last executing test programs:

14m6.58171073s ago: executing program 3 (id=543):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, 0x0, 0x0)
sendmmsg$unix(r2, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
connect$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x4001, @remote}, 0x10)
mknod$loop(0x0, 0xe050, 0x1)
setsockopt$SO_BINDTODEVICE_wg(0xffffffffffffffff, 0x1, 0x19, &(0x7f0000000080)='wg1\x00', 0x4)
r3 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r3, 0x8933, 0x0)
open_tree(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0x9801)

14m2.171562682s ago: executing program 3 (id=551):
socket$netlink(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x16, &(0x7f0000fcb000), 0x4)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)
ioctl$SNDCTL_DSP_SETFMT(0xffffffffffffffff, 0xc0045005, 0x0)
r3 = openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
openat$cgroup_int(r3, 0x0, 0x2, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000740)={0x1f, 0xb, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x11, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a3000000000090003007379"], 0x7c}}, 0x0)
getsockopt$bt_hci(r4, 0x0, 0x2, 0x0, &(0x7f0000001340))
r6 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r6, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r6, 0xc04064a0, &(0x7f00000014c0)={&(0x7f0000000140), 0x0, &(0x7f0000000240), 0x0})
sendmsg$NFT_BATCH(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000800)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a7c000000060a0b04000000000000000002000000500004802800018007000100637400001c000280050003000100000008000140000000170800024000000007"], 0xa4}}, 0x0)
sysfs$2(0x2, 0x1000000000000, &(0x7f00000002c0)=""/4096)

13m56.562102013s ago: executing program 3 (id=558):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_int(r3, 0x29, 0xb, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r5, 0x1, 0x1a, &(0x7f00000001c0)={0x3, &(0x7f0000000040)=[{0x28, 0x0, 0x0, 0xab49}, {0xb1, 0x0, 0x0, 0xde0c}, {0x6}]}, 0x10)
write$binfmt_aout(r4, &(0x7f0000000000)=ANY=[], 0xfdef)
mkdir(0x0, 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', 0x0, 0x0, &(0x7f0000000340)={[{@workdir={'workdir', 0x3d, './bus'}}, {@xino_on}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f00000003c0)='./bus\x00')
getdents(0xffffffffffffffff, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)

13m54.661830363s ago: executing program 3 (id=561):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, 0x0, 0x0)
sendmmsg$unix(r2, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
connect$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x4001, @remote}, 0x10)
mknod$loop(0x0, 0xe050, 0x1)
setsockopt$SO_BINDTODEVICE_wg(0xffffffffffffffff, 0x1, 0x19, &(0x7f0000000080)='wg1\x00', 0x4)
r3 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r3, 0x8933, 0x0)
open_tree(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0x9801)

13m50.840052645s ago: executing program 3 (id=569):
openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000140), 0x1a1002, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0xffffffb3, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
listen(0xffffffffffffffff, 0x80080400)
r4 = fsopen(&(0x7f0000000100)='configfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)
r5 = fsmount(r4, 0x1, 0x1)
fchdir(r5)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
lseek(r6, 0x2, 0x0)
bind$inet(r3, &(0x7f0000000080)={0x2, 0x4e21, @broadcast}, 0x10)
connect$inet(r3, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f00000000c0)='bbr\x00', 0x4)
sendto$inet(r3, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)
recvfrom$inet(r3, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25)

13m48.626439673s ago: executing program 3 (id=574):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
syz_open_dev$audion(&(0x7f0000000040), 0x8000000000000001, 0x200000)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000000)=0xb)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r1, 0x6, 0x10, &(0x7f00000000c0)=0x100000001, 0x4)
bind$inet(r1, &(0x7f0000000080)={0x2, 0x4e21, @broadcast}, 0x10)
r2 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r2, 0x10f, 0x87, &(0x7f0000000180)={0x42, 0x0, 0x2}, 0x10)
sendmsg$tipc(r2, &(0x7f0000000540)={&(0x7f00000001c0)=@name={0x1e, 0x2, 0x3, {{0x42, 0x20}}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x20004809}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f00000001c0), 0xc7)
userfaultfd(0x1)
writev(0xffffffffffffffff, &(0x7f0000000000)=[{0x0}], 0x1)
r3 = syz_io_uring_setup(0x5c2, &(0x7f00000002c0)={0x0, 0x0, 0x800, 0x3, 0x3d9}, &(0x7f0000000240)=<r4=>0x0, &(0x7f0000000040)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4)
syz_io_uring_submit(r4, r5, &(0x7f00000004c0)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x51, 0x0, 0x80, 0x2, 0x0, 0x127})
io_uring_enter(r3, 0x6e2, 0x3900, 0x1, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PBUF_RING(r3, 0x16, &(0x7f00000009c0)={&(0x7f0000003000)}, 0x1)
r6 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, 0x800007, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x1, 0x0, 0x0, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8b36, &(0x7f0000000000)={'wlan0\x00'})
sendto$inet(r1, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)

13m33.195677551s ago: executing program 32 (id=574):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
syz_open_dev$audion(&(0x7f0000000040), 0x8000000000000001, 0x200000)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000000)=0xb)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r1, 0x6, 0x10, &(0x7f00000000c0)=0x100000001, 0x4)
bind$inet(r1, &(0x7f0000000080)={0x2, 0x4e21, @broadcast}, 0x10)
r2 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r2, 0x10f, 0x87, &(0x7f0000000180)={0x42, 0x0, 0x2}, 0x10)
sendmsg$tipc(r2, &(0x7f0000000540)={&(0x7f00000001c0)=@name={0x1e, 0x2, 0x3, {{0x42, 0x20}}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x20004809}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f00000001c0), 0xc7)
userfaultfd(0x1)
writev(0xffffffffffffffff, &(0x7f0000000000)=[{0x0}], 0x1)
r3 = syz_io_uring_setup(0x5c2, &(0x7f00000002c0)={0x0, 0x0, 0x800, 0x3, 0x3d9}, &(0x7f0000000240)=<r4=>0x0, &(0x7f0000000040)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4)
syz_io_uring_submit(r4, r5, &(0x7f00000004c0)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x51, 0x0, 0x80, 0x2, 0x0, 0x127})
io_uring_enter(r3, 0x6e2, 0x3900, 0x1, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PBUF_RING(r3, 0x16, &(0x7f00000009c0)={&(0x7f0000003000)}, 0x1)
r6 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, 0x800007, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x1, 0x0, 0x0, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8b36, &(0x7f0000000000)={'wlan0\x00'})
sendto$inet(r1, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)

9.95929649s ago: executing program 0 (id=2051):
bind$vsock_stream(0xffffffffffffffff, &(0x7f0000000040), 0x10)
quotactl_fd$Q_GETFMT(0xffffffffffffffff, 0xffffffff80000400, 0x0, 0x0)
syz_open_dev$vim2m(0x0, 0x3, 0x2)
r0 = socket(0x1a, 0x4, 0x0)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000140)=@req3={0x7813, 0x3, 0x0, 0x81, 0x1ff, 0x1, 0x1}, 0x1c)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x8000002000000, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_emit_ethernet(0x4e, &(0x7f0000000340)=ANY=[], 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
epoll_create1(0x0)
r2 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000200), 0x900)
ioctl$SNDRV_TIMER_IOCTL_TREAD(r2, 0x40045402, &(0x7f0000000040)=0x1)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r2, 0x40345410, &(0x7f00000083c0)={{0x3, 0x0, 0x0, 0x0, 0x9}})
ioctl$int_in(r2, 0x5452, &(0x7f0000000000)=0x5)
r3 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000180), 0x0)
ioctl$SNDRV_TIMER_IOCTL_PARAMS(r2, 0x40505412, 0x0)
dup3(r3, r2, 0x80000)
r4 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001600), 0x0, 0x0)
r5 = syz_open_dev$swradio(&(0x7f0000000100), 0x1, 0x2)
ioctl$VIDIOC_UNSUBSCRIBE_EVENT(r5, 0x4020565b, 0x0)
ioctl$TCSETSW2(r4, 0x402c542c, &(0x7f0000000040)={0xc63c, 0x7ffffffe, 0x40000000, 0x80000004, 0x0, "362e851f84882fb90efa3fa665d2eb14c970e2", 0x7, 0x81})

9.322734356s ago: executing program 4 (id=2054):
r0 = syz_open_dev$vbi(&(0x7f0000000040), 0x0, 0x2)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r2 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000280)={'syzkaller1\x00', @link_local})
write$tun(r1, &(0x7f0000000180)={@val, @void, @eth={@broadcast, @dev, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x2f, 0x0, @private=0x1fe1, @multicast1}, {0xa000, 0x86dd, 0xc, 0x0, @gue={{0x1, 0x0, 0x0, 0x0, 0x0, @void}}}}}}}}, 0x32)
mkdir(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x22, 0xe, &(0x7f0000001880)=ANY=[@ANYRESOCT=r0], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x5, &(0x7f00000000c0), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x40000000, @void, @value}, 0x94)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/syz0\x00', 0x200002, 0x0)
rseq(&(0x7f00000004c0), 0x20, 0x0, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="02000000040000000400006ed70bb98a00090000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xd, 0x6, 0x4, 0x1, 0x0, r4, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000008c0)={{r5}, &(0x7f0000000840), &(0x7f0000000880)=r4}, 0x20)
syz_emit_ethernet(0x42, &(0x7f00000002c0)={@local, @local, @void, {@arp={0x806, @ether_ipv6={0x1, 0x86dd, 0x6, 0x10, 0xa, @remote, @private1={0xfc, 0x1, '\x00', 0x1}, @random="3c0cee4aa2ea", @private1={0xfc, 0x1, '\x00', 0x1}}}}}, 0x0)
ioctl$VIDIOC_S_CTRL(r0, 0xc008561c, &(0x7f0000000000)={0xf0f03c, 0x5})
capset(&(0x7f0000000000)={0xf1504}, &(0x7f0000000040)={0x80, 0x200002, 0x2, 0x0, 0x20, 0x3})
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, 0x0, 0x0, 0x4)
r6 = gettid()
capget(&(0x7f0000000080)={0x20071026, r6}, &(0x7f0000000100)={0x0, 0x5, 0x369, 0x9db, 0x8, 0x1})
openat$kvm(0xffffffffffffff9c, 0x0, 0x121000, 0x0)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000740)=ANY=[@ANYBLOB="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"], 0x4dc}, 0x1, 0x0, 0x0, 0x44000}, 0x0)

9.321790525s ago: executing program 0 (id=2055):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x50)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000340)={0x1b, 0x0, 0x0, 0x7, 0x0, r0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
quotactl_fd$Q_SYNC(r1, 0xffffffff80000100, 0x0, 0x0)
socket$can_bcm(0x1d, 0x2, 0x2)
r2 = socket$kcm(0x2, 0x200000000000001, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x80000008a}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400010bce)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f00000066c0)=""/102392, 0x18ff8)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.throttle.io_serviced_recursive\x00', 0x26e1, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='smaps\x00')
sendmsg$inet(r2, &(0x7f0000000040)={0x0, 0xeafbff3, &(0x7f0000000000)=[{&(0x7f0000000300)="b8", 0xfffffdef}], 0x1, 0x0, 0x0, 0x10000000}, 0x52cc)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
syz_open_dev$swradio(&(0x7f00000000c0), 0x1, 0x2)
r4 = syz_open_dev$tty1(0xc, 0x4, 0x1)
fcntl$setownex(r4, 0xf, &(0x7f0000000280))
syz_emit_ethernet(0xa8, &(0x7f00000003c0)=ANY=[@ANYBLOB="01008040000baaaaaaaaaabb86dd6012000800723afffe800092725cbb3a9c6301f0fcf883b9dd000000000000000000040000bbff02000000000000000005b87884cc072874d81f39d5380000000000018600907800006a0200000000ffffffff190aa78ce54006598080a8030037004023493b87aafaffffffffffffff23732472eefa45ad96579269748e254c1e4a8a8b3f0ab0c430d3be27df3e34066d42ca0a5c15"], 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000001c0), 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB='quota,grpquota_inode_hardlimit=3,noswap'])
r5 = syz_open_procfs(0x0, &(0x7f00000001c0)='mountinfo\x00')
read$FUSE(r5, &(0x7f0000003480)={0x2020}, 0x2020)
syz_open_dev$loop(&(0x7f0000000100), 0x7, 0x40000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x6a855000)

8.722781047s ago: executing program 0 (id=2057):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x80000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x18)
kexec_load(0x2, 0x0, 0x0, 0x2)
gettid()
mmap(&(0x7f00008c7000/0x3000)=nil, 0x3000, 0x0, 0x8031, 0xffffffffffffffff, 0x8000000)
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000000), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
open(&(0x7f0000000340)='./file0\x00', 0x80fd, 0x0)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x42, 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r2, @ANYBLOB=',grou', @ANYRESDEC=0x0])
read$FUSE(r2, 0x0, 0x0)
write$FUSE_INIT(r2, &(0x7f0000000040)={0x50, 0x0, 0x0, {0x7, 0x1f, 0x0, 0x10408}}, 0x50)
syz_fuse_handle_req(r2, &(0x7f00000021c0)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001500000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d00000000000000000000000000000000000000000000000000000000000000000000f60000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000081000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000090000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000003dc150f4000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e1997e358660e994000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f50000000000000000000000000000000000000000000000000000000000000000000000000000000000c6d90000000000001354c4b60000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000056087d7200000000000000000000000000f8000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001a00", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0x20, 0x0, 0x0, {0x0, 0x8}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r3 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x80101, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r4, 0x8933, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000100)={0x0, 0xe0, &(0x7f00000000c0)={&(0x7f0000000080)=@ipv6_newnexthop={0x34, 0x68, 0x5fb9a818fb7378e9, 0x0, 0x25dfdbff, {0xa, 0x0, 0x0, 0x0, 0x4}, [@NHA_OIF={0x8}, @NHA_GATEWAY={0x14, 0x6, @in6_addr=@loopback}]}, 0x34}}, 0x0)
write$tcp_congestion(r3, &(0x7f00000000c0)='lp\x00', 0xfffffdef)
dup2(r3, r2)
r5 = syz_open_dev$vim2m(&(0x7f0000000040), 0x3, 0x2)
ioctl$vim2m_VIDIOC_CREATE_BUFS(r5, 0xc100565c, &(0x7f0000000080)={0x0, 0x8, 0x2, {0x2, @sliced={0x0, [0x3, 0x0, 0x0, 0x5, 0x1000, 0x0, 0x0, 0x0, 0x5, 0x0, 0x3ff, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, 0x0, 0x0, 0x56, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x5]}}})
ioctl$vim2m_VIDIOC_S_FMT(r5, 0xc0d05605, &(0x7f0000000300)={0x2, @vbi={0xfffffffd, 0x6, 0x8, 0x3234564e, [0x800, 0x4], [0x527, 0x2]}})
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)

7.341693182s ago: executing program 2 (id=2060):
rename(0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
fsopen(0x0, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x490000, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
r3 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000840)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffb)
add_key(&(0x7f00000003c0)='dns_resolver\x00', &(0x7f0000000400)={'syz', 0x3}, &(0x7f0000000080)="000001", 0x3, r3)
setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, 0x0, 0x0)
r4 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, 0x0, 0x0)
r5 = socket$inet6(0xa, 0x3, 0x3a)
connect$inet6(r5, &(0x7f0000000a40)={0xa, 0x4e22, 0x7fff, @remote, 0x9}, 0x1c)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)

5.68727699s ago: executing program 2 (id=2063):
r0 = getpid()
r1 = syz_pidfd_open(r0, 0x0)
waitid$P_PIDFD(0x3, r1, 0x0, 0x8, 0x0)
setsockopt$bt_l2cap_L2CAP_OPTIONS(0xffffffffffffffff, 0x6, 0x1, 0x0, 0x0)
r2 = syz_open_dev$ndb(&(0x7f0000000040), 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff})
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r5 = socket(0x10, 0x803, 0x0)
r6 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r7, {0x0, 0x9}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x4, 0xc00}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=@newtfilter={0x64, 0x2c, 0xd27, 0xfffffffc, 0x0, {0x0, 0x0, 0x0, r7, {0x5, 0x4}, {}, {0x5, 0xfff3}}, [@filter_kind_options=@f_flow={{0x9}, {0x34, 0x2, [@TCA_FLOW_EMATCHES={0x30, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0xfffb}}, @TCA_EMATCH_TREE_LIST={0x24, 0x2, 0x0, 0x1, [@TCF_EM_IPT={0x20, 0x1, 0x0, 0x0, {{0x7, 0x9, 0x2}, [@TCA_EM_IPT_HOOK={0x8}, @TCA_EM_IPT_MATCH_NAME={0xb}]}}]}]}]}}]}, 0x64}}, 0x20008050)
ioctl$NBD_SET_SOCK(r2, 0xab00, r3)
ioctl$NBD_DO_IT(r2, 0xab03)
ioctl$NBD_CLEAR_SOCK(r2, 0xab04)
r8 = socket(0x10, 0x803, 0x0)
ioctl$sock_SIOCETHTOOL(r8, 0x8946, &(0x7f0000000000)={'veth1_vlan\x00', &(0x7f0000000680)=@ethtool_per_queue_op={0x4b, 0xe, [0x5, 0x8, 0x200000, 0x1, 0x341, 0x3, 0x20000d1, 0x400, 0x4, 0x8, 0xffff, 0x200, 0x0, 0x0, 0x6, 0x401, 0x103, 0x65, 0x7, 0x7, 0x3, 0x400, 0x6, 0x1400, 0x8, 0x4, 0x6, 0xe, 0x40, 0x8, 0x3, 0xb, 0x2, 0x81, 0x8, 0xf2, 0x5470, 0x7fffffff, 0xc, 0x4, 0xa, 0xd48, 0x3ff, 0x1, 0x5b359f0d, 0x205, 0xfffffffd, 0x4, 0xce, 0x7, 0xfffffffb, 0x1000, 0x2, 0x9, 0x52, 0x3, 0x6, 0x1, 0xffff, 0x0, 0x0, 0xd, 0x9, 0x6, 0x3, 0x2, 0xffff, 0x38000000, 0x1ff, 0x8, 0xfffffffd, 0x5, 0x2, 0xff, 0x9, 0x5, 0x5, 0x9, 0x6, 0x8, 0x853e, 0x0, 0x2, 0x8, 0x6, 0x10000, 0x8, 0x2, 0x7fffffff, 0xf, 0x9, 0x669, 0x9, 0x10, 0x2, 0x0, 0xfffffff7, 0xc5, 0x3, 0x7b3, 0x3, 0x5, 0x6d6, 0x82, 0x9, 0x0, 0xffffffff, 0x8, 0x4, 0x0, 0x4, 0x4, 0x2, 0xa8d, 0x3, 0x3, 0x7f, 0x8fd7, 0x8, 0x101, 0xa, 0x80, 0x6, 0xffff053e, 0x6, 0xfffffff3, 0xaad, 0x80000001]}})
r9 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ppoll(&(0x7f0000000140)=[{r9, 0x8211}], 0x1, 0x0, 0x0, 0x0)
ioctl$TIOCSTI(r9, 0x5412, &(0x7f0000000000)=0x8)
r10 = socket$inet(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000300)={'bond0\x00', <r11=>0x0})
openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x800, 0x0)
r12 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r12, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000000c0)=@newqdisc={0xc4, 0x24, 0xf0b, 0x70bd2b, 0x0, {0x0, 0x0, 0x12, r11, {}, {0xffff, 0xffff}, {0x2}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x94, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1], 0x0, [0x5, 0x4, 0x2, 0x0, 0x8, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3], [0x0, 0x8, 0x0, 0x0, 0x2]}}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x30, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8, 0x4, 0x4000000}]}, {0x14, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_CMD={0x5, 0x2, 0x7f}, @TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8, 0x4, 0x80000001}]}, {0x2c, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8, 0x4, 0x400}]}]}, @TCA_TAPRIO_ATTR_SCHED_CLOCKID={0x8, 0x5, 0x7}]}}]}, 0xc4}, 0x1, 0x0, 0x0, 0x20000040}, 0x0)
sched_setscheduler(0x0, 0x6, &(0x7f0000000100)=0xf54)
syz_open_dev$ndb(&(0x7f0000000040), 0x0, 0x0)

