last executing test programs:

22.661892731s ago: executing program 0 (id=2802):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d000000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r4, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r4, 0x6, 0x14, &(0x7f00000013c0)=0x80000000001, 0x4)
connect$inet6(r4, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendto$inet6(r4, &(0x7f00000002c0)="e8", 0xfffffffffffffd79, 0x2000c850, 0x0, 0x4d)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
r6 = socket$kcm(0x29, 0x5, 0x0)
r7 = syz_io_uring_setup(0x10f, &(0x7f0000000400)={0x0, 0x5885, 0x10, 0x0, 0x2c5}, &(0x7f0000000340)=<r8=>0x0, &(0x7f0000000280)=<r9=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r8, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r8, r9, &(0x7f00000002c0)=@IORING_OP_SEND={0x1a, 0x40, 0x0, r6, 0x0, 0x0, 0x0, 0x10})
io_uring_enter(r7, 0x3516, 0x0, 0x0, 0x0, 0x0)
dup3(r4, r5, 0x0)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r5, 0x6, 0x23, &(0x7f0000000140)={&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, &(0x7f0000001f00)=""/4106, 0xfffffffffffffccb, 0x0, 0x0}, &(0x7f0000000080)=0x40)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000540)=ANY=[@ANYBLOB="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"], 0x0, 0x4a, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x1d, 0xe, &(0x7f00000039c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000)={0xffffffff}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
openat$ppp(0xffffffffffffff9c, &(0x7f0000001740), 0x101042, 0x0)
ioctl$PPPIOCNEWUNIT(0xffffffffffffffff, 0xc004743e, &(0x7f0000000100)=0x4)
pwritev(r10, &(0x7f0000000880)=[{&(0x7f0000000180)="7fb4951081c49659e32dfd38ad66084f850a218701a93a40562a85d65e26bdd6c003a969d2c4c40d4bc1fe012729bb01372f11b0e906a752b05dd3b092072f8aecf7", 0x42}, {&(0x7f00000002c0)="6fd314d8ae0cb89eed5eaf7a08f10cdb1c9774da43dcc4b472c125d3546c93552b7e6607b92f", 0x26}, {&(0x7f00000003c0)="669bd453af20b298e771c64fb79e7ba2e25f9314f4c294f2d491fb2176bb2d7a91a8f0dd12d817399d6f1536745fdd0b74d34d506c1c3068cfb97cfd396d4f7e95922af91396f30bacdb30fd659cbf7193666dd0173b0af6633d2f25327106288bf332954047b82525faff2c6d31fa08beb9f8785747f7f7fabec99c4460e31dfd8ab6bf75a1ee78163328b8", 0x8c}, {&(0x7f0000000480)="048e315e52676f8bb17bd7a87892e41e45eebd817550addb6f16ffa0f00f8d76381008a6d922354d8f7c7814cc145c1fad26b99ecb953fcbb579d076a854815991f7bc1ec6d2e710a78d19600e270820db103e310e85f257a3536783a9a1a80793771751b96afb4b837a42e6978bd4b094900b195ec2821969e69c4b5a18c2a006b6c50ec8", 0x85}, {&(0x7f0000000940)="39e2e9c0b554b19220a300a29fed4b157ae0ecfd4d5e2800e48a9c93bd75a6794d81da640ad8d1d50a3b84f9ddf5669bf957a114df5ec7fa116022dbde0945ec2d0604c672140f4b5c25b00318dd2745a8d80a3e8340229cace104a0d088aaa04ce878845fe028d12b5350177aafc6086785e3070598440ce77af9247862a6543a4d76f848f2d2c4b353f9159e29f045e1c8baa1886d2915ad2fd9e6759735cdb5ff5ece9da629ea31ac92d3149d2330ac60a5a5855b968d8e17500f30eea7d1930115bdbb224eafdfbf7efe27fdeea9adfcf76014c702f58ba8eb146590", 0xde}, {&(0x7f0000000640)="c202c1a6d67a1d8ff2c71f06b6edfc379581e14f0e0fe2fd2273406ca586c3d06c6c6deafb6d6a500fc2c79546de76325e4a5c3fec5c07edf5207954fe778b92469466e6b9c1ab90f7858b13bae98fb89b0a06fc165f9404a485c9509e71d9e51bae9abead451fb149d22e4f821f7ae718f6b79fec8877b35cf5", 0x7a}, {&(0x7f0000000300)="2a323863c6e9d7c79263abf21c073dcaded07f619857d95c9649c166bd79642216f474169c30085fc5eec800332598eeb2c181967d7a37f88fb7a25bb9ea", 0x3e}, {&(0x7f00000006c0)="d378ef386172c08d7b0cf90781ecbf1edfb7935bcfd4c6321c1dc6ecd98c3ac31d2fd8", 0x23}, {&(0x7f0000000780)="eba16e9c86c2c900dc9e7d77e3b70e5112613cb20d908e76e6bd0e8115d318b4c07da6824a533d51380f0c5548b869bcc64230b958a5a24e857cc8eddcc72013f2eeb8787bf86b93054bdf671db7abcbcdcdbfc158bee632dd7edc3f54c92deec54a20d7b4023cba5464f98ac6adcd10897ca7de9c13d798fc8f355f2deeca37e2c44b5d1176d96aa252a2df8c2a435f01", 0x91}, {&(0x7f0000000840)="d47596bac7be13d5521099a34601042127b809c8168e6df47b0e2e80aba717c06fc551817ebad98197e5e706f596184be9fbb77f249abed815419e7a54", 0x3d}], 0xa, 0x3, 0x100)

21.675021372s ago: executing program 0 (id=2807):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x14, 0x30, 0x800}, 0x14}, 0x1, 0x0, 0x0, 0x800}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl$sock_inet_SIOCSIFDSTADDR(r3, 0x8918, &(0x7f0000000280)={'bond0\x00', {0x2, 0x4e21, @broadcast}})
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$inet_int(0xffffffffffffffff, 0x10d, 0x2, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000340)={{}, 0x0, 0x0}, 0x20)
r5 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000a80)=0xffffffffffffffff, 0xfffffffffffffd8d)
bpf$MAP_CREATE_TAIL_CALL(0x0, 0x0, 0x0)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000cc0)={0x17, 0x0, &(0x7f0000000380), &(0x7f0000000d80)='syzkaller\x00', 0x9, 0x0, 0x0, 0x40f00, 0x2, '\x00', 0x0, @fallback=0x2b, r5, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff, r2, 0x0, &(0x7f0000000c40), &(0x7f0000000c80), 0x10, 0x46ccb8b, @void, @value}, 0x94)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x1e, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000711241000000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r4, 0x29, 0x1b, 0x0, 0x0)
syz_open_procfs(0x0, &(0x7f0000000080)='net/anycast6\x00')
bpf$BPF_PROG_QUERY(0x10, &(0x7f00000003c0)={@fallback, 0x3, 0x2966fcb319e373e8, 0x5, &(0x7f0000000180)=[0x0, 0x0, 0x0], 0x3, 0x0, &(0x7f0000000400)=[0x0, 0x0], &(0x7f0000000300)=[0x0], &(0x7f0000000380)=[0x0, 0x0, 0x0, 0x0]}, 0x40)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000500)=@raw={'raw\x00', 0x3c1, 0x3, 0x440, 0x270, 0x168, 0x9, 0x0, 0xb, 0x370, 0x250, 0x250, 0x370, 0x250, 0x3, 0x0, {[{{@ipv6={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @rand_addr=' \x01\x00', [], [], 'ip6tnl0\x00', 'sit0\x00', {}, {}, 0x6c}, 0x6000000, 0x230, 0x270, 0x0, {0x0, 0x28e}, [@common=@inet=@hashlimit3={{0x158}, {'veth1_to_batadv\x00', {0x0, 0x7ff, 0x0, 0x0, 0x0, 0x6, 0x1000}}}, @common=@inet=@ipcomp={{0x30}, {[], 0x12}}]}, @common=@inet=@LOG={0x40, 'LOG\x00', 0x0, {0x0, 0x0, "48c01c5140d722edd3fb24545886bbd1be494201b400"}}}, {{@uncond, 0x0, 0xd0, 0x100, 0x0, {}, [@common=@inet=@set2={{0x28}}]}, @common=@inet=@SET2={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x4a0)

