
ioctl$sock_inet_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f0000000000)={0x4000000, {0x2, 0x4e22, @private=0xa010104}, {0x2, 0x0, @local}, {0x2, 0x4e21, @local}, 0x1d7, 0x0, 0x0, 0x0, 0xfff8, 0x0, 0x4, 0x7})
sendmsg$NL80211_CMD_CONNECT(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[], 0x1c}, 0x1, 0x0, 0x0, 0x20000844}, 0x4048885)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB], 0x50)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x7ffffffe)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r3, &(0x7f0000000040)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r3, &(0x7f0000000000), 0xd)
write$UHID_CREATE2(r2, &(0x7f0000000680)=ANY=[], 0x1118)

9.421754525s ago: executing program 2 (id=5364):
openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/cpuinfo\x00', 0x0, 0x0)
r0 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_rmem\x00', 0x1, 0x0)
unshare(0x800)
openat(0xffffffffffffff9c, &(0x7f0000000380)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = fcntl$getown(0xffffffffffffffff, 0x9)
prlimit64(r1, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
r2 = syz_io_uring_setup(0x45, 0x0, 0x0, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PBUF_RING(r2, 0x22, 0x0, 0x1)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0x0, 0x1}, 0x6)
r3 = syz_open_dev$loop(&(0x7f0000000380), 0x2, 0x103382)
r4 = syz_open_dev$loop(&(0x7f00000002c0), 0xfffffffd, 0x80)
ioctl$LOOP_CONFIGURE(r3, 0x4c0a, &(0x7f0000000300)={r4, 0x8, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd, 0x9, "cd218b3132a4d4ae906ce16bdba23ec34356ef960143942fd48b868aeed5780feb4c5d8df7a0480155f5e5ec4600b09743f77e7db3e15d38762baf2969c0eed8", "27202f4e8495c391f89003f6da5cdf09b24610d2caeb4751575376a1fe4db4ea01027560bd30d0b7b5bb16610056bdeb5f91064b0b8f5e58ad60e5f4920f770c", "e5c5ff20ea69cb79a04070464e59ee98d887b65307afe1d944bbf3f713dbf5dc", [0x100000001, 0x56dcb862]}})
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[], 0xa)
r5 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x143102)
writev(r5, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
socket$nl_netfilter(0x10, 0x3, 0xc)
r6 = socket$kcm(0xa, 0x1, 0x106)
r7 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
connect$llc(r7, 0x0, 0x0)
sendmsg$kcm(r6, 0x0, 0x20000011)
sendmsg$kcm(r6, &(0x7f0000000780)={&(0x7f0000000000)=@in6={0xa, 0xfffe, 0x0, @ipv4={'\x00', '\xff\xff', @remote}, 0x2}, 0x80, 0x0}, 0xe07e872420dfefca)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000003580)=ANY=[@ANYBLOB="20000000240000012ebd7000fbdbdf25027c00000cb9fd72c32d9e5e"], 0x20}, 0x1, 0x0, 0x0, 0x4048011}, 0x8010)
r8 = socket$nl_rdma(0x10, 0x3, 0x14)
pwrite64(r0, &(0x7f0000000500)="e06fc7fedb04072e476e843a8ef5bddc8ca66958fee60dae9e034b979e98cc50f5212e1f984608b3be34f4da88d6a899045af89c6409acc7cc0d59439995000e228d107ede6be71d0047fdb5c1b283eb9811d43f5e2bbd41ca4bd44648f30e137133a4df77f1ddfb63bb3b5bb30520b15cd0cb838e74da2bb8bac835e7ea280331415d33e1b3989b32990e81", 0x8c, 0x10000)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r8, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="38000000031401002cbd7000fcdbdf250900020073797a32000000000800410073697700140033006c6f"], 0x38}, 0x1, 0x0, 0x0, 0x8040044}, 0x810)

8.365803665s ago: executing program 2 (id=5366):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
io_setup(0x3ff, &(0x7f00000000c0)=<r0=>0x0)
r1 = syz_clone(0x0, 0x0, 0x9, 0x0, 0x0, 0x0)
r2 = syz_pidfd_open(r1, 0x0)
waitid$P_PIDFD(0x3, r2, 0x0, 0xa000000c, 0x0)
io_submit(r0, 0x1, &(0x7f0000000300)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x5, 0x3fd, r2, 0x0}])
ioctl$KVM_SET_LAPIC(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000100)={"b46474f815e8d5535f0887c44335cc824dc6121bc72a77f532ff5dad4d643a9cab29d2310e04be14eb26c0af4985fe45e3b3b0680b3ec92725d74b9716e0f7c3119a2c9a0ae65ff4772e2e12733cb013c4308fe40863480747c0a7ddb9361b1578015ca1bb2c1677ebae096f08345476f567443842946ed946434c75916d1db83fe305920de65bfaf9bd940672216846cb16b8ae67cd3affc61375381f91b3b9f1cc5e38cafe5239aee71dcd481fbe1ecd2547ffbaad4469a74697c28fb9beefa6a5d736712a55eb9110c2cf7964062ba8cbc1c038e84f0f5db7fc7053118bf5221e3efa6fc3edb5d0ca3cde7054dd0751a332520aa8478b1775d552c5cc24d3c2df9eb333e5ca3aa06c1c2cf8526714f5caff2f55b41976fc20b64f1fc61d5b44f50953582a1825d32130a31abfeafd1987317879e29ac51b93c9659e023fff3ddb5e39dd19cc3ef1d883c78b9e073d08a9197fb3717df238b9831831214b186693be9dd2568bb77272e80df5dfed03e8c467627bedfbd93359a9f79a3aa37e873dc1357b37b43d813ea85267b0dc8b1c4cc51bd985328833beb2679b7fb762555bbea2da936b36f8f1673fd5f606b2b6eb23b72bf947206e8dbfeb40ca6f265a3485c8446e0f0da652860b88328073d2282c14b48a7774e62754a968b60e92205e8fafcdd70a55c3c4d1a4821ff44e6e3681f15ae091262e3a3290a24d8ceae30ebbf9d24287bb8a5d73c608d47d287f9e716cf02b4796a83fb0c05e45b89de9ef8bce834e6d7a0be6e30d2c66cb6e640cb01898454ad361bc0701d8fe56113335ae6adec59300db04691cc4a689034272a8e086a32ce7061b4f79fa8afbb48a6ce4b62bdc44af013d78980457e1fa61eb9204818606f4c3b03c0f33cd2a841ac9bc2b73151a96e31ab99e6ec969b5f2c3edd5f9abc69845e487af992758ba445368da93dae1d44360d52a534a88276b8aaf349841d8a4788c60408618437c442308dbf70efeda2e54e9b9e4fe5f76997c9dcb945a26bd75748c85d19ca8b99264dce50580e8d4dbda401dad7df31e9a7a6a3a83bfbdfb5394abd581ac0824fbcd75d2f5205c0b7c9188e6f26bfd97734d9a20433f6cdba9d14a5f32a4d97a57f4603b21146fd1aebf082e863d463c224ad623c17d8043d3bf083f0322408dd6ead6915ac6a4222ab51480eb6e11a8913348219515170d9df90d72d7363bbda3e327d19f98c0a856f98076380e788e602e8a2ae0a1930786874dc21a2e99abda15f35457cf1dcb440c4b41350d0eda352aad7f57a0adc8a6914da06460635ed21c4c11cd1a8ec778064c9f62efba2927828b23f94b16619a5520731c2c40ab8583c9f2e73233d74b84f4877ce6b35bb1180300"})
r3 = socket$can_raw(0x1d, 0x3, 0x1)
bind$can_raw(r3, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000004e00)=[{{0x0, 0x0, 0x0}, 0xffffffff}, {{&(0x7f00000028c0)=@l2={0x1f, 0x0, @none}, 0x80, 0x0, 0x0, &(0x7f0000003980)=""/50, 0x32}, 0x2}], 0x2, 0x2, 0x0)
r4 = socket$inet6(0xa, 0x3, 0x7)
connect$inet6(r4, &(0x7f00000001c0)={0xa, 0x0, 0x1000006, @loopback, 0x8007}, 0x1c)
sendmmsg$inet6(r4, &(0x7f0000002200), 0x0, 0x0)
ioctl$KVM_TPR_ACCESS_REPORTING(0xffffffffffffffff, 0xc028ae92, 0x0)
r5 = socket$netlink(0x10, 0x3, 0xa)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
getgroups(0x0, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r5)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000680)={'wlan0\x00'})
sendmsg$NL80211_CMD_FRAME_WAIT_CANCEL(r5, 0x0, 0x30048005)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00'})
sendmsg$nl_route(r5, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000400)=ANY=[], 0x34}, 0x1, 0x0, 0x0, 0x200080d0}, 0x14)
socket$inet(0x2, 0x4000000000000001, 0x0)
r6 = openat$mixer(0xffffffffffffff9c, &(0x7f00000016c0), 0x121040, 0x0)
ioctl$SOUND_MIXER_READ_STEREODEVS(r6, 0x80044dfb, &(0x7f0000000000))
socket$rds(0x15, 0x5, 0x0)
ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f00000006c0)={0xd0b70a201c2dc55e, 0x2, 0xc80f, 0x0, 0x12})
socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0))

7.191841608s ago: executing program 3 (id=5368):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x6, 0x9}, 0x28)
syz_io_uring_setup(0x239, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000000), &(0x7f0000000480), &(0x7f0000000000))
syz_open_dev$vivid(0x0, 0x3, 0x2)
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
socket(0x1000000000000010, 0x80802, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = memfd_create(&(0x7f0000000580)='y\x105\xfb\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea_\x8cZ7\xe7a\x9b\x11x\x0e\xa1\xcf\x1a\x98S7\xc9\x00\x00\x00\x00\x00\x00\a\x00\x00\x00\x00\x00\x00\x04\x879\xa24\xa9am\xde\xb2\xd3\xcbZJoa\xc4\x1acB\xaa\xc1\xfb Q\xd4\xf4\x01\xa52\xe2DG\xd4\xbd{\x9f\xa9\x97\x9b@\xdb\x00b\xe1br\xb6\xea7\xe3\x10\xff\xc2\x9d\r2\x9e\x8e\x04sW\x1b\xb7\xb3\xa2\xc9&@\xca\xda\xdc\xe2/\x97X\xac\b\xb0\xc2<\x80E\x1a\xbc\xc7W\xda9VsA\xaf\xc6\xcf\xe1\xa1\xb5M\xa2\x85\xa6y\xc4J\xf1\xf7\xfcD\x95\xe3\xeb\x0f<\x91\xb0\xa8\x9eo\xebF(\x9dL\x01vRk\xaacB\x04\xa7I\v\x86EZ\x96\xd5\x14OD\\\xe8R\xe4\xcd\xec\xcc\xd1\x0fre\xe86\xcd\xeb\xc4$\x98\x06J\xd6dD\x8d_U`ji{\xab\x97\xaf;l\x1f\xaf\xb38U\xcb\xfa\xb3j\x92\f\x81\xa0\xa2-g\b\x99\x0e\x8d\x8d\x16\xd9w\\\xf8\xce\xb0j\x9d\'\x93\xef\x1d\xa0H\xcd\xbd\xd9\xaf\x12$\x8d\x16%\x8b\x00\xd5\xf3\\\x00\xbe]Et\xad*\xecj\x02\xc8\xc4\f\x04\x99\xf6\xfc', 0x3)
ftruncate(r4, 0xffff)
fcntl$addseals(r4, 0x409, 0x7)
fcntl$dupfd(0xffffffffffffffff, 0x406, 0xffffffffffffffff)
r5 = syz_init_net_socket$ax25(0x3, 0x2, 0x6)
setsockopt$ax25_int(r5, 0x101, 0x1, &(0x7f0000000240)=0x9, 0x4)
r6 = socket(0x11, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000040)={'bridge_slave_1\x00', <r7=>0x0})
setsockopt$SO_TIMESTAMPING(r6, 0x1, 0x41, 0x0, 0x0)
bind$packet(r6, &(0x7f0000000080)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @link_local}, 0x14)
sendto$packet(r6, &(0x7f00000002c0)="fb57975e267951722b395d37bac8", 0xe, 0x0, 0x0, 0x0)
recvmsg(r6, &(0x7f0000000400)={0x0, 0x0, 0x0}, 0x2000)
close_range(r0, 0xffffffffffffffff, 0x0)

6.180996316s ago: executing program 0 (id=5369):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_emit_vhci(&(0x7f00000016c0)=ANY=[@ANYBLOB="04131505"], 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000340), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000740)={<r2=>0xffffffffffffffff}, 0x111}}, 0x20)
unshare(0x2c020400)
write$RDMA_USER_CM_CMD_MIGRATE_ID(r1, &(0x7f0000000100)={0x12, 0x10, 0xfa00, {&(0x7f0000000000), r2, r1}}, 0x18)
r3 = getpgrp(0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000040)=0x10000005)
prctl$PR_SCHED_CORE(0x3e, 0x1, r3, 0x2, 0x0)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r5 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r5, 0x1, 0x0)
r6 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r6, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$inet_udp(0x2, 0x2, 0x0)
r7 = open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x0)
fcntl$setlease(r7, 0x400, 0x0)
r8 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r8, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
setsockopt$inet6_tcp_TCP_CONGESTION(r8, 0x6, 0xd, 0x0, 0x0)
connect$inet6(r8, &(0x7f0000000340)={0xa, 0x5, 0x0, @ipv4={'\x00', '\xff\xff', @remote}, 0xfffffffe}, 0x1c)
r9 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r9, &(0x7f0000000140)=[{&(0x7f0000000900)="580000001400192340834b80040d8c560a066e0202ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000200060c10000000010000000000", 0x58}], 0x1)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000008c0)={&(0x7f0000000540)={{0x14}, [@NFT_MSG_NEWSET={0x54, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0xb}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x8}, @NFTA_SET_DATA_LEN={0x8, 0x7, 0x1, 0x0, 0x80000031}, @NFTA_SET_DATA_TYPE={0x8}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0x7c}, 0x1, 0x0, 0x0, 0x8000}, 0x0)

6.179939276s ago: executing program 3 (id=5370):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r4 = mq_open(&(0x7f0000000a00)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xd3\xa7\xd8J\xfd\x94#KT\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\x88N\xb8\xde\xeb)\xcd\xc56m\n\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88|0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc\x02\xea\x91\xe8\xd8\x01YZy\xe6!\x89\x9c\xd1\xa6\x167\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1[\x84\x10aF\x9b\xda\xeb\xc4*\x02q\xb2\x92\x00\x8cv\xac AN\xb9\xaa\x81W\x97Te\x81\x98L\xfe\x97+u\xd3^\xb1\xf0\xe0\x1f\xbd\a\xbb\xe5\x18\x9ds\x12ha\x00\xeb\x84\x99\xc6\x0f\xf1\xd5LD\xa87\xa0DQ\x8a2\x16!8,\xbc%$\xf1\xf2\xd6\x9cy\xecK\xda\xc5\xdc\xfa\xdd\xf6\b\xc6\xb4\x14\x16\x9c\x7f\x92\x85\xb0\xa2%:\xf0\xf4\x150\x0f\xb4\xa6d\xb4\xe4L\x19W\xd5\x90\xf7l\x1b\xfe\xde\vh\x97=m\x82.\xac\vh\xfe\x84Q}\x838/\x83\xebP\xbe\xd6+:\xceE\\\x95\xd4\xac\x92\x87\xd7\x98\x97\xe3\xec\xad\xd5\xac\x80C\x84R\x88r^g\xbaQ(\x9a>\xe2\xba\xa8=\x17\f04\x8f\x1f\xf2\x88*@v\xe7\xd1\xee\xb3\xc2\x8dT\xda\x81g\xd9\x1a:hzW6s)x\x06\xae\x11\xf2\x1e\xcd\v\xe5L\x19\x96s\xbc\x9e\xf4\x10$\r\xa4\xd8\xa2\xa2\xfcM\xc5R3~$\xc0\xa5n\x9a W\xb1e\xcc<$\xf5#G\xce\xafUD\x9dA\xf24\xf6\xb5\xef\xe2z\xcf\x9eN\x92\xac\x81{\xe6\xbd\xd7\x16\xe6F\xe2\x9e\x91%\x94\v\xb9\xdc\xd6\x87\x8f\xcd\xc1\xb05\x81\x81\xf8\xe9X\xe8Kt9@\xf4\xe1\xa6=\xc9\xe1:p4\nP[f\x1d\xfd\xfa\x839\x8d\x0e\xd1\xf9\xa0\xd2^E\xe5\xedo.\xaa\xf2\xb4\xcdn\x14\f\xcd\x83_yk\xda\xc5\x89\xf0Z\xea\x1d\xbd\xc00\v\xa3\xb3\xbe\xe6\x8b\x18/\xa8\xaaY\xf2\x89\x0f\x9enOOr\x00\xb2\x01\x1f:Z\xb8\xee;\xe3;\x8aPV\xce\xee\xf8[\x16\n\xe6:z\xb8\x1dvk\a{\xc1\x14\xd9+\xdb\t\x11\x90y\xe8\\\xe6\xfc\xca\xb4\xcbC\xd6\xd0\xbeC\xce\xc0L\xdb\xcd\xb3\x907c\xb4\xa6\xce\xdb[\xce\x122N\xa3\xc7Q<\x1a\xa5\xb3)\xc5\x98\x84\x8a\x82\x19\xb0\t\xac\x10\\\x8c\xbe\xcb\raIYe[\xa8\xc4\xac\x0e\xbb\x0f\b^\xdag\xe2\xa9\"\xf5h\'\xcf\xd9\x1b\xef\xe3\xe7y\x82\x1e\xca\x7f\x02 \xcf\x9e\xe0\xd9TM\xb9\n\xa9\xad3\x91\xa5\xe6!\xcd\xa2\xa4\x14\x12\xf9\xbf\xa8b\xcec:\xd7\'\f\f\x957\xc9}\r\xa6\xaa\x0f\xca\x96\xeb\x00\x00\x00\x00\x00', 0x42, 0x0, 0x0)
mq_timedsend(r4, 0x0, 0x0, 0x6, 0x0)
ptrace$ARCH_SET_GS(0x1e, r1, &(0x7f0000000440), 0x1001)
mq_unlink(&(0x7f0000000000)='eth0\x00')
close(r4)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000100)={0x50, 0x2, 0x6, 0x5, 0x0, 0x0, {0x0, 0x0, 0xffff}, [@IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8, 0x6, 0x1, 0x0, 0x125}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0x14, 0x3, 'hash:ip,port,ip\x00'}]}, 0x50}, 0x1, 0x0, 0x0, 0x24000000}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00'})
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan1\x00'})
sendmsg$NL80211_CMD_GET_MPP(r0, 0x0, 0x0)
fanotify_init(0x2, 0x8000)
write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x68)
fanotify_init(0x200, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={0x0, 0x0, 0x32, 0x0, 0xf}, 0x28)
gettimeofday(0x0, 0xfffffffffffffffe)
r6 = syz_io_uring_setup(0x32d9, &(0x7f0000000200)={0x0, 0x6277, 0x8, 0xffffffff, 0x400000}, &(0x7f0000000300), &(0x7f0000000140), &(0x7f00000000c0))
io_uring_enter(r6, 0x1, 0x21, 0x1, 0x0, 0x0)