5.249233013s ago: executing program 0 (id=2066):
r0 = socket$netlink(0x10, 0x3, 0xe)
sendmsg$NL80211_CMD_NEW_STATION(0xffffffffffffffff, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000340)={0x1c, 0x0, 0xb97534d5fe9704cf, 0x0, 0xffffffff, {{0x12}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)
r1 = syz_open_dev$loop(&(0x7f0000000080), 0x3, 0x582)
ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000380)={'\x00', 0x7f, 0xffffffff, 0x10000, 0x8, 0x16})
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, &(0x7f0000000200)="f7790066baa00066b86b4266ef66ba420066b8e20066ef0f29902cbb0000c4e2b1ba8c88d9000000666666440f38826b410f7842280f07b8010000000f01d9c4033921820f47a753fd", 0x49}], 0x1, 0x43, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)=@x86={0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0xff})
ioctl$KVM_RUN(r4, 0xae80, 0x0)
r5 = memfd_create(&(0x7f0000000180)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf3:\x99\x1e\xac`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\xd2q#\xc6\xca\x97\x9d\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec', 0x1)
write$binfmt_script(r5, &(0x7f0000000280)={'#! ', './file0', [{0x20, '\t\t'}, {0x20, '\t\t'}]}, 0x11)
execveat(r5, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r7, 0x8933, &(0x7f0000000240)={'wg0\x00', <r8=>0x0})
sendmsg$nl_route(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYBLOB="240000001800773dd0cf0000ffdbdf25020010000200fe020000000008000400", @ANYRES32=r8], 0x24}, 0x1, 0xffffff7f, 0x0, 0x20000800}, 0x4040000)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0xe3d1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000040)='kmem_cache_free\x00', r10}, 0x10)
r11 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r11, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000004c0)=ANY=[], 0x48}}, 0x40000)
sendmsg$nl_route(r6, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000040}, 0x0)
writev(r0, &(0x7f0000001540)=[{&(0x7f0000000040)="fa7d1b725fb2ee4ba053b0649f5ba649ba9f55f9ab59a71e25a1ea353d37d141bf9b6ae2f517ad9a5e02041a7cb0e1d9116ef66400f8720500000000000000964774ff4ec573d6450cbcd9751dc224d25e85e257bec0a607000000000000003ebe31274fd85299a73cd13235ad7576eb028ceedefe230ae0ff18a9df315ebe589edd48b4b6374278366d01d8f3d95de3660529b9f069f1d9e2fcc1eae47d7c2a50fbb42c2d123ee96f6a6a0c15d50ac0f490a7b718e3b7d8a5af3e89838b6fe785ba64655a2ec49572", 0xc9}, {&(0x7f00000002c0)="59f04af8febdff35b57b89b06722a0109c6174982de5f168040221098b5fbd65a132258e0d3c01ccbb2be23c38179191cc43b048c643f2b5f97d8811c5bd4841d95a401611e7c4c9716ef08dc221533f893d720cd77deed1729e3c8f77821c6c54891e902e32de026a88ed7cc908d832f46eaf926f116c63ba59409abea7523779794ced102ae0260cdb3acd33f554f7d1e06329f46ac886310b15e7381fc93165b56ece618a288897290172c1f7f9cb18f32aacd8f1883492111ef09b4acf81e5bea0d1258cfdd4b80a360e", 0xcc}, {&(0x7f00000003c0)="357fb24b2577352fc95ef933a753f08496b7279bbc5b7ab7f7f5cad2ece05de8d76c90b8c7644df6787f085eace5a6515f537eb8d6624275ff870b04ad79533aa560903afb2a349f1185e384c5abef7b385c7d94c83f117948fc8ce6e52ec150b187958f661d1cf2188bbc519f98253c78038484df9864df22a63fa80e31b763eec50fd999f3592628a23eae35e20d425c9a634162a8451a87a855644d3a54789f4ccf610a20783c50aab75f1eab734eaf8864f1ade21e6b40142869491395e2b8132b42476b2b9d3fd9fa26db20e359f353772a1dc9496373dfd82a3a88225507084bf62e69cb6c1d", 0xe9}, {&(0x7f00000004c0)="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", 0x1000}, {&(0x7f0000000140)="05c1c3a6648c5e371d0b918e37f901b0c4ff423dfdddce7b6a097594a57e86479df159ee69684b4297557015d8955713", 0x30}, {&(0x7f00000014c0)="e34ac123203e6f51c34ce5755a73af8496f144281ed75c1bb438d8c88738993bc8313ea39aac9ffd43828755f4f7c5dcdc6dab3521a950671c9d488bae7e244c134e01c38d82e9ad4a50c5281cfc", 0x4e}], 0x6)

5.172069178s ago: executing program 4 (id=2067):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x18, 0x5, &(0x7f0000000100)=ANY=[@ANYBLOB="18000000090f04000000000000000000850000000f000000850000007d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x100000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000500)='sys_exit\x00', r0, 0x0, 0xffffffffffffffff}, 0x18)
openat$incfs(0xffffffffffffff9c, &(0x7f0000000080)='.log\x00', 0x1812c1, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x15)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x1f, 0x0, 0x0, &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x13, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$inet6(0xa, 0x1, 0x0)
setsockopt(r5, 0x84, 0x81, &(0x7f00000002c0)="1a00000002000000", 0x8)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r5, 0x84, 0x17, &(0x7f0000000380)=ANY=[@ANYRES32=0x0, @ANYBLOB="01"], 0x9)
setsockopt$inet_sctp6_SCTP_AUTH_DELETE_KEY(r5, 0x84, 0x19, &(0x7f0000000340)={0x0, 0x1}, 0x8)
bind$netlink(r1, &(0x7f0000000040)={0x10, 0x0, 0x25dfdbfe}, 0xc)
r6 = syz_open_dev$mouse(&(0x7f00000000c0), 0x0, 0x2042)
read$msr(r6, 0x0, 0x600)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz0\x00', {0x7, 0x4, 0x6, 0xfffa}, 0x1d, [0x6, 0xc95a, 0xfffffff3, 0x9, 0x7f, 0x7, 0x10001, 0x7f, 0x6, 0x4d, 0xfffffff2, 0x5f, 0x3, 0x40000003, 0xffff2d37, 0x1dd2, 0x6, 0x9, 0x2, 0x80000001, 0x7, 0x9, 0x3, 0x3c5b, 0x1, 0x24, 0x3, 0xfffffffe, 0x1f461e2c, 0x2, 0xfffffffa, 0x3, 0x3, 0x3, 0x7fff, 0x4c74, 0x8f00, 0x642, 0x4, 0xa, 0x0, 0x80071, 0x7, 0xfffff000, 0x103, 0x0, 0x5, 0x3c, 0x91, 0x1, 0x6, 0x3, 0x5, 0x4, 0x8, 0x0, 0x80, 0x2, 0x5, 0xa, 0x8, 0x7, 0x1, 0xfffffffc], [0x10000007, 0xffff, 0x12f, 0x8000, 0x10, 0xfffffff5, 0x129432e6, 0x7, 0x6, 0x0, 0x2bf, 0x6c9, 0x9, 0xfffffffe, 0x3, 0x4002, 0x101, 0x5, 0x2f, 0xe, 0xfff, 0x78, 0xea4, 0xa, 0x4, 0x0, 0x8000, 0xb, 0x400, 0x101, 0x0, 0xfffffffd, 0xff, 0x1005, 0x7ff, 0x5f31, 0x4, 0x5fffffe, 0x6, 0x2, 0x9, 0x4, 0x9, 0x8, 0x9, 0x6, 0x5, 0x0, 0x1, 0x8000, 0xffff, 0x4, 0x7f, 0x9, 0xfff, 0x1000, 0x4, 0x1, 0x7, 0xb, 0x9, 0x48c93690, 0x2, 0xff], [0x7, 0x4, 0x0, 0x64e, 0xfffffdfe, 0x7fffffff, 0x8d2, 0x9, 0x5, 0x7fff, 0x0, 0x5, 0xb, 0x4, 0x5, 0x5, 0x0, 0x1ef, 0x5, 0x8, 0x86, 0x3, 0x10000009, 0x3ea, 0xb, 0x5, 0x6, 0x2, 0xf, 0x8, 0x0, 0x6d01, 0x5, 0x3b, 0x3, 0x1, 0x80, 0x3, 0xfffffffe, 0x2, 0x0, 0xa2, 0x7, 0x53cf697b, 0x5, 0x6, 0x54fe12d2, 0xbf, 0x200, 0x3, 0x400002, 0xfffffff9, 0x0, 0x6, 0x5, 0x0, 0x6, 0xfffffffb, 0x120000, 0x3, 0x6, 0x9, 0x4, 0x3], [0x9, 0xbb2e, 0x3, 0xb, 0x5, 0x938, 0x6, 0x3, 0x0, 0x5, 0xce7, 0x1ff, 0x6, 0x5, 0x2, 0x0, 0x101, 0x10000, 0x6, 0x7fff, 0x8ffff, 0xa620, 0x2, 0x5, 0x1, 0x2, 0x14c, 0x60a7, 0x6, 0x6, 0x5, 0x7ffffffe, 0x5, 0x8, 0x8, 0x3, 0x3, 0xffff, 0x3, 0x9, 0x100, 0x9602, 0xa, 0x2, 0x80000004, 0x6, 0x1, 0x10000, 0x5, 0x8, 0x2b91, 0xa1f, 0x8, 0x9, 0x1, 0x6c1b, 0x2d513b50, 0x4, 0x5, 0xb1c, 0x1, 0xa, 0xffff7441, 0xfff]}, 0x45c)
r7 = syz_open_dev$evdev(&(0x7f0000000000), 0x3, 0x822b01)
write$char_usb(r7, &(0x7f0000000040)="e2", 0x918)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000400)=ANY=[@ANYRES32, @ANYBLOB='1\x00'/12, @ANYRES32=0x0, @ANYBLOB='w'], 0x20)
bind$netlink(r1, &(0x7f0000000000)={0x10, 0x0, 0x25dfdbfe}, 0xc)

3.729013056s ago: executing program 4 (id=2068):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000140)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3f8, 0x0, 0x51}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x1, 0x40880, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000004c0)={0x0, 0x2, 0x10}, 0xc)
r1 = syz_init_net_socket$bt_rfcomm(0x1f, 0x3, 0x3)
setsockopt$sock_timeval(r1, 0x1, 0x42, &(0x7f0000001600)={0x0, 0xea60}, 0x10)
r2 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_RTOINFO(0xffffffffffffffff, 0x84, 0x0, &(0x7f0000000100)={<r3=>0x0, 0xdce, 0x101, 0x7}, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000280)={r3}, 0x0)
getsockopt$sock_buf(r0, 0x1, 0x8a50adcc399d9d2a, &(0x7f0000000380)=""/150, &(0x7f0000000240)=0x96)
getsockopt$inet_sctp6_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x83, &(0x7f0000000000)=@assoc_value={<r4=>0x0}, &(0x7f0000000180)=0x8)
getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(r2, 0x84, 0x66, &(0x7f0000000000)={r4, 0x10}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000040)={r4, 0xe}, 0x8)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000019680)=""/102392, 0x18ff8)
keyctl$session_to_parent(0x12)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_mgmt(0x0, r7)
sendmsg$NLBL_MGMT_C_ADD(r7, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000080}, 0x0)
sendmsg$NFT_BATCH(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000070000040900010073797a300000000088000000090a010400000000000000000700000308000a40000000000900020073797a30000000000900010073"], 0xd0}}, 0x20050800)
readv(r1, &(0x7f0000002c80)=[{&(0x7f0000001ac0)=""/133, 0x85}], 0x1)
sendto$inet6(r0, &(0x7f0000000000)='\t', 0xf4c, 0x0, 0x0, 0x0)

3.610782453s ago: executing program 2 (id=2069):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x3043, 0x0)
userfaultfd(0x80801)
socket$xdp(0x2c, 0x3, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r2 = syz_open_dev$video4linux(&(0x7f0000000080), 0x7ff, 0x4100)
r3 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r3, 0x10e, 0xc, &(0x7f0000000000)={0x9}, 0x10)
write(r3, &(0x7f00000000c0)="240000001e005f0214fffffffffffff8070000000100000000000000120009", 0x1f)
ioctl$VIDIOC_LOG_STATUS(r2, 0x5646, 0x0)
socket(0xa, 0x3, 0x3a)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000500), 0x240, 0x0)
timer_gettime(0x0, &(0x7f00000000c0))
clock_gettime(0x0, &(0x7f0000000180))
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000340)={'pim6reg\x00', 0x2})
socket$inet6_mptcp(0xa, 0x1, 0x106)
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
pselect6(0x40, &(0x7f0000000240)={0x0, 0x0, 0x3, 0xfffffffffffffffd, 0x0, 0x8}, 0x0, &(0x7f0000000280)={0x3ff, 0x0, 0x0, 0xc, 0x0, 0x9, 0x466, 0xffffffffffffffff}, 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000440), 0x129100, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r5, 0x3b81, &(0x7f0000000040)={0xc, 0x0, <r6=>0x0})
ioctl$IOMMU_HWPT_ALLOC$NONE(0xffffffffffffffff, 0x3b89, &(0x7f00000001c0)={0x70, 0x0, 0x0, r6, 0x0, 0x0, 0x0, 0x0, 0x0})

3.385268872s ago: executing program 1 (id=2070):
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="0f00030000b6cd31d4696a00"/26, @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
readahead(0xffffffffffffffff, 0x7, 0x1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
read$msr(0xffffffffffffffff, 0x0, 0x0)
mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x81c0, 0x0)
execveat(0xffffffffffffff9c, &(0x7f0000000280)='./file2\x00', 0x0, 0x0, 0x0)
symlinkat(&(0x7f0000001040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00')
openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x10080, 0x0)
openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000200), 0x80340, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x11}}, 0x10)
connect$inet(0xffffffffffffffff, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
sendfile(0xffffffffffffffff, r0, 0x0, 0x20000023893)
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000100), 0xa000, 0x0)
semtimedop(0x0, &(0x7f0000000180)=[{0x0, 0xffe}], 0x1, 0x0)
semtimedop(0x0, &(0x7f0000000040)=[{0x0, 0x0, 0x800}], 0x1, 0x0)
semop(0x0, &(0x7f0000000080)=[{0x0, 0x4, 0x1800}, {0x1, 0x0, 0x800}], 0x2)
llistxattr(&(0x7f00000001c0)='./file2\x00', &(0x7f0000000400)=""/84, 0x54)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r2, 0x400448e1, &(0x7f0000000240)={0x0, 0x0, "be5eec", 0x0, 0xff})
openat$cachefiles(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mount(&(0x7f0000000140)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000000080)='erofs\x00', 0x200000, 0x0)

3.227384896s ago: executing program 0 (id=2071):
socket$netlink(0x10, 0x3, 0x4)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000040))
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = syz_io_uring_setup(0x45c3, &(0x7f0000000240)={0x0, 0x8e28, 0x800, 0x0, 0x2e1}, &(0x7f00000002c0), &(0x7f0000000300))
syz_io_uring_setup(0x24f6, &(0x7f0000000b80)={0x0, 0x0, 0x80, 0x0, 0x33a, 0x0, r0}, &(0x7f0000000100), &(0x7f0000000340)=<r1=>0x0)
sendmsg$IPSET_CMD_TYPE(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYRES32=r1], 0x38}}, 0x0)
socket$inet6(0xa, 0x3, 0xff)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x100, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r3 = syz_io_uring_setup(0x5c2, &(0x7f0000000400)={0x0, 0xfffffffe, 0x0, 0x3, 0x348}, &(0x7f00000001c0)=<r4=>0x0, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4)
syz_io_uring_submit(r4, 0x0, &(0x7f00000004c0)=@IORING_OP_FALLOCATE={0x11, 0x2, 0x0, @fd_index=0x7, 0xfb2, 0x0, 0x6, 0x0, 0x1})
io_uring_enter(r3, 0x6e2, 0x3900, 0x1, 0x0, 0xe00)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000340)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@xino_on}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f00000003c0)='./bus\x00')
r5 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r5, &(0x7f0000001fc0)=""/184, 0x20002078)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)

3.147036123s ago: executing program 1 (id=2072):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x200000, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x2400, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_CAP_SPLIT_IRQCHIP(r0, 0x4068aea3, &(0x7f00000000c0)={0x79, 0x0, 0x1})
ioctl$KVM_SET_GSI_ROUTING(r0, 0x4008ae6a, &(0x7f0000000000)=ANY=[@ANYBLOB="01000000000000000400000004"])
ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x1)
socket$packet(0x11, 0x2, 0x300)
r1 = syz_open_dev$vim2m(&(0x7f0000000100), 0x0, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r1, 0xc0145608, &(0x7f00000000c0)={0x1, 0x2, 0x1, 0x0, 0x2})
ioctl$vim2m_VIDIOC_QBUF(r1, 0xc058560f, &(0x7f0000000240)=@mmap={0x1, 0x2, 0x4, 0x100000, 0x9, {}, {0x2, 0x2, 0x4, 0xc0, 0x0, 0xf0, "18a6fc23"}, 0x1, 0x1, {}, 0x1})
ioctl$vim2m_VIDIOC_REQBUFS(r1, 0xc0145608, &(0x7f0000000000)={0x6, 0x1, 0x1, 0x0, 0x3})
socket$inet6_tcp(0xa, 0x1, 0x0)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x40801, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000180)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r3 = syz_io_uring_setup(0x497, &(0x7f0000000380)={0x0, 0x607b, 0x8, 0x0, 0x284}, &(0x7f0000000280)=<r4=>0x0, &(0x7f00000001c0)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r4, r5, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r3, 0x3516, 0x0, 0x4, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000180)=@newlink={0x44, 0x10, 0x503, 0x70bd2c, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0x14, 0x2, 0x0, 0x1, [@IFLA_MACVLAN_MACADDR_DATA={0x10, 0x5, 0x0, 0x1, [{0xa, 0x4, @broadcast}]}]}}}]}, 0x44}, 0x1, 0x0, 0x0, 0x4001}, 0x0)
ioctl$vim2m_VIDIOC_STREAMOFF(r1, 0x40045612, &(0x7f0000000040)=0x1)
ioctl$vim2m_VIDIOC_STREAMOFF(r1, 0x40045612, &(0x7f0000000080)=0x2)
ioctl$vim2m_VIDIOC_QBUF(r1, 0xc058560f, &(0x7f00000002c0)=@mmap={0x3, 0x1, 0x4, 0x8, 0x7f, {0x0, 0x2710}, {0x4, 0x8, 0x8, 0x25, 0x29, 0x58, "10363fa0"}, 0x5})
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)

2.797299969s ago: executing program 0 (id=2073):
rename(0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
fsopen(0x0, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x490000, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
r3 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000840)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffb)
add_key(&(0x7f00000003c0)='dns_resolver\x00', &(0x7f0000000400)={'syz', 0x3}, &(0x7f0000000080)="000001", 0x3, r3)
setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, 0x0, 0x0)
r4 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, 0x0, 0x0)
r5 = socket$inet6(0xa, 0x3, 0x3a)
connect$inet6(r5, &(0x7f0000000a40)={0xa, 0x4e22, 0x7fff, @remote, 0x9}, 0x1c)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)

2.796254291s ago: executing program 1 (id=2074):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x1000, 0x2})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000400), 0x0, 0x0, 0x0})
dup3(r1, r0, 0x0)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000780)={0x44, 0x0, &(0x7f0000000900)=[@transaction={0x400c6314, {0x2, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0})

2.360008362s ago: executing program 2 (id=2075):
fanotify_init(0x8, 0x801)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = epoll_create1(0x0)
r5 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00')
r6 = epoll_create1(0x0)
r7 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r7, 0x1, r5, &(0x7f0000000380))
r8 = fcntl$dupfd(r6, 0x0, r6)
epoll_ctl$EPOLL_CTL_ADD(r7, 0x1, r8, &(0x7f0000000040))
epoll_ctl$EPOLL_CTL_ADD(r7, 0x1, r6, &(0x7f00000001c0))
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r7, 0x0)
shmget(0x1, 0x400000, 0x8, &(0x7f0000bff000/0x400000)=nil)
syz_open_dev$dri(0x0, 0x0, 0x0)
r9 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r9, 0xc0f85403, &(0x7f0000000040)={{0x3, 0x0, 0x0, 0x3}, 0x0, 0x0, 'id1\x00', 'timer1\x00', 0x0, 0x81, 0x1, 0xffffffffffffd0c4, 0x10000000})
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000040)={r0, 0x27, 0xf, 0x0, &(0x7f0000000140)="f80204000000000000007f530800d3", 0x0, 0x405, 0xf2ffffff, 0x0, 0x0, 0x0, 0x0}, 0x50)
r10 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$TUNSETIFF(r10, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})

2.340907533s ago: executing program 1 (id=2076):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockname$inet(r4, &(0x7f0000000080)={0x2, 0x0, @empty}, &(0x7f0000000100)=0x10)
openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000040)={0x400000000000000, 0x0, &(0x7f0000000180)={&(0x7f0000002080)=ANY=[], 0x50}}, 0x0)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000007c0)=@newsa={0x138, 0x10, 0x1, 0x100000, 0x25dfdbff, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in=@private=0xa010100}, {@in6=@private1={0xfc, 0x1, '\x00', 0x1}, 0x0, 0x3c}, @in=@multicast2, {0x0, 0x0, 0x0, 0x2, 0xffffffffffffffff, 0x0, 0x7fffffffffffffff}, {}, {}, 0xffffffff, 0x0, 0xa, 0x0, 0x0, 0xaf}, [@algo_crypt={0x48, 0x2, {{'ecb(cipher_null)\x00'}}}]}, 0x138}}, 0x0)
socket$kcm(0x29, 0x2, 0x0)
ioctl$SIOCRSGL2CALL(0xffffffffffffffff, 0x89e5, &(0x7f0000000280)=@null)
r6 = syz_open_dev$radio(&(0x7f0000000000), 0x2, 0x2)
r7 = epoll_create(0x6)
r8 = dup3(r6, r7, 0x0)
read$FUSE(r8, &(0x7f0000000040)={0x2020}, 0x2020)
getsockopt$inet_sctp6_SCTP_NODELAY(r0, 0x84, 0x3, &(0x7f0000000340), &(0x7f0000000380)=0x4)
syz_io_uring_setup(0x634, &(0x7f0000000200)={0x0, 0xeb33, 0x40, 0x3, 0x212}, 0x0, 0x0)
r9 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x4)
ioctl$KVM_X86_SETUP_MCE(r9, 0x4008ae9c, 0x0)
ioctl$IOC_PR_RELEASE(0xffffffffffffffff, 0x401070ca, 0x0)

2.330018038s ago: executing program 4 (id=2077):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
r0 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/mm/ksm/run\x00', 0x1, 0x0)
write$sysctl(r0, &(0x7f0000000580)='1\x00', 0x2)
prctl$PR_GET_TSC(0x43, 0x0)
r1 = syz_open_dev$evdev(&(0x7f00000000c0), 0x2, 0x862b01)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$EVIOCGRAB(r1, 0x40044590, 0x0)
write$sysctl(r0, &(0x7f0000000000)='2\x00', 0x2)
r3 = socket$inet(0x2, 0x1, 0x100)
setsockopt$inet_tcp_int(r3, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4)
bind$inet(r3, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
prlimit64(0x0, 0xe, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xd, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000008002b000000000000000018040000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b7"], 0x0, 0x18, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x4000, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='sched_switch\x00', r4}, 0x10)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
bind$netlink(r5, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc)
r6 = socket$inet6(0xa, 0x3, 0x7)
connect$inet6(r6, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_IPV6_XFRM_POLICY(r6, 0x29, 0x23, &(0x7f0000000340)={{{@in6=@dev, @in=@empty, 0x0, 0x0, 0x1, 0x4, 0xa}, {0xbd1, 0x0, 0x3}, {0x81, 0x2}, 0x2000000, 0x0, 0x1, 0x0, 0x0, 0x2}, {{@in=@local, 0x8000, 0x33}, 0x0, @in6=@empty, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x10000}}, 0xe8)
sendmmsg(r6, &(0x7f0000000480), 0x2e9, 0xffe0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)