20.584043594s ago: executing program 0 (id=2812):
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e0000"], 0x48)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42032, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x200000005c832, 0xffffffffffffffff, 0x0)
r0 = socket$kcm(0x11, 0x3, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x1, 0x16, &(0x7f0000000400)=ANY=[@ANYBLOB="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"], &(0x7f0000000040)='GPL\x00', 0x7, 0x0, 0x0, 0x81e00, 0x14, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x8, &(0x7f0000000080)={0x8, 0x1}, 0x8, 0x10, &(0x7f0000000240)={0x4, 0x1, 0x0, 0x1b9}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000280)=[0xffffffffffffffff], 0x0, 0x10, 0xd2, @void, @value}, 0x94)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x3)
ioctl$TIOCGPTPEER(r2, 0x5441, 0x1f1)
setsockopt$sock_attach_bpf(r0, 0x107, 0xf, &(0x7f0000000000)=r1, 0x4)
r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000180), 0x4000, 0x0)
r4 = request_key(&(0x7f0000000000)='id_resolver\x00', &(0x7f0000000040)={'syz', 0x0}, &(0x7f0000000080)='\x00', 0xfffffffffffffffb)
keyctl$instantiate(0xc, r4, 0x0, 0x0, 0xfffffffffffffffe)
request_key(&(0x7f00000000c0)='dns_resolver\x00', &(0x7f0000000100)={'syz', 0x2}, &(0x7f0000000140)='\x89\x00', r4)
openat$adsp1(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_open_dev$dri(0x0, 0x1, 0x0)
r5 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r6 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r6)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
r7 = syz_open_procfs(r5, &(0x7f0000000040)='smaps\x00')
syz_usb_disconnect(0xffffffffffffffff)
preadv(r7, &(0x7f0000000440)=[{&(0x7f00000041c0)=""/4096, 0x1000}], 0x1, 0x1e, 0x20704513)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r3, &(0x7f0000000580)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000002c0)={&(0x7f0000001800)={0x880, r8, 0x8, 0x70bd28, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_SCHED_SCAN_MULTI={0x4}, @NL80211_ATTR_TX_NO_CCK_RATE={0x4}, @NL80211_ATTR_BSSID={0xa}, @NL80211_ATTR_MEASUREMENT_DURATION={0x6, 0xeb, 0x3}, @NL80211_ATTR_IE={0x15e, 0x2a, [@ext_channel_switch={0x3c, 0x4, {0x1, 0x7, 0x11df6a5ee407cc9f, 0x7f}}, @preq={0x82, 0x3b, {{0x0, 0x0, 0x1}, 0xc, 0xfb, 0x408, @device_b, 0x4, @void, 0x2, 0x9, 0x3, [{{0x1, 0x0, 0x1}, @broadcast, 0x2}, {{}, @broadcast, 0x3ff}, {{0x1, 0x0, 0x1}, @device_b, 0x2}]}}, @random_vendor={0xdd, 0x56, "080b384260687619f4b7e2df78988d9077bb402f5175c802e8fef519dc09aacc4c6b547b9f24f803b8f32acdbbc1b3229447aff30d1ac51d5da2ad7d30f0b817c52cd427a2ed70e4894b400ef639ac70f8e41e655229"}, @cf={0x4, 0x6, {0x7b, 0x40, 0x6, 0x4}}, @measure_req={0x26, 0xa3, {0x0, 0x7d, 0x6, "dc3d151ea1a64830efde3edcdb22fb2001198ef9e192e1516ad900d45fe1e13e9c062fc3028ebcf2a2e5022d07633578c5c5b56defdf483e20fcb5bd055ce2d16e794e3b8ad19b48b21e51f599f0d558f572695db982de71af5eb29f07d20ce6a3b6692420e6c241f25f134e31d020a0722cb9640d0c3355867bb2f28691416a09aa162ce8b52dff91119e450d46c506da7a27b73594ba3f4a307204b2b70c6f"}}, @chsw_timing={0x68, 0x4, {0x1fee, 0xfc}}, @peer_mgmt={0x75, 0x4, {0x0, 0x0, @void, @void, @void}}, @chsw_timing={0x68, 0x4, {0x7, 0x7ff}}]}, @NL80211_ATTR_MEASUREMENT_DURATION={0x6, 0xeb, 0x3ff}, @NL80211_ATTR_MEASUREMENT_DURATION_MANDATORY={0x4}, @NL80211_ATTR_SCAN_SUPP_RATES={0x6e4, 0x7d, 0x0, 0x1, [@NL80211_BAND_6GHZ={0x37, 0x3, "2bf4586ee2b85083b3d0d50c21b0c3c617385639dfeb20dbb7d87ce1b645f1af1f081ce068fb56f545767cc6c9c0d9b32d9119"}, @NL80211_BAND_60GHZ={0x15, 0x2, "ed43615dba01163bdd7589d8448a46f7b1"}, @NL80211_BAND_60GHZ={0x2f, 0x2, "3a7ba346033f935147fc08f55f156a74515a62f368a85f45736988408db9a6beb049cba45ebaeda8c77306"}, @NL80211_BAND_60GHZ={0x100, 0x2, "27583d6e4854463facfdddbf1790ca8ae5fc2aaf5aa13d72d4307d9341aae88d545af7c3e86dc005b698d1e1377f109b27e8d14cb4d56543dd3619be16923e988a69c14dbf1988126d9225486713f2839d76f5e45e29ea511e7ef76751d194e6c22ab0837f69922580929bda3908bfea1fa822f5b3da8101f876493e7709d8e4bd53d0b077e3d1df21040593b71bd5e9c5190d466e598071d2a9ea51c9552dc5e98e3697c3ae8ee36d8c959963967d736e5281d6077bc1d873384bb9724f944207ba27b37eacd7b0e0112942ea71eae8988efc78f5024c93cfcfc62a3210efb45f957ceb25fa3bf6f8171d361de9956e2a8bc47e11b6cec1abdfad0c"}, @NL80211_BAND_60GHZ={0xd4, 0x2, "c1204b62a5e4d7be86616b562b0b13ddbc63505d1f2455ecfe730e21ecd8b60e60ff54f61536d5b620fd35e9e9336323a7f0adc866652d5730e5090444e782807dbde89e6db27c17bf34cad4a7262880cd6e6ca20cbc52759188a8f52dcaabfbff90885dd6a843832bf3e0a0c37b6bab7710dcc00a001c0b923f8bdecfed45ecf4d8e61c460e94efad2601af1499d7289de46d87ba1c6a8b97f69ddc983ee5aba2992105bdcb6c626b9717dc754090fbaade8df76a2298e98417919d96d19745f2a7bc5f58bf7a3f836689196056de54"}, @NL80211_BAND_5GHZ={0x4c, 0x1, "18baba46bc3d02fed94f72ab36ba4344e16ab4cdc21732cb860a5830615b77e86cd8de012b05074ff211e83596dcebf628e6fdcab207e89b2d46bbf4c105e2d535d8fc1dc99470eb"}, @NL80211_BAND_60GHZ={0xf3, 0x2, "caa619fc9d05846be316a9edeb50a7fbb564031844b73adfef686f77d27397adbb015f53eed63ccceb62ef38c8192e0aaeef9b7c72d946f0f7140bffd566713bd1a2a4781d583646f7c8da7dd8d78d60602c99c6ade1e0eaea5389288cb098b2850c460627d27c456d86a3270e514e7c46dc307d6c8415b8dc0705fd3ebcdcf8d1f7de163816a11b67fa5f276af93424ca9fa7482fa3d1b2ca4ebb5b100fdcfcd87d3dce9bdf7beaff2d154518c46be5b2202596e7227078ce7acc4d51ddcc6f005417945cb2f59c6279015924be00f949efa25540f9c2d10a6b15022c58467a66c9e54e3f8c6fdee552208582a739"}, @NL80211_BAND_5GHZ={0xf2, 0x1, "cd12e58cd418b44729bc5fef74429930e47e6951be5cf1cde6b49c04637e429981730b25ff813584e1ee8393f449aebaddd83f9dbbd5d1e26a8b7423fc915bfdcd6334360dfbd8bce0abcca17f87e16f1a95a649b78e4b833cf08b9b2780f9b2bc97ee35f70b63b1cdb516989675e8d93593da110cdfbd133c8edaf94830925df7932fd905114a81e881aad719667c6f028466dc6f1c66b8e0bc9c65c9049c25963d1c420f6ef2d79440a2a8fd0eef9eb0ccd77dd9525987306ea0dbcab18cad6a571d2ffc5215751614e0c45ef8c2ea764ef4fe622563beb1169a7246cb0eea15740b23cb5d9a22f35c948db462"}, @NL80211_BAND_6GHZ={0xaa, 0x3, "2dd944ef9323e627f1897c15d9d50998c87f22ceb29a51d3091beebee63444953beb821d9f11882aff2f73290b734d91234f362fdfc2e5093cff32c94dbb9379bd24456e4bd64ffe6f2cba32b5231efe37277a05dfe5f7b458c86b7a9baeb99f141583428083b130aae94adb599b1f689ac37e91c93dda64aff22f9a7396d856b6f27c7ae76ef2cd2a1b8d3f0a4121f55cdd35e51c8c46ca65f4a1cf42c3bcd17e9ab62a0602"}, @NL80211_BAND_60GHZ={0xb0, 0x2, "22d1d95e2aafc5a4d3236066c4935bbcf4db6446ff2e2bfc0460641f9aaae891505d04258b31db0683f2c8935618273334fc9185a748703af1d58dc0ab041c683ff5a1a4f11e749434b963ab27632346a3938a76c71502a251cf46ed4421e57c0c98afe99bc93bbef0ed47a527ebd36cb72f15035a99898de4b4c6aa198481b7a33474d00519d1d53e24933063bcb8d74a9f611aa308dc0a48940a0ec59beea70ce7eb78f7267604cb3ca335"}, @NL80211_BAND_5GHZ={0xfb, 0x1, "bd9f72424d7a861569d9a3dc5c5fc34a69967754b23e1851651bbb1f0c466cb499edcbcef98c8da1f9ba107b93af215405f2ec5c3b340932f12fbdb5b7b4bf03f4de8c4a122cf0803e13807b8d37442a9df16558acc309c3161b98f9dc3cddb42fd1f15989cab61ea449e76f6a7423714b66cb660b9a196b1844db370fb296ed839b62a873eb7476c95cd4f9c02441239b41527fc54a8c4a5cbd2f4be0e71acba30bfc0f4e71e6492e7abf0828813e667d01c5bc1365c8b48df804de932c471a82c55da6ed061c8a0f3a02bb7888ce9a05aba946cf020a9584cdee0486a8bd69aaa8466c37452025e111a0893bb57a9ef6fe4fcb8d5e00"}]}]}, 0x880}}, 0x0)
sendmsg$kcm(r0, &(0x7f00000000c0)={&(0x7f0000000100)=@ieee802154={0x24, @long={0x3, 0x2, {0xaaaaaaaaaaaa0102}}}, 0x80, &(0x7f0000000300)=[{&(0x7f00000007c0)="27031c0016001400020000000000000006e1f0000000890900000002ee1680ca82973d2bd4b836954268e611c00aab9715732c9fb7", 0x35}], 0x1}, 0x24000008)