6.095226389s ago: executing program 2 (id=5371):
socket$xdp(0x2c, 0x3, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$xdp(0x2c, 0x3, 0x0)
r2 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$XDP_TX_RING(r1, 0x11b, 0x3, &(0x7f0000000140)=0x40, 0x4)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f0000000280)={'batadv_slave_1\x00', <r3=>0x0})
r4 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r4, 0x11b, 0x4, &(0x7f0000000340)={&(0x7f0000000000)=""/74, 0x328000, 0x1000}, 0x20)
r5 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$XDP_RX_RING(r4, 0x11b, 0x2, &(0x7f0000001980)=0x100, 0x4)
r6 = accept$packet(0xffffffffffffffff, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000180)=0x14)
setsockopt$packet_int(r6, 0x107, 0x3, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r5, 0x8933, &(0x7f0000000580)={'batadv_slave_1\x00', <r7=>0x0})
setsockopt$XDP_UMEM_FILL_RING(r4, 0x11b, 0x5, &(0x7f0000000300)=0x2, 0x4)
bind$xdp(r4, &(0x7f0000000100)={0x2c, 0x0, r7}, 0x10)
bind$xdp(r1, &(0x7f0000000240)={0x2c, 0x1, r7, 0x0, r4}, 0x10)
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=@getchain={0x24, 0x11, 0x43d, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0xe}, {}, {0x7, 0xd}}}, 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0x0)

4.776591215s ago: executing program 0 (id=5372):
openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/cpuinfo\x00', 0x0, 0x0)
r0 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_rmem\x00', 0x1, 0x0)
unshare(0x800)
openat(0xffffffffffffff9c, &(0x7f0000000380)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = fcntl$getown(0xffffffffffffffff, 0x9)
prlimit64(r1, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
r2 = syz_io_uring_setup(0x45, 0x0, 0x0, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PBUF_RING(r2, 0x22, 0x0, 0x1)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0x0, 0x1}, 0x6)
r3 = syz_open_dev$loop(&(0x7f0000000380), 0x2, 0x103382)
r4 = syz_open_dev$loop(&(0x7f00000002c0), 0xfffffffd, 0x80)
ioctl$LOOP_CONFIGURE(r3, 0x4c0a, &(0x7f0000000300)={r4, 0x8, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd, 0x9, "cd218b3132a4d4ae906ce16bdba23ec34356ef960143942fd48b868aeed5780feb4c5d8df7a0480155f5e5ec4600b09743f77e7db3e15d38762baf2969c0eed8", "27202f4e8495c391f89003f6da5cdf09b24610d2caeb4751575376a1fe4db4ea01027560bd30d0b7b5bb16610056bdeb5f91064b0b8f5e58ad60e5f4920f770c", "e5c5ff20ea69cb79a04070464e59ee98d887b65307afe1d944bbf3f713dbf5dc", [0x100000001, 0x56dcb862]}})
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[], 0xa)
r5 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x143102)
writev(r5, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
socket$nl_netfilter(0x10, 0x3, 0xc)
r6 = socket$kcm(0xa, 0x1, 0x106)
r7 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
connect$llc(r7, 0x0, 0x0)
sendmsg$kcm(r6, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x20000011)
sendmsg$kcm(r6, &(0x7f0000000780)={&(0x7f0000000000)=@in6={0xa, 0xfffe, 0x0, @ipv4={'\x00', '\xff\xff', @remote}, 0x2}, 0x80, 0x0}, 0xe07e872420dfefca)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000003580)=ANY=[@ANYBLOB="20000000240000012ebd7000fbdbdf25027c00000cb9fd72c32d9e5e"], 0x20}, 0x1, 0x0, 0x0, 0x4048011}, 0x8010)
r8 = socket$nl_rdma(0x10, 0x3, 0x14)
pwrite64(r0, &(0x7f0000000500)="e06fc7fedb04072e476e843a8ef5bddc8ca66958fee60dae9e034b979e98cc50f5212e1f984608b3be34f4da88d6a899045af89c6409acc7cc0d59439995000e228d107ede6be71d0047fdb5c1b283eb9811d43f5e2bbd41ca4bd44648f30e137133a4df77f1ddfb63bb3b5bb30520b15cd0cb838e74da2bb8bac835e7ea280331415d33e1b3989b32990e81", 0x8c, 0x10000)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r8, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="38000000031401002cbd7000fcdbdf250900020073797a32000000000800410073697700140033006c6f"], 0x38}, 0x1, 0x0, 0x0, 0x8040044}, 0x810)

4.039893296s ago: executing program 0 (id=5373):
r0 = socket$netlink(0x10, 0x3, 0x0)
socket$packet(0x11, 0x3, 0x300)
socket$inet6_sctp(0xa, 0x5, 0x84)
syz_io_uring_setup(0x8d2, &(0x7f00000000c0)={0x0, 0x2, 0x400, 0x0, 0x37d}, 0x0, &(0x7f0000000080), &(0x7f0000000000))
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x13, 0x0, 0x0)
io_uring_setup(0x30aa, 0x0)
openat$dsp1(0xffffffffffffff9c, &(0x7f00000000c0), 0x88a01, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x800, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
timerfd_create(0x9, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
accept4(r0, &(0x7f0000000140)=@phonet, &(0x7f00000001c0)=0x80, 0x800)
r1 = syz_open_dev$sndmidi(&(0x7f0000000240), 0x2, 0x40102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2f)
mount(&(0x7f00000000c0)=@nullb, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000000000)='iso9660\x00', 0x208000, 0x0)
syz_open_dev$sndmidi(0x0, 0x2, 0x141102)
r2 = socket(0x10, 0x3, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_NUMBER(0xffffffffffffffff, 0x84, 0x1c, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a4c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40fffffffc0800"], 0xb4}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="4800e80010000d0428bd7000fcdbff2500008000", @ANYRES32=r2, @ANYBLOB="1000000000000000280012800b00010062726964676500001800028005001900840000"], 0x48}}, 0x4084)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0300000000000000280012800a00010076786c616e00"], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x4008840)
sendmmsg(r2, &(0x7f0000000000), 0x4000000000001f2, 0x0)
epoll_create1(0x0)
ioctl$IOC_PR_PREEMPT(0xffffffffffffffff, 0x40046109, 0x0)

4.039511407s ago: executing program 3 (id=5374):
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000a00)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWRULE={0x44, 0x6, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x1001}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_RULE_EXPRESSIONS={0x24, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @ct={{0x7}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_CT_DREG={0x8, 0x1, 0x1, 0x0, 0x1}, @NFTA_CT_KEY={0x8, 0x2, 0x1, 0x0, 0xb}]}}}]}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x2}}}, 0x6c}, 0x1, 0x0, 0x0, 0x4008091}, 0x24000000)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
bind$inet6(r2, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x20008000)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xb4e02000)
syz_clone(0x2000, 0x0, 0xff36, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r3, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
memfd_create(&(0x7f0000000140)='y\x105\xfb\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea_\x8cZ7\xcda\x9b\x11X\x0e\xa1\xcf\x1a\x98S7\xc9\x00'/47, 0x2)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r5, 0x6, 0x2000000000000022, 0x0, 0x0)
sendto$inet6(r5, 0x0, 0x0, 0x20008044, &(0x7f00000001c0)={0xa, 0x2, 0x7, @loopback, 0xfc47}, 0x1c)
r6 = socket$inet6(0xa, 0x3, 0x8000000003c)
setsockopt$IP6T_SO_SET_REPLACE(r6, 0x29, 0x40, &(0x7f00000014c0)=@raw={'raw\x00', 0x8, 0x3, 0x4c8, 0x0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x3f8, 0xffffffff, 0xffffffff, 0x3f8, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'team_slave_0\x00'}, 0x0, 0x148, 0x170, 0x0, {}, [@common=@unspec=@helper={{0x48}}, @common=@inet=@hashlimit1={{0x58}, {'bond_slave_1\x00', {0x41, 0x1ff, 0x6, 0xb0e2, 0x10001, 0x84e, 0xfffffffb, 0x18, 0x8}, {0x1}}}]}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @private0={0xfc, 0x0, '\x00', 0x1}, [], [0xff], 'erspan0\x00', 'gre0\x00'}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'vcan0\x00', {0x3, 0x0, 0x41, 0x0, 0x2, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x528)

3.107054483s ago: executing program 2 (id=5375):
socket$igmp6(0xa, 0x3, 0x2)
r0 = add_key(0x0, &(0x7f0000003340)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffe)
keyctl$revoke(0x3, r0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000340)={0x5, {{0x2, 0x0, @multicast2}}, {{0x2, 0x400, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, 0x108)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x4000000)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x2, 0x7}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x800}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x8000}, 0x24000810)
read$msr(r2, &(0x7f0000005580)=""/102392, 0x18ff8)
r3 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
ioctl$SNDCTL_DSP_GETOSPACE(r3, 0x8010500c, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000340)=ANY=[@ANYBLOB="240000001800090000000000000000001c140000fe000001000000000800010000000900562df27baa757c520188240ceb2df49a91ee799ca4e8afa3e0b2831107eb85ea37da737d10c48811180185ac81bd43e2cf0c1ab72ee5efa9015cbb5a35be762bbb4281032a039a95b16ea5a9ac18"], 0x24}}, 0x4)
setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000700)={0x5, {{0x2, 0x0, @multicast2}}, {{0x2, 0x3, @multicast2}}}, 0x108)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
r5 = add_key$keyring(&(0x7f0000000200), &(0x7f0000000240)={'syz', 0x0}, 0x0, 0x0, r0)
r6 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
r7 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/timer_list\x00', 0x0, 0x0)
sendfile(r6, r7, 0x0, 0x20000023896)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000240)={<r8=>0xffffffffffffffff}, 0x13f}}, 0x20)
write$RDMA_USER_CM_CMD_BIND(r7, &(0x7f0000000180)={0x14, 0x88, 0xfa00, {r8, 0x1c, 0x0, @in={0x2, 0x4e21, @broadcast}}}, 0x90)
write$RDMA_USER_CM_CMD_JOIN_MCAST(0xffffffffffffffff, &(0x7f0000000480)={0x16, 0x98, 0xfa00, {&(0x7f00000002c0), 0x4, r8, 0x10, 0x0, @in={0x2, 0x4e24, @rand_addr=0x64010102}}}, 0xa0)
keyctl$search(0xa, r0, &(0x7f0000000000)='ceph\x00', &(0x7f0000000080)={'syz', 0x0}, r5)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r4, 0x84, 0x6f, 0x0, &(0x7f0000000180))
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, 0x0, 0x0)

3.005530005s ago: executing program 3 (id=5376):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000480)='./file1\x00', 0x0, &(0x7f0000000340)={[{@noload}, {@stripe={'stripe', 0x3d, 0x30c}}, {@jqfmt_vfsv1}, {@nojournal_checksum}, {@jqfmt_vfsv1}, {@usrjquota}]}, 0xff, 0x44d, &(0x7f0000000900)="$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")
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
preadv(0xffffffffffffffff, 0x0, 0x0, 0xa057, 0x0)
socket(0xa, 0x3, 0x3a)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x19, 0x0, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000180)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket(0x11, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000b00)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=@newtaction={0x68, 0x30, 0x1, 0x70bd2b, 0x25dfdbde, {}, [{0x54, 0x1, [@m_bpf={0x50, 0x1, 0x0, 0x0, {{0x8}, {0x28, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_PARMS={0x18, 0x2, {0x3, 0xef, 0x1, 0x8000, 0x2}}, @TCA_ACT_BPF_OPS={0xc, 0x4, [{0x16, 0xf2, 0x3, 0x7}]}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0x68}, 0x1, 0x0, 0x0, 0xc044}, 0x4000814)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0x40305829, &(0x7f0000000240)={0x17c04, 0xffffffffffffffff, 0x8, 0x100000002})
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300))
fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x5})
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27ffff7, 0x30, 0xffffffffffffffff, 0x4000)
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$bt_hci_HCI_DATA_DIR(r4, 0x0, 0x1, &(0x7f0000000100)=0x101, 0x4)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)

2.952156747s ago: executing program 1 (id=5377):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0xd, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x0, 0x3, 0x9, 0x1, 0x4c}]}, 0x0}, 0x94)
socket$kcm(0x10, 0x2, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x42000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$devlink(&(0x7f0000000100), r5)
sendmsg$DEVLINK_CMD_TRAP_GROUP_SET(r5, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000000)={0x4c, r6, 0x1, 0x1000, 0x0, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}, {0xfffffcd1, 0x87}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x24040000}, 0x4800)
syz_clone(0x80e1280, &(0x7f0000000300)="9e920a23254f1e8e10bc2525225d1be304e664460c7294865830d05532a786006f797def105426ddfa6719122b851c3761852017b5a5f6cc3f976f82bb", 0x3d, 0x0, &(0x7f0000000180), &(0x7f0000000540))
close(r4)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
ioctl$PPPIOCNEWUNIT(0xffffffffffffffff, 0xc004743e, &(0x7f0000000100))
ioctl$PPPIOCSACTIVE(0xffffffffffffffff, 0x40107446, &(0x7f0000000240)={0x1, &(0x7f0000000140)=[{0x6, 0x1}]})
write(0xffffffffffffffff, &(0x7f0000000280)='s', 0x1)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$sock_SIOCBRDELBR(r3, 0x89a2, &(0x7f0000000000)='bridge0\x00')

2.879234469s ago: executing program 2 (id=5378):
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/file0\x00', 0x105842, 0xa9)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000600), r1)
sendmsg$WG_CMD_SET_DEVICE(r1, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000fc0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="090000b6", @ANYRES16=r2, @ANYBLOB="0100000000000000000001000000140002007767320000000000000000000000000024000300a0cb879a47f5bc644c0e693fa6d031c74a1553b6e901b9ff2f518c78"], 0x4c}, 0x1, 0x0, 0x0, 0x4094}, 0x8814)
socket$nl_rdma(0x10, 0x3, 0x14)
lstat(&(0x7f0000000300)='./file0\x00', &(0x7f0000000380))
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x8081)
writev(r3, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r4 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r4, &(0x7f0000000180)={0xa, 0x4001, 0x1, @dev={0xfe, 0x80, '\x00', 0x39}, 0x3e}, 0x1c)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x100, 0x0)
epoll_create(0x7e)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x20000000000, 0xffffffffffffffff, 0x0, 0xfffffffffffffffd, 0x1000001000, 0x46}, 0x0, &(0x7f0000000000)={0x3ff, 0x7, 0xff00, 0x9, 0x0, 0xf, 0x80000002}, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x1d7)
r5 = open_tree(r0, &(0x7f0000000000)='./bus\x00', 0x9000)
sendmsg$NFULNL_MSG_CONFIG(r5, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200}, 0xc, 0x0}, 0x4)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
rename(&(0x7f0000000800)='./file0\x00', &(0x7f0000000840)='./file1\x00')
symlink(&(0x7f0000000580)='.\x02/file1\x00', &(0x7f00000002c0)='.\x02\x00')
timer_create(0x3e295f6bdcf3ea24, 0x0, &(0x7f0000000000))

2.83636784s ago: executing program 0 (id=5379):
bind$alg(0xffffffffffffffff, 0x0, 0x0)
futex_waitv(&(0x7f0000001600), 0x0, 0x0, 0x0, 0x1)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x60240)
sendmsg$key(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000300)={0x8, 0x100008b}, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000340)={0x0, <r1=>0x0})
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x1)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r2 = syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0)
read$msr(r2, &(0x7f0000032680)=""/102392, 0x18ff8)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100))
syz_io_uring_setup(0xf00, 0x0, 0x0, 0x0, 0x0)
ioctl$SG_SCSI_RESET(0xffffffffffffffff, 0x2284, 0x0)
recvmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x26022, 0x0)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000080), 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f0000000840)={0x0, @in6={{0xa, 0x4e23, 0x70000, @private1={0xfc, 0x1, '\x00', 0x2}, 0x803}}, 0x3, 0x2, 0x8, 0x80000001, 0xe6, 0x7, 0x84}, 0x9c)
mkdir(&(0x7f0000000000)='./bus\x00', 0x80)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r0, 0xc0a85320, &(0x7f0000001400)={{0x80}, 'port1\x00', 0xe3, 0x1b1c07, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6})
readv(r0, &(0x7f0000000080), 0x0)
r3 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffe)
keyctl$search(0xa, r3, &(0x7f0000000080)='keyring\x00', &(0x7f0000000100)={'syz', 0x2}, 0x0)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000000c0)={<r4=>0x0, 0x1, 0x30, 0x3, 0x40}, &(0x7f0000000140)=0x18)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000180)=@assoc_id=r4, &(0x7f00000001c0)=0x4)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x80383, 0x0)
r5 = add_key(&(0x7f00000013c0)='big_key\x00', &(0x7f0000000040)={'syz', 0x0}, &(0x7f0000000100)='[', 0xfe95, 0xffffffffffffffff)
keyctl$revoke(0x3, r5)

1.916364216s ago: executing program 1 (id=5380):
fsopen(&(0x7f0000000180)='btrfs\x00', 0x0)
getpgrp(0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x88800, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f00000003c0)={0xc, 0x0, <r1=>0x0})
ioctl$IOMMU_IOAS_MAP$PAGES(r0, 0x3b85, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x1, &(0x7f00000000c0)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r0, 0x3ba0, &(0x7f0000000340)={0x48, 0x5, r1, 0x0, <r5=>0xffffffffffffffff, 0x1})
ioctl$IOMMU_TEST_OP_ACCESS_PAGES$syz(r0, 0x3ba0, &(0x7f0000000100)={0x48, 0x7, r5, 0x0, 0x0, 0x0, 0x40000, 0x0, 0x334e8b})
ioctl$IOMMU_TEST_OP_ACCESS_PAGES$syz(r0, 0x3ba0, &(0x7f0000000240)={0x48, 0x7, r5, 0x0, 0x10000, 0x0, 0x8, 0x2ea473, 0x2eb80c})
r6 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x5059c1)
ioctl$SNDRV_TIMER_IOCTL_TREAD_OLD(r6, 0x40045402, &(0x7f0000000140)=0x1)
copy_file_range(r6, 0x0, r6, 0x0, 0x9, 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r6, 0x40345410, &(0x7f00000083c0)={{0x1}})
ioctl$SNDRV_TIMER_IOCTL_PARAMS(r6, 0x40505412, 0x0)
ppoll(&(0x7f00000002c0), 0x0, 0x0, 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r6, 0x54a2)
r7 = syz_open_dev$MSR(&(0x7f00000001c0), 0x1, 0x0)
read$msr(r7, 0x0, 0x0)

1.739191701s ago: executing program 0 (id=5381):
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000180)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x1}, 0x50)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
madvise(&(0x7f0000000000/0x600000)=nil, 0xffffffffffffffff, 0x16)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSIFDSTADDR(r3, 0x891b, &(0x7f0000000000)={'lo\x00', {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0xa}}})
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
ptrace$ARCH_SHSTK_LOCK(0x1e, r0, 0x2, 0x5003)
io_uring_register$IORING_REGISTER_SYNC_CANCEL(0xffffffffffffffff, 0x18, 0x0, 0x1)
r4 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="1c0000005e00679a3601ffc4910700004f78d4c1a0731cccff"], 0x1c}}, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = openat$tun(0xffffffffffffff9c, 0x0, 0x40241, 0x0)
ioctl$TUNSETIFF(r6, 0x400454ca, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="3000000010000100"/20, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=0x0, @ANYBLOB="08001b"], 0x30}}, 0x0)
r7 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x50)
syz_emit_ethernet(0x4a, &(0x7f0000000000)={@local, @local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "00ed6a", 0x14, 0x2c, 0x0, @local, @local, {[], {{0x2c00, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000002c40)={0xd, 0x17, &(0x7f00000007c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0xff000000}, {{0x18, 0x1, 0x1, 0x0, r7}, {}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4}}, {{0x6, 0x0, 0xb}, {0x65}}, [@printk={@lld, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x5, 0x1, 0xc, 0x1, 0x9}, {0x7, 0x0, 0x3}, {}, {}, {0x4}}], {{0x7, 0x1, 0x3, 0x3}, {0x5, 0x0, 0xb, 0x3}, {0x85, 0x0, 0x0, 0x76}}}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sock_ops, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$SIOCGSTAMP(0xffffffffffffffff, 0x8906, 0x0)