1.471784562s ago: executing program 4 (id=2078):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
r1 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000440)=@base={0x14, 0x4, 0x8, 0x6, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = socket$inet6(0xa, 0x80002, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r3, 0x0, 0x0)
sendmsg$ETHTOOL_MSG_TSINFO_GET(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000d40)={0xa8, 0x0, 0x6, 0x70bd25, 0x25dfdbfb, {}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_0\x00'}]}, @HEADER={0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_team\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macsec0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @HEADER={0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_vlan\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}]}, 0xa8}, 0x1, 0x0, 0x0, 0x40008c0}, 0x40000)
setsockopt$sock_int(r2, 0x1, 0xf, &(0x7f0000000180)=0x80000004, 0x4)
bind$inet6(r2, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000340)={r1, 0x0, 0x0}, 0x20)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x12, 0x5, 0x4, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
setsockopt$inet_MCAST_MSFILTER(0xffffffffffffffff, 0x0, 0x30, &(0x7f0000000a00)={0xd44, {{0x2, 0x4e24, @private=0xa010102}}, 0x0, 0x3, [{{0x2, 0x4e23, @remote}}, {{0x2, 0x4e23, @private=0xa010100}}, {{0x2, 0x4e21, @multicast1}}]}, 0x210)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000100)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f00000000c0)='./file1\x00')
r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r7, 0x9362, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r7, 0x9360, 0x0)

1.300576622s ago: executing program 1 (id=2079):
memfd_create(&(0x7f0000000500)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf#2\x99\x1e\xa1`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\f<\x8f\xc1\x99\x89r\xe1?\xbdu\x98\xc3\xf8\xd2Q#\xc6g\xa0\x85\xd6G\x85\x11X\x8d,\x02\xd45\xb8\xca\x97\x9d\xcb\x1e\x80\xd6\xd5>N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec\x8aog\x87BR\x9d\xad\xd4FcB\xda\x95\xc3\xdd\x9d\x8f\x1a\xce\x18\x80\"j\xe1\xba\x1e\x97uX\xccv\xd6\vcz\x92A^\xbc\xceF\xf7\xe5:\xaf\xc5~\xbcJ e\r\x88c\x9d\xb92\xb6i4zq\xb3c\x0f\xb2t\x93\xf2E6b\xfa\xcdJ5\xe3W]`4\xd8D\x05\v\xfc)\xca\xedQ\xd0]Ot\'\xc2tDF\xf9\xa7\xb5(\x83\xa5\x0f\x1d\x1d\x06Dg\x13>\x19\xe85#\aaT\x89=\x104\xd5\x85l\x96\x91\xea\x172P\xb3:\xadZ\xbc\xbe\x00\xf0\x14\x96\xd9M\xd7\x88QZs\xb2\xe1+$jfQodH\x05/y`~7\x16\x02\x00(v\xe6`\"6\xfcgC\xb5\xf0\x13.zj\xc5bj+@\x00\x00\x00\x00\x00\x00\x00.\xd4`=z\xd1n\x8d\x8f\xa5hS\x8e[\xb3\xa3\x87\xb9\xe2_Z\x11\xef\xc2]V\xf3\x03\x94\xb9\xe1\xa68\x8d\\\xe5\xef\xacpM\xf0\xa6\x04\x10\xb7\xc0t\x83\\\xf7\x12k\x9f\x10\xd5Z\x19\xc1\xc1\x80\\o\x97\xce=U\xdd\xaa\x1b\x05\x14\x13\xa6\xbd#\xde\x04\xe6$\xec$3\xf6\x97\xc6\xeaSL\xb7A72M\x88k@\xe5\xa3\n&\x1e\xc84\xa9\xe2\xccM\x906\x95xQ-2p\xd62\'\xec\x0f\x13;I\x95fE_\r\xe7\t!A\x05\xe4\x8f\x9e0\xf8/T\x18\xf7\xa1\x9f\xde1\xd5\x80<\xf5\b\xa9\xec\x85\xaeW\xb3\xd8#)bn \xfb\xf2\x88\xfaR\xff\xdd\x80\x96_\xec5\xf0\x1c\a\x8a\x80\x00@=\r8u+%f:\x1e\x82\xfap\xf6\x89\xea\xba\xe3\xbbM%F\xdb\\\xd1eJJ*\xc67\xca\x03\xa3\xf7(\xbb\xecN\xd4\xe7\xf2:u\x8a\b\xd5\v\xca\xfd\\\xd6\xe3\x05\xb3\x03\xd5\xe0\xd2\xf2{\'\x8b\xdf\xa1\xbe}\xb2\xe4y\xbb\xe6\x1f\x10c\xf5WQ\x82\x04\x01C\x83,\x90\x1a\xfa\x8e\x17\x89\xe2\xedX\x8d\rmq\t\xb5$\xb4\x9b\x92z\xd6/-\x13,\xb5%\x8eM/\x04\xa7\x7f\x1b\x85\xf1\xa4X\x17\xbb\x1cR14\xfb!\b\x10\xe8\xb2\xd41gK\xe4\xea\xe39d\bL\xe5\x1b\xbd[\x9bWD:\r&\xe9\vn^\xcc\x86\xe3\xce1>3{\xaa{\xbd0P\x9f\xa68\xf5\x82\xb8\x9aD\x9c{\xe6\xf8\xcbD\xb5aJ\xb0\x92\x89\xbc\x82\x1ch\x89\xe7\xdd]q,\xec\xc4\xa5\x93\xe5,\x0e,>/\xaf|\xf0\x01V\x7f\xc9?\xba\x16\xe4$+}5dy\xb1\xef\xf1m\xa5\x94d9\xaf\xcfq\x8b=\x026\xef\r\x91\x18\xc5\xb6\xb9fM\x8ayZ\xbcd\xa5\x8a\x88\x98\xc3\xfc`\xa6\xba\x1f\x17\v$\x88g\xb4\xad\b\xc1\xddW\xa6\xc1\xb7\xb0\xa3\x84Q\x13GoU\xe2\xb7\x03\x9c\xd5\x0f\xa8\x0ef\"\x15\x82\xe7\xbd\xf8\xca\x10f\xfe6h\xe9\xc3\xc2\xa0O:\xac~\x1a\xf7\xbeF\xbe\xe5\xf0\x81\xd6&\xc0<Q8\xbeX\xde\xd6 \xef\x0e\xc2.\x9c=1\x15d\xddIv\x0fh\xe6M(D\xad\xeb\xcfX8\xb9\x8d\xbe(\xd3\x16?x\xbd@\x0f\xf5\xdb\xeb\xd7i*\xea\x86JX\xff;\x96\xbb\xa7\xa8u5R\xa2,\xba\xbc\x01\x12\xb3q,\x9d\xf8\xbdb`\xb3\xc6\x0f\xb3\xac\xc7\xa4O@\x81\xfc\x1a4$\x885\x97\xa9|\x99\x86*.\xda\x96RQ\xe5\xb1\xef\xb7\x10\x99\xd4\xa7\b\xcd\xe9\xa5\xf6wR\xc1\xdfH).\a\x9a\xab\x9e&+\xc4#\x90\xc9%\xb9\xd7o\x86\x13\a\xc0\x01w9u6\xdd\x9fJ^o\x1d\xda\x11?\xc1\xf5\xf7\xff\xec\x916\xceQ\xcfU\x035\x96\x8f\xc7\x84\"2\xef\x02\xcf\a+\x8a\xd1\x11\xb5\xa8\x92\f\xb3R\",\xfc!_&pD\xeb5\xc6\xc8\xff2\xee\x14\x83\x14l\x04\x80\xaa7\x80\xf1\x18\xf5\xa5\xd23\xe5\b\x00\xe8\x9c\xd4\xd0\a\x93#\xb9Z\xc0y\x97<\xe5i\xe9\xe4\xb02Cu\xe1d\r\x0e\xc1\xf1\x81^\xa7\xffz)\x19U\xe5\xd4\xf5@O#W\x8a\xbb3c+\n\x97\xa6\xf7\x90$\xd6*\xd0\x1b\x10\xe4HM:XO\x1b\rx\xc7\x12|\x7fN\xc9\xf9i\xe4\xe5-\x9b\xe407\x9d\xe8\xc6\x90\x9f_Jf\x05\r\x1b\x9af\v\xbcv\x83\xf3j\xaf\xd0F', 0x1)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000200)='sched_switch\x00', r0}, 0x18)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='.\x00', 0x0)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_open_dev$usbmon(&(0x7f0000000080), 0x0, 0x0)
openat$misdntimer(0xffffffffffffff9c, 0x0, 0xc00, 0x0)
mkdir(&(0x7f0000000140)='./file0\x00', 0xd2)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000780)=@raw={'raw\x00', 0x3c1, 0x3, 0x370, 0x1bc, 0x2b8, 0x0, 0x1bc, 0xff000000, 0x2a8, 0x3a8, 0x3a8, 0x2a8, 0x3a8, 0x3, 0x0, {[{{@ipv6={@dev, @private2, [], [], 'veth1_to_hsr\x00', 'wg2\x00'}, 0x0, 0x154, 0x1bc, 0x0, {}, [@common=@srh1={{0x8c}, {0x0, 0x0, 0x0, 0x0, 0x0, @private1, @loopback, @empty, [], [], [], 0x0, 0x6359d960a6776be9}}, @common=@inet=@ecn={{0x24}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, 'snmp_trap\x00', 'syz1\x00'}}}, {{@uncond, 0x0, 0xa4, 0xec}, @unspec=@CT0={0x48}}], {{'\x00', 0x0, 0xa4, 0xc8}, {0x24}}}}, 0x3cc)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000480)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x7fffffff}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}}]}, &(0x7f00000003c0)='GPL\x00', 0x80, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000140)='itimer_expire\x00', r6}, 0x18)
r7 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x8400, 0x0)
ioctl$FS_IOC_SETFLAGS(r7, 0x40186f40, &(0x7f00000000c0)=0x1f)
getsockopt$inet6_tcp_buf(r2, 0x6, 0xd, 0x0, 0x0)

1.299251143s ago: executing program 2 (id=2080):
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="6000000002060502000000000000000000000000140007800800114000000000050015000600000005000100060000e0050005000200000005000400000000000900020073797a310000000011000300686173683a69702c706f7274"], 0x60}}, 0x0)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000340), 0x82000)
ioctl$SNDRV_SEQ_IOCTL_GET_CLIENT_INFO(r2, 0xc0bc5310, &(0x7f0000000380))
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000005c0)='sched_switch\x00'}, 0x18)
socket$nl_route(0x10, 0x3, 0x0)
write$cgroup_int(0xffffffffffffffff, &(0x7f00000001c0)=0x8200000000000000, 0xfffffdef)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='blkio.bfq.idle_time\x00', 0x0, 0x0)
bind$bt_hci(r3, &(0x7f0000000040), 0x6)
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
read(r4, 0x0, 0x0)
r5 = socket(0x40000000015, 0x5, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r6 = socket$netlink(0x10, 0x3, 0x9)
sendmsg$NL80211_CMD_SET_POWER_SAVE(r6, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x20000000)
bind$inet(r5, &(0x7f00008a5ff0)={0x2, 0x0, @loopback}, 0x10)
connect$inet6(r5, &(0x7f00000003c0)={0xa, 0x4e22, 0xf, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x1}, 0x1c)
sendto$inet(r5, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x2, 0x0, @loopback}, 0x10)
ioctl$sock_bt_hci(r3, 0x400448ca, 0x0)
socketpair(0x18, 0x20000000000001, 0x0, &(0x7f0000000100)={<r7=>0xffffffffffffffff})
getsockname$packet(r7, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000400)=0x14)
ioctl$sock_bt_hci(r3, 0x400448e7, &(0x7f0000000080))
setsockopt$packet_fanout_data(r0, 0x107, 0x16, &(0x7f0000000100)={0x2, &(0x7f0000000080)=[{0x28, 0x0, 0x0, 0xfffff034}, {0x6, 0x37, 0x0, 0x9}]}, 0x10)
syz_emit_ethernet(0x1c2, &(0x7f0000000440)=ANY=[@ANYBLOB="aaaaaaaaaaaa0180c200000081004b000800450001b00000000000849078ac14142300000000748a9ad0fe103112df3b21e936572e1671be1614200d18783a5e7daeed2c43f9a7b1d504c7598ce3254405bd24703e44862ebc612f8d13190a10bc699461828bcd010ed053bb8170b3e7595202a1ce65bd7ae36eb5415496fd4e35faf5396a525705f5ae89a7a58338602dde641c57d5afc7f8ebfafeae4a1fdfa679efe4611eba12ebc7aab20b50ef2179f62c4d2dda0b1a14be2a6601f04cfca7ff88a2527221f8c6da5584f9256f75bbcd888d71ab111493beef85d7eb752d20e5e1faa7de49fddb9f0707fe093feea6dfe4a3cf45f90f619d9322f73038d87fe33272f1a50d5ae27c2cb852bd3991fbca417ebbcbcf4241a4ce1de5240205d0c8230b72cb5f2c24869be4521874a0051a3579fc692be174c2f5eaa5039fed802b34977dc612c20176ecc01f22600b232b1ff6838bd9e35d8a0c13c6caced6d3ea5a72fefd9097f71bf46fef2a8f0a4cb0eb1755f0a2c6a2a80c174871a758c92b2f4ea7d0a2da3193ab55cb269fb8b0d2fb8cf588c7901b49c37c1dc61c3b1217d4c490f6178da23ec2825b2a69abcb2dfc832d8db242a3179a22301e6d012b39"], 0x0)

70.511884ms ago: executing program 1 (id=2081):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000040))
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00'})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0xffffffffffffff2b, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(r1, 0x7, &(0x7f0000000080)=0x6e)
io_uring_setup(0xaab, 0x0)
getgroups(0x27, &(0x7f0000002540))
r4 = syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3)
connect$bt_rfcomm(r4, &(0x7f0000000040)={0x1f, @none, 0x2}, 0xa)
shutdown(r4, 0x1)
listen(0xffffffffffffffff, 0x20000005)
sendmsg$NL80211_CMD_SET_INTERFACE(r0, 0x0, 0x0)
sendmsg$inet6(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000040)={0xa, 0x4e22, 0x200ff, @private0={0xfc, 0x0, '\x00', 0x1}, 0x80000001}, 0x1c, 0x0}, 0x4006)
r5 = socket(0x10, 0xbd0e6e190d015d52, 0x10)
setsockopt$netlink_NETLINK_TX_RING(r5, 0x10e, 0xc, &(0x7f0000000000)={0xe0, 0x2, 0x1}, 0x10)
sendmsg$kcm(r5, &(0x7f00000016c0)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000040)="2e0000004a008102e00f80ecdb4cb9020a", 0x4a}, {&(0x7f0000001700)="0c74c75350f4a590e15c61c7942348092734fe1863473bbce6798a60e9", 0x1d}], 0x2, 0x0, 0x0, 0x10}, 0x0)
r6 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZEX(r6, 0x560a, &(0x7f0000000100)={0x4, 0x0, 0x4, 0x0, 0x4002})
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000040)={@empty, 0x2, 0x1, 0x0, 0x6}, 0x20)

66.570959ms ago: executing program 4 (id=2082):
r0 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f00000000c0), 0x1, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = syz_open_dev$dri(&(0x7f0000000180), 0x0, 0x0)
r5 = syz_open_dev$dri(&(0x7f0000000180), 0x3ffffffffffffffd, 0x0)
r6 = syz_open_dev$dri(&(0x7f0000000040), 0xd21, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r6, 0xc04064a0, &(0x7f00000004c0)={0x0, &(0x7f00000000c0)=[<r7=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCRTC(r6, 0xc06864a1, &(0x7f00000005c0)={0x0, 0x0, r7, <r8=>0x0})
ioctl$DRM_IOCTL_MODE_GETFB2(r5, 0xc06864ce, &(0x7f0000000440)={r8, 0x0, 0x0, 0x0, 0x0, [<r9=>0x0], [0x7, 0x0, 0x0, 0x7fffffff], [0x0, 0x0, 0x0, 0xfffffffc], [0x6, 0x4, 0x4]})
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r5, 0xc00c642d, &(0x7f0000000200)={r9, 0x80000, <r10=>0xffffffffffffffff})
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r4, 0xc00c642e, &(0x7f0000000000)={0x0, 0x0, r10})
close_range(r4, 0xffffffffffffffff, 0x0)
write$tcp_congestion(r0, &(0x7f0000000100)='reno\x00', 0x5)
r11 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
r12 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./cgroup\x00', 0x0, 0x0)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0)
write$tcp_congestion(r0, 0x0, 0x0)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000340)={@cgroup=r12, r11, 0x12, 0x0, 0x0, @void, @value=0x0}, 0x20)
syz_emit_ethernet(0x56, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa88a800008100000086dd6076cd8a0018000020010000000000000000000000000000fe80000000000000000000000000000000020000000000000709"], 0x0)
write$tcp_congestion(r0, &(0x7f0000000380)='reno\x00', 0x5)

0s ago: executing program 2 (id=2083):
r0 = socket(0x400000000010, 0x3, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
write$6lowpan_enable(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0xe1}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x2000000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x0, 0x0)
syz_open_procfs$userns(r1, 0x0)
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
connect$unix(r3, &(0x7f00000002c0)=@abs={0x1, 0x0, 0x4e21}, 0x6e)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f0000000140)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(blowfish)\x00'}, 0x58)
r5 = accept4(r4, 0x0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f00000001c0)="00940a37", 0x4)
sendto$unix(r5, &(0x7f0000000440)="36d9a32e92c131d730b1abaedb51eb66fd2d5b1f7eda4f0e859fdaf294bad70673813533d8bf1c6a77b65a7afdc01b29e73571071a68d5def5d7df839810da130b9348f4d9d407eb478d5bfb298c552a498271af70914e14ba9476fd2a0e47984c25ea20afab3064a748add27a7149e9c4705475bda2ecec9ec30214f28c5e16fd3f50f604f20232c534409e52bff64fc6ca0f5e254083aec2794b7216e002e87caf3d0fa7d04ff9e3b03e81595a04979594ff6ea888bf13de8e8f74c6178e31e47593732ae1a501ad3641d423195a788efdb643f50a8c8b9794a62f7b8dfa0fa7da", 0xe2, 0x800, 0x0, 0x0)
recvfrom(r5, &(0x7f00000017c0)=""/4123, 0x101b, 0x1, 0x0, 0x0)
preadv2(0xffffffffffffffff, 0x0, 0x0, 0x2b, 0x0, 0x0)
syz_emit_ethernet(0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r6 = openat$6lowpan_control(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$6lowpan_control(r6, &(0x7f0000000180)='connect aa:aa:aa:aa:aa:11 0', 0x1b)
ioctl$SIOCSIFMTU(r0, 0x8922, 0x0)

kernel console output (not intermixed with test programs):