18.571809322s ago: executing program 0 (id=2822):
socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
pipe(&(0x7f0000000000))
bind$alg(r2, &(0x7f0000000340)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
r3 = accept$alg(r2, 0x0, 0x0)
sendmmsg$alg(r3, &(0x7f0000000740)=[{0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000100)='v', 0xfffffffffffffe26}], 0x1}, {0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000140)="59d92c4f8173f40f144f6f1bb20a9a27fee05908dd6f5202f8deb47bd8e07ff9375b7adac49ab38bc7d612750452e3b1401c6871bc5dda013971abbe36647a295d5029ce4344f4f59125159e339a30bc840d8becb2eb3fe38fa726cf99f2a4818339c6b54dfbbe91f1782aea90bf028370cdef58ff263e6089f8a6894839b940ae0bdc321ddb93070118e57706105a0574340fd23abe81911eb8b07515136b8dbef25d84abffb95a63c4b6ea07710fe5d851af643676a3493bc8ce75275e0e9c78c2b99d1d4789484e1b072d431a7aee2d00a93a11f41313b62856f3ab3c00b46d63354bd4be0b41a60fdfc207ee753b6619096e"}, {&(0x7f0000000240)="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"}, {&(0x7f00000003c0)="e6dbd7d8c2fbcd0f4ef4dcc75fa9cd925f340e666ff1ebd704b8c0d29d9db96e16e03718a1de76f587e81682b27c26e4610478ad5c295069ee9e62b934fdb889832fc484879a8ee007034940e7ea9e95352d73eb9e6f433fcfe1fbd03784c22f5a21dcbef096e9f02145100078887f3509e015b221c3bfd69173bbe0492d31f3a68356550bf4062ed2e0080a77355722bfdce8d55316f637e296c03d52604fd0170dd0db5a0c73edab651a752ee94721837eb0147e1e1ec8ca7969023fd1308c5fa5fa12d0c41a96c59ee5e69858f713ab7aef32e6b7c1795c064506c547f2a4042be29a3c180d7a76cddaac428280ed220389e70104"}, {&(0x7f0000000040)="57239d895ca57ff74cb9"}], 0x0, &(0x7f0000000500)=[@assoc={0x0, 0x117, 0x4, 0xff}, @assoc={0x0, 0x117, 0x4, 0x6f}, @iv={0x0, 0x117, 0x2, 0x0, "f426468b2c951f71dc9bfddddb974ff9747d7b796fbae542b665fb3e46e5f9f0e4b5e9c0bdc3713af7182dcea00866511d5b02980508bcc3cb293fa3478f88031b6e1c52afb0369a21cb1de31f4d19f40df46dfe9b9150ee9f3d93799044d5c41438092507998f0b38829bdc65b076f14a076af1c1cade2874c3809d64e9057b9085ab37ce6f928e9e783652e1252e00bc9cf90e611bd073c496ecd5645a3960247f8e22816ee313e7c583c1c9ba8893a250bab9c3e074bb04ff3515387f9dc344553b55a2088d0c256e5701d73ae8171c32e7eaf8bb5dc60335c6b8"}], 0x0, 0x48000}, {0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000640)="e2746b99124dad80aa42e1d6d8bbd2e34de44a76f006a3ea1438e01ecac3615946"}, {&(0x7f0000000680)="a302540b948e569239c05bd04dcdb19bcd6ec8438cdf1ec9d6e7b4b8eff9863deadcdf716c0ba7ba289e3b6927c5a62c44d88ba5a006d436ffa2"}, {&(0x7f00000006c0)="019f"}], 0x0, &(0x7f0000000bc0)=[@assoc={0x0, 0x117, 0x4, 0xfffffffa}, @iv={0x0, 0x117, 0x2, 0x0, "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"}], 0x0, 0x40}], 0x1, 0x8004)

17.095059404s ago: executing program 0 (id=2836):
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000b00)=@raw={'raw\x00', 0x8, 0x3, 0x278, 0xd0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x358, 0xffffffff, 0xffffffff, 0x358, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'wg1\x00', 'gre0\x00'}, 0x0, 0xa8, 0xd8}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x2d8)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
write$cgroup_subtree(r0, &(0x7f0000000100)=ANY=[], 0x32600)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r0, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
getsockopt$netlink(r1, 0x10e, 0xc, 0x0, &(0x7f0000000a00)=0x56)

16.971773976s ago: executing program 0 (id=2838):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x801, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x201, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1000002, 0x11012, r1, 0xb441a000)
mremap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1000, 0x3, &(0x7f0000ffd000/0x1000)=nil)

8.5695576s ago: executing program 4 (id=2890):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000340)=ANY=[@ANYBLOB="540100001800010026bd7000000000001d0100001500030000000000000000008ca5be073cff296e020000001e01060000fd"], 0x154}, 0x1, 0x0, 0x0, 0x20008080}, 0x0)

6.497105034s ago: executing program 2 (id=2895):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100000000008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = accept$unix(r2, &(0x7f0000000000)=@abs, &(0x7f0000000100)=0x6e)
ppoll(&(0x7f0000000180)=[{r0, 0x4102}, {r0, 0x34}, {r4, 0x2020}], 0x3, &(0x7f0000000240)={0x77359400}, &(0x7f0000000280)={[0xfff]}, 0x8)
bind$inet(r0, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10)
sendmmsg(r0, &(0x7f0000000180), 0x400000000000077, 0x700000000000000)

6.211426607s ago: executing program 4 (id=2897):
socket$inet_udp(0x2, 0x2, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='timerslack_ns\x00')
writev(r0, &(0x7f0000000180)=[{&(0x7f0000000080)="c30f0c442b27e3ad28e0d033d8137a0cca3d347c9bdfcd183de11e56c830db1ebecce3d8de842648425483fbf199c8bd8775248304af52f32743b1b740b21456cac52fe79fd48b95da5b2ef4ee107375e1241dd3e5bd23a0c13b0b7712530791fce56f4aca8208ccbabd613481b66fabda1bafbaa7d1d5acac0ac7151a7e55cfc35df220b3bfb0e00f8fcf20fd69604ba72b6ca019b519970d265498710417d679ae6f25f0fe79898bebc0ba1cc7dd5c0c94f1bc3ace7d53b392", 0xba}], 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, r0, 0x83, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r4}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
unshare(0x20180)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='sched_switch\x00', r5}, 0x10)
r6 = socket$inet6(0xa, 0x2, 0x3a)
r7 = dup(r6)
bind$unix(r7, &(0x7f00000001c0)=@abs={0xa, 0x2}, 0x6e)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000000cc0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)=[@ip_tos_int={{0x14, 0x0, 0x1, 0x4}}], 0x18}}], 0x1, 0x0)
r8 = socket$inet_tcp(0x2, 0x1, 0x0)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCBRDELBR(r9, 0x89a2, &(0x7f0000000200)='bridge0\x00')
ioctl$sock_SIOCBRDELBR(r8, 0x89a3, &(0x7f0000000200)='bridge0\x00')

5.206357363s ago: executing program 3 (id=2898):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="09000000030000000400010005"], 0x48)
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000005000000050000000900000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x14, &(0x7f0000000580)=ANY=[@ANYBLOB="1802000000000000000000000000000018010000786c6c2500000000070000007b1af8ff00000000bfa100000000000007010000f8ffffffb700000000000000b7030000000000fd850000007200000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000680)='sys_exit\x00', r1}, 0x10)

4.875701334s ago: executing program 1 (id=2899):
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[], 0x48)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000004c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, 0x0, &(0x7f00000002c0)}, 0x20)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r1}, 0x10)
socketpair(0x1e, 0x1, 0x0, &(0x7f0000000040)={<r2=>0x0, <r3=>0x0})
close(r2)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="000000000000000003"], 0x48)
setsockopt$sock_attach_bpf(r3, 0x10f, 0x87, &(0x7f0000000180), 0x4bd)
socketpair(0x1e, 0x1, 0x0, &(0x7f0000000040)={<r4=>0x0, <r5=>0x0})
close(r4)
setsockopt$sock_attach_bpf(r5, 0x10f, 0x87, &(0x7f0000000180), 0x4bd)
close(r5)

4.351517014s ago: executing program 2 (id=2900):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000001900), 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xd, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001d40)={&(0x7f00000009c0)='sched_switch\x00', r3}, 0x10)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=@newlink={0x30, 0x10, 0x1, 0x2, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x41480}, [@IFLA_MTU={0x8, 0x4, 0x600}, @IFLA_GROUP={0x8}]}, 0x30}, 0x1, 0x0, 0x0, 0x5}, 0x0)

4.351134403s ago: executing program 3 (id=2901):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TDLS_CANCEL_CHANNEL_SWITCH(r2, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x2c, r3, 0x20, 0x70bd29, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x9, 0x39}}}}, [@NL80211_ATTR_MAC={0xa}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000000}, 0x4c005)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)={{0x14}, [@NFT_MSG_NEWRULE={0x50, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2, 0x0, 0xfffe}, [@NFTA_RULE_EXPRESSIONS={0x24, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @ct={{0x7}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_CT_KEY={0x8, 0x2, 0x1, 0x0, 0x11}, @NFTA_CT_SREG={0x8, 0x4, 0x1, 0x0, 0xc}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x5}}}, 0x78}, 0x1, 0x0, 0x0, 0x840}, 0x0)

4.162462608s ago: executing program 4 (id=2902):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2}, 0x1c)
setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000001100)=0x105, 0x4)
sendto$inet6(r0, &(0x7f0000f6f000), 0xfffffffffffffea7, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2}, 0x1c)
write(r0, &(0x7f00000000c0)="153cd2af", 0x4)