1.733552621s ago: executing program 2 (id=5382):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040))
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0xffffd000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e25}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
clock_settime(0x0, &(0x7f0000000040)={0x77359400})
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, &(0x7f0000000000)=[@mss, @window={0x3, 0x7}, @window={0x3, 0x0, 0x401}, @window], 0x4)
sendto$inet(0xffffffffffffffff, &(0x7f0000000000), 0xffffffffffffff94, 0xb, 0x0, 0x0)
recvfrom$inet(0xffffffffffffffff, 0x0, 0x0, 0xc9100120, 0x0, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000000800)=[{&(0x7f0000000380)=""/149, 0x95}], 0x1, 0x4, 0x3)
r3 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r3, 0x3b81, &(0x7f00000000c0)={0xc, 0x0, <r4=>0x0})
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN_FLAGS(r3, 0x3ba0, &(0x7f0000000240)={0x48, 0x2, r4, 0x0, 0x0, 0x0, 0x0, 0x1})
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN_FLAGS(r3, 0x3ba0, &(0x7f0000000040)={0x48, 0x2, r4, 0x0, 0x0, 0x0, 0x0, 0x1})
r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x72, 0x0, 0x7fff0000}]})
ioctl$DRM_IOCTL_PANTHOR_VM_CREATE(0xffffffffffffffff, 0xc0106441, &(0x7f0000000240)={0x0, <r6=>0x0, 0x6})
ioctl$DRM_IOCTL_PANTHOR_TILER_HEAP_CREATE(0xffffffffffffffff, 0xc028644b, &(0x7f00000002c0)={r6, 0x7, 0x40000, 0xffffffff, 0xffffffff, 0x0, 0x3, 0x6})
r7 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
bind$802154_raw(r7, &(0x7f0000000100)={0x24, @short={0x2, 0x1, 0xaaa2}}, 0x14)
close_range(r5, 0xffffffffffffffff, 0x0)

413.266208ms ago: executing program 1 (id=5383):
socket$xdp(0x2c, 0x3, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$xdp(0x2c, 0x3, 0x0)
r2 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$XDP_TX_RING(r1, 0x11b, 0x3, &(0x7f0000000140)=0x40, 0x4)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f0000000280)={'batadv_slave_1\x00', <r3=>0x0})
r4 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_COMPLETION_RING(r4, 0x11b, 0x6, &(0x7f0000000080)=0x1, 0x4)
r5 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$XDP_RX_RING(r4, 0x11b, 0x2, &(0x7f0000001980)=0x100, 0x4)
r6 = accept$packet(0xffffffffffffffff, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000180)=0x14)
setsockopt$packet_int(r6, 0x107, 0x3, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r5, 0x8933, &(0x7f0000000580)={'batadv_slave_1\x00', <r7=>0x0})
setsockopt$XDP_UMEM_FILL_RING(r4, 0x11b, 0x5, &(0x7f0000000300)=0x2, 0x4)
bind$xdp(r4, &(0x7f0000000100)={0x2c, 0x0, r7}, 0x10)
bind$xdp(r1, &(0x7f0000000240)={0x2c, 0x1, r7, 0x0, r4}, 0x10)
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=@getchain={0x24, 0x11, 0x43d, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0xe}, {}, {0x7, 0xd}}}, 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0x0)

0s ago: executing program 0 (id=5384):
syz_open_procfs(0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000380)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x0)
read(r0, &(0x7f0000000880)=""/4096, 0x1000)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$USBDEVFS_RESET(0xffffffffffffffff, 0x5514)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x143102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r2 = socket$inet6(0xa, 0x1, 0x8010000000000084)
syz_io_uring_setup(0x315b, &(0x7f0000000080)={0x0, 0xcfcd, 0x1042, 0x6, 0x354}, 0x0, 0x0, 0x0)
r3 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
r4 = dup(r3)
ioctl$PTP_EXTTS_REQUEST2(r4, 0xc0603d0f, &(0x7f0000000040))
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e21, 0x0, @empty}, 0x1c)
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="1400000010000100000000000000000000fc000a20000000000a09000000000000000000070000000900010073797a30000000004c000000090a010400000000000000000700000008000a40000000000900020073797a31"], 0xec}, 0x1, 0x0, 0x0, 0x840}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2002, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x9, 0x6, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x6a855000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nbd(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)

kernel console output (not intermixed with test programs):

 phy1 wpan1: encryption failed: -22
[  443.946486][   T51] Bluetooth: Frame is too long (len 16, expected len 4)
[  445.264989][ T9214] futex_wake_op: syz.1.848 tries to shift op by 144; fix this program
[  446.025936][   T51] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci1/hci1:201'
[  446.074845][   T51] CPU: 0 PID: 51 Comm: kworker/u5:0 Not tainted syzkaller #0
[  446.082287][   T51] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  446.092378][   T51] Workqueue: hci1 hci_rx_work
[  446.097104][   T51] Call Trace:
[  446.100405][   T51]  <TASK>
[  446.103359][   T51]  dump_stack_lvl+0x18c/0x250
[  446.108085][   T51]  ? show_regs_print_info+0x20/0x20
[  446.113307][   T51]  ? load_image+0x420/0x420
[  446.117822][   T51]  sysfs_create_dir_ns+0x26e/0x2a0
[  446.122946][   T51]  ? sysfs_warn_dup+0xa0/0xa0
[  446.127629][   T51]  ? do_raw_spin_unlock+0x121/0x230
[  446.132978][   T51]  kobject_add_internal+0x61c/0xcc0
[  446.138361][   T51]  kobject_add+0x164/0x240
[  446.142805][   T51]  ? __rwlock_init+0x150/0x150
[  446.147590][   T51]  ? kobject_init+0x1e0/0x1e0
[  446.152267][   T51]  ? _raw_spin_unlock+0x28/0x40
[  446.157120][   T51]  ? get_device_parent+0x366/0x390
[  446.162236][   T51]  device_add+0x408/0xc20
[  446.166570][   T51]  hci_conn_add_sysfs+0xd5/0x1e0
[  446.171509][   T51]  le_conn_complete_evt+0xf5d/0x1540
[  446.176794][   T51]  ? hci_event_packet+0x4cb/0x1270
[  446.181915][   T51]  ? hci_le_big_info_adv_report_evt+0x910/0x910
[  446.188291][   T51]  ? __mutex_unlock_slowpath+0x1b4/0x6c0
[  446.194056][   T51]  ? skb_pull_data+0xfb/0x200
[  446.198873][   T51]  hci_le_conn_complete_evt+0x187/0x440
[  446.204445][   T51]  ? hci_remote_host_features_evt+0x150/0x150
[  446.211165][   T51]  hci_event_packet+0x7ba/0x1270
[  446.216326][   T51]  ? bis_list+0x290/0x290
[  446.220761][   T51]  ? lockdep_hardirqs_on+0x98/0x150
[  446.226033][   T51]  ? hci_send_to_monitor+0xd7/0x4f0
[  446.231502][   T51]  hci_rx_work+0x43a/0xd60
[  446.235934][   T51]  ? process_scheduled_works+0x96f/0x15d0
[  446.241664][   T51]  process_scheduled_works+0xa5d/0x15d0
[  446.247229][   T51]  ? worker_attach_to_pool+0x380/0x380
[  446.252717][   T51]  ? assign_work+0x3d2/0x5d0
[  446.257329][   T51]  worker_thread+0xa55/0xfc0
[  446.261954][   T51]  kthread+0x2fa/0x390
[  446.266032][   T51]  ? pr_cont_work+0x560/0x560
[  446.270721][   T51]  ? kthread_blkcg+0xd0/0xd0
[  446.275307][   T51]  ret_from_fork+0x48/0x80
[  446.279727][   T51]  ? kthread_blkcg+0xd0/0xd0
[  446.284312][   T51]  ret_from_fork_asm+0x11/0x20
[  446.289088][   T51]  </TASK>
[  446.296819][   T51] kobject: kobject_add_internal failed for hci1:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  446.311063][   T51] Bluetooth: hci1: failed to register connection device
[  446.476163][ T9221] netlink: 4 bytes leftover after parsing attributes in process `syz.2.849'.
[  447.197077][ T9221] nbd: socks must be embedded in a SOCK_ITEM attr
[  447.259350][   T51] Bluetooth: hci2: command 0x0406 tx timeout
[  447.364460][ T9234] udevd[9234]: inotify_add_watch(7, /dev/nbd64, 10) failed: No such file or directory
[  447.464489][ T9234] udevd[9234]: inotify_add_watch(7, /dev/nbd64, 10) failed: No such file or directory
[  448.307000][   T51] Bluetooth: hci3: unexpected event for opcode 0x0c58
[  448.543422][   T51] Bluetooth: hci0: unexpected event for opcode 0x203b
[  449.883436][ T9270] bridge3: entered promiscuous mode
[  449.889030][ T9270] bridge3: entered allmulticast mode
[  450.083690][   T51] Bluetooth: hci3: Malformed Event: 0x02
[  451.089073][ T9283] xt_TPROXY: Can be used only with -p tcp or -p udp
[  451.580916][   T51] Bluetooth: hci2: Malformed Event: 0x13
[  451.883675][   T51] Bluetooth: hci2: unexpected event for opcode 0x2042
[  451.967677][   T51] Bluetooth: hci3: unexpected event for opcode 0x040e
[  451.985122][ T9300] RDS: rds_bind could not find a transport for fe80::1a, load rds_tcp or rds_rdma?
[  452.096205][   T51] Bluetooth: hci0: unexpected event for opcode 0x0c03
[  452.296253][   T51] Bluetooth: hci3: unexpected event for opcode 0x2010
[  452.760856][   T51] Bluetooth: hci0: unexpected event for opcode 0x0c24
[  452.867119][ T9340] ip6_tunnel: non-ECT from fe80:0000:0000:0000:0000:0000:0000:00bb with DS=0x1a
[  453.008418][ T9341] bridge1: entered promiscuous mode
[  453.013984][ T9341] bridge1: entered allmulticast mode
[  454.777855][   T51] Bluetooth: hci0: unexpected event for opcode 0x2016
[  454.854447][   T51] Bluetooth: hci2: unexpected event for opcode 0x201c
[  455.014437][   T51] Bluetooth: hci2: unexpected event for opcode 0x1407
[  455.117434][ T9381] netlink: 8 bytes leftover after parsing attributes in process `syz.2.908'.
[  455.722926][ T9396] tmpfs: Bad value for 'mpol'
[  456.631251][   T51] Bluetooth: hci3: unexpected event for opcode 0x0c20
[  456.653993][ T9411] netlink: 72 bytes leftover after parsing attributes in process `syz.2.927'.
[  456.735340][ T9406] netlink: 4 bytes leftover after parsing attributes in process `syz.1.926'.
[  457.177771][ T9430] netlink: 8 bytes leftover after parsing attributes in process `syz.1.935'.
[  458.364495][ T9437] netlink: 4 bytes leftover after parsing attributes in process `syz.3.939'.
[  458.403273][ T9446] netlink: 4 bytes leftover after parsing attributes in process `syz.0.943'.
[  458.448659][ T9451] RDS: rds_bind could not find a transport for fe80::1a, load rds_tcp or rds_rdma?
[  458.954489][ T9475] netlink: 4 bytes leftover after parsing attributes in process `syz.0.955'.
[  459.050874][ T9472] netlink: 4 bytes leftover after parsing attributes in process `syz.3.953'.
[  460.323676][ T9502] netlink: 8 bytes leftover after parsing attributes in process `syz.0.962'.
[  460.605462][ T9505] netlink: 4 bytes leftover after parsing attributes in process `syz.1.965'.
[  462.077579][ T9524] netlink: 8 bytes leftover after parsing attributes in process `syz.1.969'.
[  463.077469][ T9536] netlink: 4 bytes leftover after parsing attributes in process `syz.0.975'.
[  464.378965][   T51] Bluetooth: Wrong link type (-57)
[  464.434104][   T51] Bluetooth: hci2: unexpected event for opcode 0x040d
[  464.963027][ T9572] xt_TPROXY: Can be used only with -p tcp or -p udp
[  465.430361][   T28] audit: type=1326 audit(1777578157.566:217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9574 comm="syz.3.992" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd00bf9cdd9 code=0x7ffc0000
[  465.491528][   T28] audit: type=1326 audit(1777578157.566:218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9574 comm="syz.3.992" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd00bf9cdd9 code=0x7ffc0000
[  465.533973][ T9577] netlink: 8 bytes leftover after parsing attributes in process `syz.2.989'.
[  465.534101][   T28] audit: type=1326 audit(1777578157.566:219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9574 comm="syz.3.992" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd00bf9cdd9 code=0x7ffc0000
[  465.650010][   T28] audit: type=1326 audit(1777578157.566:220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9574 comm="syz.3.992" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd00bf9cdd9 code=0x7ffc0000
[  465.675145][   T28] audit: type=1326 audit(1777578157.566:221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9574 comm="syz.3.992" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=162 compat=0 ip=0x7fd00bf9cdd9 code=0x7ffc0000
[  465.711425][   T28] audit: type=1326 audit(1777578157.622:222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9574 comm="syz.3.992" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fd00bf5d60e code=0x7ffc0000
[  465.812013][   T28] audit: type=1326 audit(1777578157.622:223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9574 comm="syz.3.992" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fd00bf5d60e code=0x7ffc0000
[  465.898572][   T28] audit: type=1326 audit(1777578157.622:224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9574 comm="syz.3.992" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fd00bf5d60e code=0x7ffc0000
[  465.934399][   T28] audit: type=1326 audit(1777578157.622:225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9574 comm="syz.3.992" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fd00bf5d60e code=0x7ffc0000
[  465.992948][   T28] audit: type=1326 audit(1777578157.622:226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9574 comm="syz.3.992" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fd00bf5d60e code=0x7ffc0000
[  467.240757][ T9601] IPVS: sync thread started: state = BACKUP, mcast_ifn = dummy0, syncid = 65, id = 0
[  467.251335][ T9599] erspan0: entered promiscuous mode
[  467.265276][ T9599] erspan0: entered allmulticast mode
[  467.668365][ T9607] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1005'.
[  467.729049][   T51] Bluetooth: hci2: unexpected event for opcode 0x0c58
[  468.740881][ T9627] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1011'.
[  469.104688][ T9637] netlink: 666 bytes leftover after parsing attributes in process `syz.1.1016'.
[  469.286935][ T9641] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1018'.
[  469.630092][   T51] Bluetooth: hci3: unexpected event for opcode 0x080c
[  469.885774][ T9652] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1022'.
[  470.211523][ T9664] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1027'.
[  472.305810][   T51] Bluetooth: hci0: unexpected event for opcode 0x200b
[  472.384247][ T9707] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1045'.
[  472.409200][ T9707] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1045'.
[  472.953437][ T9732] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1057'.
[  473.215807][ T9743] netlink: 'syz.2.1062': attribute type 21 has an invalid length.
[  473.269812][ T9747] x_tables: ip6_tables: TCPMSS target: only valid for protocol 6
[  473.388458][ T9753] netlink: 'syz.2.1066': attribute type 7 has an invalid length.
[  473.407082][ T9753] netlink: 'syz.2.1066': attribute type 8 has an invalid length.
[  473.432160][ T9753] netlink: 'syz.2.1066': attribute type 15 has an invalid length.
[  473.683286][ T9759] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1069'.
[  474.755259][ T9789] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1082'.
[  474.900120][ T9799] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  475.191159][ T9810] netdevsim netdevsim3 netdevsim0: entered allmulticast mode
[  475.917045][ T9816] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1094'.
[  475.957953][ T9824] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1098'.
[  476.236722][ T9833] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1096'.
[  476.304034][   T59] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  478.125971][ T9871] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1114'.
[  478.478957][ T9877] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1117'.
[  478.841633][ T9876] bridge3: entered promiscuous mode
[  478.847037][ T9876] bridge3: entered allmulticast mode
[  479.890120][ T9890] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1123'.
[  479.902319][ T9890] netlink: 540 bytes leftover after parsing attributes in process `syz.2.1123'.
[  480.126127][ T9893] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1124'.
[  480.252359][ T9897] ip6gre1: entered promiscuous mode
[  480.634097][ T9904] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1129'.
[  480.882785][ T9907] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1130'.
[  481.105854][ T9918] IPVS: ip_vs_add_dest(): server weight less than zero
[  481.243604][ T9920] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1136'.
[  481.712379][ T9933] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1141'.
[  481.722339][ T9933] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1141'.
[  481.746026][ T9933] tc_dump_action: action bad kind
[  482.051479][ T9935] bridge1: entered promiscuous mode
[  482.078377][ T9935] bridge1: entered allmulticast mode
[  482.445200][ T9950] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1144'.
[  482.575022][ T9949] netlink: 'syz.2.1147': attribute type 6 has an invalid length.
[  484.254721][ T9991] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1162'.
[  484.977369][T10010] netdevsim netdevsim0: Direct firmware load for 
 failed with error -2
[  484.991872][T10010] netdevsim netdevsim0: Falling back to sysfs fallback for: 