04.373:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10151 comm="syz.4.933" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d0db8e969 code=0x7ffc0000
[  678.368758][   T30] audit: type=1326 audit(1747362104.373:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10151 comm="syz.4.933" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7f3d0db8e969 code=0x7ffc0000
[  678.396246][   T30] audit: type=1326 audit(1747362104.853:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10151 comm="syz.4.933" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f3d0db8e9a3 code=0x7ffc0000
[  678.472576][   T30] audit: type=1326 audit(1747362104.853:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10151 comm="syz.4.933" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f3d0db8e9a3 code=0x7ffc0000
[  678.687345][   T30] audit: type=1326 audit(1747362104.853:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10151 comm="syz.4.933" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d0db8e969 code=0x7ffc0000
[  678.971816][   T30] audit: type=1326 audit(1747362104.853:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10151 comm="syz.4.933" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d0db8e969 code=0x7ffc0000
[  678.994338][   T30] audit: type=1326 audit(1747362104.883:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10151 comm="syz.4.933" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f3d0db8e969 code=0x7ffc0000
[  685.883529][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  685.890123][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  688.041647][T10210] rdma_rxe: rxe_newlink: failed to add lo
[  688.582978][T10206] netlink: 'syz.0.943': attribute type 1 has an invalid length.
[  688.590844][T10206] netlink: 224 bytes leftover after parsing attributes in process `syz.0.943'.
[  688.922474][T10218] overlayfs: failed to clone upperpath
[  692.099388][   T67] team0 (unregistering): Port device team_slave_1 removed
[  692.156411][   T67] team0 (unregistering): Port device team_slave_0 removed
[  694.698590][T10251] overlayfs: failed to clone upperpath
[  694.992218][ T9937] bridge0: port 1(bridge_slave_0) entered blocking state
[  695.714778][ T9937] bridge0: port 1(bridge_slave_0) entered disabled state
[  695.732436][ T9937] bridge_slave_0: entered allmulticast mode
[  696.115351][ T9937] bridge_slave_0: entered promiscuous mode
[  697.092927][ T9937] bridge0: port 2(bridge_slave_1) entered blocking state
[  697.755886][ T9937] bridge0: port 2(bridge_slave_1) entered disabled state
[  697.763366][ T9937] bridge_slave_1: entered allmulticast mode
[  697.856586][ T9937] bridge_slave_1: entered promiscuous mode
[  699.618728][ T9937] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  699.673670][ T9937] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  700.666609][T10297] fuse: Bad value for 'fd'
[  700.742255][T10297] vim2m vim2m.0: vidioc_s_fmt queue busy
[  702.892351][T10305] netlink: 8 bytes leftover after parsing attributes in process `syz.2.965'.
[  704.026067][ T9937] team0: Port device team_slave_0 added
[  705.216439][   T67] bridge_slave_1: left allmulticast mode
[  705.224746][   T67] bridge_slave_1: left promiscuous mode
[  705.431093][   T67] bridge0: port 2(bridge_slave_1) entered disabled state
[  706.326290][   T67] bridge_slave_0: left allmulticast mode
[  706.364833][   T67] bridge_slave_0: left promiscuous mode
[  706.384682][   T67] bridge0: port 1(bridge_slave_0) entered disabled state
[  708.288267][T10351] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  708.349510][T10351] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  709.103646][   T67] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  709.363229][ T5839] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  709.376036][ T5839] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  709.385040][ T5839] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  709.395749][   T67] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  709.405035][ T5839] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  709.412775][ T5839] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  709.527933][   T67] bond0 (unregistering): Released all slaves
[  711.765550][ T5833] Bluetooth: hci0: command tx timeout
[  713.896761][ T5833] Bluetooth: hci0: command tx timeout
[  714.244111][T10362] lo speed is unknown, defaulting to 1000
[  714.529377][T10362] hsr0 speed is unknown, defaulting to 1000
[  714.552153][T10362] lo speed is unknown, defaulting to 1000
[  715.106091][T10402] netlink: 36 bytes leftover after parsing attributes in process `syz.0.985'.
[  715.163711][T10402] netlink: 16 bytes leftover after parsing attributes in process `syz.0.985'.
[  715.310096][T10402] netlink: 36 bytes leftover after parsing attributes in process `syz.0.985'.
[  715.319719][T10402] netlink: 36 bytes leftover after parsing attributes in process `syz.0.985'.
[  715.662249][   T67] hsr_slave_0: left promiscuous mode
[  715.738873][   T67] hsr_slave_1: left promiscuous mode
[  715.755191][   T67] batman_adv: batadv0: Removing interface: batadv_slave_0
[  715.878495][   T67] batman_adv: batadv0: Removing interface: batadv_slave_1
[  715.974566][ T5833] Bluetooth: hci0: command tx timeout
[  718.024548][ T5833] Bluetooth: hci0: command tx timeout
[  725.733610][   T67] team0 (unregistering): Port device team_slave_1 removed
[  725.767599][   T67] team0 (unregistering): Port device team_slave_0 removed
[  726.320781][T10476] sd 0:0:1:0: device reset
[  728.830475][T10494] netlink: 48 bytes leftover after parsing attributes in process `syz.4.1003'.
[  729.334275][T10520] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1007'.
[  730.402643][T10362] chnl_net:caif_netlink_parms(): no params data found
[  731.306009][   T67] bridge_slave_1: left allmulticast mode
[  731.365134][   T67] bridge_slave_1: left promiscuous mode
[  731.373350][   T67] bridge0: port 2(bridge_slave_1) entered disabled state
[  731.819833][   T67] bridge_slave_0: left allmulticast mode
[  731.829380][   T67] bridge_slave_0: left promiscuous mode
[  731.854686][   T67] bridge0: port 1(bridge_slave_0) entered disabled state
[  733.555408][   T67] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  734.622137][T10560] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1015'.
[  734.670705][   T67] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  734.741156][   T67] bond0 (unregistering): Released all slaves
[  734.790170][T10547] bridge0: port 3(vlan2) entered blocking state
[  734.799943][T10547] bridge0: port 3(vlan2) entered disabled state
[  734.806451][T10547] vlan2: entered allmulticast mode
[  734.811576][T10547] bridge0: entered allmulticast mode
[  734.818740][T10547] vlan2: left allmulticast mode
[  734.874691][T10547] bridge0: left allmulticast mode
[  735.563254][   T30] kauditd_printk_skb: 30 callbacks suppressed
[  735.563273][   T30] audit: type=1326 audit(1747362162.213:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10569 comm="syz.4.1017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d0db8e969 code=0x7ffc0000
[  735.593122][   T30] audit: type=1326 audit(1747362162.213:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10569 comm="syz.4.1017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d0db8e969 code=0x7ffc0000
[  735.689118][   T30] audit: type=1326 audit(1747362162.213:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10569 comm="syz.4.1017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=151 compat=0 ip=0x7f3d0db8e969 code=0x7ffc0000
[  735.734106][   T30] audit: type=1326 audit(1747362162.213:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10569 comm="syz.4.1017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d0db8e969 code=0x7ffc0000
[  735.756046][   T30] audit: type=1326 audit(1747362162.213:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10569 comm="syz.4.1017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7f3d0db8e969 code=0x7ffc0000
[  735.779730][   T30] audit: type=1326 audit(1747362162.213:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10569 comm="syz.4.1017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d0db8e969 code=0x7ffc0000
[  735.805776][   T30] audit: type=1326 audit(1747362162.213:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10569 comm="syz.4.1017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f3d0db8e969 code=0x7ffc0000
[  735.833955][   T30] audit: type=1326 audit(1747362162.213:181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10569 comm="syz.4.1017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d0db8e969 code=0x7ffc0000
[  735.856133][   T30] audit: type=1326 audit(1747362162.223:182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10569 comm="syz.4.1017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d0db8e969 code=0x7ffc0000
[  736.114299][   T30] audit: type=1326 audit(1747362162.223:183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10569 comm="syz.4.1017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f3d0db8e969 code=0x7ffc0000
[  736.123481][T10582] pimreg3: entered allmulticast mode
[  736.145815][T10362] bridge0: port 1(bridge_slave_0) entered blocking state
[  736.153507][T10362] bridge0: port 1(bridge_slave_0) entered disabled state
[  736.161269][T10362] bridge_slave_0: entered allmulticast mode
[  737.158977][T10362] bridge_slave_0: entered promiscuous mode
[  737.174628][T10362] bridge0: port 2(bridge_slave_1) entered blocking state
[  737.181943][T10362] bridge0: port 2(bridge_slave_1) entered disabled state
[  737.487160][T10362] bridge_slave_1: entered allmulticast mode
[  737.750403][T10362] bridge_slave_1: entered promiscuous mode
[  739.088242][   T67] team0 (unregistering): Port device team_slave_0 removed
[  742.427756][T10632] ntfs3(nullb0): Primary boot signature is not NTFS.
[  742.435305][T10632] ntfs3(nullb0): try to read out of volume at offset 0x3e7ffffe00
[  742.656520][T10631] bio_check_eod: 2 callbacks suppressed
[  742.656559][T10631] syz.0.1032: attempt to access beyond end of device
[  742.656559][T10631] nbd0: rw=4096, sector=0, nr_sectors = 1 limit=0
[  742.911290][T10362] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  742.933297][T10362] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  743.680107][T10649] netlink: 80 bytes leftover after parsing attributes in process `syz.0.1035'.
[  744.159633][T10362] team0: Port device team_slave_0 added
[  744.411761][T10362] team0: Port device team_slave_1 added
[  744.786890][T10362] batman_adv: batadv0: Adding interface: batadv_slave_0
[  744.806601][T10362] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  745.050558][T10362] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  745.090447][T10362] batman_adv: batadv0: Adding interface: batadv_slave_1
[  745.645408][T10362] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  745.672532][T10362] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  746.180576][T10677] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  746.676263][T10362] hsr_slave_0: entered promiscuous mode
[  746.683045][T10362] hsr_slave_1: entered promiscuous mode
[  746.695244][T10362] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  746.702894][T10362] Cannot create hsr debugfs directory
[  747.069022][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  750.956110][T10362] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  751.040861][T10362] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  751.080922][T10362] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  751.126655][T10362] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  753.709468][T10736] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  754.189218][T10362] 8021q: adding VLAN 0 to HW filter on device bond0
[  754.311065][T10362] 8021q: adding VLAN 0 to HW filter on device team0
[  755.312999][ T1107] bridge0: port 1(bridge_slave_0) entered blocking state
[  755.320238][ T1107] bridge0: port 1(bridge_slave_0) entered forwarding state
[  755.576304][ T1107] bridge0: port 2(bridge_slave_1) entered blocking state
[  755.583620][ T1107] bridge0: port 2(bridge_slave_1) entered forwarding state
[  755.596770][T10748] lo speed is unknown, defaulting to 1000
[  757.021812][T10759] netlink: 'syz.1.1056': attribute type 10 has an invalid length.
[  757.653906][T10759] team0: Port device wlan1 added
[  757.721749][T10759] syz.1.1056 (10759) used greatest stack depth: 20200 bytes left
[  759.211782][T10362] 8021q: adding VLAN 0 to HW filter on device batadv0
[  759.840929][T10791] futex_wake_op: syz.1.1062 tries to shift op by -1; fix this program
[  763.053216][T10819] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1069'.
[  763.584983][T10362] veth0_vlan: entered promiscuous mode
[  763.811169][T10362] veth1_vlan: entered promiscuous mode
[  764.005942][T10362] veth0_macvtap: entered promiscuous mode
[  764.048801][T10362] veth1_macvtap: entered promiscuous mode
[  765.532985][T10362] batman_adv: batadv0: Interface activated: batadv_slave_0
[  766.742232][T10860] xt_TPROXY: Can be used only with -p tcp or -p udp
[  769.622352][ T5839] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  769.685166][ T5839] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  769.698351][ T5839] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  769.723751][ T5839] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  769.737065][ T5839] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  771.114311][T10879] lo speed is unknown, defaulting to 1000
[  771.240047][T10879] hsr0 speed is unknown, defaulting to 1000
[  771.286375][T10879] lo speed is unknown, defaulting to 1000
[  772.104590][ T5833] Bluetooth: hci0: command tx timeout
[  774.185968][ T5833] Bluetooth: hci0: command tx timeout
[  774.708453][T10933] netlink: 'syz.4.1093': attribute type 10 has an invalid length.
[  776.081839][ T1107] bridge_slave_1: left allmulticast mode
[  776.097641][ T1107] bridge_slave_1: left promiscuous mode
[  776.265327][ T5833] Bluetooth: hci0: command tx timeout
[  776.302869][ T1107] bridge0: port 2(bridge_slave_1) entered disabled state
[  776.391872][ T1107] bridge_slave_0: left allmulticast mode
[  776.397763][ T1107] bridge_slave_0: left promiscuous mode
[  776.431205][ T1107] bridge0: port 1(bridge_slave_0) entered disabled state
[  778.349033][ T5833] Bluetooth: hci0: command tx timeout
[  781.393884][T11003] ptrace attach of "./syz-executor exec"[5826] was attempted by "./syz-executor exec"[11003]
[  782.282634][   T30] kauditd_printk_skb: 4 callbacks suppressed
[  782.282653][   T30] audit: type=1326 audit(1747362208.933:188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11006 comm="syz.2.1107" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f9be638e969 code=0x0
[  783.206410][ T1107] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  783.298837][ T1107] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  783.320824][ T1107] bond0 (unregistering): Released all slaves
[  784.715701][T11039] ptrace attach of "./syz-executor exec"[5828] was attempted by "                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                               �      ��      �      ��      ��      ��      ��              ��      ��      ��                 ����                                                                                                                                                                                                                      
[  786.518993][T11052] overlayfs: failed to clone upperpath
[  787.421839][T11058] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1118'.
[  787.933437][T11068] tmpfs: Bad value for 'mpol'
[  788.803325][T10879] chnl_net:caif_netlink_parms(): no params data found
[  790.294194][T11086] overlayfs: failed to clone lowerpath
[  790.349523][T11076] overlayfs: failed to clone upperpath
[  791.713798][ T1107] hsr_slave_0: left promiscuous mode
[  793.352601][ T1107] hsr_slave_1: left promiscuous mode
[  793.382879][ T1107] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  793.630236][ T1107] batman_adv: batadv0: Removing interface: batadv_slave_0
[  793.691889][ T1107] batman_adv: batadv0: Removing interface: batadv_slave_1
[  793.779691][ T1107] veth1_macvtap: left promiscuous mode
[  793.808213][ T1107] veth0_macvtap: left promiscuous mode
[  793.822370][ T1107] veth1_vlan: left promiscuous mode
[  793.856950][ T1107] veth0_vlan: left promiscuous mode
[  796.659226][ T1107] team0 (unregistering): Port device team_slave_1 removed
[  796.734038][ T1107] team0 (unregistering): Port device team_slave_0 removed
[  800.359005][T10879] bridge0: port 1(bridge_slave_0) entered blocking state
[  800.374134][T10879] bridge0: port 1(bridge_slave_0) entered disabled state
[  800.471268][T11174] xt_hashlimit: overflow, rate too high: 0
[  801.091086][T10879] bridge_slave_0: entered allmulticast mode
[  801.106417][T10879] bridge_slave_0: entered promiscuous mode
[  801.206412][T10879] bridge0: port 2(bridge_slave_1) entered blocking state
[  801.227511][T10879] bridge0: port 2(bridge_slave_1) entered disabled state
[  801.235312][T10879] bridge_slave_1: entered allmulticast mode
[  801.464931][T10879] bridge_slave_1: entered promiscuous mode
[  802.710585][T10879] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  802.844098][T10879] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  803.795331][T10879] team0: Port device team_slave_0 added
[  803.846520][T10879] team0: Port device team_slave_1 added
[  806.217299][T11221] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  806.342437][T10879] batman_adv: batadv0: Adding interface: batadv_slave_0
[  806.353490][T10879] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  806.379426][    C1] vkms_vblank_simulate: vblank timer overrun
[  806.561976][T10879] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  806.588531][T10879] batman_adv: batadv0: Adding interface: batadv_slave_1
[  807.268033][T10879] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  807.330941][T10879] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  808.541154][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  808.957067][T10879] hsr_slave_0: entered promiscuous mode
[  808.963665][T10879] hsr_slave_1: entered promiscuous mode
[  809.021343][T10879] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  809.054470][T10879] Cannot create hsr debugfs directory
[  809.226584][T11253] syz.1.1159 (11253) used greatest stack depth: 18168 bytes left
[  809.525494][   T47] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  809.726974][   T47] usb 5-1: device descriptor read/64, error -71
[  810.024883][   T47] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  810.325051][   T47] usb 5-1: device descriptor read/64, error -71
[  810.542846][   T47] usb usb5-port1: attempt power cycle
[  810.748304][T11275] openvswitch: netlink: IP tunnel attribute has 44 unknown bytes.
[  810.842056][T11279] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  810.854828][T11279] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  811.453856][   T47] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  811.475141][   T47] usb 5-1: device descriptor read/8, error -71
[  811.918669][   T47] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  812.131926][   T47] usb 5-1: device descriptor read/8, error -71
[  812.267243][   T47] usb usb5-port1: unable to enumerate USB device
[  812.280111][T10879] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  812.316252][T10879] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  812.346132][T10879] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  812.379188][T10879] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  812.669275][T10879] 8021q: adding VLAN 0 to HW filter on device bond0
[  813.070497][T10879] 8021q: adding VLAN 0 to HW filter on device team0
[  813.280602][ T9192] bridge0: port 1(bridge_slave_0) entered blocking state
[  813.287834][ T9192] bridge0: port 1(bridge_slave_0) entered forwarding state
[  813.352728][ T9192] bridge0: port 2(bridge_slave_1) entered blocking state
[  813.360051][ T9192] bridge0: port 2(bridge_slave_1) entered forwarding state
[  815.231983][T11327] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  818.979457][T10879] 8021q: adding VLAN 0 to HW filter on device batadv0
[  822.732844][T10879] veth0_vlan: entered promiscuous mode
[  823.496666][T11403] sctp: [Deprecated]: syz.0.1185 (pid 11403) Use of struct sctp_assoc_value in delayed_ack socket option.
[  823.496666][T11403] Use struct sctp_sack_info instead
[  823.534154][T10879] veth1_vlan: entered promiscuous mode
[  823.592935][T10879] veth0_macvtap: entered promiscuous mode
[  823.605679][T10879] veth1_macvtap: entered promiscuous mode
[  823.708654][   T30] audit: type=1800 audit(1747362250.353:189): pid=11412 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.1.1188" name="SYSV00000000" dev="hugetlbfs" ino=2 res=0 errno=0
[  824.201264][T11403] syz_tun: entered allmulticast mode
[  824.295442][T10879] batman_adv: batadv0: Interface activated: batadv_slave_0
[  824.411408][T10879] batman_adv: batadv0: Interface activated: batadv_slave_1
[  824.567081][T10879] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  824.597125][T10879] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  824.613935][T10879] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  824.643602][T10879] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  826.502612][T11439] xt_TPROXY: Can be used only with -p tcp or -p udp
[  827.348797][T11457] overlayfs: failed to clone upperpath
[  828.321665][T11466] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1198'.
[  828.608959][ T9192] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  829.048244][   T30] audit: type=1326 audit(1747362255.693:190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11473 comm="syz.0.1201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa37498e969 code=0x7ffc0000
[  829.328888][   T30] audit: type=1326 audit(1747362255.723:191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11473 comm="syz.0.1201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa37498e969 code=0x7ffc0000
[  829.374068][   T30] audit: type=1326 audit(1747362255.793:192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11473 comm="syz.0.1201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fa37498d2d0 code=0x7ffc0000
[  829.446810][T11478] overlayfs: failed to clone upperpath
[  829.474436][   T30] audit: type=1326 audit(1747362255.823:193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11473 comm="syz.0.1201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa37498e969 code=0x7ffc0000
[  829.523732][T11477] netlink: 52 bytes leftover after parsing attributes in process `syz.0.1201'.
[  829.734451][   T30] audit: type=1326 audit(1747362255.823:194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11473 comm="syz.0.1201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa37498e969 code=0x7ffc0000
[  829.764424][   T30] audit: type=1326 audit(1747362255.843:195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11473 comm="syz.0.1201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7fa37498e969 code=0x7ffc0000
[  829.827032][ T9192] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  830.085983][   T30] audit: type=1326 audit(1747362255.853:196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11473 comm="syz.0.1201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fa37498e9a3 code=0x7ffc0000
[  830.654410][   T30] audit: type=1326 audit(1747362255.853:197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11473 comm="syz.0.1201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fa37498e9a3 code=0x7ffc0000
[  830.698100][T11492] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  830.729978][   T30] audit: type=1326 audit(1747362255.913:198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11473 comm="syz.0.1201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa37498e969 code=0x7ffc0000
[  830.753214][T11492] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  830.761088][   T30] audit: type=1326 audit(1747362255.913:199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11473 comm="syz.0.1201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa37498e969 code=0x7ffc0000
[  830.782953][T11492] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  830.792529][T11492] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  830.800321][T11492] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  830.982897][T11503] xt_hashlimit: overflow, rate too high: 0
[  831.473698][ T9192] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  832.244858][T11514] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1207'.
[  832.253744][T11514] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1207'.
[  832.356579][ T9192] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  832.596381][T11491] lo speed is unknown, defaulting to 1000
[  833.194712][T11492] Bluetooth: hci0: command tx timeout
[  833.245955][T11491] hsr0 speed is unknown, defaulting to 1000
[  833.354838][T11491] lo speed is unknown, defaulting to 1000
[  835.444611][T11492] Bluetooth: hci0: command tx timeout
[  835.619162][ T9192] bridge_slave_1: left allmulticast mode