4.141392544s ago: executing program 1 (id=2903):
setresuid(0xee00, 0xee00, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000063015a00000000009500000000000000"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)

4.003785195s ago: executing program 3 (id=2904):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000000), 0x4)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = open(0x0, 0x80242, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r3 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
write$FUSE_CREATE_OPEN(r2, &(0x7f0000000180)={0xa0, 0xfffffffffffffffe, 0x0, {{0x7, 0x1, 0x5, 0x6, 0x5, 0x1, {0x1, 0x180, 0xff, 0x5, 0xff, 0xd615, 0x2, 0x800001, 0xfffffffe, 0x8000, 0x0, 0xee00, 0x0, 0x6, 0x800001}}}}, 0xa0)
sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000006c0)=@newlink={0x48, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}}, 0x0)

3.990475074s ago: executing program 1 (id=2905):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000440)=@deltaction={0x24, 0x31, 0x101, 0x0, 0x0, {}, [@TCA_ACT_TAB={0x10, 0x1, [{0xc, 0x1, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x7}}]}]}, 0x24}}, 0x0)

3.105954662s ago: executing program 2 (id=2906):
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000040)={0x0, 0x10, &(0x7f0000000000)=[@in={0x2, 0x0, @private=0xa010101}]}, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x101100, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000300)=[@text32={0x20, 0x0}], 0x1, 0x58, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000180)={0x0, 0xd000})
syz_emit_ethernet(0x3e, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaa0f"], 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x480)
sendmsg$L2TP_CMD_TUNNEL_CREATE(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYBLOB="170901"], 0x5c}}, 0x0)

3.029067269s ago: executing program 1 (id=2907):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_open_dev$video(&(0x7f0000000000), 0xc000, 0x0)
syz_open_dev$I2C(0x0, 0x80, 0x274100)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='ramfs\x00', 0x2014800, 0x0)
r3 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r3, &(0x7f0000000000)={0xa, 0x3, 0x0, @loopback, 0x1}, 0x1c)
r4 = landlock_create_ruleset(&(0x7f0000000040)={0x0, 0x3, 0x1}, 0x18, 0x0)
landlock_restrict_self(r4, 0x0)
connect$inet6(r3, 0x0, 0x0)
r5 = socket$pppl2tp(0x18, 0x1, 0x1)
r6 = socket$inet6_udp(0xa, 0x2, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$tipc(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000040)={0x30, r8, 0x1, 0xffffffff, 0x0, {{}, {}, {0x14, 0x19, {0xfffffffe, 0x9}}}}, 0x30}}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$TIPC_CMD_SET_NODE_ADDR(r7, &(0x7f0000000400)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000340)={&(0x7f00000002c0)={0x24, r8, 0x1, 0x70bd2b, 0x25dfdbfd, {{}, {}, {0x8, 0x11, 0x7}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x84}, 0x40040)
connect$pppl2tp(r5, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r6, {0x2, 0x2, @multicast2}, 0x2, 0x0, 0x4}}, 0x2e)
syz_genetlink_get_family_id$l2tp(&(0x7f00000004c0), r7)
getsockname(r5, 0x0, 0x0)
creat(&(0x7f0000000240)='./file0/bus\x00', 0x0)

3.023021009s ago: executing program 4 (id=2908):
setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0)
r0 = socket$l2tp(0x2, 0x2, 0x73)
bind$l2tp(r0, 0x0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x400000000000000)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
mkdir(&(0x7f0000000100)='./file0\x00', 0x0)
lsetxattr$system_posix_acl(&(0x7f0000000080)='./file0\x00', &(0x7f00000002c0)='system.posix_acl_default\x00', &(0x7f0000000180)={{}, {0x10}}, 0x24, 0x0)

1.885738564s ago: executing program 2 (id=2909):
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x0)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000180)={@ifindex, 0xffffffffffffffff, 0xe, 0x18, 0x0, @void, @value}, 0x20)
mkdir(&(0x7f0000000080)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x4000000, &(0x7f0000000180)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}, {@volatile}]})
umount2(&(0x7f0000000100)='./bus\x00', 0x8)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x80, &(0x7f0000000340)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file1'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020100000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r1, 0x40345410, &(0x7f0000000100)={{0x1, 0x3, 0x0, 0x3}})
ioctl$SNDRV_TIMER_IOCTL_PARAMS(r1, 0x40505412, &(0x7f0000000440)={0x0, 0x1, 0x3f, 0x0, 0xe})
sendmsg$NFT_BATCH(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a60000000160a01010000000000000000020000000900020073797a31000000000900010073797a30000000002c000380080002400000000008000140000000001800038014000100776c616e3000000000000000000000000800074000000001"], 0x88}}, 0x0)

1.883160079s ago: executing program 3 (id=2910):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000040)=ANY=[@ANYBLOB="1201000003005740ed0b0011c3ec000000010902120001000000000904"], 0x0)
syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000100)={0x2c, &(0x7f0000000440)=ANY=[@ANYBLOB="00000100000004"], 0x0, 0x0, 0x0, 0x0})
mremap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000869000/0x1000)=nil)
r1 = syz_open_dev$swradio(&(0x7f0000000000), 0x0, 0x2)
splice(r1, 0x0, r1, &(0x7f0000003a00), 0x8, 0x4)

1.860992543s ago: executing program 1 (id=2911):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000009c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = syz_open_dev$MSR(&(0x7f0000000040), 0x1, 0x0)
ioctl$X86_IOC_RDMSR_REGS(r3, 0xc02063a0, &(0x7f0000000080)=[0x89c6, 0x80000000, 0x6, 0x528f, 0x0, 0x6, 0x5, 0x10])
r4 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r4, 0xc018aa3f, 0x0)
ioctl$UFFDIO_REGISTER(r4, 0xc020aa00, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
syz_emit_ethernet(0x4e, &(0x7f00000002c0)={@local, @link_local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "922ff5", 0x18, 0x21, 0x0, @remote, @local, {[@fragment={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x64}], {{0x4e24, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2, "114f84", 0x0, "8e269c"}}}}}}}, 0x0)
r7 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r7, 0x3b81, &(0x7f0000000040)={0xc, 0x0, <r8=>0x0})
ioctl$IOMMU_IOAS_ALLOC(r7, 0x3b81, &(0x7f00000000c0)={0xc, 0x0, <r9=>0x0})
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN(r7, 0x3ba0, &(0x7f00000003c0)={0x48, 0x2, r9, 0x0, 0x0, 0x0, <r10=>0x0})
ioctl$IOMMU_HWPT_ALLOC$NONE(r7, 0x3b89, &(0x7f00000002c0)={0x28, 0x0, r10, r8, 0x0, 0x0, 0x0, 0x0, 0x0})

864.574324ms ago: executing program 2 (id=2912):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCBRDELBR(r0, 0x89a3, &(0x7f0000000200)='bridge0\x00')

513.284373ms ago: executing program 4 (id=2913):
syz_clone(0x80842111, 0x0, 0x0, 0x0, 0x0, 0x0)
pipe(&(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
io_setup(0x3ff, &(0x7f0000000500)=<r2=>0x0)
io_submit(r2, 0xf000, &(0x7f0000000300)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, r1, &(0x7f00000001c0)='m', 0xfffffdfc}])
io_destroy(r2)

494.162114ms ago: executing program 1 (id=2914):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @broadcast}, 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$pptp(0x18, 0x1, 0x2)
syz_usb_connect(0x2, 0x24, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x3a, 0xfe, 0x6, 0x20, 0x4e6, 0xb, 0x100, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x10, 0x0, [{{0x9, 0x4, 0x14, 0x0, 0x0, 0xa0, 0x24, 0x26}}]}}]}}, 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x3000003)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
syz_usb_connect(0x2, 0x24, &(0x7f0000000400)=ANY=[], 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'netdevsim0\x00', <r3=>0x0})
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB="9000000010000305000000000000000000000700", @ANYRES32=0x0, @ANYBLOB="996e06004d4c0700540012800800010068737200480002800500030008000000050003000500000005000300fd00000008000200", @ANYRES32=r4, @ANYBLOB="08000100", @ANYRES32=r3], 0x90}}, 0x0) (fail_nth: 7)
syz_emit_ethernet(0x0, 0x0, 0x0)

409.162212ms ago: executing program 2 (id=2915):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r4)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000e40)={'wlan0\x00', <r6=>0x0})
sendmsg$NL80211_CMD_GET_SCAN(r4, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000380)={0x1c, r5, 0xf21, 0x0, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x14}, 0x4000)
syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r4)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r3, 0x84, 0x6f, &(0x7f0000000040)={0x0, 0x10, &(0x7f0000000000)=[@in={0x2, 0x0, @private=0xa010101}]}, &(0x7f0000000080)=0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r3, 0x84, 0x1d, &(0x7f0000000140)={0x1, [<r7=>0x0]}, &(0x7f0000000240)=0x8)
getsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r2, 0x84, 0x75, &(0x7f0000000000)={r7, 0x1}, &(0x7f0000000040)=0x8)
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
syz_init_net_socket$x25(0x9, 0x5, 0x0)
sendmmsg$unix(r1, 0x0, 0x0, 0x0)
ioctl$VIDIOC_S_PARM(0xffffffffffffffff, 0xc0cc5616, 0x0)
bind$inet(0xffffffffffffffff, 0x0, 0x0)
socket$inet6(0xa, 0xa, 0x5)
r8 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000240), 0xc2882, 0x0)
syz_open_dev$midi(&(0x7f0000000000), 0x3, 0x4a243)
close(r8)