[  485.330014][T10015] bridge4: entered promiscuous mode
[  485.335640][T10015] bridge4: entered allmulticast mode
[  485.723005][T10024] __nla_validate_parse: 1 callbacks suppressed
[  485.723016][T10024] netlink: 248 bytes leftover after parsing attributes in process `syz.3.1181'.
[  487.660256][T10071] bridge5: entered promiscuous mode
[  487.670924][T10071] bridge5: entered allmulticast mode
[  488.119580][T10082] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1206'.
[  489.896587][T10102] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1213'.
[  490.278863][T10116] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1216'.
[  491.179813][   T51] Bluetooth: hci2: Malformed LE Event: 0x1d
[  492.033409][T10144] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1231'.
[  492.554060][T10136] gre1: entered promiscuous mode
[  492.853646][T10155] netlink: 'syz.2.1235': attribute type 5 has an invalid length.
[  492.862595][T10155] netlink: 3657 bytes leftover after parsing attributes in process `syz.2.1235'.
[  492.913642][T10153] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1233'.
[  492.931886][T10157] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1234'.
[  493.769835][T10174] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1243'.
[  493.832125][T10175] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1241'.
[  493.906619][T10185] bridge0: port 3(bond0) entered blocking state
[  493.913009][T10185] bridge0: port 3(bond0) entered disabled state
[  493.948571][T10185] bond0: entered allmulticast mode
[  493.953748][T10185] bond_slave_0: entered allmulticast mode
[  493.985201][T10185] bond_slave_1: entered allmulticast mode
[  493.997530][T10185] bond0: entered promiscuous mode
[  494.003759][T10185] bond_slave_0: entered promiscuous mode
[  494.009844][T10185] bond_slave_1: entered promiscuous mode
[  494.426786][T10201] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1251'.
[  495.014097][T10203] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1255'.
[  495.133566][T10209] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1257'.
[  495.492415][T10224] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1263'.
[  497.430552][T10296] __nla_validate_parse: 6 callbacks suppressed
[  497.430568][T10296] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1290'.
[  497.511930][T10293] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1291'.
[  497.996350][T10300] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1292'.
[  498.219223][T10309] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1295'.
[  498.513318][   T51] Bluetooth: hci1: unexpected event for opcode 0x1003
[  498.739915][T10324] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1302'.
[  499.795980][T10335] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1303'.
[  500.356493][T10336] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1305'.
[  500.627423][T10347] bridge0: port 3(bond0) entered blocking state
[  500.643961][T10347] bridge0: port 3(bond0) entered disabled state
[  500.652012][T10345] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1318'.
[  500.660021][T10347] bond0: entered allmulticast mode
[  500.674925][T10347] bond_slave_0: entered allmulticast mode
[  500.685738][T10347] bond_slave_1: entered allmulticast mode
[  500.704106][T10347] bond0: entered promiscuous mode
[  500.713896][T10347] bond_slave_0: entered promiscuous mode
[  500.734242][T10347] bond_slave_1: entered promiscuous mode
[  500.912103][T10351] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1311'.
[  501.223560][T10361] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 20000 - 0
[  501.235262][T10361] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 20000 - 0
[  501.245212][T10361] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 20000 - 0
[  501.254984][T10361] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 20000 - 0
[  501.264679][T10361] geneve3: entered promiscuous mode
[  501.270105][T10361] geneve3: entered allmulticast mode
[  501.339532][T10362] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1312'.
[  502.821357][   T51] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  502.830452][   T51] Bluetooth: hci1: Injecting HCI hardware error event
[  502.845295][ T5777] Bluetooth: hci1: hardware error 0x00
[  503.017517][T10381] (unnamed net_device) (uninitialized): Removing last ns target with arp_interval on
[  503.366253][T10394] __nla_validate_parse: 1 callbacks suppressed
[  503.366271][T10394] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1329'.
[  503.390296][T10393] netlink: 'syz.2.1330': attribute type 21 has an invalid length.
[  503.488707][T10398] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1327'.
[  504.867195][T10415] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1337'.
[  504.867275][T10414] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1335'.
[  505.126189][ T5777] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  505.371912][T10433] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1343'.
[  506.171414][T10442] netlink: 'syz.2.1347': attribute type 16 has an invalid length.
[  506.205287][T10442] netlink: 156 bytes leftover after parsing attributes in process `syz.2.1347'.
[  506.894603][T10472] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1359'.
[  507.897281][T10499] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1364'.
[  509.023336][T10518] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1376'.
[  509.476244][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[  509.487079][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[  509.675722][T10516] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1377'.
[  509.927956][T10539] tipc: Started in network mode
[  509.936400][T10539] tipc: Node identity , cluster identity 4711
[  510.156755][T10545] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1383'.
[  510.711069][ T2924] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  511.268938][T10553] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1390'.
[  512.300586][T10585] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1402'.
[  514.357324][T10618] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1415'.
[  517.104481][T10653] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1429'.
[  517.549003][T10664] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1432'.
[  518.283947][T10675] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1438'.
[  519.687918][T10706] xt_CT: No such helper "pptp"
[  519.700583][T10710] capability: warning: `syz.2.1453' uses 32-bit capabilities (legacy support in use)
[  519.835006][T10717] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1456'.
[  520.269630][T10726] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1458'.
[  521.648642][T10764] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1471'.
[  522.438311][T10769] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1478'.
[  522.496132][T10769] vlan2: entered promiscuous mode
[  522.523293][T10769] gretap0: entered promiscuous mode
[  523.024859][T10778] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1479'.
[  523.954058][T10796] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1484'.
[  524.190126][T10799] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1487'.
[  524.726615][T10813] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  525.513803][T10831] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1500'.
[  526.171452][T10838] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1504'.
[  526.547396][T10849] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1503'.
[  531.566760][T10990] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1567'.
[  533.006757][T11001] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1572'.
[  533.084567][T11006] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1573'.
[  534.509071][T11037] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1585'.
[  535.261449][T11049] IPVS: stopping backup sync thread 11050 ...
[  535.325702][T11045] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1588'.
[  535.694555][T11068] netlink: 'syz.2.1595': attribute type 3 has an invalid length.
[  535.821018][T11068] netlink: 'syz.2.1595': attribute type 1 has an invalid length.
[  535.916005][T11068] netlink: 181400 bytes leftover after parsing attributes in process `syz.2.1595'.
[  536.525154][T11071] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1596'.
[  537.026866][T11087] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1601'.
[  537.320150][T11090] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1602'.
[  538.849125][T11116] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1612'.
[  538.864194][T11120] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1613'.
[  539.264961][T11128] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1616'.
[  540.467943][T11150] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1625'.
[  542.014327][T11183] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1635'.
[  542.597383][T11194] 9pnet_fd: Insufficient options for proto=fd
[  542.885971][ T5777] Bluetooth: hci0: unexpected event 0x04 length: 245 > 10
[  543.212158][T11219] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1651'.
[  544.637040][ T2911] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  545.099842][ T5777] Bluetooth: hci0: command 0x0406 tx timeout
[  545.331973][T11252] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1666'.
[  545.969668][T11254] xt_l2tp: v2 tid > 0xffff: 37482740
[  546.230202][T11263] netlink: 71 bytes leftover after parsing attributes in process `syz.2.1672'.
[  546.318194][T11269] netlink: 52 bytes leftover after parsing attributes in process `syz.3.1673'.
[  546.566771][T11276] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1678'.
[  547.595002][T11298] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1688'.
[  548.230758][T11322] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1698'.
[  548.646914][T11341] 9pnet_fd: Insufficient options for proto=fd
[  548.756330][T11346] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1710'.
[  550.817683][T11371] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1719'.
[  552.395989][T11398] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1731'.
[  552.489289][T11401] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1729'.
[  554.545969][T11450] tipc: Started in network mode
[  554.553213][T11450] tipc: Node identity , cluster identity 4711
[  557.034478][T11499] netlink: 188 bytes leftover after parsing attributes in process `syz.1.1779'.
[  557.129785][T11505] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1772'.
[  559.987443][T11558] netlink: 116 bytes leftover after parsing attributes in process `syz.1.1794'.
[  560.992207][T11571] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1800'.
[  561.087246][T11575] netlink: 203516 bytes leftover after parsing attributes in process `syz.2.1801'.
[  561.098310][T11575] netlink: zone id is out of range
[  561.103975][T11575] netlink: zone id is out of range
[  561.109133][T11575] netlink: zone id is out of range
[  561.118336][T11575] netlink: zone id is out of range
[  561.124236][T11575] netlink: zone id is out of range
[  561.129487][T11575] netlink: zone id is out of range
[  561.138771][T11575] netlink: zone id is out of range
[  561.144560][T11575] netlink: zone id is out of range
[  561.149826][T11575] netlink: zone id is out of range
[  561.156410][T11575] netlink: zone id is out of range
[  562.221976][T11590] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1807'.
[  563.502415][T11615] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1817'.
[  565.573182][T11646] lo speed is unknown, defaulting to 1000
[  567.690192][T11691] fuse: Bad value for 'fd'
[  567.996830][T11699] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1847'.
[  569.076011][T11711] batadv_slave_0: entered promiscuous mode
[  569.123717][T11711] batman_adv: batadv0: Adding interface: macvtap1
[  569.137311][T11711] batman_adv: batadv0: The MTU of interface macvtap1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  569.172738][T11711] batman_adv: batadv0: Interface activated: macvtap1
[  569.220149][T11717] 9pnet_fd: Insufficient options for proto=fd
[  569.294725][T11722] netlink: 80 bytes leftover after parsing attributes in process `syz.3.1855'.
[  569.331895][T11722] geneve0: entered allmulticast mode
[  569.362056][T11722] netlink: 'syz.3.1855': attribute type 1 has an invalid length.
[  569.372423][T11722] netlink: 'syz.3.1855': attribute type 2 has an invalid length.
[  569.423078][T11728] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  569.465299][T11728] bridge0: port 3(geneve1) entered disabled state
[  569.472093][T11728] bridge0: port 2(bridge_slave_1) entered disabled state
[  569.479499][T11728] bridge0: port 1(bridge_slave_0) entered disabled state
[  569.929931][T11742] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1866'.
[  571.239876][T11772] netlink: 80 bytes leftover after parsing attributes in process `syz.3.1880'.
[  571.355751][T11777] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1881'.
[  571.618594][T11780] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1882'.
[  571.797750][T11792] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1887'.
[  572.516502][T11813] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1893'.
[  572.594800][T11804] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1892'.
[  573.122786][T11832] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1903'.
[  573.265762][T11849] 9pnet_fd: Insufficient options for proto=fd
[  573.328599][T11852] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1911'.
[  574.902067][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[  574.908522][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[  575.285774][T11888] __nla_validate_parse: 2 callbacks suppressed
[  575.285809][T11888] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1923'.
[  576.100134][ T5777] Bluetooth: hci0: unexpected event for opcode 0x2031
[  576.164947][T11893] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1926'.
[  576.528190][T11913] syz.2.1934: attempt to access beyond end of device
[  576.528190][T11913] loop4: rw=0, sector=0, nr_sectors = 1 limit=0
[  576.858869][T11920] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1935'.
[  577.939331][T11931] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1939'.
[  578.597915][T11930] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1940'.
[  578.773488][   T12] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  580.044092][T11963] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1954'.
[  580.125390][T11969] fuse: Bad value for 'fd'
[  580.468078][ T5777] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[  580.480014][ T5777] Bluetooth: hci0: Injecting HCI hardware error event
[  580.489694][ T5777] Bluetooth: hci0: hardware error 0x00
[  581.493280][T11996] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1965'.
[  581.735730][T12010] lo speed is unknown, defaulting to 1000
[  581.766154][T12013] 8021q: adding VLAN 0 to HW filter on device .`
[  581.870530][T12013] net_ratelimit: 3 callbacks suppressed
[  581.870539][T12013] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  582.664212][ T5777] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  583.087988][T12033] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1982'.
[  583.147760][T12041] netlink: 68 bytes leftover after parsing attributes in process `syz.2.1985'.
[  583.589780][T12061] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1994'.
[  584.188862][T12080] netlink: 'syz.0.2003': attribute type 29 has an invalid length.
[  584.198586][T12080] netlink: 'syz.0.2003': attribute type 29 has an invalid length.
[  584.209165][T12080] netlink: 'syz.0.2003': attribute type 29 has an invalid length.
[  584.218705][T12080] netlink: 'syz.0.2003': attribute type 29 has an invalid length.
[  584.327200][T12084] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2005'.
[  585.031795][T12103] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2014'.
[  585.586168][T12111] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2015'.
[  586.453712][T12126] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2023'.
[  586.910965][T12148] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2031'.
[  586.935955][T12148] macvlan2: entered allmulticast mode
[  586.947428][T12148] vlan0: entered allmulticast mode
[  586.953161][T12148] veth0_vlan: entered allmulticast mode
[  587.213143][T12156] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2035'.
[  587.475567][T12171] netlink: 72 bytes leftover after parsing attributes in process `syz.1.2043'.
[  587.507652][T12173] 9pnet_fd: Insufficient options for proto=fd
[  587.604383][T12177] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2046'.
[  587.958265][T12194] lo speed is unknown, defaulting to 1000
[  588.340087][T12206] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2058'.
[  588.418423][T12194] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2053'.
[  588.479767][T12194] netdevsim netdevsim1 netdevsim0: set [1, 1] type 2 family 0 port 6081 - 0
[  588.497592][T12194] netdevsim netdevsim1 netdevsim1: set [1, 1] type 2 family 0 port 6081 - 0
[  588.513588][T12194] netdevsim netdevsim1 netdevsim2: set [1, 1] type 2 family 0 port 6081 - 0
[  588.529524][T12194] netdevsim netdevsim1 netdevsim3: set [1, 1] type 2 family 0 port 6081 - 0
[  588.549505][T12194] geneve4: entered promiscuous mode
[  588.960455][T12231] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2069'.
[  590.011377][T12242] lo speed is unknown, defaulting to 1000
[  590.018840][T12244] netlink: 'syz.1.2074': attribute type 12 has an invalid length.
[  590.366797][T12265] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2083'.
[  590.903109][T12291] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2095'.
[  591.605306][T12316] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2107'.
[  592.379632][T12341] __nla_validate_parse: 1 callbacks suppressed
[  592.379650][T12341] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2116'.
[  593.317742][T12355] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2123'.
[  593.592733][T12376] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2132'.
[  594.275113][T12393] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2139'.
[  594.483417][T12398] netlink: 35284 bytes leftover after parsing attributes in process `syz.2.2141'.
[  594.530934][T12398] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2141'.
[  594.873265][T12406] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2143'.
[  595.377722][T12408] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2144'.
[  595.637288][T12417] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2147'.
[  595.646473][T12417] netlink: 'syz.1.2147': attribute type 5 has an invalid length.
[  595.668971][T12417] netlink: 48 bytes leftover after parsing attributes in process `syz.1.2147'.
[  595.685159][T12417] netdevsim netdevsim1 netdevsim0: set [1, 2] type 2 family 0 port 50420 - 0
[  595.694221][T12417] netdevsim netdevsim1 netdevsim1: set [1, 2] type 2 family 0 port 50420 - 0
[  595.710897][T12417] netdevsim netdevsim1 netdevsim2: set [1, 2] type 2 family 0 port 50420 - 0
[  595.741634][T12417] netdevsim netdevsim1 netdevsim3: set [1, 2] type 2 family 0 port 50420 - 0
[  595.772228][T12417] geneve5: entered promiscuous mode
[  595.777721][T12417] geneve5: entered allmulticast mode
[  597.771259][T12475] __nla_validate_parse: 5 callbacks suppressed
[  597.771276][T12475] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2169'.
[  597.788209][T12480] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2171'.
[  597.964615][T12493] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2174'.
[  598.510064][T12509] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2182'.
[  598.521873][T12511] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2183'.
[  598.810420][T12525] netlink: 'syz.1.2186': attribute type 4 has an invalid length.
[  598.831118][T12525] netlink: 116 bytes leftover after parsing attributes in process `syz.1.2186'.
[  598.952420][T12530] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2188'.
[  598.978903][T12534] overlayfs: failed to clone lowerpath
[  599.094545][T12538] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2192'.
[  599.338439][T12542] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2193'.
[  601.661066][T12584] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2205'.
[  603.309630][T12608] netlink: 'syz.3.2219': attribute type 1 has an invalid length.
[  603.317433][T12608] netlink: 'syz.3.2219': attribute type 2 has an invalid length.
[  603.361792][T12608] netlink: 'syz.3.2219': attribute type 2 has an invalid length.
[  603.371602][T12608] netlink: 'syz.3.2219': attribute type 3 has an invalid length.
[  603.384326][T12608] netlink: 'syz.3.2219': attribute type 4 has an invalid length.
[  603.403243][T12608] netlink: 'syz.3.2219': attribute type 5 has an invalid length.
[  603.423499][T12608] netlink: 'syz.3.2219': attribute type 6 has an invalid length.
[  603.447135][T12608] netlink: 'syz.3.2219': attribute type 7 has an invalid length.
[  603.467962][T12608] netlink: 'syz.3.2219': attribute type 9 has an invalid length.
[  603.481556][T12608] netlink: 'syz.3.2219': attribute type 10 has an invalid length.
[  603.489451][T12608] __nla_validate_parse: 2 callbacks suppressed
[  603.489464][T12608] netlink: 126304 bytes leftover after parsing attributes in process `syz.3.2219'.
[  603.577789][T12615] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2222'.
[  604.051175][T12646] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2228'.
[  604.844655][T12654] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2235'.
[  605.004616][T12664] syz.0.2241[12664] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  605.004852][T12664] syz.0.2241[12664] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  605.102459][T12665] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2240'.
[  605.746294][    C0] icmp: detected local route for 172.20.0.0 during ICMP sending, src 172.20.255.187
[  605.999281][T12688] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2249'.
[  606.701399][T12690] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2251'.
[  608.301650][T12727] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2267'.
[  608.579721][T12746] fuse: Bad value for 'fd'