[  835.690204][ T9192] bridge_slave_1: left promiscuous mode
[  835.710281][ T9192] bridge0: port 2(bridge_slave_1) entered disabled state
[  836.199978][ T9192] bridge_slave_0: left allmulticast mode
[  836.780290][T11560] xt_physdev: --physdev-out and --physdev-is-out only supported in the FORWARD and POSTROUTING chains with bridged traffic
[  837.184492][T11562] xt_hashlimit: overflow, rate too high: 0
[  837.202882][T11492] Bluetooth: hci3: unexpected event for opcode 0x2011
[  837.243719][ T9192] bridge_slave_0: left promiscuous mode
[  837.277397][ T9192] bridge0: port 1(bridge_slave_0) entered disabled state
[  837.474650][T11492] Bluetooth: hci0: command tx timeout
[  838.571694][ T9192] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  838.583495][ T9192] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  838.603747][ T9192] bond0 (unregistering): Released all slaves
[  839.120963][T11577] sctp: [Deprecated]: syz.1.1222 (pid 11577) Use of struct sctp_assoc_value in delayed_ack socket option.
[  839.120963][T11577] Use struct sctp_sack_info instead
[  839.546429][T11492] Bluetooth: hci0: command tx timeout
[  839.583118][T11585] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1223'.
[  840.231253][T11598] EXT4-fs: Value of option "test_dummy_encryption" is unrecognized
[  841.390167][T11492] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[  841.400145][T11492] Bluetooth: hci3: Injecting HCI hardware error event
[  841.413888][ T5833] Bluetooth: hci3: hardware error 0x00
[  841.533068][ T9192] hsr_slave_0: left promiscuous mode
[  841.571571][ T9192] hsr_slave_1: left promiscuous mode
[  841.593916][ T9192] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  841.607002][ T9192] batman_adv: batadv0: Removing interface: batadv_slave_0
[  841.628919][ T9192] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  841.640553][ T9192] batman_adv: batadv0: Removing interface: batadv_slave_1
[  841.683260][ T9192] veth1_macvtap: left promiscuous mode
[  841.692488][ T9192] veth0_macvtap: left promiscuous mode
[  841.700977][ T9192] veth1_vlan: left promiscuous mode
[  841.715433][ T9192] veth0_vlan: left promiscuous mode
[  841.913065][T11616] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1228'.
[  841.976693][T11492] Bluetooth: hci4: unexpected event for opcode 0x64c6
[  843.544545][ T5833] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[  844.210482][ T9192] team0 (unregistering): Port device team_slave_1 removed
[  844.415585][ T9192] team0 (unregistering): Port device team_slave_0 removed
[  846.518965][T11491] chnl_net:caif_netlink_parms(): no params data found
[  846.547772][T11612] hsr0: entered promiscuous mode
[  846.574584][T11616] hsr_slave_0: left promiscuous mode
[  846.587832][T11616] hsr_slave_1: left promiscuous mode
[  848.703883][T11491] bridge0: port 1(bridge_slave_0) entered blocking state
[  848.777704][T11693] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1246'.
[  849.474945][T11491] bridge0: port 1(bridge_slave_0) entered disabled state
[  849.495850][T11491] bridge_slave_0: entered allmulticast mode
[  849.503659][T11491] bridge_slave_0: entered promiscuous mode
[  849.512871][T11491] bridge0: port 2(bridge_slave_1) entered blocking state
[  849.524069][T11491] bridge0: port 2(bridge_slave_1) entered disabled state
[  849.554584][T11491] bridge_slave_1: entered allmulticast mode
[  849.562393][T11491] bridge_slave_1: entered promiscuous mode
[  850.071371][T11714] xt_hashlimit: overflow, rate too high: 0
[  850.389678][ T5833] Bluetooth: hci4: unexpected event for opcode 0x2011
[  851.030531][T11491] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  851.195833][T11491] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  851.810799][T11735] netlink: 'syz.1.1254': attribute type 4 has an invalid length.
[  853.210788][T11491] team0: Port device team_slave_0 added
[  853.223930][T11491] team0: Port device team_slave_1 added
[  854.884756][ T5833] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0
[  854.893380][ T5833] Bluetooth: hci4: Injecting HCI hardware error event
[  854.902479][ T5833] Bluetooth: hci4: hardware error 0x00
[  856.127165][T11491] batman_adv: batadv0: Adding interface: batadv_slave_0
[  856.134230][T11491] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  857.126186][T11491] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  857.188376][T11491] batman_adv: batadv0: Adding interface: batadv_slave_1
[  857.205078][T11491] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  857.807556][T11491] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  857.893235][ T5833] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  858.314974][    C1] hrtimer: interrupt took 21650 ns
[  859.172313][T11491] hsr_slave_0: entered promiscuous mode
[  859.246358][T11491] hsr_slave_1: entered promiscuous mode
[  859.252766][T11491] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  859.291135][T11491] Cannot create hsr debugfs directory
[  860.064684][T11793] workqueue: Failed to create a rescuer kthread for wq "ceph-watch-notify": -EINTR
[  861.769145][T11820] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1273'.
[  862.421074][T11814] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1271'.
[  864.976573][T11842] overlayfs: missing 'lowerdir'
[  866.308736][T11860] xt_hashlimit: size too large, truncated to 1048576
[  869.155030][T11890] tmpfs: Bad value for 'mpol'
[  869.414967][T11491] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  869.769241][T11491] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  870.493304][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  871.365412][T11903] Can't find ip_set type hash:m
[  871.391645][T11491] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  871.708275][T11902] netdevsim netdevsim1: Direct firmware load for ./file0 failed with error -2
[  871.718822][T11902] netdevsim netdevsim1: Falling back to sysfs fallback for: ./file0
[  872.496848][T11491] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  872.801661][T11491] 8021q: adding VLAN 0 to HW filter on device bond0
[  872.842122][   T30] kauditd_printk_skb: 83 callbacks suppressed
[  872.842138][   T30] audit: type=1326 audit(1747362299.493:283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11923 comm="syz.1.1298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7fc58e969 code=0x7ffc0000
[  874.287375][T11933] overlayfs: failed to clone upperpath
[  874.612686][T11491] 8021q: adding VLAN 0 to HW filter on device team0
[  874.663474][   T30] audit: type=1326 audit(1747362299.533:284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11923 comm="syz.1.1298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=151 compat=0 ip=0x7ff7fc58e969 code=0x7ffc0000
[  874.716109][ T6561] bridge0: port 1(bridge_slave_0) entered blocking state
[  874.723394][ T6561] bridge0: port 1(bridge_slave_0) entered forwarding state
[  874.741230][ T6561] bridge0: port 2(bridge_slave_1) entered blocking state
[  874.748560][ T6561] bridge0: port 2(bridge_slave_1) entered forwarding state
[  874.760861][   T30] audit: type=1326 audit(1747362299.533:285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11923 comm="syz.1.1298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7fc58e969 code=0x7ffc0000
[  874.797591][   T30] audit: type=1326 audit(1747362299.533:286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11923 comm="syz.1.1298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7ff7fc58e969 code=0x7ffc0000
[  874.830499][   T30] audit: type=1326 audit(1747362299.533:287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11923 comm="syz.1.1298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7fc58e969 code=0x7ffc0000
[  874.917598][   T30] audit: type=1326 audit(1747362299.533:288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11923 comm="syz.1.1298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7ff7fc58e969 code=0x7ffc0000
[  875.078499][   T30] audit: type=1326 audit(1747362299.533:289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11923 comm="syz.1.1298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7fc58e969 code=0x7ffc0000
[  875.178603][   T30] audit: type=1326 audit(1747362299.533:290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11923 comm="syz.1.1298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7ff7fc58e969 code=0x7ffc0000
[  875.264053][T11944] Bluetooth: MGMT ver 1.23
[  875.282410][   T30] audit: type=1326 audit(1747362300.523:291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11923 comm="syz.1.1298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7fc58e969 code=0x7ffc0000
[  875.305445][   T30] audit: type=1326 audit(1747362300.543:292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11923 comm="syz.1.1298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7fc58e969 code=0x7ffc0000
[  878.378955][T11980] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1306'.
[  878.388147][T11980] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1306'.
[  879.212631][T11980] syz.0.1306: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  879.228093][T11980] CPU: 1 UID: 0 PID: 11980 Comm: syz.0.1306 Not tainted 6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0 PREEMPT(full) 
[  879.228120][T11980] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  879.228139][T11980] Call Trace:
[  879.228151][T11980]  <TASK>
[  879.228163][T11980]  dump_stack_lvl+0x189/0x250
[  879.228199][T11980]  ? __pfx_dump_stack_lvl+0x10/0x10
[  879.228227][T11980]  ? __pfx__printk+0x10/0x10
[  879.228257][T11980]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  879.228290][T11980]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  879.228324][T11980]  ? cpuset_print_current_mems_allowed+0x2ee/0x360
[  879.228359][T11980]  warn_alloc+0x214/0x310
[  879.228380][T11980]  ? __pfx___schedule+0x10/0x10
[  879.228406][T11980]  ? __pfx_warn_alloc+0x10/0x10
[  879.228427][T11980]  ? kasan_save_track+0x4f/0x80
[  879.228472][T11980]  ? __kmalloc_cache_noprof+0x230/0x3d0
[  879.228501][T11980]  ? xskq_create+0x56/0x170
[  879.228525][T11980]  ? __x64_sys_setsockopt+0x18b/0x220
[  879.228549][T11980]  ? do_syscall_64+0xf6/0x210
[  879.228573][T11980]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  879.228603][T11980]  __vmalloc_node_range_noprof+0x125/0x12c0
[  879.228652][T11980]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  879.228676][T11980]  ? __kasan_kmalloc+0x93/0xb0
[  879.228710][T11980]  vmalloc_user_noprof+0x74/0x80
[  879.228731][T11980]  ? xskq_create+0xbf/0x170
[  879.228752][T11980]  xskq_create+0xbf/0x170
[  879.228778][T11980]  xsk_init_queue+0xb0/0x110
[  879.228803][T11980]  xsk_setsockopt+0x43f/0x710
[  879.228827][T11980]  ? __pfx_xsk_setsockopt+0x10/0x10
[  879.228851][T11980]  ? __lock_acquire+0xaac/0xd20
[  879.228884][T11980]  ? bpf_lsm_socket_setsockopt+0x9/0x20
[  879.228904][T11980]  ? __pfx_xsk_setsockopt+0x10/0x10
[  879.228928][T11980]  do_sock_setsockopt+0x25a/0x3e0
[  879.228956][T11980]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  879.228979][T11980]  ? __fget_files+0x2a/0x420
[  879.229002][T11980]  ? __fget_files+0x3a0/0x420
[  879.229019][T11980]  ? __fget_files+0x2a/0x420
[  879.229045][T11980]  __x64_sys_setsockopt+0x18b/0x220
[  879.229077][T11980]  do_syscall_64+0xf6/0x210
[  879.229103][T11980]  ? asm_sysvec_call_function_single+0x1a/0x20
[  879.229123][T11980]  ? clear_bhb_loop+0x60/0xb0
[  879.229165][T11980]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  879.229185][T11980] RIP: 0033:0x7fa37498e969
[  879.229204][T11980] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  879.229223][T11980] RSP: 002b:00007fa375883038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  879.229244][T11980] RAX: ffffffffffffffda RBX: 00007fa374bb6160 RCX: 00007fa37498e969
[  879.229259][T11980] RDX: 0000000000000006 RSI: 000000000000011b RDI: 0000000000000009
[  879.229272][T11980] RBP: 00007fa374a10ab1 R08: 0000000000000052 R09: 0000000000000000
[  879.229285][T11980] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000000
[  879.229299][T11980] R13: 0000000000000000 R14: 00007fa374bb6160 R15: 00007ffd7c73d948
[  879.229330][T11980]  </TASK>
[  879.229344][T11980] Mem-Info:
[  879.535649][T11980] active_anon:7251 inactive_anon:36866 isolated_anon:0
[  879.535649][T11980]  active_file:20394 inactive_file:38409 isolated_file:0
[  879.535649][T11980]  unevictable:768 dirty:355 writeback:0
[  879.535649][T11980]  slab_reclaimable:7730 slab_unreclaimable:103383
[  879.535649][T11980]  mapped:42954 shmem:39525 pagetables:1112
[  879.535649][T11980]  sec_pagetables:0 bounce:0
[  879.535649][T11980]  kernel_misc_reclaimable:0
[  879.535649][T11980]  free:1279546 free_pcp:452 free_cma:0
[  879.582786][T11980] Node 0 active_anon:29004kB inactive_anon:147464kB active_file:81328kB inactive_file:153636kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:171772kB dirty:1420kB writeback:0kB shmem:156564kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11000kB pagetables:4448kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  879.617013][T11980] Node 1 active_anon:0kB inactive_anon:0kB active_file:248kB inactive_file:0kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:44kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:80kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  879.648435][T11980] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  879.675566][T11980] lowmem_reserve[]: 0 2504 2504 2504 2504
[  879.681392][T11980] Node 0 DMA32 free:1192448kB boost:0kB min:34304kB low:42880kB high:51456kB reserved_highatomic:0KB active_anon:38000kB inactive_anon:135860kB active_file:81236kB inactive_file:153624kB unevictable:1536kB writepending:1420kB present:3129332kB managed:2564584kB mlocked:0kB bounce:0kB free_pcp:4332kB local_pcp:476kB free_cma:0kB
[  879.712558][T11980] lowmem_reserve[]: 0 0 0 0 0
[  879.717365][T11980] Node 0 Normal free:0kB boost:0kB min:0kB low:0kB high:0kB reserved_highatomic:0KB active_anon:4kB inactive_anon:4kB active_file:92kB inactive_file:12kB unevictable:0kB writepending:0kB present:1048580kB managed:112kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  879.744059][T11980] lowmem_reserve[]: 0 0 0 0 0
[  879.749019][T11980] Node 1 Normal free:3910376kB boost:0kB min:55592kB low:69488kB high:83384kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:248kB inactive_file:0kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  879.777906][T11980] lowmem_reserve[]: 0 0 0 0 0
[  879.782677][T11980] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  879.795808][T11980] Node 0 DMA32: 2*4kB (UE) 41*8kB (E) 28*16kB (ME) 106*32kB (UME) 117*64kB (UME) 104*128kB (UE) 62*256kB (UE) 25*512kB (UME) 8*1024kB (UE) 8*2048kB (UME) 272*4096kB (UM) = 1192336kB
[  879.814154][T11980] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[  879.825833][T11980] Node 1 Normal: 236*4kB (UME) 55*8kB (UME) 36*16kB (UME) 190*32kB (UME) 82*64kB (UME) 42*128kB (UME) 20*256kB (UME) 7*512kB (UME) 4*1024kB (UME) 2*2048kB (UE) 946*4096kB (M) = 3910376kB
[  879.844472][T11980] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  879.854037][T11980] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  879.863585][T11980] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  879.873404][T11980] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  879.882741][T11980] 95499 total pagecache pages
[  879.887474][T11980] 0 pages in swap cache
[  879.891647][T11980] Free swap  = 124996kB
[  879.895995][T11980] Total swap = 124996kB
[  879.900168][T11980] 2097051 pages RAM
[  879.903990][T11980] 0 pages HighMem/MovableOnly
[  879.908702][T11980] 424246 pages reserved
[  879.912868][T11980] 0 pages cma reserved
[  881.116746][T11491] 8021q: adding VLAN 0 to HW filter on device batadv0
[  881.223486][   T30] audit: type=1326 audit(1747362307.873:293): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12002 comm="syz.2.1310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9be638e969 code=0x7ffc0000
[  881.340633][   T30] audit: type=1326 audit(1747362307.873:294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12002 comm="syz.2.1310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=151 compat=0 ip=0x7f9be638e969 code=0x7ffc0000
[  882.014480][   T30] audit: type=1326 audit(1747362307.873:295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12002 comm="syz.2.1310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9be638e969 code=0x7ffc0000
[  882.086067][   T30] audit: type=1326 audit(1747362307.873:296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12002 comm="syz.2.1310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7f9be638e969 code=0x7ffc0000
[  882.110510][   T30] audit: type=1326 audit(1747362307.873:297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12002 comm="syz.2.1310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9be638e969 code=0x7ffc0000
[  882.132404][   T30] audit: type=1326 audit(1747362307.873:298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12002 comm="syz.2.1310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f9be638e969 code=0x7ffc0000
[  882.134349][T12012] Process accounting resumed
[  882.193047][   T30] audit: type=1326 audit(1747362307.873:299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12002 comm="syz.2.1310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9be638e969 code=0x7ffc0000
[  882.229808][   T30] audit: type=1326 audit(1747362307.873:300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12002 comm="syz.2.1310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f9be638e969 code=0x7ffc0000
[  882.324374][   T30] audit: type=1326 audit(1747362307.873:301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12002 comm="syz.2.1310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9be638e969 code=0x7ffc0000
[  882.408107][   T30] audit: type=1326 audit(1747362307.873:302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12002 comm="syz.2.1310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9be638e969 code=0x7ffc0000
[  882.833003][T12027] netlink: 'syz.4.1313': attribute type 3 has an invalid length.
[  882.840872][T12027] netlink: 3 bytes leftover after parsing attributes in process `syz.4.1313'.
[  883.009384][T12029] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1315'.
[  884.063541][T12038] overlayfs: failed to clone upperpath
[  885.251222][T11491] veth0_vlan: entered promiscuous mode
[  885.289354][T11491] veth1_vlan: entered promiscuous mode
[  885.454842][T11491] veth0_macvtap: entered promiscuous mode
[  885.638568][T11491] veth1_macvtap: entered promiscuous mode
[  886.411303][T11491] batman_adv: batadv0: Interface activated: batadv_slave_0
[  886.432620][T11491] batman_adv: batadv0: Interface activated: batadv_slave_1
[  886.451901][T11491] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  886.463070][T11491] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  886.473775][T11491] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  886.493302][T11491] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  888.086049][   T30] audit: type=1326 audit(1747362314.743:303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12069 comm="syz.4.1323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d0db8e969 code=0x7ffc0000
[  888.165346][   T30] audit: type=1326 audit(1747362314.743:304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12069 comm="syz.4.1323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d0db8e969 code=0x7ffc0000
[  888.270277][   T30] audit: type=1326 audit(1747362314.743:305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12069 comm="syz.4.1323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=151 compat=0 ip=0x7f3d0db8e969 code=0x7ffc0000
[  888.384559][   T30] audit: type=1326 audit(1747362314.743:306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12069 comm="syz.4.1323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d0db8e969 code=0x7ffc0000
[  888.444788][   T30] audit: type=1326 audit(1747362314.763:307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12069 comm="syz.4.1323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7f3d0db8e969 code=0x7ffc0000
[  888.544406][   T30] audit: type=1326 audit(1747362314.763:308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12069 comm="syz.4.1323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d0db8e969 code=0x7ffc0000
[  888.622820][   T30] audit: type=1326 audit(1747362314.763:309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12069 comm="syz.4.1323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f3d0db8e969 code=0x7ffc0000
[  888.714420][   T30] audit: type=1326 audit(1747362314.763:310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12069 comm="syz.4.1323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d0db8e969 code=0x7ffc0000
[  888.822581][   T30] audit: type=1326 audit(1747362314.763:311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12069 comm="syz.4.1323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f3d0db8e969 code=0x7ffc0000
[  890.064786][   T30] audit: type=1326 audit(1747362314.763:312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12069 comm="syz.4.1323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d0db8e969 code=0x7ffc0000
[  891.059750][T12101] netlink: 'syz.1.1328': attribute type 4 has an invalid length.
[  891.068912][T12101] netlink: 3657 bytes leftover after parsing attributes in process `syz.1.1328'.
[  891.865803][T12103] netlink: 5364 bytes leftover after parsing attributes in process `syz.2.1329'.
[  893.003738][ T5833] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  893.013518][ T5833] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  893.021486][ T5833] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  893.030665][ T5833] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  893.038542][ T5833] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  894.459785][ T9198] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  894.634100][T12137] overlayfs: failed to clone upperpath
[  895.300928][ T5833] Bluetooth: hci0: command tx timeout
[  895.790916][   T30] kauditd_printk_skb: 1 callbacks suppressed
[  895.790932][   T30] audit: type=1326 audit(1747362322.443:314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12131 comm="syz.0.1336" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa37498e969 code=0x7ffc0000
[  896.119164][   T30] audit: type=1326 audit(1747362322.443:315): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12131 comm="syz.0.1336" exe="/root/syz-executor" sig=0 arch=c000003e syscall=151 compat=0 ip=0x7fa37498e969 code=0x7ffc0000
[  896.169912][   T30] audit: type=1326 audit(1747362322.443:316): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12131 comm="syz.0.1336" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa37498e969 code=0x7ffc0000
[  896.203179][   T30] audit: type=1326 audit(1747362322.443:317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12131 comm="syz.0.1336" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa37498e969 code=0x7ffc0000
[  896.960006][ T9198] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  896.974939][   T30] audit: type=1326 audit(1747362322.443:318): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12131 comm="syz.0.1336" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7fa37498e969 code=0x7ffc0000
[  897.031497][   T30] audit: type=1326 audit(1747362322.443:319): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12131 comm="syz.0.1336" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa37498e969 code=0x7ffc0000
[  897.050155][T12115] lo speed is unknown, defaulting to 1000
[  897.055031][   T30] audit: type=1326 audit(1747362322.443:320): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12131 comm="syz.0.1336" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fa37498e969 code=0x7ffc0000
[  897.254259][T12115] hsr0 speed is unknown, defaulting to 1000
[  897.261950][T12115] lo speed is unknown, defaulting to 1000
[  897.314632][   T30] audit: type=1326 audit(1747362322.443:321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12131 comm="syz.0.1336" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa37498e969 code=0x7ffc0000
[  897.653860][ T5833] Bluetooth: hci0: command tx timeout
[  897.713750][   T30] audit: type=1326 audit(1747362322.443:322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12131 comm="syz.0.1336" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fa37498e969 code=0x7ffc0000
[  897.738757][   T30] audit: type=1326 audit(1747362322.443:323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12131 comm="syz.0.1336" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa37498e969 code=0x7ffc0000
[  898.005847][ T9198] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  898.215150][T12165] netlink: 'syz.0.1344': attribute type 1 has an invalid length.
[  899.490523][ T9198] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  899.652392][T12174] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1346'.
[  900.463004][ T5833] Bluetooth: hci0: command tx timeout
[  902.203994][T12192] xt_NFQUEUE: number of queues (65532) out of range (got 66665)
[  902.514645][ T5833] Bluetooth: hci0: command tx timeout
[  903.490517][ T9198] bridge_slave_1: left allmulticast mode