121.872814ms ago: executing program 3 (id=2916):
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
r1 = syz_io_uring_setup(0x88e, &(0x7f0000000140)={0x0, 0xaee4, 0x400, 0x1, 0xbfdffffc}, &(0x7f0000000000)=<r2=>0x0, &(0x7f00000000c0)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x3, r0, 0x0, 0x0, 0x0, 0x80000})
io_uring_enter(r1, 0x47f6, 0x0, 0x0, 0x0, 0x0) (fail_nth: 1)
listen(r0, 0xfffffff7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x3, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f0000000200)={0xa, 0x4e21, 0x0, @mcast2, 0x40000001}, 0xffffff95)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x2000000008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x400000bce)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
close(0xffffffffffffffff)

120.868455ms ago: executing program 4 (id=2917):
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
r1 = syz_io_uring_setup(0x88e, &(0x7f0000000140)={0x0, 0xaee4, 0x400, 0x1, 0xbfdffffc}, &(0x7f0000000000)=<r2=>0x0, &(0x7f00000000c0)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x3, r0, 0x0, 0x0, 0x0, 0x80000})
io_uring_enter(r1, 0x47f6, 0x0, 0x0, 0x0, 0x0)
listen(r0, 0xfffffff7)
setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000040)={@loopback, @rand_addr=0x64010100, 0x1, 0x1, [@loopback]}, 0x14)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x3, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f0000000200)={0xa, 0x4e21, 0x0, @mcast2, 0x40000001}, 0xffffff95)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
setsockopt$RDS_CONG_MONITOR(r4, 0x114, 0x6, &(0x7f0000000080)=0x1, 0x4)
setsockopt$RDS_CONG_MONITOR(r4, 0x114, 0x6, &(0x7f00000005c0)=0x1, 0x4)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x2000000008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x400000bce)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000019680)=""/102392, 0x18ff8)
close(0xffffffffffffffff)

0s ago: executing program 3 (id=2918):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_SET_BINARY(r3, 0x6, 0x0, 0x0, 0x0)
r4 = fsmount(r3, 0x0, 0x0)
r5 = openat$cgroup_subtree(r4, &(0x7f0000000100), 0x2, 0x0)
setregid(0xee00, 0x0)
r6 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
get_robust_list(r6, 0x0, 0x0)
write$cgroup_subtree(r5, &(0x7f0000000980)={[{0x2d, 'pids'}]}, 0x1f)

kernel console output (not intermixed with test programs):