[  608.604329][T12746] overlayfs: failed to clone lowerpath
[  610.048543][T12769] TCP: MD5 Hash failed for (0.0.0.0, 20001)->(0.0.0.0, 20002) L3 index 0
[  611.123569][T12791] validate_nla: 2 callbacks suppressed
[  611.123585][T12791] netlink: 'syz.2.2291': attribute type 39 has an invalid length.
[  611.890033][ T5985] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  616.282670][T12918] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2338'.
[  616.538787][T12920] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2340'.
[  619.369685][T12959] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2352'.
[  619.650532][T12958] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2354'.
[  619.819800][T12961] netlink: 104 bytes leftover after parsing attributes in process `syz.3.2357'.
[  620.823076][T13015] batadv_slave_1: entered promiscuous mode
[  620.845506][T13014] batadv_slave_1: left promiscuous mode
[  620.993739][T13023] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2384'.
[  623.015855][T13082] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2402'.
[  623.836887][T13090] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2406'.
[  624.453923][T13111] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2413'.
[  624.684277][T13113] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2417'.
[  625.782013][T13143] xt_hashlimit: size too large, truncated to 1048576
[  625.856952][T13144] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2428'.
[  627.426511][T13171] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2442'.
[  628.374285][T13186] sctp: [Deprecated]: syz.0.2450 (pid 13186) Use of int in maxseg socket option.
[  628.374285][T13186] Use struct sctp_assoc_value instead
[  629.427804][T13206] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2454'.
[  629.795909][T13208] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2459'.
[  630.281067][    C0] icmp: detected local route for 172.20.0.0 during ICMP sending, src 172.20.255.187
[  630.291263][    C0] icmp: detected local route for 172.20.0.0 during ICMP sending, src 172.20.255.187
[  630.900833][T13244] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2471'.
[  632.392739][T13284] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2482'.
[  635.012767][T13336] gretap1: entered promiscuous mode
[  635.126666][   T28] kauditd_printk_skb: 42 callbacks suppressed
[  635.126679][   T28] audit: type=1326 audit(1777578316.362:269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13340 comm="syz.1.2504" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7ff24799cdd9 code=0x0
[  636.049630][T13351] lo speed is unknown, defaulting to 1000
[  637.555684][T13375] lo speed is unknown, defaulting to 1000
[  637.674284][T13380] bridge0: port 3(geneve1) entered blocking state
[  637.680922][T13380] bridge0: port 3(geneve1) entered forwarding state
[  637.687906][T13380] bridge0: port 2(bridge_slave_1) entered blocking state
[  637.695095][T13380] bridge0: port 2(bridge_slave_1) entered forwarding state
[  637.702631][T13380] bridge0: port 1(bridge_slave_0) entered blocking state
[  637.709884][T13380] bridge0: port 1(bridge_slave_0) entered forwarding state
[  637.752859][T13380] 8021q: adding VLAN 0 to HW filter on device .`
[  637.779307][T13380] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  640.818639][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[  640.825175][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[  641.181259][T13439] netlink: 35284 bytes leftover after parsing attributes in process `syz.1.2535'.
[  641.227853][T13439] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2535'.
[  641.894739][T13472] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2542'.
[  643.617160][    C0] hrtimer: interrupt took 101785 ns
[  644.530009][T13520] lo speed is unknown, defaulting to 1000
[  645.812409][T13543] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2568'.
[  645.848659][T13543] netlink: 'syz.3.2568': attribute type 5 has an invalid length.
[  645.873238][T13543] netlink: 48 bytes leftover after parsing attributes in process `syz.3.2568'.
[  645.903408][T13543] netdevsim netdevsim3 netdevsim0: set [1, 1] type 2 family 0 port 52033 - 0
[  645.963223][T13543] netdevsim netdevsim3 netdevsim1: set [1, 1] type 2 family 0 port 52033 - 0
[  646.011211][T13543] netdevsim netdevsim3 netdevsim2: set [1, 1] type 2 family 0 port 52033 - 0
[  646.043147][T13543] netdevsim netdevsim3 netdevsim3: set [1, 1] type 2 family 0 port 52033 - 0
[  646.075263][T13543] geneve2: entered promiscuous mode
[  646.080567][T13543] geneve2: entered allmulticast mode
[  647.507836][T13569] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2578'.
[  652.226752][T13660] lo speed is unknown, defaulting to 1000
[  652.415077][T13665] bridge0: port 3(bond0) entered blocking state
[  652.422609][T13665] bridge0: port 3(bond0) entered forwarding state
[  652.442997][T13665] 8021q: adding VLAN 0 to HW filter on device bond0
[  652.469151][T13665] 8021q: adding VLAN 0 to HW filter on device team0
[  652.512643][T13665] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  653.534876][T13683] tipc: Started in network mode
[  653.540121][T13683] tipc: Node identity ac1414aa, cluster identity 4711
[  653.559772][T13683] tipc: Enabled bearer <udp:s>, priority 10
[  655.231503][ T5828] tipc: Node number set to 2886997162
[  655.860452][T13725] sock: sock_timestamping_bind_phc: sock not bind to device
[  656.031164][T13729] netlink: 'syz.0.2634': attribute type 4 has an invalid length.
[  656.318533][T13742] overlayfs: failed to clone upperpath
[  658.631639][T13772] tipc: Started in network mode
[  658.637314][T13772] tipc: Node identity ac1414aa, cluster identity 4711
[  658.676811][T13772] tipc: Enabled bearer <udp:s>, priority 10
[  659.194651][T13791] netlink: 'syz.1.2657': attribute type 39 has an invalid length.
[  659.430418][T13798] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2654'.
[  660.373066][ T5985] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  660.522847][    T8] tipc: Node number set to 2886997162
[  661.821945][T13846] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2674'.
[  662.533872][T13852] bridge2: entered promiscuous mode
[  663.157772][T13870] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2689'.
[  664.223010][T13887] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2695'.
[  664.885881][T13902] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2701'.
[  665.721578][T13915] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2704'.
[  670.660235][T14053] gretap0: entered promiscuous mode
[  670.694755][T14053] vlan2: entered promiscuous mode
[  671.445796][T14076] gretap2: entered promiscuous mode
[  672.539047][T14105] gretap2: entered promiscuous mode
[  674.298409][T14152] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2765'.
[  674.340221][T14152] netlink: 'syz.1.2765': attribute type 15 has an invalid length.
[  674.349361][T14152] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2765'.
[  675.617931][T14176] vlan2: entered promiscuous mode
[  676.265422][T14181] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2776'.
[  676.433681][T14185] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2784'.
[  676.926743][T14190] af_packet: tpacket_rcv: packet too big, clamped from 1500 to 4294967272. macoff=96
[  677.864274][T14209] overlayfs: failed to clone lowerpath
[  678.106933][T14213] gretap0: entered promiscuous mode
[  678.139973][T14213] vlan2: entered promiscuous mode
[  678.239912][T14217] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2783'.
[  679.178865][T14219] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2788'.
[  679.780573][T14229] overlayfs: failed to clone upperpath
[  681.223689][T14245] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2798'.
[  682.048179][T14257] overlayfs: failed to clone upperpath
[  682.180364][T14259] fuse: Bad value for 'fd'
[  683.302951][T14282] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2808'.
[  685.317022][T14309] xt_CT: You must specify a L4 protocol and not use inversions on it
[  688.436474][T14359] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2837'.
[  688.712866][T14360] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2838'.
[  689.945248][T14376] netlink: 'syz.3.2841': attribute type 1 has an invalid length.
[  690.010907][T14376] 8021q: adding VLAN 0 to HW filter on device bond0
[  690.211192][T14378] bond0: (slave ip6erspan0): making interface the new active one
[  690.249984][T14378] bond0: (slave ip6erspan0): Enslaving as an active interface with an up link
[  690.706589][T14395] bridge0: port 3(geneve1) entered disabled state
[  690.713325][T14395] bridge0: port 2(bridge_slave_1) entered disabled state
[  690.720594][T14395] bridge0: port 1(bridge_slave_0) entered disabled state
[  691.263280][T14400] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2849'.
[  691.435336][T14408] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2853'.
[  692.319009][T14425] overlayfs: failed to clone upperpath
[  693.110450][T14449] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2865'.
[  693.890743][T13968] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  694.225055][T14456] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2872'.
[  694.373885][T14462] overlayfs: failed to clone upperpath
[  702.079858][T14563] overlayfs: failed to resolve './file0': -2
[  702.410804][T14590] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2927'.
[  703.591477][T14604] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2931'.
[  705.406621][T14640] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2939'.
[  705.829396][T14641] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2941'.
[  706.205064][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[  706.212474][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[  707.375974][T14674] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2952'.
[  707.768178][T14675] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2953'.
[  709.416140][T14706] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2965'.
[  709.558703][T14711] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2966'.
[  712.475247][T14763] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2981'.
[  714.256034][T14800] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2990'.
[  714.912659][T14802] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2995'.
[  715.308664][T14808] overlayfs: failed to clone upperpath
[  715.443238][T14811] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2998'.
[  715.458126][T14811] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  715.467325][T14811] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  715.476144][T14811] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  715.485049][T14811] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  715.960823][T14811] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2998'.
[  716.185726][T14822] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  716.952465][T14837] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3007'.
[  717.285592][T14841] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3006'.
[  717.797952][T14855] overlayfs: failed to clone upperpath
[  719.385001][T14898] overlayfs: failed to clone upperpath
[  720.474777][T14928] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3033'.
[  720.840237][T14930] overlayfs: failed to clone upperpath
[  721.597495][T14942] batadv_slave_1: entered promiscuous mode
[  721.608444][T14942] syz_tun: entered promiscuous mode
[  721.615079][T14941] syz_tun: left promiscuous mode
[  721.621792][T14941] batadv_slave_1: left promiscuous mode
[  722.884525][T14971] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3054'.
[  725.703057][T15021] vcan0: tx drop: invalid sa for name 0x0000000000000001
[  726.003796][T15030] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3070'.
[  726.687511][T15033] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3077'.
[  727.668019][T15059] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  727.985245][T15071] netlink: 'syz.2.3091': attribute type 1 has an invalid length.
[  728.085768][T13978] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  728.142269][T15071] 8021q: adding VLAN 0 to HW filter on device bond2
[  728.216774][T15075] bond2: (slave syz_tun): Enslaving as a backup interface with an up link
[  729.219989][T15102] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  729.407156][T15114] overlayfs: failed to clone upperpath
[  729.628740][T15120] lo speed is unknown, defaulting to 1000
[  730.433312][   T28] audit: type=1326 audit(1777578405.553:270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15117 comm="syz.3.3109" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd00bf9cdd9 code=0x0
[  732.114259][T15182] netlink: 'syz.1.3127': attribute type 1 has an invalid length.
[  732.124501][T15180] fuse: Bad value for 'fd'
[  732.203585][T15182] 8021q: adding VLAN 0 to HW filter on device bond1
[  732.236080][T15186] bond1: (slave syz_tun): Enslaving as a backup interface with an up link
[  732.367866][T15190] overlayfs: failed to clone lowerpath
[  732.375282][T15190] overlayfs: failed to clone lowerpath
[  734.644703][T15249] overlayfs: failed to clone upperpath
[  735.468260][T15284] fuse: Bad value for 'fd'
[  735.923683][T15305] fuse: Bad value for 'fd'
[  736.366832][T15320] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3182'.
[  737.501640][T15368] fuse: Bad value for 'fd'
[  737.816586][T15374] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3206'.
[  738.135906][T15374] bridge_slave_0 (unregistering): left allmulticast mode
[  738.143372][T15374] bridge_slave_0 (unregistering): left promiscuous mode
[  738.151632][T15374] bridge0: port 1(bridge_slave_0) entered disabled state
[  739.659173][T15421] overlayfs: failed to clone upperpath
[  739.978311][T15426] fuse: Bad value for 'fd'
[  740.622279][T15449] overlayfs: failed to clone upperpath
[  741.088392][T15460] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3240'.
[  741.849826][T15481] fuse: Bad value for 'fd'
[  743.016526][T15505] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3257'.
[  743.188006][T15505] bridge_slave_0 (unregistering): left allmulticast mode
[  743.206453][T15505] bridge_slave_0 (unregistering): left promiscuous mode
[  743.219753][T15505] bridge0: port 1(bridge_slave_0) entered disabled state
[  743.646651][T15526] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3265'.
[  744.315248][T15532] fuse: Bad value for 'fd'
[  744.409396][T15534] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3270'.
[  744.969607][T15554] overlayfs: failed to clone upperpath
[  747.639217][T15629] overlayfs: failed to clone upperpath
[  747.985044][T15644] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3316'.
[  749.647858][T15689] lo speed is unknown, defaulting to 1000
[  750.292120][T15711] fuse: Bad value for 'fd'
[  750.637632][T15722] overlayfs: failed to clone upperpath
[  750.879054][T15732] netlink: 76 bytes leftover after parsing attributes in process `syz.3.3348'.
[  751.584288][T15754] overlayfs: failed to clone upperpath
[  751.866765][T15767] netlink: 'syz.2.3363': attribute type 10 has an invalid length.
[  751.894548][T15767] 8021q: adding VLAN 0 to HW filter on device team0
[  751.915742][T15767] team0: entered promiscuous mode
[  751.922784][T15767] team_slave_0: entered promiscuous mode
[  751.928996][T15767] team_slave_1: entered promiscuous mode
[  751.942486][T15767] team0: entered allmulticast mode
[  751.947791][T15767] team_slave_0: entered allmulticast mode
[  751.958255][T15767] team_slave_1: entered allmulticast mode
[  751.967389][T15767] bond0: (slave team0): Enslaving as an active interface with an up link
[  753.338007][T15809] overlayfs: failed to resolve './file0': -2
[  757.124382][T15906] batadv_slave_1: entered promiscuous mode
[  757.154165][T15905] batadv_slave_1: left promiscuous mode
[  757.326366][T15912] fuse: Bad value for 'fd'
[  757.602193][T15924] overlayfs: failed to clone upperpath
[  757.866890][T15933] overlayfs: failed to clone upperpath
[  758.083887][T15939] overlayfs: failed to clone upperpath
[  759.599375][T15982] fuse: Bad value for 'fd'
[  760.300103][T15990] bridge0: port 3(bond0) entered disabled state
[  760.387839][T15990] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 20000 - 0
[  760.405692][T15990] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 20000 - 0
[  760.419594][T15990] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 20000 - 0
[  760.432639][T15990] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 20000 - 0
[  760.466143][T15990] netdevsim netdevsim1 netdevsim0: unset [1, 1] type 2 family 0 port 6081 - 0
[  760.477698][T15990] netdevsim netdevsim1 netdevsim1: unset [1, 1] type 2 family 0 port 6081 - 0
[  760.494255][T15990] netdevsim netdevsim1 netdevsim2: unset [1, 1] type 2 family 0 port 6081 - 0
[  760.506721][T15990] netdevsim netdevsim1 netdevsim3: unset [1, 1] type 2 family 0 port 6081 - 0
[  760.536645][T15990] netdevsim netdevsim1 netdevsim0: unset [1, 2] type 2 family 0 port 50420 - 0
[  760.550307][T15990] netdevsim netdevsim1 netdevsim1: unset [1, 2] type 2 family 0 port 50420 - 0
[  760.561508][T15990] netdevsim netdevsim1 netdevsim2: unset [1, 2] type 2 family 0 port 50420 - 0
[  760.573176][T15990] netdevsim netdevsim1 netdevsim3: unset [1, 2] type 2 family 0 port 50420 - 0
[  760.736588][T15996] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3457'.
[  760.752498][T16005] overlayfs: failed to clone upperpath
[  760.979525][T16011] overlayfs: failed to clone upperpath
[  761.179859][T16018] fuse: Bad value for 'fd'
[  761.467658][T16031] fuse: Bad value for 'fd'
[  762.277111][  T144] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  762.965444][ T5777] Bluetooth: hci2: Malformed MSFT vendor event: 0x02
[  763.291063][T16078] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3493'.
[  763.841816][T16058] overlayfs: failed to clone upperpath
[  763.982746][T16097] netlink: 'syz.0.3501': attribute type 39 has an invalid length.
[  765.376929][T16137] overlayfs: failed to clone upperpath
[  765.562494][T16142] overlayfs: failed to clone upperpath
[  765.584193][T16144] overlayfs: failed to clone upperpath
[  766.021742][T16159] overlayfs: failed to clone upperpath
[  766.171465][T16163] overlayfs: failed to clone upperpath
[  766.428881][T16171] overlayfs: failed to clone upperpath
[  767.151486][T16190] overlayfs: failed to clone upperpath
[  767.341301][T16196] overlayfs: failed to clone upperpath
[  767.547145][T16205] fuse: Bad value for 'fd'
[  768.309888][T16226] fuse: Bad value for 'fd'
[  768.815688][T16234] fuse: Bad value for 'fd'
[  769.471757][T16251] overlayfs: failed to clone upperpath
[  769.630883][T16255] netlink: 'syz.3.3567': attribute type 2 has an invalid length.
[  769.640466][T16255] netlink: 'syz.3.3567': attribute type 1 has an invalid length.
[  769.649446][T16255] netlink: 16 bytes leftover after parsing attributes in process `syz.3.3567'.
[  769.810342][T16261] RDS: rds_bind could not find a transport for fe80::1a, load rds_tcp or rds_rdma?
[  769.842312][T16263] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3572'.
[  769.861645][T16263] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3572'.
[  770.315779][T16280] overlayfs: failed to resolve './file0': -2
[  771.868610][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[  771.876092][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[  772.885798][T16330] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3596'.
[  773.468112][T16338] RDS: rds_bind could not find a transport for fe80::1a, load rds_tcp or rds_rdma?
[  774.691876][T16348] overlayfs: failed to resolve './file0': -2
[  775.556452][T16376] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3625'.
[  776.469137][T16378] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3619'.
[  776.509307][T16378] netlink: 'syz.0.3619': attribute type 11 has an invalid length.
[  776.517717][T16378] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3619'.
[  776.573397][T16378] netlink: 'syz.0.3619': attribute type 11 has an invalid length.
[  778.358424][T16408] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  778.428944][T16408] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  783.955674][T16508] overlayfs: failed to clone upperpath
[  785.430352][T16546] overlayfs: failed to clone upperpath
[  786.303890][T16568] overlayfs: failed to clone upperpath
[  786.701506][T16577] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3696'.
[  787.635770][T16609] overlayfs: failed to clone upperpath
[  789.688525][T16651] overlayfs: failed to resolve './cgroup': -2
[  790.159497][T16659] overlayfs: failed to clone upperpath
[  790.445591][   T28] audit: type=1326 audit(1777578461.719:271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16668 comm="syz.0.3738" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f8a66d9cdd9 code=0x0
[  791.576646][T16703] syz_tun: entered allmulticast mode
[  791.590582][T16702] syz_tun: left allmulticast mode
[  794.068063][T16750] overlayfs: failed to clone lowerpath
[  794.086763][T16750] overlayfs: failed to clone upperpath
[  795.563230][T16790] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3784'.
[  796.615581][T13978] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  799.092077][   T28] audit: type=1326 audit(1777578469.795:272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16886 comm="syz.1.3825" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff24799cdd9 code=0x0
[  801.156907][T16905] geneve0: left allmulticast mode
[  801.182458][T16905] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  801.192357][T16905] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  801.203147][T16905] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  801.212825][T16905] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  801.241825][T16905] netdevsim netdevsim3 netdevsim0: left allmulticast mode
[  801.341853][T16905] gretap1: left promiscuous mode
[  801.373177][T16905] sit1: left allmulticast mode
[  801.384771][T16905] bridge1: left promiscuous mode
[  801.395974][T16905] bridge1: left allmulticast mode
[  801.409451][T16905] netdevsim netdevsim3 netdevsim0: unset [1, 1] type 2 family 0 port 52033 - 0
[  801.420714][T16905] netdevsim netdevsim3 netdevsim1: unset [1, 1] type 2 family 0 port 52033 - 0
[  801.430923][T16905] netdevsim netdevsim3 netdevsim2: unset [1, 1] type 2 family 0 port 52033 - 0