[  903.518953][ T9198] bridge_slave_1: left promiscuous mode
[  903.524946][ T9198] bridge0: port 2(bridge_slave_1) entered disabled state
[  903.535574][ T9198] bridge_slave_0: left allmulticast mode
[  903.541552][ T9198] bridge_slave_0: left promiscuous mode
[  903.547776][ T9198] bridge0: port 1(bridge_slave_0) entered disabled state
[  904.148694][T12228] syz.4.1355: attempt to access beyond end of device
[  904.148694][T12228] loop4: rw=0, sector=0, nr_sectors = 1 limit=0
[  904.161958][T12228] FAT-fs (loop4): unable to read boot sector
[  904.195001][T12228] x_tables: (null)_tables: SNAT target: only valid in nat table, not syz0
[  906.553709][ T9198] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  906.578713][ T9198] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  906.599899][ T9198] bond0 (unregistering): Released all slaves
[  906.911399][T12247] overlayfs: failed to clone upperpath
[  907.990894][T12115] chnl_net:caif_netlink_parms(): no params data found
[  911.275807][ T9198] hsr_slave_0: left promiscuous mode
[  911.296237][ T9198] hsr_slave_1: left promiscuous mode
[  911.309957][ T9198] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  911.361255][ T9198] batman_adv: batadv0: Removing interface: batadv_slave_0
[  911.432747][ T9198] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  911.464339][ T9198] batman_adv: batadv0: Removing interface: batadv_slave_1
[  912.161026][ T9198] veth1_macvtap: left promiscuous mode
[  912.169252][ T9198] veth0_macvtap: left promiscuous mode
[  912.177843][ T9198] veth1_vlan: left promiscuous mode
[  912.183333][ T9198] veth0_vlan: left promiscuous mode
[  913.315093][T12312] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1370'.
[  913.687494][T12320] overlayfs: failed to clone upperpath
[  914.316602][   T30] kauditd_printk_skb: 1 callbacks suppressed
[  914.316624][   T30] audit: type=1800 audit(1747362340.953:325): pid=12299 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.2.1370" name="cgroup.controllers" dev="tmpfs" ino=1881 res=0 errno=0
[  916.277975][T12341] netlink: 'syz.0.1374': attribute type 4 has an invalid length.
[  916.363187][T12342] netlink: 'syz.0.1374': attribute type 4 has an invalid length.
[  916.972925][T12348] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1376'.
[  920.136219][ T9198] team0 (unregistering): Port device team_slave_1 removed
[  920.252045][T12376] xt_bpf: check failed: parse error
[  920.964069][ T9198] team0 (unregistering): Port device team_slave_0 removed
[  923.486546][T12376] bridge0: port 3(gretap0) entered blocking state
[  923.493338][T12376] bridge0: port 3(gretap0) entered disabled state
[  923.500387][T12376] gretap0: entered allmulticast mode
[  923.508297][T12376] gretap0: entered promiscuous mode
[  923.515114][T12376] bridge0: port 3(gretap0) entered blocking state
[  923.521910][T12376] bridge0: port 3(gretap0) entered forwarding state
[  923.530708][T12377] gretap0: left allmulticast mode
[  923.536102][T12377] gretap0: left promiscuous mode
[  923.542405][T12377] bridge0: port 3(gretap0) entered disabled state
[  923.860753][T12115] bridge0: port 1(bridge_slave_0) entered blocking state
[  923.889394][T12115] bridge0: port 1(bridge_slave_0) entered disabled state
[  923.909792][T12115] bridge_slave_0: entered allmulticast mode
[  923.933386][T12115] bridge_slave_0: entered promiscuous mode
[  923.970824][T12115] bridge0: port 2(bridge_slave_1) entered blocking state
[  923.994147][T12115] bridge0: port 2(bridge_slave_1) entered disabled state
[  924.002240][T12115] bridge_slave_1: entered allmulticast mode
[  924.474757][T12115] bridge_slave_1: entered promiscuous mode
[  924.537804][T12115] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  924.589609][T12115] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  924.702953][T12115] team0: Port device team_slave_0 added
[  924.815805][T12115] team0: Port device team_slave_1 added
[  924.959911][T12115] batman_adv: batadv0: Adding interface: batadv_slave_0
[  925.139969][T12115] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  925.167086][T12115] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  925.216530][T12115] batman_adv: batadv0: Adding interface: batadv_slave_1
[  925.308674][T12426] ptrace attach of "./syz-executor exec"[5827] was attempted by "./syz-executor exec"[12426]
[  925.871381][T12115] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  926.053482][T12115] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  927.187554][T12115] hsr_slave_0: entered promiscuous mode
[  927.196704][T12115] hsr_slave_1: entered promiscuous mode
[  927.217644][T12115] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  927.227792][T12115] Cannot create hsr debugfs directory
[  928.439784][T12445] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1397'.
[  931.426141][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  931.886694][T12475] xt_CT: You must specify a L4 protocol and not use inversions on it
[  932.922613][T12480] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1405'.
[  932.987447][T12480] overlayfs: failed to clone upperpath
[  936.984220][T12487] netlink: 80 bytes leftover after parsing attributes in process `syz.1.1406'.
[  938.012290][ T5878] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  938.866044][ T5878] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  938.916360][ T5878] usb 5-1: New USB device found, idVendor=050d, idProduct=011b, bcdDevice=6f.a4
[  939.000264][ T5878] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  939.059884][ T5878] usb 5-1: config 0 descriptor??
[  939.139360][ T5878] usb 5-1: bad CDC descriptors
[  939.203636][T12115] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  939.252426][T12115] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  939.273507][T12115] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  939.297782][T12115] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  940.431168][T12560] ecryptfs_validate_options: You must supply at least one valid auth tok signature as a mount parameter; see the eCryptfs README
[  940.446584][T12560] Error validating options; rc = [-22]
[  941.030262][T12115] 8021q: adding VLAN 0 to HW filter on device bond0
[  941.157717][T12569] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1421'.
[  941.702272][T12115] 8021q: adding VLAN 0 to HW filter on device team0
[  942.260475][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[  942.267853][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[  942.471857][ T9188] bridge0: port 2(bridge_slave_1) entered blocking state
[  942.479014][ T9188] bridge0: port 2(bridge_slave_1) entered forwarding state
[  942.566487][   T47] usb 5-1: USB disconnect, device number 8
[  944.004850][T12600] netdevsim netdevsim2 netdevsim0: entered promiscuous mode
[  944.078564][T12600] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  945.916145][T12115] 8021q: adding VLAN 0 to HW filter on device batadv0
[  948.658392][T12655] dlm: non-version read from control device 4106
[  953.322858][T12706] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1445'.
[  953.412985][T12707] NILFS (nullb0): couldn't find nilfs on the device
[  955.001208][T11492] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  955.012045][T11492] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  955.020994][T11492] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  955.030349][T11492] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  955.037998][T11492] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  955.133228][T12725] set match dimension is over the limit!
[  955.205550][T12577] udevd[12577]: inotify_add_watch(7, /dev/nbd64, 10) failed: No such file or directory
[  955.767250][T12584] udevd[12584]: inotify_add_watch(7, /dev/nbd64, 10) failed: No such file or directory
[  956.090842][T12740] overlayfs: failed to clone upperpath
[  957.064496][ T5833] Bluetooth: hci0: command tx timeout
[  957.498299][T12719] lo speed is unknown, defaulting to 1000
[  957.505827][T12719] hsr0 speed is unknown, defaulting to 1000
[  957.515804][T12719] lo speed is unknown, defaulting to 1000
[  958.146621][T12758] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1455'.
[  958.155683][T12758] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1455'.
[  959.407291][T12761] new mount options do not match the existing superblock, will be ignored
[  959.419430][ T5833] Bluetooth: hci0: command tx timeout
[  959.590126][T12756] cgroup: option or name mismatch, new: 0x4 "", old: 0x0 ""
[  960.119940][T12760] workqueue: Failed to create a rescuer kthread for wq "bond2": -EINTR
[  961.903881][T11492] Bluetooth: hci0: command tx timeout
[  963.469363][ T9192] bridge_slave_1: left allmulticast mode
[  963.525192][ T9192] bridge_slave_1: left promiscuous mode
[  963.531027][ T9192] bridge0: port 2(bridge_slave_1) entered disabled state
[  963.610137][ T9192] bridge_slave_0: left allmulticast mode
[  963.765176][ T9192] bridge_slave_0: left promiscuous mode
[  963.771600][ T9192] bridge0: port 1(bridge_slave_0) entered disabled state
[  963.945313][T11492] Bluetooth: hci0: command tx timeout
[  966.535106][T12821] xt_socket: unknown flags 0x50
[  966.684662][T12826] syz.4.1473: attempt to access beyond end of device
[  966.684662][T12826] nbd4: rw=0, sector=64, nr_sectors = 8 limit=0
[  966.698425][T12826] syz.4.1473: attempt to access beyond end of device
[  966.698425][T12826] nbd4: rw=0, sector=120, nr_sectors = 8 limit=0
[  966.711632][T12826] Mount JFS Failure: -5
[  966.771622][T12827] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1473'.
[  967.814741][T12838] netlink: 2028 bytes leftover after parsing attributes in process `syz.4.1476'.
[  967.824325][T12838] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1476'.
[  969.111379][ T9192] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  969.124027][ T9192] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  969.127228][T12847] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1477'.
[  969.143826][T12847] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1477'.
[  969.182450][ T9192] bond0 (unregistering): Released all slaves
[  969.244969][T12817] veth4: entered allmulticast mode
[  969.336764][T12840] lo speed is unknown, defaulting to 1000
[  969.342673][T12840] lo speed is unknown, defaulting to 1000
[  969.349347][T12840] lo speed is unknown, defaulting to 1000
[  969.368342][T12840] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  969.370093][T12719] chnl_net:caif_netlink_parms(): no params data found
[  969.422894][T12840] lo speed is unknown, defaulting to 1000
[  969.430798][T12840] lo speed is unknown, defaulting to 1000
[  969.438384][T12840] lo speed is unknown, defaulting to 1000
[  969.446113][T12840] lo speed is unknown, defaulting to 1000
[  969.453638][T12840] lo speed is unknown, defaulting to 1000
[  969.461214][T12840] lo speed is unknown, defaulting to 1000
[  970.354008][T12856] veth0_vlan: left promiscuous mode
[  970.364189][T12856] veth0_vlan: entered promiscuous mode
[  971.666670][ T9192] hsr_slave_0: left promiscuous mode
[  971.688668][ T9192] hsr_slave_1: left promiscuous mode
[  971.698991][ T9192] batman_adv: batadv0: Removing interface: batadv_slave_0
[  971.993693][ T9192] batman_adv: batadv0: Removing interface: batadv_slave_1
[  972.723738][T12876] IPVS: set_ctl: invalid protocol: 8 224.0.0.1:20002
[  973.091220][T12883] openvswitch: netlink: Actions may not be safe on all matching packets
[  973.942660][T12886] 9pnet_fd: Insufficient options for proto=fd
[  974.463736][T12892] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1488'.
[  976.539644][ T9192] team0 (unregistering): Port device team_slave_1 removed
[  976.636290][ T9192] team0 (unregistering): Port device team_slave_0 removed
[  980.397150][T12719] bridge0: port 1(bridge_slave_0) entered blocking state
[  980.404452][T12719] bridge0: port 1(bridge_slave_0) entered disabled state
[  980.412131][T12719] bridge_slave_0: entered allmulticast mode
[  980.430204][T12719] bridge_slave_0: entered promiscuous mode
[  981.057449][T12941] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1501'.
[  981.110269][T12719] bridge0: port 2(bridge_slave_1) entered blocking state
[  981.189828][T12719] bridge0: port 2(bridge_slave_1) entered disabled state
[  981.422792][T12719] bridge_slave_1: entered allmulticast mode
[  981.451680][T12719] bridge_slave_1: entered promiscuous mode
[  982.304966][T12719] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  982.342508][T12719] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  982.676031][T12719] team0: Port device team_slave_0 added
[  982.811754][T12719] team0: Port device team_slave_1 added
[  984.140596][T12719] batman_adv: batadv0: Adding interface: batadv_slave_0
[  984.191216][T12719] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  984.244515][T12719] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  985.409210][T12719] batman_adv: batadv0: Adding interface: batadv_slave_1
[  985.424305][T12719] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  985.488643][T12719] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  986.751337][T13005] openvswitch: netlink: Flow get message rejected, Key attribute missing.
[  987.533702][T12719] hsr_slave_0: entered promiscuous mode
[  987.545437][T12719] hsr_slave_1: entered promiscuous mode
[  987.551746][T12719] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  987.725281][T12719] Cannot create hsr debugfs directory
[  990.107280][T13033] Freezing with imperfect legacy cgroup freezer. See cgroup.freeze of cgroup v2
[  992.831363][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  998.252432][T12719] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  998.293140][T12719] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  998.326812][T13106] netlink: 'syz.4.1533': attribute type 1 has an invalid length.
[  998.335567][T12719] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  998.498484][T13106] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1533'.
[  998.508002][T12719] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  998.509204][T13106] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1533'.
[  999.528931][T12719] 8021q: adding VLAN 0 to HW filter on device bond0
[  999.602378][T12719] 8021q: adding VLAN 0 to HW filter on device team0
[  999.778130][ T9198] bridge0: port 1(bridge_slave_0) entered blocking state
[  999.785401][ T9198] bridge0: port 1(bridge_slave_0) entered forwarding state
[  999.902159][T13116] overlayfs: failed to clone upperpath
[ 1000.596678][T13118] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(7)
[ 1000.603226][T13118] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[ 1000.610972][T13118] vhci_hcd vhci_hcd.0: Device attached
[ 1000.695676][   T36] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1000.702942][   T36] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1000.745904][T13125] trusted_key: syz.1.1538 sent an empty control message without MSG_MORE.
[ 1000.904591][ T5843] usb 41-1: new low-speed USB device number 3 using vhci_hcd
[ 1002.026376][T12719] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1003.402667][T13151] netlink: ct family unspecified
[ 1003.407943][T13151] openvswitch: netlink: Actions may not be safe on all matching packets
[ 1003.419225][T13151] netlink: 'syz.2.1542': attribute type 21 has an invalid length.
[ 1003.928712][T13154] netlink: 'syz.4.1543': attribute type 4 has an invalid length.
[ 1003.936601][T13154] netlink: 3657 bytes leftover after parsing attributes in process `syz.4.1543'.
[ 1005.681806][T12719] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1006.422320][T13166] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[ 1009.162684][T12719] veth0_vlan: entered promiscuous mode
[ 1009.983830][T12719] veth1_vlan: entered promiscuous mode
[ 1010.070630][T12719] veth0_macvtap: entered promiscuous mode
[ 1010.107591][T12719] veth1_macvtap: entered promiscuous mode
[ 1011.182955][T13209] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1555'.
[ 1011.668902][T13230] overlayfs: failed to clone upperpath
[ 1014.510397][ T5833] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1014.605936][ T5833] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1014.630266][ T5833] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1014.638913][ T5833] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1014.652767][ T5833] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1014.788251][   T30] audit: type=1326 audit(1747362441.443:326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13258 comm="syz.0.1564" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa37498e969 code=0x7ffc0000
[ 1014.881781][   T30] audit: type=1326 audit(1747362441.473:327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13258 comm="syz.0.1564" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fa374985927 code=0x7ffc0000
[ 1014.966877][   T30] audit: type=1326 audit(1747362441.473:328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13258 comm="syz.0.1564" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa37492ab39 code=0x7ffc0000
[ 1014.967367][T13266] pimreg3: entered allmulticast mode
[ 1015.022808][   T30] audit: type=1326 audit(1747362441.473:329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13258 comm="syz.0.1564" exe="/root/syz-executor" sig=0 arch=c000003e syscall=151 compat=0 ip=0x7fa37498e969 code=0x7ffc0000
[ 1015.044411][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1015.059521][T13255] lo speed is unknown, defaulting to 1000
[ 1015.094491][   T30] audit: type=1326 audit(1747362441.473:330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13258 comm="syz.0.1564" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa37498e969 code=0x7ffc0000
[ 1015.164580][   T30] audit: type=1326 audit(1747362441.473:331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13258 comm="syz.0.1564" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fa374985927 code=0x7ffc0000
[ 1015.234338][   T30] audit: type=1326 audit(1747362441.473:332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13258 comm="syz.0.1564" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa37492ab39 code=0x7ffc0000
[ 1015.287470][T13258] pimreg3: left allmulticast mode
[ 1015.314353][   T30] audit: type=1326 audit(1747362441.473:333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13258 comm="syz.0.1564" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa37498e969 code=0x7ffc0000
[ 1015.394449][   T30] audit: type=1326 audit(1747362441.473:334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13258 comm="syz.0.1564" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7fa37498e969 code=0x7ffc0000
[ 1015.426687][T13255] hsr0 speed is unknown, defaulting to 1000
[ 1015.454305][   T30] audit: type=1326 audit(1747362441.473:335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13258 comm="syz.0.1564" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa37498e969 code=0x7ffc0000
[ 1015.569135][T13255] lo speed is unknown, defaulting to 1000
[ 1017.061059][T13291] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[ 1017.103198][T11492] Bluetooth: hci0: command tx timeout
[ 1018.184884][ T9188] bridge_slave_1: left allmulticast mode
[ 1018.190592][ T9188] bridge_slave_1: left promiscuous mode
[ 1018.257090][ T9188] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1018.605533][ T9188] bridge_slave_0: left allmulticast mode
[ 1018.611235][ T9188] bridge_slave_0: left promiscuous mode
[ 1019.146430][ T9188] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1019.650805][T11492] Bluetooth: hci0: command tx timeout
[ 1020.374050][T13323] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1022.026667][T11492] Bluetooth: hci0: command tx timeout
[ 1022.053685][   T30] kauditd_printk_skb: 61 callbacks suppressed
[ 1022.053702][   T30] audit: type=1326 audit(1747362447.793:397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13325 comm="syz.2.1576" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9be638e969 code=0x7ffc0000
[ 1022.238383][   T30] audit: type=1326 audit(1747362447.793:398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13325 comm="syz.2.1576" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9be638e969 code=0x7ffc0000
[ 1022.260613][   T30] audit: type=1326 audit(1747362447.793:399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13325 comm="syz.2.1576" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f9be638e969 code=0x7ffc0000
[ 1022.282751][   T30] audit: type=1326 audit(1747362447.793:400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13325 comm="syz.2.1576" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9be638e969 code=0x7ffc0000
[ 1022.304876][   T30] audit: type=1326 audit(1747362447.793:401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13325 comm="syz.2.1576" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9be638e969 code=0x7ffc0000
[ 1022.327013][   T30] audit: type=1326 audit(1747362447.793:402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13325 comm="syz.2.1576" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7f9be638e969 code=0x7ffc0000
[ 1022.434797][   T30] audit: type=1326 audit(1747362447.793:403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13325 comm="syz.2.1576" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9be638e969 code=0x7ffc0000
[ 1022.504513][   T30] audit: type=1326 audit(1747362447.793:404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13325 comm="syz.2.1576" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9be638e969 code=0x7ffc0000
[ 1022.774700][   T30] audit: type=1326 audit(1747362447.793:405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13325 comm="syz.2.1576" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7f9be638e969 code=0x7ffc0000
[ 1022.797563][   T30] audit: type=1326 audit(1747362447.793:406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13325 comm="syz.2.1576" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9be638e969 code=0x7ffc0000
[ 1022.952884][T13338] overlayfs: failed to resolve './file1': -2
[ 1024.110622][T11492] Bluetooth: hci0: command tx timeout
[ 1026.097629][ T9188] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1026.251318][ T9188] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1026.379184][ T9188] bond0 (unregistering): Released all slaves
[ 1026.529196][T13255] lo speed is unknown, defaulting to 1000
[ 1028.422524][T13392] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1593'.
[ 1031.854168][ T9188] hsr_slave_0: left promiscuous mode
[ 1031.905425][ T9188] hsr_slave_1: left promiscuous mode
[ 1031.911592][ T9188] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1032.032483][ T9188] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1032.104905][ T9188] veth1_macvtap: left promiscuous mode
[ 1032.131571][ T9188] veth0_macvtap: left promiscuous mode
[ 1032.153544][ T9188] veth1_vlan: left promiscuous mode
[ 1032.159070][ T9188] veth0_vlan: left promiscuous mode
[ 1035.651410][ T9188] team0 (unregistering): Port device team_slave_1 removed
[ 1036.131155][ T9188] team0 (unregistering): Port device team_slave_0 removed
[ 1037.978303][T13452] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1609'.
[ 1040.259151][T13466] netlink: 'syz.2.1612': attribute type 4 has an invalid length.
[ 1040.267114][T13466] netlink: 3657 bytes leftover after parsing attributes in process `syz.2.1612'.
[ 1041.659495][T13255] chnl_net:caif_netlink_parms(): no params data found
[ 1042.723450][T13489] netlink: 100 bytes leftover after parsing attributes in process `syz.1.1617'.
[ 1042.807391][T13255] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1042.836867][T13255] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1042.844107][T13255] bridge_slave_0: entered allmulticast mode
[ 1042.886257][T13255] bridge_slave_0: entered promiscuous mode
[ 1043.135161][T13255] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1043.188459][T13255] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1043.245117][T13255] bridge_slave_1: entered allmulticast mode
[ 1043.252975][T13255] bridge_slave_1: entered promiscuous mode
[ 1043.428654][T13502] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1620'.
[ 1044.092590][T13508] overlayfs: failed to clone upperpath
[ 1044.896193][T13255] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1044.936136][T13255] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1046.236296][T13255] team0: Port device team_slave_0 added
[ 1046.268117][T13255] team0: Port device team_slave_1 added
[ 1047.660296][T13255] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1047.667455][T13255] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1047.693897][T13255] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1048.115708][T13255] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1048.218143][T13255] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1048.349853][T13255] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1051.500829][T13560] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1051.596283][T13255] hsr_slave_0: entered promiscuous mode
[ 1051.896498][T13255] hsr_slave_1: entered promiscuous mode