ea3898
[  173.124211][ T6695]  </TASK>
[  175.229952][ T6708] sd 0:0:1:0: device reset
[  178.128062][ T6734] netlink: 32 bytes leftover after parsing attributes in process `syz.1.225'.
[  178.516553][ T6748] FAULT_INJECTION: forcing a failure.
[  178.516553][ T6748] name failslab, interval 1, probability 0, space 0, times 0
[  178.530059][ T6748] CPU: 0 UID: 0 PID: 6748 Comm: syz.0.229 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(full) 
[  178.530087][ T6748] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  178.530099][ T6748] Call Trace:
[  178.530108][ T6748]  <TASK>
[  178.530116][ T6748]  dump_stack_lvl+0x241/0x360
[  178.530166][ T6748]  ? __pfx_dump_stack_lvl+0x10/0x10
[  178.530196][ T6748]  ? __pfx__printk+0x10/0x10
[  178.530229][ T6748]  ? ref_tracker_alloc+0x316/0x4c0
[  178.530258][ T6748]  should_fail_ex+0x424/0x570
[  178.530286][ T6748]  should_failslab+0xac/0x100
[  178.530310][ T6748]  kmem_cache_alloc_noprof+0x78/0x390
[  178.530331][ T6748]  ? skb_clone+0x20c/0x390
[  178.530361][ T6748]  skb_clone+0x20c/0x390
[  178.530389][ T6748]  __netlink_deliver_tap+0x3c4/0x7f0
[  178.530434][ T6748]  ? netlink_deliver_tap+0x2e/0x1b0
[  178.530477][ T6748]  netlink_deliver_tap+0x19d/0x1b0
[  178.530511][ T6748]  netlink_sendskb+0x68/0x140
[  178.530539][ T6748]  netlink_unicast+0x39f/0x9a0
[  178.530564][ T6748]  ? __asan_memcpy+0x40/0x70
[  178.530601][ T6748]  ? __pfx_netlink_unicast+0x10/0x10
[  178.530641][ T6748]  netlink_rcv_skb+0x296/0x480
[  178.530672][ T6748]  ? __pfx_genl_rcv_msg+0x10/0x10
[  178.530697][ T6748]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  178.530751][ T6748]  ? netlink_deliver_tap+0x2e/0x1b0
[  178.530788][ T6748]  genl_rcv+0x28/0x40
[  178.530809][ T6748]  netlink_unicast+0x7f8/0x9a0
[  178.530845][ T6748]  ? __pfx_netlink_unicast+0x10/0x10
[  178.530873][ T6748]  ? smack_socket_getpeersec_dgram+0x240/0x410
[  178.530907][ T6748]  ? skb_put+0x114/0x1f0
[  178.530933][ T6748]  netlink_sendmsg+0x8c3/0xcd0
[  178.530977][ T6748]  ? __pfx_netlink_sendmsg+0x10/0x10
[  178.531023][ T6748]  ? __pfx_netlink_sendmsg+0x10/0x10
[  178.531052][ T6748]  __sock_sendmsg+0x221/0x270
[  178.531084][ T6748]  ____sys_sendmsg+0x523/0x860
[  178.531117][ T6748]  ? __pfx_____sys_sendmsg+0x10/0x10
[  178.531137][ T6748]  ? __fget_files+0x2a/0x420
[  178.531166][ T6748]  ? __fget_files+0x2a/0x420
[  178.531200][ T6748]  __sys_sendmsg+0x271/0x360
[  178.531230][ T6748]  ? __pfx___sys_sendmsg+0x10/0x10
[  178.531313][ T6748]  ? do_syscall_64+0xb6/0x230
[  178.531344][ T6748]  do_syscall_64+0xf3/0x230
[  178.531371][ T6748]  ? clear_bhb_loop+0x45/0xa0
[  178.531396][ T6748]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  178.531415][ T6748] RIP: 0033:0x7f18d9f8d169
[  178.531444][ T6748] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  178.531465][ T6748] RSP: 002b:00007f18dad7a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  178.531493][ T6748] RAX: ffffffffffffffda RBX: 00007f18da1a5fa0 RCX: 00007f18d9f8d169
[  178.531508][ T6748] RDX: 0000000020040814 RSI: 0000200000000840 RDI: 0000000000000003
[  178.531520][ T6748] RBP: 00007f18dad7a090 R08: 0000000000000000 R09: 0000000000000000
[  178.531532][ T6748] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  178.531543][ T6748] R13: 0000000000000000 R14: 00007f18da1a5fa0 R15: 00007ffe1fea3898
[  178.531575][ T6748]  </TASK>
[  179.322075][ T6752] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  179.330889][ T6752] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  179.341101][ T6752] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  180.511596][ T6758] sd 0:0:1:0: device reset
[  183.500752][ T6792] xt_ipcomp: unknown flags 12
[  185.270813][ T6795] 9pnet_fd: Insufficient options for proto=fd
[  189.586587][ T6813] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  189.595304][ T6813] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  189.604526][ T6813] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  192.542278][ T6847] xt_ipcomp: unknown flags 12
[  194.476708][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  194.483084][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  200.215715][ T6906] xt_ipcomp: unknown flags 12
[  201.310977][ T6902] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  201.319791][ T6902] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  201.328959][ T6902] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  205.685371][   T48] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[  205.867229][   T48] usb 3-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  205.876870][   T48] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  205.889411][   T48] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 66
[  205.902154][   T48] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  205.916717][   T48] usb 3-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  205.927517][   T48] usb 3-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  205.937680][   T48] usb 3-1: Product: syz
[  205.948420][   T48] usb 3-1: Manufacturer: syz
[  205.962711][   T48] cdc_wdm 3-1:1.0: skipping garbage
[  205.968233][   T48] cdc_wdm 3-1:1.0: skipping garbage
[  206.017406][   T48] cdc_wdm 3-1:1.0: probe with driver cdc_wdm failed with error -22
[  206.628953][ T6965] xt_ipcomp: unknown flags 12
[  207.355066][ T6967] netlink: 16 bytes leftover after parsing attributes in process `syz.1.287'.
[  207.543585][   T24] usb 3-1: USB disconnect, device number 3
[  208.710830][ T6987] netlink: 12 bytes leftover after parsing attributes in process `syz.1.295'.
[  208.751652][ T5941] IPVS: starting estimator thread 0...
[  209.275912][ T6991] IPVS: using max 27 ests per chain, 64800 per kthread
[  209.386872][ T1211] hid (null): unknown global tag 0xe
[  209.447664][ T1211] hid-generic 0009:0080:0000.0001: unknown main item tag 0x0
[  209.482683][ T1211] hid-generic 0009:0080:0000.0001: unknown main item tag 0x0
[  209.521070][ T1211] hid-generic 0009:0080:0000.0001: unknown global tag 0xe
[  209.544176][ T1211] hid-generic 0009:0080:0000.0001: item 0 2 1 14 parsing failed
[  209.658243][ T1211] hid-generic 0009:0080:0000.0001: probe with driver hid-generic failed with error -22
[  209.824723][ T5941] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  210.097123][ T5941] usb 5-1: config 0 has an invalid interface number: 237 but max is 0
[  210.563351][ T7005] xt_ipcomp: unknown flags 12
[  210.615710][ T5941] usb 5-1: config 0 has no interface number 0
[  210.621977][ T5941] usb 5-1: config 0 interface 237 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7
[  210.694667][ T5941] usb 5-1: config 0 interface 237 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  210.736968][ T5941] usb 5-1: config 0 interface 237 altsetting 0 endpoint 0x8A has an invalid bInterval 0, changing to 7
[  210.801566][ T5941] usb 5-1: config 0 interface 237 altsetting 0 endpoint 0x8A has invalid wMaxPacketSize 0
[  210.838940][ T5941] usb 5-1: New USB device found, idVendor=045e, idProduct=84bd, bcdDevice=89.b6
[  210.868614][ T5941] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  210.900453][ T5941] usb 5-1: Product: syz
[  210.904668][ T5941] usb 5-1: Manufacturer: syz
[  210.921918][ T7011] netlink: 4 bytes leftover after parsing attributes in process `syz.1.302'.
[  210.951733][ T5941] usb 5-1: SerialNumber: syz
[  210.956638][   T60] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  210.988248][ T5941] usb 5-1: config 0 descriptor??
[  211.014232][ T5941] xpad 5-1:0.237: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90
[  211.069097][ T5941] input: Generic X-Box pad as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.237/input/input8
[  211.139443][   T60] usb 4-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  211.170370][   T60] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  211.206467][   T60] usb 4-1: config 0 descriptor??
[  211.247076][   T60] cp210x 4-1:0.0: cp210x converter detected
[  211.268299][ T7016] tmpfs: Unknown parameter 'grpqota_block_hardlimit'
[  211.713258][ T7003] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  211.766183][ T7003] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  211.786597][ T5837] Bluetooth: hci3: command 0x0406 tx timeout
[  211.793247][ T5831] Bluetooth: hci4: command 0x0406 tx timeout
[  211.801500][ T5831] Bluetooth: hci2: command 0x0406 tx timeout
[  211.808312][ T5842] Bluetooth: hci1: command 0x0406 tx timeout
[  211.832156][   T60] cp210x 4-1:0.0: failed to get vendor val 0x000e size 3: -32
[  212.634985][   T60] cp210x 4-1:0.0: failed to get vendor val 0x3711 size 2: -71
[  212.672544][   T60] cp210x 4-1:0.0: GPIO initialisation failed: -71
[  212.822875][   T60] usb 4-1: cp210x converter now attached to ttyUSB0
[  212.882703][   T60] usb 4-1: USB disconnect, device number 4
[  212.956570][   T60] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  212.976057][   T60] cp210x 4-1:0.0: device disconnected
[  213.036741][ T5941] usb 5-1: USB disconnect, device number 4
[  213.072733][ T5941] xpad 5-1:0.237: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19
[  213.196939][ T7040] netlink: 20 bytes leftover after parsing attributes in process `syz.2.308'.
[  213.848403][ T7038] syz.2.308 (7038) used greatest stack depth: 19512 bytes left
[  215.255569][   T30] audit: type=1800 audit(1744623918.334:2): pid=7063 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.1.315" name="SYSV00000000" dev="tmpfs" ino=0 res=0 errno=0
[  215.339155][ T7067] FAULT_INJECTION: forcing a failure.
[  215.339155][ T7067] name failslab, interval 1, probability 0, space 0, times 0
[  215.383457][ T7067] CPU: 1 UID: 0 PID: 7067 Comm: syz.3.318 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(full) 
[  215.383489][ T7067] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  215.383501][ T7067] Call Trace:
[  215.383510][ T7067]  <TASK>
[  215.383519][ T7067]  dump_stack_lvl+0x241/0x360
[  215.383557][ T7067]  ? __pfx_dump_stack_lvl+0x10/0x10
[  215.383587][ T7067]  ? __pfx__printk+0x10/0x10
[  215.383620][ T7067]  ? __pfx___might_resched+0x10/0x10
[  215.383652][ T7067]  should_fail_ex+0x424/0x570
[  215.383681][ T7067]  should_failslab+0xac/0x100
[  215.383706][ T7067]  __kmalloc_noprof+0xdf/0x4d0
[  215.383727][ T7067]  ? ethnl_default_notify+0x19c/0x9f0
[  215.383766][ T7067]  ethnl_default_notify+0x19c/0x9f0
[  215.383797][ T7067]  ? _raw_spin_unlock_irqrestore+0x90/0x140
[  215.383820][ T7067]  ? lockdep_hardirqs_on+0x9d/0x150
[  215.383847][ T7067]  ? _raw_spin_unlock_irqrestore+0xde/0x140
[  215.383870][ T7067]  ? __pfx_ethnl_default_notify+0x10/0x10
[  215.383915][ T7067]  ? __pfx_ethnl_set_coalesce+0x10/0x10
[  215.383956][ T7067]  ? mutex_is_locked+0x17/0x50
[  215.383985][ T7067]  ethnl_default_set_doit+0x678/0xb10
[  215.384029][ T7067]  ? __pfx_ethnl_default_set_doit+0x10/0x10
[  215.384068][ T7067]  ? genl_family_rcv_msg_attrs_parse+0x1d4/0x290
[  215.384102][ T7067]  genl_rcv_msg+0xb38/0xf00
[  215.384137][ T7067]  ? __pfx_genl_rcv_msg+0x10/0x10
[  215.384157][ T7067]  ? __dev_queue_xmit+0x1780/0x3f60
[  215.384180][ T7067]  ? kasan_save_track+0x3f/0x80
[  215.384207][ T7067]  ? __kasan_slab_alloc+0x66/0x80
[  215.384244][ T7067]  ? do_syscall_64+0xf3/0x230
[  215.384291][ T7067]  ? __lock_acquire+0xad5/0xd80
[  215.384314][ T7067]  ? __pfx_ethnl_default_set_doit+0x10/0x10
[  215.384364][ T7067]  netlink_rcv_skb+0x208/0x480
[  215.384396][ T7067]  ? __pfx_genl_rcv_msg+0x10/0x10