[  801.440547][T16905] netdevsim netdevsim3 netdevsim3: unset [1, 1] type 2 family 0 port 52033 - 0
[  801.451364][T16905] geneve2: left promiscuous mode
[  801.456946][T16905] geneve2: left allmulticast mode
[  801.464979][T16905] bridge2: left promiscuous mode
[  802.077715][T16940] syz_tun: entered allmulticast mode
[  802.109390][T16940] syz_tun: left allmulticast mode
[  803.918235][T16969] bond1: (slave syz_tun): speed changed to 0 on port 1
[  803.949031][T16969] bridge0: port 3(bond0) entered blocking state
[  803.955513][T16969] bridge0: port 3(bond0) entered forwarding state
[  803.969610][T16969] 8021q: adding VLAN 0 to HW filter on device bond0
[  803.980204][T16969] 8021q: adding VLAN 0 to HW filter on device team0
[  803.996718][T16969] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  804.492487][T16986] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3862'.
[  804.658664][T16992] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3865'.
[  804.780144][T16992] bond0: (slave macvlan1): Enslaving as an active interface with an up link
[  804.831699][T16992] bond0 (unregistering): (slave macvlan1): Releasing backup interface
[  804.849404][T16992] bond0 (unregistering): Released all slaves
[  805.590006][T17020] syz_tun: entered allmulticast mode
[  805.602657][T17020] syz_tun: left allmulticast mode
[  807.604009][T17061] netlink: 'syz.0.3893': attribute type 1 has an invalid length.
[  808.685667][T17083] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3901'.
[  809.050579][T17092] netlink: 'syz.2.3904': attribute type 1 has an invalid length.
[  809.243557][T17097] overlayfs: failed to clone upperpath
[  809.249548][T17099] overlayfs: failed to clone upperpath
[  809.282388][T17101] overlayfs: failed to clone upperpath
[  809.717251][T17111] batadv_slave_0: entered promiscuous mode
[  811.523974][T17146] bridge_slave_1: left allmulticast mode
[  811.551472][T17146] bridge_slave_1: left promiscuous mode
[  811.571593][T17146] bridge0: port 2(bridge_slave_1) entered disabled state
[  811.635082][T17146] .`: (slave bond_slave_0): Releasing backup interface
[  811.707888][T17146] .`: (slave bond_slave_1): Releasing backup interface
[  811.847431][T17146] team0: Port device team_slave_0 removed
[  811.895726][T17146] team0: Port device team_slave_1 removed
[  811.926225][T17146] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  811.956411][T17146] batman_adv: batadv0: Removing interface: batadv_slave_0
[  811.967930][T17146] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  811.977630][T17146] batman_adv: batadv0: Removing interface: batadv_slave_1
[  812.015310][T17146] geneve1: left allmulticast mode
[  812.047797][T17146] geneve1: left promiscuous mode
[  812.062235][T17146] bridge0: port 3(geneve1) entered disabled state
[  812.097775][T17146] batman_adv: batadv0: Interface deactivated: macvtap1
[  812.115312][T17146] batman_adv: batadv0: Removing interface: macvtap1
[  812.912866][   T28] audit: type=1326 audit(1777578482.738:273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17164 comm="syz.2.3937" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe64a99cdd9 code=0x7ffc0000
[  812.971910][   T28] audit: type=1326 audit(1777578482.738:274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17164 comm="syz.2.3937" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe64a99cdd9 code=0x7ffc0000
[  813.060941][   T28] audit: type=1326 audit(1777578482.738:275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17164 comm="syz.2.3937" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fe64a99cdd9 code=0x7ffc0000
[  813.136143][   T28] audit: type=1326 audit(1777578482.738:276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17164 comm="syz.2.3937" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe64a99cdd9 code=0x7ffc0000
[  813.187978][   T28] audit: type=1326 audit(1777578482.738:277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17164 comm="syz.2.3937" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe64a99cdd9 code=0x7ffc0000
[  813.256635][   T28] audit: type=1326 audit(1777578482.738:278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17164 comm="syz.2.3937" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7fe64a99cdd9 code=0x7ffc0000
[  813.261218][T17176] bridge0: port 1(syz_tun) entered blocking state
[  813.310077][   T28] audit: type=1326 audit(1777578482.738:279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17164 comm="syz.2.3937" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe64a99cdd9 code=0x7ffc0000
[  813.339759][T17176] bridge0: port 1(syz_tun) entered disabled state
[  813.372025][   T28] audit: type=1326 audit(1777578482.747:280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17164 comm="syz.2.3937" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7fe64a99cdd9 code=0x7ffc0000
[  813.398025][T17176] syz_tun: entered allmulticast mode
[  813.407440][T17176] syz_tun: entered promiscuous mode
[  813.434607][   T28] audit: type=1326 audit(1777578482.747:281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17164 comm="syz.2.3937" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe64a99cdd9 code=0x7ffc0000
[  813.508726][   T28] audit: type=1326 audit(1777578482.747:282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17164 comm="syz.2.3937" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fe64a99cdd9 code=0x7ffc0000
[  813.864099][T17195] 9pnet_fd: Insufficient options for proto=fd
[  814.065354][T17203] overlayfs: failed to clone upperpath
[  815.091796][T17239] overlayfs: failed to clone upperpath
[  815.273947][T17241] overlayfs: failed to clone upperpath
[  816.325182][    T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!!
[  816.389296][    T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!!
[  816.453416][    T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!!
[  817.088453][T17262] overlayfs: failed to clone upperpath
[  817.922449][T17274] overlayfs: failed to clone upperpath
[  821.243041][T17344] overlayfs: failed to clone upperpath
[  821.730800][T17354] syz_tun (unregistering): left allmulticast mode
[  822.010561][T17354] syz_tun (unregistering): left promiscuous mode
[  822.109597][T17354] bridge0: port 1(syz_tun) entered disabled state
[  822.784867][T17372] overlayfs: failed to clone upperpath
[  825.459055][T17446] overlayfs: failed to clone upperpath
[  825.856348][T17461] overlayfs: failed to clone upperpath
[  827.026446][T17508] netlink: 'syz.1.4071': attribute type 1 has an invalid length.
[  827.124808][T17508] 8021q: adding VLAN 0 to HW filter on device bond2
[  827.256938][T17512] vlan0: entered allmulticast mode
[  827.308616][T17512] bond2: entered allmulticast mode
[  827.348805][T17508] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  827.362156][T17508] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  827.407576][T17508] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  827.418251][T17508] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  827.451310][T17508] bond2: (slave geneve6): making interface the new active one
[  827.459926][T17508] geneve6: entered allmulticast mode
[  827.466629][T17522] overlayfs: failed to clone upperpath
[  827.479288][T17508] bond2: (slave geneve6): Enslaving as an active interface with an up link
[  827.491464][T17522] overlayfs: failed to clone upperpath
[  827.627497][T17526] overlayfs: failed to resolve './cgroup': -2
[  828.422828][T17552] bond0: Device is already in use.
[  829.411515][T17585] netlink: 'syz.2.4104': attribute type 1 has an invalid length.
[  829.517599][T17585] macvlan2: entered promiscuous mode
[  829.523618][T17585] macvlan2: entered allmulticast mode
[  829.534999][T17585] bond3: entered promiscuous mode
[  829.559484][T17585] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  829.615103][T17585] bond3: left promiscuous mode
[  830.837758][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  830.848501][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  830.858334][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  830.868239][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  830.877852][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  830.887883][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  830.897770][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  830.907669][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  830.917842][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  830.927913][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  832.328385][T17647] lo speed is unknown, defaulting to 1000
[  832.924537][T17663] netlink: 'syz.2.4134': attribute type 1 has an invalid length.
[  833.032256][T17663] bond4: entered promiscuous mode
[  833.037724][T17663] 8021q: adding VLAN 0 to HW filter on device bond4
[  833.098733][T17666] bond4: (slave ipvlan3): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond.
[  833.124754][T17666] bond4: (slave ipvlan3): The slave device specified does not support setting the MAC address
[  833.150715][T17666] bond4: (slave ipvlan3): Setting fail_over_mac to active for active-backup mode
[  833.564399][T17678] overlayfs: failed to clone upperpath
[  834.367865][T17699] overlayfs: failed to clone upperpath
[  835.908178][T17723] xt_hashlimit: size too large, truncated to 1048576
[  837.513248][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[  837.520361][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[  837.847264][    C1] net_ratelimit: 6 callbacks suppressed
[  837.847285][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  837.861408][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  837.869866][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  837.878286][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  837.886765][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  837.895254][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  839.034071][T17757] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4171'.
[  839.622521][T17771] netlink: 'syz.2.4178': attribute type 4 has an invalid length.
[  839.707405][T17772] netlink: 'syz.2.4178': attribute type 4 has an invalid length.
[  841.639957][T17822] team_slave_0 (unregistering): left promiscuous mode
[  841.652898][T17822] team_slave_0 (unregistering): left allmulticast mode
[  841.675195][T17822] team0: Port device team_slave_0 removed
[  841.779842][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  841.788273][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  841.796786][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  841.805197][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  842.622310][T17865] netlink: 'syz.2.4208': attribute type 1 has an invalid length.
[  842.693995][T17865] 8021q: adding VLAN 0 to HW filter on device bond5
[  842.822104][T17869] bond5: (slave geneve2): making interface the new active one
[  842.854784][T17869] bond5: (slave geneve2): Enslaving as an active interface with an up link
[  844.909777][T17931] overlayfs: failed to clone upperpath
[  845.370458][    C1] net_ratelimit: 3 callbacks suppressed
[  845.370475][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  845.386699][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  845.395085][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  845.403462][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  845.411800][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  845.420162][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  846.155513][T17943] overlayfs: failed to clone upperpath
[  849.730044][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  849.738491][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  849.746888][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  849.755269][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  854.260959][    C1] net_ratelimit: 2 callbacks suppressed
[  854.260977][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  854.275120][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  854.283546][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  854.292005][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  854.300446][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  854.308889][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  857.936977][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  857.945605][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  857.954174][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  857.962739][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  858.466221][T18105] netlink: 'syz.3.4282': attribute type 1 has an invalid length.
[  858.523391][T18105] 8021q: adding VLAN 0 to HW filter on device bond1
[  858.715951][T18105] vlan2: entered allmulticast mode
[  858.740359][T18105] bond1: entered allmulticast mode
[  858.813529][T18105] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  858.822713][T18105] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  858.833561][T18105] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  858.845973][T18105] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  858.859400][T18105] bond1: (slave geneve3): making interface the new active one
[  858.868142][T18105] geneve3: entered allmulticast mode
[  858.875322][T18105] bond1: (slave geneve3): Enslaving as an active interface with an up link
[  859.331531][ T5777] Bluetooth: hci3: ISO packet for unknown connection handle 0
[  860.105955][    T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!!
[  861.527753][    C0] net_ratelimit: 2 callbacks suppressed
[  861.527787][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  861.543938][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  861.553692][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  861.563714][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  861.573561][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  861.583280][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  861.593135][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  862.758021][T18175] netlink: 'syz.2.4307': attribute type 1 has an invalid length.
[  862.858729][T18175] 8021q: adding VLAN 0 to HW filter on device bond6
[  862.902816][T18177] vlan2: entered allmulticast mode
[  862.959834][T18177] bond6: entered allmulticast mode
[  863.126935][T18175] bond6: (slave geneve3): making interface the new active one
[  863.161944][T18175] geneve3: entered allmulticast mode
[  863.210939][T18175] bond6: (slave geneve3): Enslaving as an active interface with an up link
[  863.997651][T18186] overlayfs: failed to clone upperpath
[  865.289162][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  865.299018][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  865.309208][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  865.346310][T18212] netlink: 32 bytes leftover after parsing attributes in process `syz.3.4320'.
[  865.361043][T18212] netlink: 32 bytes leftover after parsing attributes in process `syz.3.4320'.
[  865.433410][T18214] overlayfs: failed to clone upperpath
[  867.938834][    T0] NOHZ tick-stop error: local softirq work is pending, handler #82!!!
[  868.002948][    T0] NOHZ tick-stop error: local softirq work is pending, handler #06!!!
[  868.067065][    T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!!
[  868.131181][    T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!!
[  868.675221][T18248] tipc: Failed to remove unknown binding: 66,1,1/9349802:2510336817/2510336819
[  868.714006][T18248] tipc: Failed to remove unknown binding: 66,1,1/9349802:2510336817/2510336819
[  868.725284][T18248] tipc: Failed to remove unknown binding: 66,1,1/9349802:2510336817/2510336819
[  868.965457][    C0] net_ratelimit: 3 callbacks suppressed
[  868.965489][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  868.981821][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  868.992136][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  869.001911][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  869.522756][T18264] netlink: 'syz.0.4342': attribute type 1 has an invalid length.
[  869.584420][T18264] 8021q: adding VLAN 0 to HW filter on device bond0
[  869.737734][T18264] vlan3: entered allmulticast mode
[  869.744494][T18264] bond0: entered allmulticast mode
[  869.881504][T18264] bond0: (slave geneve2): making interface the new active one
[  869.916321][T18264] geneve2: entered allmulticast mode
[  869.953291][T18264] bond0: (slave geneve2): Enslaving as an active interface with an up link
[  870.285290][T18282] tipc: Failed to remove unknown binding: 66,1,1/2886997162:316563932/316563934
[  870.366356][T18282] tipc: Failed to remove unknown binding: 66,1,1/2886997162:316563932/316563934
[  870.418352][T18282] tipc: Failed to remove unknown binding: 66,1,1/2886997162:316563932/316563934
[  871.491109][T18307] netlink: 'syz.3.4357': attribute type 1 has an invalid length.
[  871.566923][T18307] 8021q: adding VLAN 0 to HW filter on device bond2
[  871.696975][T18307] vlan3: entered allmulticast mode
[  871.716645][T18307] bond2: entered allmulticast mode
[  871.773844][T18307] bond2: (slave geneve4): making interface the new active one
[  871.786719][T18307] geneve4: entered allmulticast mode
[  871.796427][T18307] bond2: (slave geneve4): Enslaving as an active interface with an up link
[  871.822554][T18315] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  872.007648][T18320] tipc: Failed to remove unknown binding: 66,1,1/2886997162:3346463851/3346463853
[  872.021374][T18320] tipc: Failed to remove unknown binding: 66,1,1/2886997162:3346463851/3346463853
[  872.042564][T18320] tipc: Failed to remove unknown binding: 66,1,1/2886997162:3346463851/3346463853
[  872.384589][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  872.393127][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  872.402120][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  872.410595][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  872.419075][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  872.427622][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  872.714826][T18335] netlink: 'syz.0.4364': attribute type 1 has an invalid length.
[  873.015499][T18335] macvlan3: entered promiscuous mode
[  873.034573][T18335] macvlan3: entered allmulticast mode
[  873.052788][T18335] bond1: entered promiscuous mode
[  873.080145][T18335] 8021q: adding VLAN 0 to HW filter on device macvlan3
[  873.108439][T18335] bond1: left promiscuous mode
[  873.926329][T18361] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  875.347672][T18375] lo speed is unknown, defaulting to 1000
[  875.822939][T18388] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  876.091029][T18388] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  876.331470][T18388] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  876.463783][T18388] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  876.783578][T18388] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  876.827976][T18388] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  876.882776][T18388] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  876.987393][T18388] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  877.614993][T18405] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4397'.
[  878.146809][T18405] bond0 (unregistering): (slave geneve2): Releasing active interface
[  878.160035][T18405] geneve2: left allmulticast mode
[  878.169961][T18405] bond0 (unregistering): Released all slaves
[  878.722174][T18417] lo speed is unknown, defaulting to 1000
[  884.179201][T18464] netlink: 'syz.0.4408': attribute type 1 has an invalid length.
[  884.278658][T18464] bond0: entered promiscuous mode
[  884.284039][T18464] 8021q: adding VLAN 0 to HW filter on device bond0
[  884.348953][T18464] bond0: (slave ipvlan2): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond.
[  884.362086][T18464] bond0: (slave ipvlan2): The slave device specified does not support setting the MAC address
[  884.385401][T18464] bond0: (slave ipvlan2): Setting fail_over_mac to active for active-backup mode
[  884.949179][   T28] kauditd_printk_skb: 11 callbacks suppressed
[  884.949215][   T28] audit: type=1326 audit(1777578550.143:294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18485 comm="syz.0.4416" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a66d9cdd9 code=0x7fc00000
[  885.075574][   T28] audit: type=1326 audit(1777578550.199:295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18485 comm="syz.0.4416" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f8a66d9cdd9 code=0x7fc00000
[  885.976753][T18493] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4417'.
[  885.993130][T18493] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4417'.
[  886.003261][T18493] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4417'.
[  886.013260][T18493] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4417'.
[  886.022901][T18493] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4417'.
[  888.319568][T18565] netlink: 'syz.0.4454': attribute type 4 has an invalid length.
[  888.382151][T16909] lo speed is unknown, defaulting to 1000
[  888.405737][T18565] netlink: 'syz.0.4454': attribute type 4 has an invalid length.
[  888.428939][   T23] lo speed is unknown, defaulting to 1000
[  889.562803][T18594] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4457'.
[  889.776808][T18599] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4459'.
[  890.120184][T18599] bond0 (unregistering): (slave ip6erspan0): Releasing active interface
[  890.150900][T18599] bond0 (unregistering): Released all slaves
[  890.190292][T18605] netlink: 'syz.1.4460': attribute type 4 has an invalid length.
[  890.206460][T18610] netlink: 'syz.1.4460': attribute type 4 has an invalid length.
[  890.857967][T18638] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  891.788131][T18640] lo speed is unknown, defaulting to 1000
[  893.519682][T18674] netlink: 'syz.0.4483': attribute type 4 has an invalid length.
[  893.576324][ T5809] lo speed is unknown, defaulting to 1000
[  893.629077][T18679] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4485'.
[  897.202630][T18767] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4509'.
[  897.269231][T18767] 8021q: adding VLAN 0 to HW filter on device bond0
[  897.301287][T18769] bond0: entered promiscuous mode
[  897.306621][T18769] bond0: entered allmulticast mode
[  897.320374][T18769] 8021q: adding VLAN 0 to HW filter on device bond0