[ 1051.903055][T13255] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1051.935198][T13255] Cannot create hsr debugfs directory
[ 1052.725952][T13582] futex_wake_op: syz.2.1637 tries to shift op by 32; fix this program
[ 1054.270756][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[ 1056.459154][   T30] kauditd_printk_skb: 27 callbacks suppressed
[ 1056.459173][   T30] audit: type=1326 audit(1747362483.112:434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13618 comm="syz.0.1645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa37498e969 code=0x7ffc0000
[ 1056.528669][T13619] pimreg3: entered allmulticast mode
[ 1056.579360][   T30] audit: type=1326 audit(1747362483.112:435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13618 comm="syz.0.1645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=151 compat=0 ip=0x7fa37498e969 code=0x7ffc0000
[ 1056.604813][   T30] audit: type=1326 audit(1747362483.112:436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13618 comm="syz.0.1645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa37498e969 code=0x7ffc0000
[ 1056.629502][   T30] audit: type=1326 audit(1747362483.112:437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13618 comm="syz.0.1645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7fa37498e969 code=0x7ffc0000
[ 1056.982199][T13629] batman_adv: batadv0: Adding interface: dummy0
[ 1056.989630][T13629] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1057.016080][T13629] batman_adv: batadv0: Interface activated: dummy0
[ 1057.149048][T13634] overlayfs: failed to clone upperpath
[ 1057.805703][   T30] audit: type=1326 audit(1747362483.112:438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13618 comm="syz.0.1645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa37498e969 code=0x7ffc0000
[ 1057.906926][   T30] audit: type=1326 audit(1747362483.112:439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13618 comm="syz.0.1645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fa37498e969 code=0x7ffc0000
[ 1058.110912][   T30] audit: type=1326 audit(1747362483.112:440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13618 comm="syz.0.1645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa37498e969 code=0x7ffc0000
[ 1058.195598][T13631] batadv0: mtu less than device minimum
[ 1058.203135][T13631] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[ 1058.215413][T13631] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[ 1058.227489][T13631] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[ 1058.239641][T13631] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[ 1058.251791][T13631] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[ 1058.263867][T13631] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[ 1058.276000][T13631] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[ 1058.287514][T13631] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[ 1058.298961][T13631] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[ 1060.930952][   T30] audit: type=1326 audit(1747362483.112:441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13618 comm="syz.0.1645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fa37498e969 code=0x7ffc0000
[ 1061.309477][   T30] audit: type=1326 audit(1747362483.112:442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13618 comm="syz.0.1645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa37498e969 code=0x7ffc0000
[ 1061.331733][   T30] audit: type=1326 audit(1747362483.152:443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13618 comm="syz.0.1645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fa374985927 code=0x7ffc0000
[ 1062.820615][T13255] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 1062.893043][T13255] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 1063.116608][T13255] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 1063.421608][T13672] netlink: 1216 bytes leftover after parsing attributes in process `syz.0.1654'.
[ 1063.431200][T13672] netlink: 4436 bytes leftover after parsing attributes in process `syz.0.1654'.
[ 1064.728130][T13255] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 1065.059384][T13673] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1655'.
[ 1066.050818][   T30] kauditd_printk_skb: 16 callbacks suppressed
[ 1066.050837][   T30] audit: type=1326 audit(1747362492.692:460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13687 comm="syz.2.1658" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9be638e969 code=0x7ffc0000
[ 1066.148489][T13688] pimreg3: entered allmulticast mode
[ 1066.763698][   T30] audit: type=1326 audit(1747362492.702:461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13687 comm="syz.2.1658" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f9be6385927 code=0x7ffc0000
[ 1066.903400][   T30] audit: type=1326 audit(1747362492.702:462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13687 comm="syz.2.1658" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f9be632ab39 code=0x7ffc0000
[ 1066.932122][   T30] audit: type=1326 audit(1747362492.702:463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13687 comm="syz.2.1658" exe="/root/syz-executor" sig=0 arch=c000003e syscall=151 compat=0 ip=0x7f9be638e969 code=0x7ffc0000
[ 1067.064129][   T30] audit: type=1326 audit(1747362492.702:464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13687 comm="syz.2.1658" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9be638e969 code=0x7ffc0000
[ 1067.110823][T13255] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1067.163087][   T30] audit: type=1326 audit(1747362492.742:465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13687 comm="syz.2.1658" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f9be6385927 code=0x7ffc0000
[ 1067.679762][   T30] audit: type=1326 audit(1747362492.742:466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13687 comm="syz.2.1658" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f9be632ab39 code=0x7ffc0000
[ 1067.701828][   T30] audit: type=1326 audit(1747362492.742:467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13687 comm="syz.2.1658" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7f9be638e969 code=0x7ffc0000
[ 1067.859673][T13705] overlayfs: failed to clone upperpath
[ 1067.981483][   T30] audit: type=1326 audit(1747362492.742:468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13687 comm="syz.2.1658" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9be638e969 code=0x7ffc0000
[ 1068.011330][   T30] audit: type=1326 audit(1747362492.742:469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13687 comm="syz.2.1658" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f9be638e969 code=0x7ffc0000
[ 1068.816375][T13255] 8021q: adding VLAN 0 to HW filter on device team0
[ 1069.576262][   T67] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1069.583391][   T67] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1069.674020][   T67] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1069.681218][   T67] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1071.149110][T13255] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1074.913086][T13796] No such timeout policy "syz1"
[ 1077.032189][T13814] Invalid source name
[ 1077.036616][T13814] UBIFS error (pid: 13814): cannot open "/dev/sg0", error -22
[ 1078.099599][ T5833] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1078.946740][ T5833] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1078.959258][ T5833] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1078.972679][ T5833] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1079.154400][ T5833] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1079.447570][T13821] lo speed is unknown, defaulting to 1000
[ 1079.478139][T13821] hsr0 speed is unknown, defaulting to 1000
[ 1079.519980][T13821] lo speed is unknown, defaulting to 1000
[ 1079.536290][ T6550] bridge_slave_1: left allmulticast mode
[ 1079.553880][ T6550] bridge_slave_1: left promiscuous mode
[ 1079.577821][ T6550] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1079.637326][ T6550] bridge_slave_0: left allmulticast mode
[ 1079.674436][ T6550] bridge_slave_0: left promiscuous mode
[ 1079.684779][ T6550] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1079.750610][T13838] xt_socket: unknown flags 0x8
[ 1081.234365][T11492] Bluetooth: hci0: command tx timeout
[ 1083.313925][T11492] Bluetooth: hci0: command tx timeout
[ 1085.384397][T11492] Bluetooth: hci0: command tx timeout
[ 1086.747330][ T6550] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1086.778197][ T6550] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1086.977653][ T6550] bond0 (unregistering): Released all slaves
[ 1087.047556][T13821] lo speed is unknown, defaulting to 1000
[ 1087.464706][T11492] Bluetooth: hci0: command tx timeout
[ 1091.106792][ T6550] hsr_slave_0: left promiscuous mode
[ 1091.137865][ T6550] hsr_slave_1: left promiscuous mode
[ 1091.511965][T13948] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[ 1091.535147][ T6550] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1091.557632][ T6550] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1094.922596][ T6550] team0 (unregistering): Port device team_slave_1 removed
[ 1096.360173][ T6550] team0 (unregistering): Port device team_slave_0 removed
[ 1097.096742][T14010] netlink: 84 bytes leftover after parsing attributes in process `syz.2.1723'.
[ 1098.463513][T13821] chnl_net:caif_netlink_parms(): no params data found
[ 1099.210485][T13821] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1099.238128][T13821] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1099.251124][T13821] bridge_slave_0: entered allmulticast mode
[ 1099.785485][T13821] bridge_slave_0: entered promiscuous mode
[ 1099.827921][T13821] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1099.960560][T13821] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1099.968839][T13821] bridge_slave_1: entered allmulticast mode
[ 1099.977711][T13821] bridge_slave_1: entered promiscuous mode
[ 1100.173678][T13821] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1101.049513][T13821] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1101.827270][T13821] team0: Port device team_slave_0 added
[ 1101.858828][T13821] team0: Port device team_slave_1 added
[ 1102.049105][T13821] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1102.219720][T13821] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1102.251478][T13821] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1102.309841][T13821] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1102.333173][T13821] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1102.417073][T13821] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1102.915390][T13821] hsr_slave_0: entered promiscuous mode
[ 1102.961522][T13821] hsr_slave_1: entered promiscuous mode
[ 1103.056832][T13821] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1103.098075][T13821] Cannot create hsr debugfs directory
[ 1104.831425][T14100] loop7: detected capacity change from 0 to 16384
[ 1104.964590][T14099] sctp: [Deprecated]: syz.4.1740 (pid 14099) Use of struct sctp_assoc_value in delayed_ack socket option.
[ 1104.964590][T14099] Use struct sctp_sack_info instead
[ 1105.202717][T14093] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1105.243729][T14093] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1105.428985][T14117] netlink: 'syz.2.1745': attribute type 2 has an invalid length.
[ 1106.042490][T14117] : entered promiscuous mode
[ 1108.749340][T14149] Lens B: =================  START STATUS  =================
[ 1108.757073][T14149] Lens B: Focus, Absolute: 0
[ 1108.762116][T14149] Lens B: ==================  END STATUS  ==================
[ 1110.232192][T14154] batadv_slave_1: entered promiscuous mode
[ 1111.244977][T14153] batadv_slave_1: left promiscuous mode
[ 1111.289134][T14160] orangefs_mount: mount request failed with -4
[ 1111.419761][T13821] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 1111.461371][T13821] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 1111.576332][T13821] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 1111.867360][T13821] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 1112.860676][T14181] Invalid ELF header type: 0 != 1
[ 1114.068744][T14184] ceph: No mds server is up or the cluster is laggy
[ 1116.134837][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[ 1116.716310][T13821] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1116.772336][T13821] 8021q: adding VLAN 0 to HW filter on device team0
[ 1116.956747][ T6550] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1116.963997][ T6550] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1117.437058][T14210] Invalid source name
[ 1118.059183][ T1107] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1118.066414][ T1107] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1118.463884][T13821] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1122.957191][T13821] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1127.077255][T14311] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[ 1127.118782][T14302] vhci_hcd vhci_hcd.0: port 0 already used
[ 1127.126600][T14315] vhci_hcd vhci_hcd.0: pdev(4) rhport(2) sockfd(16)
[ 1127.133241][T14315] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[ 1127.406468][T14315] vhci_hcd vhci_hcd.0: Device attached
[ 1128.570566][T14315] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[ 1129.512372][T14302] vhci_hcd vhci_hcd.0: pdev(4) rhport(3) sockfd(12)
[ 1129.519046][T14302] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[ 1129.786776][T13821] veth0_vlan: entered promiscuous mode
[ 1129.810336][T13821] veth1_vlan: entered promiscuous mode
[ 1129.824939][T14311] vhci_hcd vhci_hcd.0: pdev(4) rhport(4) sockfd(19)
[ 1129.831574][T14311] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[ 1130.053010][T14311] vhci_hcd vhci_hcd.0: Device attached
[ 1130.125564][T13821] veth0_macvtap: entered promiscuous mode
[ 1130.146253][T14302] vhci_hcd vhci_hcd.0: Device attached
[ 1130.342928][T14329] vhci_hcd: connection closed
[ 1130.343197][T14330] vhci_hcd: connection closed
[ 1130.348303][T14317] vhci_hcd: connection closed
[ 1131.133663][T13821] veth1_macvtap: entered promiscuous mode
[ 1131.509508][ T1078] vhci_hcd: stop threads
[ 1131.514027][ T1078] vhci_hcd: release socket
[ 1131.521060][ T1078] vhci_hcd: disconnect device
[ 1131.596159][ T1078] vhci_hcd: stop threads
[ 1131.600509][ T1078] vhci_hcd: release socket
[ 1131.614297][ T1078] vhci_hcd: disconnect device
[ 1131.705046][ T1078] vhci_hcd: stop threads
[ 1131.709449][ T1078] vhci_hcd: release socket
[ 1131.730706][ T1078] vhci_hcd: disconnect device
[ 1131.780555][T14352] netlink: 140 bytes leftover after parsing attributes in process `syz.4.1794'.
[ 1131.793952][T13821] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1131.839422][T14356] nbd: must specify an index to disconnect
[ 1131.846513][T13821] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1131.878721][T14352] netlink: 44 bytes leftover after parsing attributes in process `syz.4.1794'.
[ 1131.924912][T14352] netlink: 'syz.4.1794': attribute type 6 has an invalid length.
[ 1132.017363][T13821] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1132.104386][T14352] netlink: 'syz.4.1794': attribute type 5 has an invalid length.
[ 1132.112166][T14352] netlink: 'syz.4.1794': attribute type 4 has an invalid length.
[ 1132.364460][T13821] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1132.489799][T13821] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1132.727553][T13821] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1133.705199][T14374] netlink: 'syz.2.1799': attribute type 15 has an invalid length.
[ 1133.734763][T14374] netlink: 723 bytes leftover after parsing attributes in process `syz.2.1799'.
[ 1137.679227][T14424] overlayfs: missing 'lowerdir'
[ 1138.225891][ T5833] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1138.235945][ T5833] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1138.244081][ T5833] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1138.254293][ T5833] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1138.268544][ T5833] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1138.992547][   T36] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1139.071448][T14429] lo speed is unknown, defaulting to 1000
[ 1139.084150][T14429] hsr0 speed is unknown, defaulting to 1000
[ 1139.095863][T14429] lo speed is unknown, defaulting to 1000
[ 1139.158213][   T36] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1140.347286][   T36] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1140.355319][T11492] Bluetooth: hci0: command tx timeout
[ 1140.557642][T14462] hpfs: Bad magic ... probably not HPFS
[ 1140.586202][T14462] 8021q: VLANs not supported on wg2
[ 1141.451475][T14466] overlayfs: missing 'lowerdir'
[ 1142.641582][ T5833] Bluetooth: hci0: command tx timeout
[ 1143.288702][   T36] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1143.380241][T14429] lo speed is unknown, defaulting to 1000
[ 1143.989243][T14478] batadv1: entered promiscuous mode
[ 1144.664808][ T5833] Bluetooth: hci0: command tx timeout
[ 1144.860452][ T8444] Process accounting resumed
[ 1146.324496][   T36] bridge_slave_1: left allmulticast mode
[ 1146.330358][   T36] bridge_slave_1: left promiscuous mode
[ 1146.347091][   T36] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1146.745578][ T5833] Bluetooth: hci0: command tx timeout
[ 1148.143501][   T36] bridge_slave_0: left allmulticast mode
[ 1148.165051][   T36] bridge_slave_0: left promiscuous mode
[ 1148.170895][   T36] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1154.468984][T14566] nfs4: Unknown parameter 'H"㍢�����f5���X�:�d
[ 1154.468984][T14566] �n�"pm-w��S�Y2�E��4�����ۡ�x\x$����Q#c�ʷhz�/hm�O>m����L�cm�^'
[ 1158.023629][   T36] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1158.209022][   T36] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1158.222060][   T36] bond0 (unregistering): Released all slaves
[ 1159.128694][T14429] chnl_net:caif_netlink_parms(): no params data found
[ 1163.873603][T14650] x_tables: duplicate underflow at hook 1
[ 1163.884455][T14650] syz.1.1858 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[ 1164.706746][T14654] overlayfs: failed to clone upperpath
[ 1165.735535][T14429] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1165.742733][T14429] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1165.895297][T14429] bridge_slave_0: entered allmulticast mode
[ 1165.903047][T14429] bridge_slave_0: entered promiscuous mode
[ 1166.744616][   T36] hsr_slave_0: left promiscuous mode
[ 1166.833447][   T36] hsr_slave_1: left promiscuous mode
[ 1166.866905][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1166.897408][   T36] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1166.923722][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1167.659256][   T36] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1168.748796][   T36] veth1_macvtap: left promiscuous mode
[ 1168.808637][   T36] veth0_macvtap: left promiscuous mode
[ 1168.822787][   T36] veth1_vlan: left promiscuous mode
[ 1168.852457][   T36] veth0_vlan: left promiscuous mode
[ 1172.425640][T14728] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1173.282632][   T36] team0 (unregistering): Port device team_slave_1 removed
[ 1173.467409][   T36] team0 (unregistering): Port device team_slave_0 removed
[ 1174.425347][T14429] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1174.432824][T14429] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1174.443669][T14429] bridge_slave_1: entered allmulticast mode
[ 1174.452220][T14429] bridge_slave_1: entered promiscuous mode
[ 1174.530703][T14429] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1174.608680][T14429] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1175.076010][T14753] 9pnet_virtio: no channels available for device syz
[ 1176.102700][T14429] team0: Port device team_slave_0 added
[ 1176.173987][T14429] team0: Port device team_slave_1 added
[ 1177.162061][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[ 1177.219740][T14429] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1177.254245][T14429] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1177.330417][T14429] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1177.463543][T14429] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1177.514238][T14429] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1177.594272][T14429] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1178.990830][T14429] hsr_slave_0: entered promiscuous mode
[ 1179.011422][T14429] hsr_slave_1: entered promiscuous mode
[ 1179.022434][T14429] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1179.040024][T14429] Cannot create hsr debugfs directory
[ 1182.434794][   T30] kauditd_printk_skb: 40 callbacks suppressed
[ 1182.434817][   T30] audit: type=1326 audit(1747362608.192:510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14800 comm="syz.0.1893" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa37498e969 code=0x7ffc0000
[ 1182.617769][   T30] audit: type=1326 audit(1747362608.192:511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14800 comm="syz.0.1893" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa37498e969 code=0x7ffc0000
[ 1182.639505][   T30] audit: type=1326 audit(1747362608.202:512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14800 comm="syz.0.1893" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fa37498e969 code=0x7ffc0000
[ 1183.304247][   T30] audit: type=1326 audit(1747362608.202:513): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14800 comm="syz.0.1893" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa37498e969 code=0x7ffc0000
[ 1183.357533][   T30] audit: type=1326 audit(1747362608.202:514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14800 comm="syz.0.1893" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa37498e969 code=0x7ffc0000
[ 1183.397863][   T30] audit: type=1326 audit(1747362608.202:515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14800 comm="syz.0.1893" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7fa37498e969 code=0x7ffc0000
[ 1183.449194][   T30] audit: type=1326 audit(1747362608.202:516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14800 comm="syz.0.1893" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa37498e969 code=0x7ffc0000
[ 1183.482526][   T30] audit: type=1326 audit(1747362608.202:517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14800 comm="syz.0.1893" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa37498e969 code=0x7ffc0000
[ 1183.509817][   T30] audit: type=1326 audit(1747362608.202:518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14800 comm="syz.0.1893" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7fa37498e969 code=0x7ffc0000
[ 1183.686426][   T30] audit: type=1326 audit(1747362608.202:519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14800 comm="syz.0.1893" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa37498e969 code=0x7ffc0000
[ 1185.433798][T14429] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 1185.473098][T14429] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 1185.628548][T14429] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 1185.675638][T14835] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1901'.
[ 1185.700202][T14429] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 1185.843402][T14840] overlayfs: failed to clone upperpath
[ 1186.965433][T14857] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1906'.
[ 1187.118283][T14429] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1187.169006][T14429] 8021q: adding VLAN 0 to HW filter on device team0
[ 1187.203853][   T36] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1187.211095][   T36] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1187.245837][   T36] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1187.253085][   T36] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1187.603919][T14429] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1190.771544][T14429] veth0_vlan: entered promiscuous mode
[ 1190.999191][T14429] veth1_vlan: entered promiscuous mode
[ 1191.878088][T14429] veth0_macvtap: entered promiscuous mode
[ 1191.911402][T14429] veth1_macvtap: entered promiscuous mode
[ 1192.155919][T14429] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1192.366750][T14429] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1192.435871][T14429] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1193.032841][T14429] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1193.054354][T14429] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1193.086312][T14429] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1193.367707][T14950] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1919'.
[ 1194.301758][T14962] overlayfs: failed to clone upperpath
[ 1194.787307][   T67] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1194.827658][   T67] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1195.170858][T14969] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[ 1195.210402][T14969] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[ 1199.062996][T11492] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1199.082120][T15002] netlink: 'syz.0.1938': attribute type 7 has an invalid length.