[  215.384422][ T7067]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  215.384477][ T7067]  ? netlink_deliver_tap+0x2e/0x1b0
[  215.384516][ T7067]  genl_rcv+0x28/0x40
[  215.384536][ T7067]  netlink_unicast+0x7f8/0x9a0
[  215.384575][ T7067]  ? __pfx_netlink_unicast+0x10/0x10
[  215.384605][ T7067]  ? skb_put+0x114/0x1f0
[  215.384632][ T7067]  netlink_sendmsg+0x8c3/0xcd0
[  215.384678][ T7067]  ? __pfx_netlink_sendmsg+0x10/0x10
[  215.384726][ T7067]  ? __pfx_netlink_sendmsg+0x10/0x10
[  215.384754][ T7067]  __sock_sendmsg+0x221/0x270
[  215.384791][ T7067]  ____sys_sendmsg+0x523/0x860
[  215.384825][ T7067]  ? __pfx_____sys_sendmsg+0x10/0x10
[  215.384846][ T7067]  ? __fget_files+0x2a/0x420
[  215.384874][ T7067]  ? __fget_files+0x2a/0x420
[  215.384910][ T7067]  __sys_sendmsg+0x271/0x360
[  215.384940][ T7067]  ? __pfx___sys_sendmsg+0x10/0x10
[  215.385035][ T7067]  ? do_syscall_64+0xb6/0x230
[  215.385066][ T7067]  do_syscall_64+0xf3/0x230
[  215.385093][ T7067]  ? clear_bhb_loop+0x45/0xa0
[  215.385119][ T7067]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  215.385139][ T7067] RIP: 0033:0x7ff3ed98d169
[  215.385159][ T7067] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  215.385176][ T7067] RSP: 002b:00007ff3ee7b9038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  215.385211][ T7067] RAX: ffffffffffffffda RBX: 00007ff3edba5fa0 RCX: 00007ff3ed98d169
[  215.385225][ T7067] RDX: 0000000000000000 RSI: 0000200000000540 RDI: 0000000000000003
[  215.385237][ T7067] RBP: 00007ff3ee7b9090 R08: 0000000000000000 R09: 0000000000000000
[  215.385249][ T7067] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  215.385260][ T7067] R13: 0000000000000000 R14: 00007ff3edba5fa0 R15: 00007ffdb1da1178
[  215.385293][ T7067]  </TASK>
[  215.729352][    C1] vkms_vblank_simulate: vblank timer overrun
[  216.369864][ T5941] usb 1-1: new full-speed USB device number 7 using dummy_hcd
[  216.506839][ T5941] usb 1-1: device descriptor read/64, error -71
[  216.675757][   T48] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  217.234960][   T48] usb 4-1: Using ep0 maxpacket: 16
[  217.647242][ T5941] usb 1-1: new full-speed USB device number 8 using dummy_hcd
[  217.719536][   T48] usb 4-1: unable to get BOS descriptor or descriptor too short
[  217.790367][   T48] usb 4-1: config 3 has an invalid interface number: 7 but max is 1
[  217.822994][   T48] usb 4-1: config 3 has no interface number 0
[  217.862939][   T48] usb 4-1: config 3 interface 1 altsetting 6 endpoint 0xE has invalid wMaxPacketSize 0
[  217.879769][ T5941] usb 1-1: device descriptor read/64, error -71
[  217.882767][   T48] usb 4-1: config 3 interface 7 has no altsetting 0
[  217.918572][   T48] usb 4-1: config 3 interface 1 has no altsetting 0
[  218.018610][ T5941] usb usb1-port1: attempt power cycle
[  218.051434][   T48] usb 4-1: New USB device found, idVendor=04e2, idProduct=1420, bcdDevice=e3.e2
[  218.070939][   T48] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  218.096010][   T48] usb 4-1: Product: syz
[  218.104102][   T48] usb 4-1: Manufacturer: syz
[  218.113675][   T48] usb 4-1: SerialNumber: syz
[  218.290365][ T7099] cgroup2: Unknown parameter 'ns$elegate'
[  218.382457][   T48] xr_serial 4-1:3.7: xr_serial converter detected
[  218.425932][   T48] xr_serial ttyUSB0: Failed to set reg 0x60: -71
[  218.437195][   T48] xr_serial ttyUSB0: probe with driver xr_serial failed with error -71
[  218.544029][   T48] usb 4-1: USB disconnect, device number 5
[  218.670985][   T48] xr_serial 4-1:3.7: device disconnected
[  219.542906][ T7112] sctp: [Deprecated]: syz.0.329 (pid 7112) Use of int in max_burst socket option.
[  219.542906][ T7112] Use struct sctp_assoc_value instead
[  219.846964][ T7112] netlink: 'syz.0.329': attribute type 10 has an invalid length.
[  220.237228][ T7112] veth0_vlan: left promiscuous mode
[  220.533296][ T7112] veth0_vlan: entered promiscuous mode
[  220.642049][ T7112] team0: Device veth0_vlan failed to register rx_handler
[  221.622045][ T7135] netlink: 'syz.1.338': attribute type 7 has an invalid length.
[  221.661402][ T7135] netlink: 'syz.1.338': attribute type 5 has an invalid length.
[  221.704678][ T7135] netlink: 17 bytes leftover after parsing attributes in process `syz.1.338'.
[  222.843805][ T7160] sctp: [Deprecated]: syz.4.345 (pid 7160) Use of struct sctp_assoc_value in delayed_ack socket option.
[  222.843805][ T7160] Use struct sctp_sack_info instead
[  224.795682][ T7171] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  225.145178][ T7184] netlink: 128 bytes leftover after parsing attributes in process `syz.3.354'.
[  225.463927][ T7196] netlink: 20 bytes leftover after parsing attributes in process `syz.4.357'.
[  227.019871][ T7215] Zero length message leads to an empty skb
[  227.320341][ T7222] netlink: 4 bytes leftover after parsing attributes in process `syz.0.368'.
[  227.336674][ T7222] FAULT_INJECTION: forcing a failure.
[  227.336674][ T7222] name failslab, interval 1, probability 0, space 0, times 0
[  227.460311][ T7222] CPU: 0 UID: 0 PID: 7222 Comm: syz.0.368 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(full) 
[  227.460341][ T7222] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  227.460354][ T7222] Call Trace:
[  227.460362][ T7222]  <TASK>
[  227.460371][ T7222]  dump_stack_lvl+0x241/0x360
[  227.460409][ T7222]  ? __pfx_dump_stack_lvl+0x10/0x10
[  227.460439][ T7222]  ? __pfx__printk+0x10/0x10
[  227.460473][ T7222]  ? __pfx___might_resched+0x10/0x10
[  227.460506][ T7222]  should_fail_ex+0x424/0x570
[  227.460534][ T7222]  should_failslab+0xac/0x100
[  227.460559][ T7222]  __kmalloc_cache_noprof+0x73/0x370
[  227.460581][ T7222]  ? __request_module+0x2bb/0x640
[  227.460609][ T7222]  __request_module+0x2bb/0x640
[  227.460635][ T7222]  ? crypto_alg_mod_lookup+0x8c/0x640
[  227.460660][ T7222]  ? __pfx___request_module+0x10/0x10
[  227.460680][ T7222]  ? __up_read+0x2c4/0x6b0
[  227.460709][ T7222]  ? __pfx___up_read+0x10/0x10
[  227.460748][ T7222]  ? crypto_alg_lookup+0x3d2/0x450
[  227.460776][ T7222]  crypto_alg_mod_lookup+0xac/0x640
[  227.460805][ T7222]  crypto_alloc_tfm_node+0x131/0x3a0
[  227.460849][ T7222]  esp_init_state+0x627/0x1180
[  227.460881][ T7222]  ? __sock_sendmsg+0x221/0x270
[  227.460907][ T7222]  ? ____sys_sendmsg+0x523/0x860
[  227.460942][ T7222]  ? __pfx_esp_init_state+0x10/0x10
[  227.461011][ T7222]  ? __xfrm_init_state+0x6d9/0x1050
[  227.461042][ T7222]  ? __xfrm_init_state+0x6d9/0x1050
[  227.461073][ T7222]  __xfrm_init_state+0x7ac/0x1050
[  227.461110][ T7222]  xfrm_add_sa+0x2fb9/0x4230
[  227.461161][ T7222]  ? __pfx_xfrm_add_sa+0x10/0x10
[  227.461194][ T7222]  ? __nla_parse+0x40/0x60
[  227.461225][ T7222]  xfrm_user_rcv_msg+0x9c3/0xca0
[  227.461259][ T7222]  ? __pfx_xfrm_user_rcv_msg+0x10/0x10
[  227.461326][ T7222]  ? __mutex_trylock_common+0x184/0x2e0
[  227.461358][ T7222]  ? __pfx___mutex_trylock_common+0x10/0x10
[  227.461396][ T7222]  netlink_rcv_skb+0x208/0x480
[  227.461428][ T7222]  ? __pfx_xfrm_user_rcv_msg+0x10/0x10
[  227.461457][ T7222]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  227.461510][ T7222]  ? netlink_deliver_tap+0x2e/0x1b0
[  227.461548][ T7222]  xfrm_netlink_rcv+0x79/0x90
[  227.461575][ T7222]  netlink_unicast+0x7f8/0x9a0
[  227.461610][ T7222]  ? __pfx_netlink_unicast+0x10/0x10
[  227.461639][ T7222]  ? skb_put+0x114/0x1f0
[  227.461662][ T7222]  netlink_sendmsg+0x8c3/0xcd0
[  227.461705][ T7222]  ? __pfx_netlink_sendmsg+0x10/0x10
[  227.461749][ T7222]  ? __pfx_netlink_sendmsg+0x10/0x10
[  227.461775][ T7222]  __sock_sendmsg+0x221/0x270
[  227.461806][ T7222]  ____sys_sendmsg+0x523/0x860
[  227.461847][ T7222]  ? __pfx_____sys_sendmsg+0x10/0x10
[  227.461866][ T7222]  ? __fget_files+0x2a/0x420
[  227.461893][ T7222]  ? __fget_files+0x2a/0x420
[  227.461927][ T7222]  __sys_sendmsg+0x271/0x360
[  227.461955][ T7222]  ? __pfx___sys_sendmsg+0x10/0x10
[  227.462037][ T7222]  ? do_syscall_64+0xb6/0x230
[  227.462067][ T7222]  do_syscall_64+0xf3/0x230
[  227.462092][ T7222]  ? clear_bhb_loop+0x45/0xa0
[  227.462116][ T7222]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  227.462136][ T7222] RIP: 0033:0x7f18d9f8d169
[  227.462154][ T7222] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  227.462170][ T7222] RSP: 002b:00007f18dad7a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  227.462191][ T7222] RAX: ffffffffffffffda RBX: 00007f18da1a5fa0 RCX: 00007f18d9f8d169
[  227.462205][ T7222] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[  227.462217][ T7222] RBP: 00007f18dad7a090 R08: 0000000000000000 R09: 0000000000000000
[  227.462229][ T7222] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  227.462239][ T7222] R13: 0000000000000000 R14: 00007f18da1a5fa0 R15: 00007ffe1fea3898
[  227.462271][ T7222]  </TASK>
[  229.045794][   T48] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  229.211581][   T48] usb 5-1: New USB device found, idVendor=046d, idProduct=0870, bcdDevice=61.47
[  229.231965][   T48] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  229.260632][   T48] usb 5-1: config 0 descriptor??
[  229.286202][   T48] gspca_main: STV06xx-2.14.0 probing 046d:0870
[  229.316493][ T7252] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  229.323273][ T7252] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  229.375708][ T7252] hsr_slave_0: left promiscuous mode
[  229.395583][ T7252] hsr_slave_1: left promiscuous mode
[  230.430361][   T48] gspca_stv06xx: I2C: Read error writing address: -71
[  230.479898][   T48] usb 5-1: USB disconnect, device number 5
[  233.833887][ T7317] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  233.845063][ T7317] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  233.856229][ T7317] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  235.520165][ T7343] xt_ipcomp: unknown flags 12
[  236.233342][ T7345] netlink: 12 bytes leftover after parsing attributes in process `syz.0.408'.
[  237.353011][ T7358] xt_ipcomp: unknown flags 12
[  237.391281][   T48] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[  237.845860][   T48] usb 1-1: Using ep0 maxpacket: 32
[  237.854727][   T48] usb 1-1: config 0 has an invalid interface number: 35 but max is 0
[  237.874676][   T48] usb 1-1: config 0 has no interface number 0
[  237.897110][   T48] usb 1-1: New USB device found, idVendor=10c4, idProduct=818a, bcdDevice=7d.8f
[  237.921149][   T48] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  237.950887][   T48] usb 1-1: Product: syz
[  237.959801][   T48] usb 1-1: Manufacturer: syz
[  237.985660][   T48] usb 1-1: SerialNumber: syz
[  238.017887][   T48] usb 1-1: config 0 descriptor??
[  238.479099][ T7374] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  238.484030][   T48] radio-si470x 1-1:0.35: si470x_get_report: usb_control_msg returned -71
[  238.500475][ T7374] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  238.533576][ T5904] IPVS: starting estimator thread 0...
[  238.539696][   T48] radio-si470x 1-1:0.35: probe with driver radio-si470x failed with error -5
[  238.573967][ T7377] netlink: 20 bytes leftover after parsing attributes in process `syz.2.417'.
[  238.587978][   T48] radio-raremono 1-1:0.35: this is not Thanko's Raremono.
[  238.616398][ T7374] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  238.666146][ T7375] IPVS: using max 27 ests per chain, 64800 per kthread
[  238.678939][   T48] usb 1-1: USB disconnect, device number 10