[  897.328967][T18769] team0: Port device bond0 added
[  897.352720][T18767] bond0: left allmulticast mode
[  897.385021][T18767] team0: Port device bond0 removed
[  897.929680][   T28] audit: type=1107 audit(53489153.222:296): pid=18773 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg=''
[  901.415465][T18847] netlink: 'syz.2.4533': attribute type 4 has an invalid length.
[  901.447826][T18847] netlink: 'syz.2.4533': attribute type 4 has an invalid length.
[  901.475087][T18847] netlink: 'syz.2.4533': attribute type 4 has an invalid length.
[  901.686466][T18858] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  901.727057][T18858] batman_adv: batadv0: Removing interface: batadv_slave_0
[  901.764451][T18858] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  901.801646][T18858] batman_adv: batadv0: Removing interface: batadv_slave_1
[  902.241673][T18869] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  903.166474][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[  903.173312][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[  905.033735][T18898] batman_adv: batadv0: Removing interface: batadv_slave_0
[  905.065809][T18898] batman_adv: batadv0: Removing interface: batadv_slave_1
[  905.726482][T18922] netlink: 'syz.3.4548': attribute type 4 has an invalid length.
[  905.786091][T18922] netlink: 'syz.3.4548': attribute type 4 has an invalid length.
[  906.805182][T18948] 9pnet_fd: p9_fd_create_tcp (18948): problem connecting socket to 127.0.0.1
[  907.795362][T18959] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4565'.
[  908.150623][   T28] audit: type=1107 audit(53489162.852:297): pid=18960 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg=''
[  908.952859][T18984] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4573'.
[  909.042836][T18984] 8021q: adding VLAN 0 to HW filter on device bond2
[  909.126765][T18990] bond2: entered promiscuous mode
[  909.145488][T18990] bond2: entered allmulticast mode
[  909.293601][T18990] 8021q: adding VLAN 0 to HW filter on device bond2
[  909.306418][T18990] team0: Port device bond2 added
[  910.252808][T18984] 8021q: adding VLAN 0 to HW filter on device bond0
[  910.290329][T18984] bond0: entered allmulticast mode
[  910.323072][T18984] bond2: (slave bond0): Enslaving as an active interface with an up link
[  911.412654][   T28] audit: type=1107 audit(53489165.912:298): pid=19011 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg=''
[  913.631148][T19040] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4590'.
[  913.696028][T19040] 8021q: adding VLAN 0 to HW filter on device bond3
[  913.719716][T19037] tipc: Enabled bearer <ib:wg1>, priority 0
[  913.739951][T19044] bond3: entered promiscuous mode
[  913.747969][T19044] bond3: entered allmulticast mode
[  913.793058][T19044] 8021q: adding VLAN 0 to HW filter on device bond3
[  913.816822][T19044] team0: Port device bond3 added
[  914.012282][T19040] vxcan3: entered promiscuous mode
[  914.025054][T19040] bond3: (slave vxcan3): refused to change device type
[  916.484449][T19091] netlink: 24 bytes leftover after parsing attributes in process `syz.3.4606'.
[  916.756566][T19091] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4606'.
[  917.923721][T19118] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4615'.
[  917.991113][T19118] 8021q: adding VLAN 0 to HW filter on device bond4
[  918.049958][T19123] team0: Device bridge0 is already an upper device of the team interface
[  918.593101][T19118] bond4: entered promiscuous mode
[  918.598244][T19118] bond4: entered allmulticast mode
[  918.607844][T19118] 8021q: adding VLAN 0 to HW filter on device bond4
[  918.616419][T19118] team0: Port device bond4 added
[  918.648688][T19123] bridge3: left promiscuous mode
[  918.653755][T19123] ip6gre1: left promiscuous mode
[  918.659759][T19123] bridge4: left promiscuous mode
[  918.664805][T19123] bridge5: left promiscuous mode
[  918.672688][T19123] bond4: left promiscuous mode
[  918.691777][T19120] bridge0: port 3(bond0) entered disabled state
[  918.723426][T19120] bond0: left allmulticast mode
[  918.739398][T19120] bond_slave_0: left allmulticast mode
[  918.762771][T19120] bond_slave_1: left allmulticast mode
[  918.805368][T19120] bridge0: port 3(bond0) entered disabled state
[  918.856860][T19120] 8021q: adding VLAN 0 to HW filter on device bond0
[  918.871204][T19120] bond0: entered allmulticast mode
[  918.876601][T19120] bond_slave_0: entered allmulticast mode
[  918.885819][T19120] bond_slave_1: entered allmulticast mode
[  918.893695][T19120] bond4: (slave bond0): Enslaving as an active interface with an up link
[  925.638478][T19208] netlink: 24 bytes leftover after parsing attributes in process `syz.0.4642'.
[  925.745898][T19208] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4642'.
[  932.428742][T19277] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  937.589733][T19309] team0: Port device bridge0 added
[  937.843842][T19314] xt_TCPMSS: Only works on TCP SYN packets
[  942.143288][T19356] overlayfs: failed to resolve './file0': -2
[  942.239525][T19359] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  942.271431][T19362] overlayfs: failed to clone upperpath
[  947.597063][   T28] audit: type=1326 audit(53489199.778:299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19427 comm="syz.3.4710" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd00bf9cdd9 code=0x7ffc0000
[  947.669031][   T28] audit: type=1326 audit(53489199.778:300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19427 comm="syz.3.4710" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd00bf9cdd9 code=0x7ffc0000
[  947.707424][   T28] audit: type=1326 audit(53489199.778:301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19427 comm="syz.3.4710" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd00bf9cdd9 code=0x7ffc0000
[  947.915922][   T28] audit: type=1326 audit(53489199.778:302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19427 comm="syz.3.4710" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fd00bf9cdd9 code=0x7ffc0000
[  948.109625][   T28] audit: type=1326 audit(53489199.778:303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19427 comm="syz.3.4710" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd00bf9cdd9 code=0x7ffc0000
[  948.244053][   T28] audit: type=1326 audit(53489199.778:304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19427 comm="syz.3.4710" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd00bf9cdd9 code=0x7ffc0000
[  948.275115][   T28] audit: type=1326 audit(53489199.788:305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19427 comm="syz.3.4710" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd00bf9cdd9 code=0x7ffc0000
[  948.340866][   T28] audit: type=1326 audit(53489199.788:306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19427 comm="syz.3.4710" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd00bf9cdd9 code=0x7ffc0000
[  948.422844][   T28] audit: type=1326 audit(53489199.788:307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19427 comm="syz.3.4710" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd00bf9cdd9 code=0x7ffc0000
[  949.275684][   T28] audit: type=1326 audit(53489199.788:308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19427 comm="syz.3.4710" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fd00bf9cdd9 code=0x7ffc0000
[  949.310320][T19436] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  949.907495][T19461] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4715'.
[  951.972530][T19495] team0: Port device bridge0 added
[  952.313145][T19498] team0: Failed to send port change of device bridge0 via netlink (err -105)
[  952.336783][T19498] bond0: left promiscuous mode
[  955.241895][T19503] xt_TCPMSS: Only works on TCP SYN packets
[  959.813345][   T28] kauditd_printk_skb: 67 callbacks suppressed
[  959.813359][   T28] audit: type=1326 audit(53489211.204:376): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19513 comm="syz.0.4731" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f8a66d9cdd9 code=0x0
[  959.930376][T19517] syz_tun: entered allmulticast mode
[  959.939884][T19517] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4732'.
[  959.979876][T19517] syz_tun (unregistering): left allmulticast mode
[  959.987909][T19517] bond1: (slave syz_tun): Removing an active aggregator
[  959.999727][T19517] bond1: (slave syz_tun): Releasing backup interface
[  961.803390][T19538] team0: Port device bridge0 added
[  961.839238][T19538] batadv_slave_0: left promiscuous mode
[  961.856708][T19538] bridge1: left promiscuous mode
[  961.865126][T19538] bridge3: left promiscuous mode
[  961.873809][T19538] geneve3: left promiscuous mode
[  961.878967][T19538] geneve4: left promiscuous mode
[  961.886954][T19538] geneve5: left promiscuous mode
[  961.893776][T19538] gretap2: left promiscuous mode
[  961.900865][T19538] bond3: left promiscuous mode
[  962.547860][T19538] bond4: left promiscuous mode
[  962.577280][T19538] bond0: left promiscuous mode
[  962.602728][T19538] bond_slave_0: left promiscuous mode
[  962.640082][T19538] bond_slave_1: left promiscuous mode
[  962.697977][T19538] team0: Failed to send port change of device bond4 via netlink (err -105)
[  962.937918][T19557] netlink: 'syz.1.4742': attribute type 10 has an invalid length.
[  962.950659][T19557] veth0_vlan: left promiscuous mode
[  962.968244][T19557] veth0_vlan: entered promiscuous mode
[  962.982319][T19557] team0: Device veth0_vlan failed to register rx_handler
[  968.821676][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[  968.828485][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[  987.085808][T19800] bridge8: entered promiscuous mode
[  987.091971][T19800] bridge8: entered allmulticast mode
[  988.437717][T19808] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  992.850534][ T5777] Bluetooth: hci3: unexpected event for opcode 0x0703
[  993.777085][T19859] netlink: 'syz.2.4826': attribute type 3 has an invalid length.
[  996.473642][   T28] audit: type=1326 audit(53489245.520:377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19888 comm="syz.2.4837" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe64a99cdd9 code=0x7ffc0000
[  996.508571][   T28] audit: type=1326 audit(53489245.520:378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19888 comm="syz.2.4837" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe64a99cdd9 code=0x7ffc0000
[  996.533228][   T28] audit: type=1326 audit(53489245.520:379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19888 comm="syz.2.4837" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe64a99cdd9 code=0x7ffc0000
[  996.561110][   T28] audit: type=1326 audit(53489245.520:380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19888 comm="syz.2.4837" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe64a99cdd9 code=0x7ffc0000
[  996.592795][   T28] audit: type=1326 audit(53489245.520:381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19888 comm="syz.2.4837" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=426 compat=0 ip=0x7fe64a99cdd9 code=0x7ffc0000
[  996.618051][   T28] audit: type=1326 audit(53489245.520:382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19888 comm="syz.2.4837" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe64a99cdd9 code=0x7ffc0000
[  996.784262][   T28] audit: type=1326 audit(53489245.595:383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19888 comm="syz.2.4837" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fe64a95d60e code=0x7ffc0000
[  997.892086][   T28] audit: type=1326 audit(53489245.595:384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19888 comm="syz.2.4837" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fe64a95d60e code=0x7ffc0000
[  997.934328][T19905] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4841'.
[  997.948758][   T28] audit: type=1326 audit(53489245.623:385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19888 comm="syz.2.4837" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fe64a95d60e code=0x7ffc0000
[  998.016113][   T28] audit: type=1326 audit(53489245.623:386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19888 comm="syz.2.4837" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fe64a95d60e code=0x7ffc0000
[ 1000.781153][T19938] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4853'.
[ 1000.801891][T19938] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1002.754259][    C1] net_ratelimit: 1 callbacks suppressed
[ 1002.754280][    C1] icmp: detected local route for 172.20.20.14 during ICMP sending, src 172.20.20.170
[ 1003.829581][T19954] ip6t_srh: unknown srh invflags 4000
[ 1004.937869][T19959] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4857'.
[ 1004.948363][T19959] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4857'.
[ 1004.958066][T19959] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4857'.
[ 1004.967767][T19959] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4857'.
[ 1004.977353][T19959] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4857'.
[ 1006.684167][T19991] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[ 1007.630096][T19999] overlayfs: failed to clone lowerpath
[ 1014.713773][ T5777] Bluetooth: Frame is too long (len 12, expected len 4)
[ 1015.168562][T20044] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4880'.
[ 1019.365304][T20081] netlink: 'syz.1.4891': attribute type 3 has an invalid length.
[ 1024.461668][T20113] dvmrp1: entered allmulticast mode
[ 1026.076602][T20116] overlayfs: failed to clone lowerpath
[ 1027.004310][T20130] netlink: 'syz.0.4902': attribute type 3 has an invalid length.
[ 1028.095594][T20141] overlayfs: failed to clone lowerpath
[ 1029.714930][T20148] netlink: 48 bytes leftover after parsing attributes in process `syz.3.4909'.
[ 1034.475516][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[ 1034.540484][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[ 1034.651527][T20194] overlayfs: failed to clone lowerpath
[ 1035.592166][T20203] xt_TPROXY: Can be used only with -p tcp or -p udp
[ 1039.625700][T20254] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4932'.
[ 1039.754611][T20258] dvmrp8: entered allmulticast mode
[ 1040.946174][T20262] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[ 1041.291468][T20280] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4939'.
[ 1047.007190][T20348] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4947'.
[ 1053.711266][T20423] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[ 1053.907509][T20427] sctp: [Deprecated]: syz.0.4969 (pid 20427) Use of int in max_burst socket option.
[ 1053.907509][T20427] Use struct sctp_assoc_value instead
[ 1053.944593][T20432] netlink: 44 bytes leftover after parsing attributes in process `syz.1.4970'.
[ 1056.383121][T20452] netlink: 48 bytes leftover after parsing attributes in process `syz.2.4976'.
[ 1065.056582][T20518] tipc: Failed to remove unknown binding: 66,1,1/2886997162:3361780521/3361780523
[ 1065.066079][T20518] tipc: Failed to remove unknown binding: 66,1,1/2886997162:3361780521/3361780523
[ 1066.217092][T20526] netlink: 64 bytes leftover after parsing attributes in process `syz.2.4993'.
[ 1071.534773][T20546] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4997'.
[ 1077.537504][T20602] netlink: 76 bytes leftover after parsing attributes in process `syz.3.5011'.
[ 1078.166017][T20619] IPVS: Error connecting to the multicast addr
[ 1079.025172][T20624] overlayfs: failed to resolve './file0': -2
[ 1081.330924][ T5777] Bluetooth: hci2: unexpected event for opcode 0x0c7d
[ 1086.976442][T20679] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5029'.
[ 1088.688735][T20693] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5040'.
[ 1089.975141][T20715] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5043'.
[ 1095.092496][T20741] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[ 1097.492566][T20768] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5048'.
[ 1100.143779][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[ 1100.150306][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[ 1104.144425][T20817] tipc: Resetting bearer <ib:wg1>
[ 1104.320418][T20820] x_tables: arp_tables: NFQUEUE target: not valid for this family
[ 1104.336986][T20820] ±ÿþ€: renamed from team_slave_1
[ 1106.572770][T20834] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5060'.
[ 1108.804616][   T23] libceph: connect (1)[c::]:6789 error -22
[ 1108.810587][   T23] libceph: mon0 (1)[c::]:6789 connect error
[ 1109.106027][   T23] libceph: connect (1)[c::]:6789 error -22
[ 1109.129967][   T23] libceph: mon0 (1)[c::]:6789 connect error
[ 1109.644053][T20853] ceph: No mds server is up or the cluster is laggy
[ 1114.020908][T20886] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5075'.
[ 1114.042348][T20886] bond0: option lp_interval: invalid value (0)
[ 1114.048583][T20886] bond0: option lp_interval: allowed values 1 - 2147483647
[ 1114.303044][T20890] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5074'.
[ 1121.315314][T20943] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5088'.
[ 1126.083977][T20993] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5100'.
[ 1128.191760][T16909] libceph: connect (1)[c::]:6789 error -97
[ 1128.198520][T16909] libceph: mon0 (1)[c::]:6789 connect error
[ 1128.312173][T21019] ceph: No mds server is up or the cluster is laggy
[ 1129.363076][    C0] icmp: detected local route for 172.20.0.0 during ICMP sending, src 172.20.255.187
[ 1129.641834][T21035] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5110'.
[ 1129.771666][T21047] x_tables: arp_tables: NFQUEUE target: not valid for this family
[ 1129.824301][T21047] ±ÿþ€: renamed from team_slave_1 (while UP)
[ 1132.388078][ T5777] Bluetooth: hci2: unknown advertising packet type: 0x75
[ 1132.389918][ T5777] Bluetooth: hci2: Malformed LE Event: 0x02
[ 1132.986710][T21060] x_tables: duplicate underflow at hook 1
[ 1134.778233][T21078] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5117'.
[ 1134.790137][T21078] netlink: 12 bytes leftover after parsing attributes in process `syz.2.5117'.
[ 1140.843015][T21108] overlayfs: failed to clone lowerpath
[ 1144.305295][T21134] netlink: 'syz.2.5132': attribute type 1 has an invalid length.
[ 1145.211337][T21134] bond7: (slave bridge10): making interface the new active one
[ 1145.245549][T21134] bond7: (slave bridge10): Enslaving as an active interface with an up link
[ 1145.442019][ T5777] Bluetooth: hci2: unexpected event 0x30 length: 255 > 3
[ 1145.469096][T21134] bond7: (slave gretap1): Enslaving as an active interface with an up link
[ 1146.018360][T21134] macvlan2: entered promiscuous mode
[ 1146.025204][T21134] macvlan2: entered allmulticast mode
[ 1146.058292][T21134] bond7: entered promiscuous mode
[ 1146.064284][T21134] bridge10: entered promiscuous mode
[ 1146.345316][T21157] xt_recent: hitcount (262144) is larger than allowed maximum (255)
[ 1146.355028][T21134] 8021q: adding VLAN 0 to HW filter on device macvlan2
[ 1146.362967][T21134] bond7: (slave macvlan2): the slave hw address is in use by the bond; couldn't find a slave with a free hw address to give it (this should not have happened)
[ 1146.380817][T21157] netlink: 76 bytes leftover after parsing attributes in process `syz.1.5138'.
[ 1146.408246][T21134] bond7: left promiscuous mode
[ 1146.417828][T21134] bridge10: left promiscuous mode
[ 1158.716477][T21263] netlink: 20 bytes leftover after parsing attributes in process `syz.3.5159'.
[ 1159.517771][T21268] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5160'.
[ 1160.951943][T21284] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5164'.
[ 1164.194738][T21294] netlink: 12 bytes leftover after parsing attributes in process `syz.2.5166'.
[ 1164.987736][T21300] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[ 1165.793965][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[ 1165.800548][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[ 1168.688454][T21317] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5172'.
[ 1169.849633][T21332] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5174'.
[ 1170.987252][T21336] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[ 1172.635323][T21354] netlink: 12 bytes leftover after parsing attributes in process `syz.1.5179'.
[ 1177.205915][T21378] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5185'.
[ 1177.228507][T20107] libceph: connect (1)[c::]:6789 error -101
[ 1177.234775][T20107] libceph: mon0 (1)[c::]:6789 connect error
[ 1177.526141][T20107] libceph: connect (1)[c::]:6789 error -101
[ 1177.798291][T20107] libceph: mon0 (1)[c::]:6789 connect error
[ 1178.455394][T20107] libceph: connect (1)[c::]:6789 error -101
[ 1178.461490][T20107] libceph: mon0 (1)[c::]:6789 connect error
[ 1178.615193][T21369] ceph: No mds server is up or the cluster is laggy
[ 1184.490141][T16909] libceph: connect (1)[c::]:6789 error -101
[ 1184.497698][T16909] libceph: mon0 (1)[c::]:6789 connect error
[ 1184.824171][   T23] libceph: connect (1)[c::]:6789 error -101
[ 1184.846351][   T23] libceph: mon0 (1)[c::]:6789 connect error
[ 1185.833654][   T23] libceph: connect (1)[c::]:6789 error -101
[ 1185.840332][   T23] libceph: mon0 (1)[c::]:6789 connect error
[ 1185.859337][T21445] xt_TPROXY: Can be used only with -p tcp or -p udp
[ 1185.867635][T21445] netlink: 68 bytes leftover after parsing attributes in process `syz.2.5200'.
[ 1185.939198][T21436] ceph: No mds server is up or the cluster is laggy
[ 1186.384114][T21452] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5198'.
[ 1186.866440][T21464] overlayfs: failed to resolve './file0': -2
[ 1186.967909][T21466] x_tables: duplicate underflow at hook 2
[ 1189.098116][T21484] netlink: 'syz.0.5203': attribute type 10 has an invalid length.
[ 1189.106976][T21484] wlan1: mtu less than device minimum
[ 1189.174231][T21484] .`: (slave wlan1): Error -22 calling dev_set_mtu
[ 1189.320711][T21491] netlink: 'syz.2.5207': attribute type 10 has an invalid length.
[ 1189.541913][T21491] bond2: (slave syz_tun): Removing an active aggregator
[ 1189.552902][T21491] bond2: (slave syz_tun): Releasing backup interface
[ 1190.255780][T21491] syz_tun: entered promiscuous mode
[ 1190.399622][T21503] netlink: 208 bytes leftover after parsing attributes in process `syz.2.5207'.
[ 1190.420500][T21491] syz_tun: entered allmulticast mode
[ 1190.432642][T21491] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[ 1191.095232][T21495] 8021q: adding VLAN 0 to HW filter on device bond8