[ 1199.102106][T15002] : entered promiscuous mode
[ 1199.316575][T11492] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1199.824642][T14431] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1199.837038][T14431] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1199.845064][T14431] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1200.871152][T15003] lo speed is unknown, defaulting to 1000
[ 1200.912735][T15003] hsr0 speed is unknown, defaulting to 1000
[ 1200.931236][T15003] lo speed is unknown, defaulting to 1000
[ 1201.507986][ T1107] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1202.026259][T14431] Bluetooth: hci5: command tx timeout
[ 1202.469101][T15047] nbd: must specify an index to disconnect
[ 1203.210330][ T1107] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1203.259053][T15003] lo speed is unknown, defaulting to 1000
[ 1203.323147][T15050] Process accounting resumed
[ 1204.161244][T14431] Bluetooth: hci5: command tx timeout
[ 1204.387519][T15059] RDS: rds_bind could not find a transport for fc02::, load rds_tcp or rds_rdma?
[ 1204.416472][ T1107] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1205.812839][T15071] net_ratelimit: 10 callbacks suppressed
[ 1205.813064][T15071] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[ 1206.235499][T14431] Bluetooth: hci5: command tx timeout
[ 1206.379979][ T1107] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1206.780420][T15078] netdevsim netdevsim0: Direct firmware load for ./file0 failed with error -2
[ 1206.789812][T15078] netdevsim netdevsim0: Falling back to sysfs fallback for: ./file0
[ 1207.736774][T15087] netlink: 'syz.0.1947': attribute type 21 has an invalid length.
[ 1207.829156][T15087] netlink: 'syz.0.1947': attribute type 6 has an invalid length.
[ 1207.837061][T15087] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1947'.
[ 1208.348694][T14431] Bluetooth: hci5: command tx timeout
[ 1208.368041][ T1107] bridge_slave_1: left allmulticast mode
[ 1208.375724][ T1107] bridge_slave_1: left promiscuous mode
[ 1208.381577][ T1107] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1209.192580][ T1107] bridge_slave_0: left allmulticast mode
[ 1209.211749][ T1107] bridge_slave_0: left promiscuous mode
[ 1209.227905][ T1107] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1210.252284][ T1107] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1210.273857][ T1107] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1210.288899][ T1107] bond0 (unregistering): Released all slaves
[ 1210.874350][T15003] chnl_net:caif_netlink_parms(): no params data found
[ 1211.220193][T15131] overlayfs: failed to clone upperpath
[ 1213.063108][   T30] kauditd_printk_skb: 68 callbacks suppressed
[ 1213.063122][   T30] audit: type=1326 audit(1747362639.712:588): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15163 comm="syz.4.1965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d0db8e969 code=0x7fc00000
[ 1213.172509][   T30] audit: type=1326 audit(1747362639.812:589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15163 comm="syz.4.1965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f3d0db85927 code=0x7fc00000
[ 1214.068815][T15003] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1214.084723][T15003] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1214.088100][   T30] audit: type=1326 audit(1747362639.812:590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15163 comm="syz.4.1965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f3d0db2ab39 code=0x7fc00000
[ 1214.092409][T15003] bridge_slave_0: entered allmulticast mode
[ 1214.119789][   T30] audit: type=1326 audit(1747362639.812:591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15163 comm="syz.4.1965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f3d0db2abff code=0x7fc00000
[ 1214.385982][   T30] audit: type=1326 audit(1747362639.812:592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15163 comm="syz.4.1965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f3d0db8e969 code=0x7fc00000
[ 1214.826561][T15003] bridge_slave_0: entered promiscuous mode
[ 1214.987965][T15003] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1215.024682][T15003] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1215.048818][T15003] bridge_slave_1: entered allmulticast mode
[ 1215.095837][T15003] bridge_slave_1: entered promiscuous mode
[ 1217.182584][T15191] veth1_macvtap: left promiscuous mode
[ 1218.870031][T15200] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1971'.
[ 1219.147068][T15003] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1219.921031][ T1107] hsr_slave_0: left promiscuous mode
[ 1220.093186][ T1107] hsr_slave_1: left promiscuous mode
[ 1220.102983][ T1107] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1220.121733][ T1107] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1220.743619][ T1107] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1220.853185][ T1107] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1220.863025][   T30] audit: type=1800 audit(1747362647.502:593): pid=15218 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.4.1974" name=20019C1437B3CFFCC3A25729EB7393A7C721518FF6ECA56673F56C7B548772D22972A7D6084F9A98F5323A22F412C0542BCD9F767C8DD5B24476638E93D8D6A0C536D278E3633A dev="mqueue" ino=38091 res=0 errno=0
[ 1220.952911][ T1107] veth1_macvtap: left promiscuous mode
[ 1220.959863][ T1107] veth0_macvtap: left promiscuous mode
[ 1220.973301][ T1107] veth1_vlan: left promiscuous mode
[ 1220.979877][ T1107] veth0_vlan: left promiscuous mode
[ 1223.956192][ T1107] team0 (unregistering): Port device team_slave_1 removed
[ 1224.011702][ T1107] team0 (unregistering): Port device team_slave_0 removed
[ 1225.167426][T15003] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1226.750857][T15003] team0: Port device team_slave_0 added
[ 1226.784956][T15003] team0: Port device team_slave_1 added
[ 1226.882193][T15259] netlink: 96 bytes leftover after parsing attributes in process `syz.0.1984'.
[ 1226.908629][T15259] netlink: 96 bytes leftover after parsing attributes in process `syz.0.1984'.
[ 1226.946404][T15003] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1226.978452][T15003] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1227.069140][T15003] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1227.119858][T15003] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1227.224346][T15003] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1227.273565][T15003] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1228.707170][T15003] hsr_slave_0: entered promiscuous mode
[ 1228.720617][T15003] hsr_slave_1: entered promiscuous mode
[ 1228.733105][T15003] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1228.760320][T15003] Cannot create hsr debugfs directory
[ 1232.683130][T15316] overlayfs: failed to clone upperpath
[ 1234.084899][T15325] netlink: 80 bytes leftover after parsing attributes in process `syz.4.1996'.
[ 1234.991154][T15003] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 1235.003700][T15003] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 1235.019948][T15003] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 1235.103913][T15003] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 1236.686576][T15355] netlink: 'syz.0.2001': attribute type 4 has an invalid length.
[ 1236.694507][T15355] netlink: 3657 bytes leftover after parsing attributes in process `syz.0.2001'.
[ 1238.028157][T15003] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1239.015765][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[ 1239.063624][T15003] 8021q: adding VLAN 0 to HW filter on device team0
[ 1239.379653][   T67] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1239.386990][   T67] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1240.309097][   T67] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1240.316372][   T67] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1241.846914][T15392] netlink: 'syz.2.2006': attribute type 9 has an invalid length.
[ 1243.822063][T15410] netlink: 104 bytes leftover after parsing attributes in process `syz.2.2011'.
[ 1244.924878][T15003] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1247.177306][T15432] workqueue: Failed to create a rescuer kthread for wq "ceph-completion": -EINTR
[ 1251.788162][T15003] veth0_vlan: entered promiscuous mode
[ 1252.537750][T15481] workqueue: Failed to create a rescuer kthread for wq "ceph-completion": -EINTR
[ 1252.596736][T15486] netlink: 212376 bytes leftover after parsing attributes in process `syz.0.2022'.
[ 1254.190224][T15003] veth1_vlan: entered promiscuous mode
[ 1254.400780][T15003] veth0_macvtap: entered promiscuous mode
[ 1254.411273][T15003] veth1_macvtap: entered promiscuous mode
[ 1254.543666][T15003] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1254.618796][T15502] netlink: 'syz.4.2029': attribute type 1 has an invalid length.
[ 1254.654932][T15003] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1254.700279][T15003] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1254.728842][T15003] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1254.753928][T15003] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1255.011678][T15003] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1256.569921][   T30] audit: type=1326 audit(1747362682.882:594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15509 comm="syz.4.2032" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f3d0db8e969 code=0x0
[ 1257.594751][ T9198] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1257.692626][ T9198] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1257.790104][ T9198] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1257.862215][ T9198] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1259.561002][T15557] xt_CT: You must specify a L4 protocol and not use inversions on it
[ 1260.030438][ T9198] bridge_slave_1: left allmulticast mode
[ 1260.119448][ T9198] bridge_slave_1: left promiscuous mode
[ 1260.735444][ T9198] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1260.829942][ T9198] bridge_slave_0: left allmulticast mode
[ 1260.882150][ T9198] bridge_slave_0: left promiscuous mode
[ 1260.924845][ T9198] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1261.637509][ T5833] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1261.650021][ T5833] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1261.659185][ T5833] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1261.668293][ T5833] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1261.677526][ T5833] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1261.727374][T15594] xt_connbytes: Forcing CT accounting to be enabled
[ 1261.736302][T15594] set match dimension is over the limit!
[ 1262.077027][ T9198] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1262.092382][ T9198] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1262.105632][ T9198] bond0 (unregistering): Released all slaves
[ 1262.130904][T15585] bridge0: port 3(batadv1) entered blocking state
[ 1262.137673][T15585] bridge0: port 3(batadv1) entered disabled state
[ 1262.144277][T15585] batadv1: entered allmulticast mode
[ 1262.150919][T15585] batadv1: entered promiscuous mode
[ 1262.303546][T15590] lo speed is unknown, defaulting to 1000
[ 1262.405848][T15590] hsr0 speed is unknown, defaulting to 1000
[ 1263.059069][ T6561] batman_adv: batadv1: No IGMP Querier present - multicast optimizations disabled
[ 1263.068978][ T6561] batman_adv: batadv1: No MLD Querier present - multicast optimizations disabled
[ 1263.099971][T15590] lo speed is unknown, defaulting to 1000
[ 1263.716837][ T9198] hsr_slave_0: left promiscuous mode
[ 1263.744342][ T9198] hsr_slave_1: left promiscuous mode
[ 1263.760754][ T9198] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1263.790291][T14431] Bluetooth: hci0: command tx timeout
[ 1263.924354][ T9198] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1263.959410][ T9198] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1263.991756][ T9198] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1264.397692][ T9198] veth1_macvtap: left promiscuous mode
[ 1264.403290][ T9198] veth0_macvtap: left promiscuous mode
[ 1264.420199][ T9198] veth1_vlan: left promiscuous mode
[ 1264.554832][ T9198] veth0_vlan: left promiscuous mode
[ 1264.561403][T15642] netlink: 252 bytes leftover after parsing attributes in process `syz.4.2054'.
[ 1264.598125][T15639] 9pnet_virtio: no channels available for device 127.0.0.1
[ 1265.511297][T15652] 9pnet: p9_errstr2errno: server reported unknown error 18446
[ 1266.244468][T14431] Bluetooth: hci0: command tx timeout
[ 1266.924359][T15667] overlayfs: failed to clone lowerpath
[ 1267.802745][ T9198] team0 (unregistering): Port device team_slave_1 removed
[ 1267.851189][ T9198] team0 (unregistering): Port device team_slave_0 removed
[ 1268.268548][T14431] Bluetooth: hci0: command tx timeout
[ 1268.408726][T15590] lo speed is unknown, defaulting to 1000
[ 1269.466531][T15695] netlink: 44 bytes leftover after parsing attributes in process `syz.1.2065'.
[ 1269.534782][T15696] netlink: 212172 bytes leftover after parsing attributes in process `syz.1.2065'.
[ 1270.350790][T14431] Bluetooth: hci0: command tx timeout
[ 1270.423476][T15707] netlink: 84 bytes leftover after parsing attributes in process `syz.4.2068'.
[ 1270.581231][T15590] chnl_net:caif_netlink_parms(): no params data found
[ 1270.684473][T15713] overlayfs: failed to clone upperpath
[ 1271.059522][T15590] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1271.224212][T15590] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1271.231523][T15590] bridge_slave_0: entered allmulticast mode
[ 1271.241224][T15590] bridge_slave_0: entered promiscuous mode
[ 1271.257296][T15590] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1271.264497][T15590] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1271.273147][T15590] bridge_slave_1: entered allmulticast mode
[ 1271.281335][T15590] bridge_slave_1: entered promiscuous mode
[ 1272.078522][T15590] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1272.095474][T15590] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1273.405631][T15590] team0: Port device team_slave_0 added
[ 1273.633087][T15590] team0: Port device team_slave_1 added
[ 1273.784294][   T31] INFO: task kworker/1:3:5843 blocked for more than 144 seconds.
[ 1273.819245][   T31]       Not tainted 6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0
[ 1273.834339][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1273.843412][   T31] task:kworker/1:3     state:D stack:24472 pid:5843  tgid:5843  ppid:2      task_flags:0x4208060 flags:0x00004000
[ 1273.856188][   T31] Workqueue: usb_hub_wq hub_event
[ 1273.861265][   T31] Call Trace:
[ 1273.877718][   T31]  <TASK>
[ 1273.884090][   T31]  __schedule+0x168f/0x4c70
[ 1274.888594][   T31]  ? __lock_acquire+0xaac/0xd20
[ 1274.893530][   T31]  ? schedule+0x165/0x360
[ 1274.898357][   T31]  ? __pfx___schedule+0x10/0x10
[ 1274.903283][   T31]  ? schedule+0x91/0x360
[ 1274.907924][   T31]  schedule+0x165/0x360
[ 1274.912121][   T31]  usb_kill_urb+0x1be/0x2d0
[ 1274.917012][   T31]  ? __pfx_usb_kill_urb+0x10/0x10
[ 1274.922071][   T31]  ? __pfx_autoremove_wake_function+0x10/0x10
[ 1274.928592][   T31]  usb_start_wait_urb+0x18c/0x4c0
[ 1274.933662][   T31]  ? __pfx_usb_start_wait_urb+0x10/0x10
[ 1275.182375][   T31]  ? __kmalloc_noprof+0x29b/0x4f0
[ 1275.187783][   T31]  usb_control_msg+0x232/0x3e0
[ 1275.192662][   T31]  hub_port_init+0xbf9/0x2800
[ 1275.197900][   T31]  hub_event+0x2518/0x4a00
[ 1275.202490][   T31]  ? __pfx_hub_event+0x10/0x10
[ 1275.207669][   T31]  ? process_scheduled_works+0x9ec/0x17a0
[ 1275.213500][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1275.219267][   T31]  ? process_scheduled_works+0x9ec/0x17a0
[ 1275.225355][   T31]  ? process_scheduled_works+0x9ec/0x17a0
[ 1275.987225][   T31]  process_scheduled_works+0xadb/0x17a0
[ 1275.993057][   T31]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1275.999635][   T31]  worker_thread+0x8a0/0xda0
[ 1276.004695][   T31]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 1276.011322][   T31]  ? __kthread_parkme+0x7b/0x200
[ 1276.017944][   T31]  kthread+0x70e/0x8a0
[ 1276.022056][   T31]  ? __pfx_worker_thread+0x10/0x10
[ 1276.027438][   T31]  ? __pfx_kthread+0x10/0x10
[ 1276.032073][   T31]  ? __pfx_kthread+0x10/0x10
[ 1276.036812][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1276.042036][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1276.047511][   T31]  ? __pfx_kthread+0x10/0x10
[ 1276.052133][   T31]  ret_from_fork+0x4b/0x80
[ 1276.058036][   T31]  ? __pfx_kthread+0x10/0x10
[ 1276.062825][   T31]  ret_from_fork_asm+0x1a/0x30
[ 1276.070301][   T31]  </TASK>
[ 1276.080679][   T31] 
[ 1276.080679][   T31] Showing all locks held in the system:
[ 1276.099121][   T31] 1 lock held by khungtaskd/31:
[ 1276.109137][   T31]  #0: ffffffff8df3dce0 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x2e/0x180
[ 1276.135510][T15590] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1276.142590][T15590] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1276.168724][   T31] 1 lock held by dhcpcd/5484:
[ 1276.168743][   T31] 2 locks held by getty/5580:
[ 1276.168755][   T31]  #0: ffff888030a130a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[ 1276.168815][   T31]  #1: ffffc90002ffe2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x43e/0x1400
[ 1276.168876][   T31] 5 locks held by kworker/1:3/5843:
[ 1276.168887][   T31]  #0: ffff888020ae9948 ((wq_completion)usb_hub_wq){+.+.}-{0:0}, at: process_scheduled_works+0x9b1/0x17a0
[ 1276.168948][   T31]  #1: ffffc900048dfc60 ((work_completion)(&hub->events)){+.+.}-{0:0}, at: process_scheduled_works+0x9ec/0x17a0
[ 1276.190771][T15590] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1276.214233][   T31]  #2: ffff888145fae198 (&dev->mutex){....}-{4:4}, at: hub_event+0x184/0x4a00
[ 1276.241202][T15590] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1276.254318][   T31]  #3: ffff88814630a510 (&port_dev->status_lock){+.+.}-{4:4}, at: hub_event+0x21a3/0x4a00
[ 1276.259014][T15590] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1276.265179][   T31]  #4: ffff8881453e6c68 (hcd->address0_mutex){+.+.}-{4:4}, at: hub_event+0x21cb/0x4a00
[ 1276.301351][T15590] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1276.305007][   T31] 6 locks held by syz-executor/15590:
[ 1276.317790][   T31] 
[ 1276.320136][   T31] =============================================
[ 1276.320136][   T31] 
[ 1276.343530][   T31] NMI backtrace for cpu 1
[ 1276.343544][   T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0 PREEMPT(full) 
[ 1276.343566][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1276.343577][   T31] Call Trace:
[ 1276.343584][   T31]  <TASK>
[ 1276.343592][   T31]  dump_stack_lvl+0x189/0x250
[ 1276.343620][   T31]  ? __wake_up_klogd+0xd9/0x110
[ 1276.343644][   T31]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1276.343669][   T31]  ? __pfx__printk+0x10/0x10
[ 1276.343709][   T31]  nmi_cpu_backtrace+0x39e/0x3d0
[ 1276.343733][   T31]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[ 1276.343749][   T31]  ? _printk+0xcf/0x120
[ 1276.343782][   T31]  ? __pfx__printk+0x10/0x10
[ 1276.343812][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[ 1276.343833][   T31]  nmi_trigger_cpumask_backtrace+0x17a/0x300
[ 1276.343856][   T31]  watchdog+0xfee/0x1030
[ 1276.343880][   T31]  ? watchdog+0x1de/0x1030
[ 1276.343911][   T31]  kthread+0x70e/0x8a0
[ 1276.343935][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1276.343957][   T31]  ? __pfx_kthread+0x10/0x10
[ 1276.343979][   T31]  ? __pfx_kthread+0x10/0x10
[ 1276.343999][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1276.344020][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1276.344042][   T31]  ? __pfx_kthread+0x10/0x10
[ 1276.344062][   T31]  ret_from_fork+0x4b/0x80
[ 1276.344079][   T31]  ? __pfx_kthread+0x10/0x10
[ 1276.344100][   T31]  ret_from_fork_asm+0x1a/0x30
[ 1276.344147][   T31]  </TASK>
[ 1276.486288][   T31] Sending NMI from CPU 1 to CPUs 0:
[ 1276.491540][    C0] NMI backtrace for cpu 0
[ 1276.491556][    C0] CPU: 0 UID: 0 PID: 15786 Comm: dhcpcd-run-hook Not tainted 6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0 PREEMPT(full) 
[ 1276.491579][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1276.491591][    C0] RIP: 0010:__lock_acquire+0x4ea/0xd20
[ 1276.491621][    C0] Code: 49 83 c6 28 41 89 c4 48 39 cb 0f 8d db 00 00 00 48 83 fb 31 0f 83 92 00 00 00 41 8b 06 25 ff 1f 00 00 48 0f a3 05 26 c0 db 11 <73> 10 48 69 c0 c8 00 00 00 48 8d 88 e0 06 1b 93 eb 40 83 3d 3d 4f
[ 1276.491638][    C0] RSP: 0000:ffffc90004c47820 EFLAGS: 00000007
[ 1276.491654][    C0] RAX: 000000000000003a RBX: 0000000000000004 RCX: 0000000000000005
[ 1276.491666][    C0] RDX: 0000000000000003 RSI: 0000000000000003 RDI: ffff88802d045a00
[ 1276.491678][    C0] RBP: ffff88802d0464f0 R08: 0000000000000000 R09: 0000000000000000
[ 1276.491689][    C0] R10: 0000000000000000 R11: ffffffff822ab87b R12: 0000000000000003
[ 1276.491701][    C0] R13: 0000000000000000 R14: ffff88802d0465b0 R15: ffff88802d0465b8
[ 1276.491714][    C0] FS:  00007fd8e3a52c80(0000) GS:ffff8881260f9000(0000) knlGS:0000000000000000
[ 1276.491730][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1276.491742][    C0] CR2: 00007fd8e3bab2a0 CR3: 0000000057e6c000 CR4: 00000000003526f0
[ 1276.491758][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1276.491769][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1276.491780][    C0] Call Trace:
[ 1276.491787][    C0]  <TASK>
[ 1276.491798][    C0]  ? page_table_check_set+0x16b/0x710
[ 1276.491827][    C0]  lock_acquire+0x120/0x360
[ 1276.491850][    C0]  ? page_table_check_set+0x16b/0x710
[ 1276.491880][    C0]  ? pfn_valid+0xcd/0x420
[ 1276.491896][    C0]  ? pfn_valid+0xcd/0x420
[ 1276.491915][    C0]  ? page_table_check_set+0x16b/0x710
[ 1276.491944][    C0]  page_table_check_set+0x188/0x710
[ 1276.491971][    C0]  ? page_table_check_set+0x16b/0x710
[ 1276.492002][    C0]  set_pte_range+0x57e/0x5a0
[ 1276.492033][    C0]  filemap_map_pages+0xf26/0x1740
[ 1276.492060][    C0]  ? filemap_map_pages+0x14b/0x1740
[ 1276.492080][    C0]  ? __pfx_filemap_map_pages+0x10/0x10
[ 1276.492103][    C0]  ? __handle_mm_fault+0x280a/0x5380
[ 1276.492130][    C0]  ? __handle_mm_fault+0x280a/0x5380
[ 1276.492157][    C0]  __handle_mm_fault+0x34d8/0x5380
[ 1276.492184][    C0]  ? __lock_acquire+0xaac/0xd20
[ 1276.492216][    C0]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1276.492244][    C0]  ? lock_vma_under_rcu+0xf8/0x710
[ 1276.492276][    C0]  ? lock_vma_under_rcu+0xf8/0x710
[ 1276.492303][    C0]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 1276.492334][    C0]  handle_mm_fault+0x2d5/0x7f0
[ 1276.492366][    C0]  do_user_addr_fault+0xa81/0x1390
[ 1276.492411][    C0]  ? rcu_is_watching+0x15/0xb0
[ 1276.492437][    C0]  ? trace_irq_disable+0x37/0x110
[ 1276.492458][    C0]  exc_page_fault+0x68/0x110
[ 1276.492504][    C0]  asm_exc_page_fault+0x26/0x30
[ 1276.492522][    C0] RIP: 0033:0x7fd8e3bab2a0
[ 1276.492541][    C0] Code: Unable to access opcode bytes at 0x7fd8e3bab276.
[ 1276.492551][    C0] RSP: 002b:00007ffcb555b318 EFLAGS: 00010246
[ 1276.492566][    C0] RAX: 0000000000000000 RBX: 00007ffcb555b338 RCX: 00007fd8e3bec670
[ 1276.492578][    C0] RDX: 0000000000000000 RSI: 0000000000000018 RDI: 00007fd8e3cedb60
[ 1276.492590][    C0] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1276.492600][    C0] R10: 00007fd8e3a52f50 R11: 0000000000000246 R12: 00005569dd704ce8
[ 1276.492613][    C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1276.492632][    C0]  </TASK>
[ 1276.894818][   T31] Kernel panic - not syncing: hung_task: blocked tasks
[ 1276.901723][   T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0 PREEMPT(full) 
[ 1276.913540][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1276.923605][   T31] Call Trace:
[ 1276.926900][   T31]  <TASK>
[ 1276.929835][   T31]  dump_stack_lvl+0x99/0x250
[ 1276.934439][   T31]  ? __asan_memcpy+0x40/0x70
[ 1276.939034][   T31]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1276.944238][   T31]  ? __pfx__printk+0x10/0x10
[ 1276.948851][   T31]  panic+0x2db/0x790
[ 1276.952754][   T31]  ? __pfx_panic+0x10/0x10
[ 1276.957180][   T31]  ? tick_nohz_tick_stopped+0x86/0xb0
[ 1276.962591][   T31]  ? preempt_schedule_thunk+0x16/0x30
[ 1276.967967][   T31]  ? nmi_trigger_cpumask_backtrace+0x2b6/0x300
[ 1276.974134][   T31]  watchdog+0x102d/0x1030
[ 1276.978491][   T31]  ? watchdog+0x1de/0x1030
[ 1276.982911][   T31]  kthread+0x70e/0x8a0
[ 1276.986981][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1276.991664][   T31]  ? __pfx_kthread+0x10/0x10
[ 1276.996257][   T31]  ? __pfx_kthread+0x10/0x10
[ 1277.000843][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1277.006038][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1277.011242][   T31]  ? __pfx_kthread+0x10/0x10
[ 1277.015844][   T31]  ret_from_fork+0x4b/0x80
[ 1277.020260][   T31]  ? __pfx_kthread+0x10/0x10
[ 1277.024855][   T31]  ret_from_fork_asm+0x1a/0x30
[ 1277.029646][   T31]  </TASK>
[ 1277.032975][   T31] Kernel Offset: disabled
[ 1277.037301][   T31] Rebooting in 86400 seconds..