[ 1192.125585][T21523] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5215'.
[ 1192.369167][T21532] ceph: No mds server is up or the cluster is laggy
[ 1192.967224][T16909] libceph: connect (1)[c::]:6789 error -101
[ 1192.987978][T16909] libceph: mon0 (1)[c::]:6789 connect error
[ 1197.420997][T21584] A link change request failed with some changes committed already. Interface bridge_slave_1 may have been left with an inconsistent configuration, please check.
[ 1198.069094][T21576] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5228'.
[ 1198.376926][T21594] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[ 1198.386057][T21594] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[ 1198.395085][T21594] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[ 1198.403806][T21594] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[ 1198.415212][T21594] netdevsim netdevsim3 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1198.424395][T21594] netdevsim netdevsim3 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1198.433966][T21594] netdevsim netdevsim3 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1198.444413][T21594] netdevsim netdevsim3 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1198.919382][T21600] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[ 1198.928177][T21600] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[ 1198.937126][T21600] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[ 1198.945927][T21600] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[ 1198.958481][T21600] netdevsim netdevsim3 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1198.967503][T21600] netdevsim netdevsim3 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1198.976724][T21600] netdevsim netdevsim3 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1198.986023][T21600] netdevsim netdevsim3 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1200.159158][T21619] netlink: 32 bytes leftover after parsing attributes in process `syz.0.5237'.
[ 1200.184073][T21622] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5238'.
[ 1201.407403][T21639] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5242'.
[ 1201.443318][T21633] RDS: rds_bind could not find a transport for ::ffff:172.20.20.27, load rds_tcp or rds_rdma?
[ 1201.475131][   T28] kauditd_printk_skb: 19 callbacks suppressed
[ 1201.475147][   T28] audit: type=1326 audit(53489437.312:406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21640 comm="syz.1.5243" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7ff24799cdd9 code=0x0
[ 1203.509309][   T28] audit: type=1326 audit(53489439.259:407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21668 comm="syz.3.5250" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd00bf9cdd9 code=0x7ffc0000
[ 1203.535942][   T28] audit: type=1326 audit(53489439.259:408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21668 comm="syz.3.5250" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd00bf9cdd9 code=0x7ffc0000
[ 1203.764213][   T28] audit: type=1326 audit(53489439.259:409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21668 comm="syz.3.5250" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=304 compat=0 ip=0x7fd00bf9cdd9 code=0x7ffc0000
[ 1203.800151][T21673] ip6t_REJECT: ECHOREPLY is not supported
[ 1203.912322][   T28] audit: type=1326 audit(53489439.259:410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21668 comm="syz.3.5250" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd00bf9cdd9 code=0x7ffc0000
[ 1204.026743][T21675] sctp: [Deprecated]: syz.2.5252 (pid 21675) Use of int in maxseg socket option.
[ 1204.026743][T21675] Use struct sctp_assoc_value instead
[ 1205.052036][   T28] audit: type=1326 audit(53489439.259:411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21668 comm="syz.3.5250" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd00bf9cdd9 code=0x7ffc0000
[ 1205.105712][   T28] audit: type=1326 audit(53489439.259:412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21668 comm="syz.3.5250" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7fd00bf9cdd9 code=0x7ffc0000
[ 1205.212296][   T28] audit: type=1326 audit(53489439.259:413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21668 comm="syz.3.5250" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd00bf9cdd9 code=0x7ffc0000
[ 1205.324898][   T28] audit: type=1326 audit(53489439.259:414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21668 comm="syz.3.5250" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd00bf9cdd9 code=0x7ffc0000
[ 1205.379323][   T28] audit: type=1326 audit(53489439.259:415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21668 comm="syz.3.5250" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7fd00bf9cdd9 code=0x7ffc0000
[ 1205.870095][T21695] ceph: No mds server is up or the cluster is laggy
[ 1205.882004][   T23] libceph: connect (1)[c::]:6789 error -101
[ 1205.902310][T21691] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5253'.
[ 1205.924491][   T23] libceph: mon0 (1)[c::]:6789 connect error
[ 1207.673342][T16909] libceph: connect (1)[c::]:6789 error -97
[ 1207.679336][T16909] libceph: mon0 (1)[c::]:6789 connect error
[ 1207.947621][T21712] ceph: No mds server is up or the cluster is laggy
[ 1208.114461][T21726] RDS: rds_bind could not find a transport for ::ffff:172.20.20.27, load rds_tcp or rds_rdma?
[ 1214.671103][T21759] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5267'.
[ 1215.164052][T21780] @: renamed from vlan0
[ 1215.600990][   T28] kauditd_printk_skb: 2 callbacks suppressed
[ 1215.601005][   T28] audit: type=1326 audit(53489450.563:418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21787 comm="syz.3.5274" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd00bf9cdd9 code=0x7ffc0000
[ 1216.612787][   T28] audit: type=1326 audit(53489450.563:419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21787 comm="syz.3.5274" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd00bf9cdd9 code=0x7ffc0000
[ 1216.817934][   T28] audit: type=1326 audit(53489450.563:420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21787 comm="syz.3.5274" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7fd00bf9cdd9 code=0x7ffc0000
[ 1216.875860][   T28] audit: type=1326 audit(53489450.563:421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21787 comm="syz.3.5274" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd00bf9cdd9 code=0x7ffc0000
[ 1216.925379][   T28] audit: type=1326 audit(53489450.563:422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21787 comm="syz.3.5274" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd00bf9cdd9 code=0x7ffc0000
[ 1216.979328][   T28] audit: type=1326 audit(53489450.563:423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21787 comm="syz.3.5274" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7fd00bf9cdd9 code=0x7ffc0000
[ 1217.018754][   T28] audit: type=1326 audit(53489450.563:424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21787 comm="syz.3.5274" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd00bf9cdd9 code=0x7ffc0000
[ 1217.053310][   T28] audit: type=1326 audit(53489450.563:425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21787 comm="syz.3.5274" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd00bf9cdd9 code=0x7ffc0000
[ 1217.105942][   T28] audit: type=1326 audit(53489450.563:426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21787 comm="syz.3.5274" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fd00bf9cdd9 code=0x7ffc0000
[ 1218.376445][   T28] audit: type=1326 audit(53489450.563:427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21787 comm="syz.3.5274" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd00bf9cdd9 code=0x7ffc0000
[ 1220.097056][T16909] libceph: connect (1)[c::]:6789 error -101
[ 1220.104434][T16909] libceph: mon0 (1)[c::]:6789 connect error
[ 1220.431614][T21818] ceph: No mds server is up or the cluster is laggy
[ 1223.300497][    T8] libceph: connect (1)[c::]:6789 error -101
[ 1223.314778][    T8] libceph: mon0 (1)[c::]:6789 connect error
[ 1223.356125][T21838] bond0: (slave syz_tun): Releasing backup interface
[ 1223.603195][    T8] libceph: connect (1)[c::]:6789 error -101
[ 1223.685306][    T8] libceph: mon0 (1)[c::]:6789 connect error
[ 1223.689446][T21838] syz_tun: left promiscuous mode
[ 1223.696367][T21838] syz_tun: left allmulticast mode
[ 1223.704891][T21838] bond0: left allmulticast mode
[ 1223.710203][T21838] bond_slave_0: left allmulticast mode
[ 1223.715869][T21838] bond_slave_1: left allmulticast mode
[ 1223.721883][T21838] team0: left allmulticast mode
[ 1223.727281][T21838] ±ÿþ€: left allmulticast mode
[ 1223.733011][T21838] bond0: left promiscuous mode
[ 1223.737950][T21838] bond_slave_0: left promiscuous mode
[ 1223.744071][T21838] bond_slave_1: left promiscuous mode
[ 1223.749649][T21838] team0: left promiscuous mode
[ 1223.754786][T21838] ±ÿþ€: left promiscuous mode
[ 1223.759889][T21838] bridge0: port 3(bond0) entered disabled state
[ 1223.774550][T21838] bond0: (slave team0): Releasing backup interface
[ 1223.787135][T21838] bridge_slave_1: left allmulticast mode
[ 1223.792829][T21838] bridge_slave_1: left promiscuous mode
[ 1223.798666][T21838] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1223.811814][T21838] bond0: (slave bond_slave_0): Releasing backup interface
[ 1223.828363][T21838] bond0: (slave bond_slave_1): Releasing backup interface
[ 1223.864454][T21838] team0: Port device 
2
6±ÿþ€ removed
[ 1223.890268][T21838] bond5: (slave geneve2): Releasing active interface
[ 1223.907833][T21838] bond6: (slave geneve3): Releasing active interface
[ 1223.914887][T21838] geneve3: left allmulticast mode
[ 1223.931753][T21838] bond7: (slave bridge10): Releasing active interface
[ 1223.938951][T21838] bond7: (slave bridge10): the permanent HWaddr of slave - 82:e9:15:e3:f1:93 - is still in use by bond - set the HWaddr of slave to a different address to avoid conflicts
[ 1223.957048][T21838] bond7: (slave gretap1): making interface the new active one
[ 1223.979514][T21838] bond7: (slave gretap1): Releasing active interface
[ 1224.018941][T21845] netdevsim netdevsim1 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[ 1224.027245][T21845] netdevsim netdevsim1 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[ 1224.035490][T21845] netdevsim netdevsim1 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[ 1224.044029][T21845] netdevsim netdevsim1 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[ 1224.065070][T21845] netdevsim netdevsim1 eth0: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1224.073582][T21845] netdevsim netdevsim1 eth1: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1224.081968][T21845] netdevsim netdevsim1 eth2: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1224.090419][T21845] netdevsim netdevsim1 eth3: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1224.141643][T21851] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5281'.
[ 1224.191118][T21849] netdevsim netdevsim1 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[ 1224.199347][T21849] netdevsim netdevsim1 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[ 1224.207683][T21849] netdevsim netdevsim1 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[ 1224.216230][T21849] netdevsim netdevsim1 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[ 1224.236876][    T8] libceph: connect (1)[c::]:6789 error -101
[ 1224.248662][    T8] libceph: mon0 (1)[c::]:6789 connect error
[ 1224.275268][T21829] ceph: No mds server is up or the cluster is laggy
[ 1224.438155][   T28] kauditd_printk_skb: 16 callbacks suppressed
[ 1224.438168][   T28] audit: type=1326 audit(53489458.845:444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21853 comm="syz.2.5287" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe64a99cdd9 code=0x0
[ 1225.139039][T21849] netdevsim netdevsim1 eth0: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1225.149505][T21849] netdevsim netdevsim1 eth1: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1225.159765][T21849] netdevsim netdevsim1 eth2: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1225.168856][T21849] netdevsim netdevsim1 eth3: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1229.210515][T21878] netlink: 'syz.0.5293': attribute type 10 has an invalid length.
[ 1229.218544][T21878] netlink: 40 bytes leftover after parsing attributes in process `syz.0.5293'.
[ 1232.234242][T21903] xt_TPROXY: Can be used only with -p tcp or -p udp
[ 1233.578115][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[ 1233.587668][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[ 1233.597204][T21891] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5296'.
[ 1236.800505][    T8] libceph: connect (1)[c::]:6789 error -101
[ 1236.922999][    T8] libceph: mon0 (1)[c::]:6789 connect error
[ 1237.048505][T21937] fuse: Bad value for 'fd'
[ 1237.892553][T21926] ceph: No mds server is up or the cluster is laggy
[ 1238.213843][    T8] libceph: connect (1)[c::]:6789 error -101
[ 1238.220136][    T8] libceph: mon0 (1)[c::]:6789 connect error
[ 1240.790573][T21963] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5309'.
[ 1244.508675][T21984] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5321'.
[ 1246.151328][T22010] overlayfs: failed to resolve './file2': -2
[ 1246.246838][T22008] tipc: Enabled bearer <udp:syz1>, priority 10
[ 1252.385271][T22048] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5329'.
[ 1252.436666][T22057] netlink: 12 bytes leftover after parsing attributes in process `syz.2.5333'.
[ 1252.714849][T22061] netlink: 'syz.1.5336': attribute type 10 has an invalid length.
[ 1252.725847][T22061] team0: Device ipvlan1 failed to register rx_handler
[ 1253.470759][T22077] ipip1: entered promiscuous mode
[ 1253.475985][T22077] ipip1: entered allmulticast mode
[ 1257.987528][T22100] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5345'.
[ 1262.432627][T22133] lo speed is unknown, defaulting to 1000
[ 1265.983162][T22161] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5357'.
[ 1267.206401][T22179] team0: Port device bridge0 removed
[ 1267.310807][T22179] bond2: (slave bond0): Releasing backup interface
[ 1267.329783][T22179] bond0: left allmulticast mode
[ 1267.460661][T22179] team0: Port device bond2 removed
[ 1267.898518][T22182] siw: device registration error -23
[ 1272.255797][T22221] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5371'.
[ 1273.648601][T22244] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5377'.
[ 1273.690183][T22244] bridge0: port 3(geneve1) entered blocking state
[ 1273.697220][T22244] bridge0: port 3(geneve1) entered disabled state
[ 1273.707985][T22244] geneve1: entered allmulticast mode
[ 1273.725631][T22244] geneve1: entered promiscuous mode
[ 1274.359354][T22245] overlayfs: failed to clone upperpath
[ 1276.467571][T22263] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5383'.
[ 1388.766499][    C1] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[ 1388.773504][    C1] rcu: 	Tasks blocked on level-0 rcu_node (CPUs 0-1): P22264/1:b..l
[ 1388.782258][    C1] rcu: 	(detected by 1, t=10502 jiffies, g=90725, q=199 ncpus=2)
[ 1388.789996][    C1] task:modprobe        state:R  running task     stack:24232 pid:22264 ppid:42     flags:0x00004002
[ 1388.802201][    C1] Call Trace:
[ 1388.805496][    C1]  <TASK>
[ 1388.808436][    C1]  __schedule+0x1553/0x45a0
[ 1388.813134][    C1]  ? mark_lock+0x94/0x320
[ 1388.817514][    C1]  ? verify_lock_unused+0x140/0x140
[ 1388.822722][    C1]  ? __lock_acquire+0x1270/0x7d40
[ 1388.827761][    C1]  ? asan.module_dtor+0x20/0x20
[ 1388.832632][    C1]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[ 1388.838641][    C1]  ? preempt_schedule_irq+0xb4/0x150
[ 1388.843941][    C1]  preempt_schedule_irq+0xbf/0x150
[ 1388.849057][    C1]  ? preempt_schedule_notrace+0x110/0x110
[ 1388.854790][    C1]  ? rcu_irq_exit_check_preempt+0xdf/0x210
[ 1388.860783][    C1]  irqentry_exit+0x67/0x70
[ 1388.865290][    C1]  asm_sysvec_reschedule_ipi+0x1a/0x20
[ 1388.870920][    C1] RIP: 0010:__sanitizer_cov_trace_const_cmp4+0x8/0x90
[ 1388.877702][    C1] Code: 08 03 00 00 00 48 89 7c 11 10 48 89 74 11 18 48 89 44 11 20 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 f3 0f 1e fa 48 8b 04 24 <65> 48 8b 15 00 90 7c 7e 65 8b 0d 01 90 7c 7e 81 e1 00 01 ff 00 74
[ 1388.897317][    C1] RSP: 0018:ffffc900046af808 EFLAGS: 00000246
[ 1388.903394][    C1] RAX: ffffffff81f2e77d RBX: ffff888030088a48 RCX: 0000000000000000
[ 1388.911374][    C1] RDX: ffff88805e749e00 RSI: 0000000000000000 RDI: 0000000000000000
[ 1388.919351][    C1] RBP: 0000000000200000 R08: ffff888030088ab8 R09: 1ffff11006011157
[ 1388.927332][    C1] R10: dffffc0000000000 R11: ffffed1006011158 R12: ffffc900046afc40
[ 1388.935312][    C1] R13: dffffc0000000000 R14: 1ffff920008d5f8f R15: 1ffff11006011149
[ 1388.943300][    C1]  ? lookup_fast+0x14d/0x4d0
[ 1388.947949][    C1]  lookup_fast+0x14d/0x4d0
[ 1388.952380][    C1]  ? security_inode_permission+0xb0/0xf0
[ 1388.958066][    C1]  link_path_walk+0x5ff/0xe30
[ 1388.962770][    C1]  ? handle_lookup_down+0x130/0x130
[ 1388.967990][    C1]  path_openat+0x293/0x3230
[ 1388.972533][    C1]  ? do_sys_openat2+0xda/0x1d0
[ 1388.977328][    C1]  ? verify_lock_unused+0x140/0x140
[ 1388.982535][    C1]  ? do_filp_open+0x430/0x430
[ 1388.987225][    C1]  ? __virt_addr_valid+0x18c/0x540
[ 1388.992388][    C1]  do_filp_open+0x1f5/0x430
[ 1388.996906][    C1]  ? vfs_tmpfile+0x490/0x490
[ 1389.001563][    C1]  ? _raw_spin_unlock+0x28/0x40
[ 1389.006426][    C1]  ? alloc_fd+0x58f/0x630
[ 1389.010870][    C1]  do_sys_openat2+0x134/0x1d0
[ 1389.015607][    C1]  ? do_sys_open+0xe0/0xe0
[ 1389.020037][    C1]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[ 1389.026124][    C1]  ? lock_chain_count+0x20/0x20
[ 1389.031606][    C1]  __x64_sys_openat+0x139/0x160
[ 1389.036484][    C1]  do_syscall_64+0x55/0xa0
[ 1389.040916][    C1]  ? clear_bhb_loop+0x40/0x90
[ 1389.045611][    C1]  ? clear_bhb_loop+0x40/0x90
[ 1389.050316][    C1]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1389.056362][    C1] RIP: 0033:0x7f8acef000ba
[ 1389.060863][    C1] RSP: 002b:00007ffe6b650c28 EFLAGS: 00000206 ORIG_RAX: 0000000000000101
[ 1389.069312][    C1] RAX: ffffffffffffffda RBX: 00007ffe6b650ca0 RCX: 00007f8acef000ba
[ 1389.077302][    C1] RDX: 0000000000080000 RSI: 00007ffe6b650ca0 RDI: 00000000ffffff9c
[ 1389.085284][    C1] RBP: 00007ffe6b650c90 R08: 00007ffe6b650e97 R09: 0000000000000000
[ 1389.093261][    C1] R10: 0000000000000000 R11: 0000000000000206 R12: 000000000000001b
[ 1389.101239][    C1] R13: 00007f8aceedc050 R14: 00007ffe6b650eb0 R15: 0000000000000000
[ 1389.109239][    C1]  </TASK>
[ 1389.112267][    C1] rcu: rcu_preempt kthread starved for 10502 jiffies! g90725 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=1
[ 1389.123469][    C1] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[ 1389.133439][    C1] rcu: RCU grace-period kthread stack dump:
[ 1389.139336][    C1] task:rcu_preempt     state:R  running task     stack:27656 pid:17    ppid:2      flags:0x00004000
[ 1389.150129][    C1] Call Trace:
[ 1389.153413][    C1]  <TASK>
[ 1389.156362][    C1]  __schedule+0x1553/0x45a0
[ 1389.160905][    C1]  ? _raw_spin_unlock_irqrestore+0x51/0x120
[ 1389.166813][    C1]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[ 1389.172718][    C1]  ? asan.module_dtor+0x20/0x20
[ 1389.177588][    C1]  ? enqueue_timer+0x23d/0x550
[ 1389.182369][    C1]  ? __mod_timer+0x984/0xdb0
[ 1389.186984][    C1]  schedule+0xbd/0x170
[ 1389.191082][    C1]  schedule_timeout+0x188/0x2d0
[ 1389.195944][    C1]  ? console_conditional_schedule+0x40/0x40
[ 1389.201848][    C1]  ? update_process_times+0x1b0/0x1b0
[ 1389.207230][    C1]  ? prepare_to_swait_event+0x339/0x360
[ 1389.212822][    C1]  rcu_gp_fqs_loop+0x313/0x1590
[ 1389.217681][    C1]  ? rcu_gp_init+0x1162/0x1560
[ 1389.222456][    C1]  ? rcu_gp_kthread+0x3b0/0x3b0
[ 1389.227434][    C1]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[ 1389.233515][    C1]  ? rcu_gp_init+0x1560/0x1560
[ 1389.238283][    C1]  ? rcu_gp_cleanup+0xb41/0xc90
[ 1389.243146][    C1]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1389.248361][    C1]  ? lockdep_hardirqs_on+0x98/0x150
[ 1389.253571][    C1]  rcu_gp_kthread+0x9d/0x3b0
[ 1389.258172][    C1]  ? rcu_report_qs_rsp+0x1a0/0x1a0
[ 1389.263299][    C1]  ? __kthread_parkme+0x7a/0x1c0
[ 1389.268242][    C1]  ? __kthread_parkme+0x162/0x1c0
[ 1389.273279][    C1]  kthread+0x2fa/0x390
[ 1389.277354][    C1]  ? rcu_report_qs_rsp+0x1a0/0x1a0
[ 1389.282479][    C1]  ? kthread_blkcg+0xd0/0xd0
[ 1389.287075][    C1]  ret_from_fork+0x48/0x80
[ 1389.291500][    C1]  ? kthread_blkcg+0xd0/0xd0
[ 1389.296099][    C1]  ret_from_fork_asm+0x11/0x20
[ 1389.300966][    C1]  </TASK>
[ 1389.303989][    C1] rcu: Stack dump where RCU GP kthread last ran:
[ 1389.310319][    C1] CPU: 1 PID: 0 Comm: swapper/1 Not tainted syzkaller #0
[ 1389.317357][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1389.327418][    C1] RIP: 0010:pv_native_safe_halt+0xf/0x10
[ 1389.333064][    C1] Code: 19 21 02 c3 cc cc cc cc cc cc cc f3 0f 1e fa 0f 0b 66 2e 0f 1f 84 00 00 00 00 00 f3 0f 1e fa 66 90 0f 00 2d e3 d3 41 00 fb f4 <c3> 66 0f 1f 00 55 41 57 41 56 41 54 53 50 8b 2f eb 2e 41 89 de 80
[ 1389.352682][    C1] RSP: 0018:ffffc90000187de0 EFLAGS: 000002c6
[ 1389.358760][    C1] RAX: 08c903d442c11500 RBX: ffffffff8162aa0d RCX: 08c903d442c11500
[ 1389.366740][    C1] RDX: 0000000000000001 RSI: ffffffff8acac9e0 RDI: ffffffff8b1c8fa0
[ 1389.374725][    C1] RBP: ffffc90000187f20 R08: ffff8880b8f36b2b R09: 1ffff110171e6d65
[ 1389.382705][    C1] R10: dffffc0000000000 R11: ffffed10171e6d66 R12: 1ffff92000030fc8
[ 1389.390685][    C1] R13: dffffc0000000000 R14: 1ffff110037cc780 R15: 0000000000000000
[ 1389.398665][    C1] FS:  0000000000000000(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[ 1389.407604][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1389.414199][    C1] CR2: 000000110c421ff1 CR3: 000000002e710000 CR4: 00000000003506e0
[ 1389.422180][    C1] Call Trace:
[ 1389.425465][    C1]  <TASK>
[ 1389.428403][    C1]  default_idle+0x13/0x20
[ 1389.432746][    C1]  default_idle_call+0x6c/0xa0
[ 1389.437523][    C1]  do_idle+0x33d/0x590
[ 1389.441619][    C1]  ? idle_inject_timer_fn+0x60/0x60
[ 1389.446843][    C1]  ? do_idle+0x56d/0x590
[ 1389.451102][    C1]  cpu_startup_entry+0x43/0x60
[ 1389.455876][    C1]  start_secondary+0xee/0xf0
[ 1389.460474][    C1]  secondary_startup_64_no_verify+0x179/0x17b
[ 1389.466571][    C1]  </TASK>