[  240.199578][ T7390] xt_ipcomp: unknown flags 12
[  240.734557][   T30] audit: type=1800 audit(1744623943.834:3): pid=7405 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.4.425" name="file0" dev="tmpfs" ino=411 res=0 errno=0
[  242.959522][ T7433] netlink: 20 bytes leftover after parsing attributes in process `syz.1.433'.
[  243.218824][ T7442] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  243.229079][ T7442] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  243.242380][ T7442] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  248.553059][ T7490] netlink: 20 bytes leftover after parsing attributes in process `syz.2.449'.
[  249.270646][ T7488] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  252.830101][ T7521] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  252.839079][ T7521] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  252.848338][ T7521] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  254.006627][ T7542] openvswitch: netlink: Missing key (keys=40, expected=10000000)
[  254.449585][ T7555] tipc: Started in network mode
[  254.454521][ T7555] tipc: Node identity 7, cluster identity 4711
[  254.460807][ T7555] tipc: Node number set to 7
[  255.790148][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  255.800509][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  260.146630][ T7594] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  260.155597][ T7594] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  260.164747][ T7594] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  260.321195][ T7601] Malformed UNC in devname
[  260.321195][ T7601] 
[  260.328312][ T7601] CIFS: VFS: Malformed UNC in devname
[  260.356603][ T5904] IPVS: starting estimator thread 0...
[  261.099290][ T7602] IPVS: using max 29 ests per chain, 69600 per kthread
[  266.369462][ T7653] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  266.379317][ T7653] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  266.388557][ T7653] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  267.188714][ T7651] warning: `syz.2.498' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  271.468083][ T7698] fuse: Bad value for 'fd'
[  271.679667][ T7707] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  271.688707][ T7707] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  271.697902][ T7707] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  275.974755][ T7743] netem: change failed
[  279.682565][ T7787] Malformed UNC in devname
[  279.682565][ T7787] 
[  279.690804][ T7787] CIFS: VFS: Malformed UNC in devname
[  281.442395][ T7815] netlink: 20 bytes leftover after parsing attributes in process `syz.1.551'.
[  282.979622][ T7825] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  282.988638][ T7825] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  282.997823][ T7825] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  286.273660][ T7881] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  287.102962][ T7876] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  287.111835][ T7876] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  287.121015][ T7876] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  287.268131][ T7886] 9pnet: p9_errstr2errno: server reported unknown error �@00000000000000000000005
[  287.566651][ T7897] netlink: 20 bytes leftover after parsing attributes in process `syz.2.580'.
[  288.428116][ T7916] tmpfs: Bad value for 'grpquota_block_hardlimit'
[  290.048762][ T7933] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  290.802278][ T7947] 9pnet_fd: Insufficient options for proto=fd
[  292.086540][ T7955] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  292.095330][ T7955] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  292.175659][ T7955] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  293.276228][ T7977] netlink: 56 bytes leftover after parsing attributes in process `syz.4.605'.
[  294.459412][ T7997] netlink: 4 bytes leftover after parsing attributes in process `syz.0.614'.
[  295.042339][ T8016] 9pnet_fd: Insufficient options for proto=fd
[  295.733963][ T8029] netlink: 316 bytes leftover after parsing attributes in process `syz.4.623'.
[  296.627218][ T8037] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  296.636136][ T8037] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  296.645337][ T8037] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  296.722796][ T8043] netlink: 'syz.2.627': attribute type 2 has an invalid length.
[  296.778350][ T8043] k›*·]‘: entered promiscuous mode
[  298.445801][ T8074] openvswitch: netlink: Key 0 has unexpected len 20 expected 0
[  299.182523][ T8084] netlink: 92 bytes leftover after parsing attributes in process `syz.2.644'.
[  299.980989][ T8099] netlink: 188 bytes leftover after parsing attributes in process `syz.0.647'.
[  308.695608][ T8223] Driver unsupported XDP return value 0 on prog  (id 260) dev N/A, expect packet loss!
[  308.841677][ T8230] overlayfs: failed to resolve './file1': -2
[  308.903280][ T8231] mac80211_hwsim hwsim9 
3
@0ÿ: renamed from wlan0 (while UP)
[  314.541324][ T8320] netlink: 20 bytes leftover after parsing attributes in process `syz.4.708'.
[  317.286394][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  317.292836][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  317.486335][ T8355] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  318.288071][ T8371] netlink: 20 bytes leftover after parsing attributes in process `syz.0.720'.
[  319.364535][ T8382] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  319.373883][ T8382] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  319.382665][ T8382] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  319.391524][ T8382] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  319.412493][ T8387] netlink: 20 bytes leftover after parsing attributes in process `syz.1.725'.
[  319.525727][ T8382] vxlan0: entered promiscuous mode
[  319.531084][ T8382] vxlan0: entered allmulticast mode
[  321.398703][ T8413] netlink: 20 bytes leftover after parsing attributes in process `syz.0.732'.
[  322.187563][ T8425] netlink: 156 bytes leftover after parsing attributes in process `syz.0.739'.
[  323.575994][ T8448] 9pnet_fd: Insufficient options for proto=fd
[  323.836419][ T8454] netlink: 'syz.1.748': attribute type 27 has an invalid length.
[  323.879072][ T8455] xt_ipcomp: unknown flags 12
[  325.731360][ T5839] Bluetooth: hci4: unexpected event for opcode 0x200d
[  330.177384][ T8490] 9pnet_fd: Insufficient options for proto=fd
[  334.825388][ T8554] netlink: 20 bytes leftover after parsing attributes in process `syz.3.771'.
[  335.928539][ T8566] 9pnet_fd: Insufficient options for proto=fd
[  336.239906][ T8573] netlink: 'syz.3.778': attribute type 1 has an invalid length.
[  337.455758][ T8573] netlink: 28 bytes leftover after parsing attributes in process `syz.3.778'.
[  337.605030][ T8583] 8021q: adding VLAN 0 to HW filter on device bond2
[  337.657860][ T8583] bond1: (slave bond2): making interface the new active one
[  337.696881][ T8583] bond1: (slave bond2): Enslaving as an active interface with an up link
[  339.747380][   T30] audit: type=1326 audit(1744624042.854:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8614 comm="syz.3.787" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff3ed98d169 code=0x7ffc0000
[  339.773422][   T30] audit: type=1326 audit(1744624042.854:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8614 comm="syz.3.787" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7ff3ed98d169 code=0x7ffc0000
[  339.794684][    C1] vkms_vblank_simulate: vblank timer overrun
[  339.854491][   T30] audit: type=1326 audit(1744624042.854:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8614 comm="syz.3.787" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff3ed98d169 code=0x7ffc0000
[  339.881935][ T8617] netlink: 8 bytes leftover after parsing attributes in process `syz.3.787'.
[  340.069095][   T30] audit: type=1326 audit(1744624042.874:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8614 comm="syz.3.787" exe="/root/syz-executor" sig=0 arch=c000003e syscall=93 compat=0 ip=0x7ff3ed98d169 code=0x7ffc0000
[  340.114711][   T30] audit: type=1326 audit(1744624042.874:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8614 comm="syz.3.787" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff3ed98d169 code=0x7ffc0000
[  340.823371][   T30] audit: type=1326 audit(1744624042.874:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8614 comm="syz.3.787" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7ff3ed98d169 code=0x7ffc0000
[  340.848265][   T30] audit: type=1326 audit(1744624042.874:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8614 comm="syz.3.787" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff3ed98d169 code=0x7ffc0000
[  340.869683][   T30] audit: type=1326 audit(1744624042.874:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8614 comm="syz.3.787" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff3ed98d169 code=0x7ffc0000
[  340.924754][   T30] audit: type=1326 audit(1744624042.874:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8614 comm="syz.3.787" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff3ed98d169 code=0x7ffc0000
[  340.988503][ T8628] vlan2: entered allmulticast mode
[  341.003938][ T8628] macvtap0: entered allmulticast mode
[  341.014088][   T30] audit: type=1326 audit(1744624042.894:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8614 comm="syz.3.787" exe="/root/syz-executor" sig=0 arch=c000003e syscall=323 compat=0 ip=0x7ff3ed98d169 code=0x7ffc0000
[  341.050905][ T8628] veth0_macvtap: entered allmulticast mode
[  342.736323][ T8657] netlink: 20 bytes leftover after parsing attributes in process `syz.2.799'.
[  343.531826][ T8660] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  343.540618][ T8660] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  343.549832][ T8660] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  344.166573][ T8671] 9pnet: p9_errstr2errno: server reported unknown error 184467
[  344.234632][ T8671] netlink: 'syz.2.805': attribute type 1 has an invalid length.
[  346.400685][ T8691] 9pnet_fd: Insufficient options for proto=fd
[  347.753459][ T8714] libceph: resolve '0..' (ret=-3): failed
[  347.801613][ T8724] netlink: 36 bytes leftover after parsing attributes in process `syz.4.818'.
[  347.824553][ T8725] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  347.833825][ T8725] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  347.845835][ T8725] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  350.490400][ T8764] netlink: 20 bytes leftover after parsing attributes in process `syz.3.828'.
[  352.827480][ T8793] 9pnet_fd: Insufficient options for proto=fd
[  356.100137][ T8829] xt_CT: You must specify a L4 protocol and not use inversions on it
[  359.986409][ T8847] 9pnet_fd: Insufficient options for proto=fd
[  360.238039][ T8862] netlink: 8 bytes leftover after parsing attributes in process `syz.4.854'.
[  363.012338][ T8899] netlink: 32 bytes leftover after parsing attributes in process `syz.1.865'.
[  367.000565][ T8939] netlink: 20 bytes leftover after parsing attributes in process `syz.0.878'.
[  368.637155][ T8955] openvswitch: netlink: Message has 728 unknown bytes.
[  370.844744][ T8983] netlink: 20 bytes leftover after parsing attributes in process `syz.0.893'.
[  372.881290][ T5904] IPVS: starting estimator thread 0...
[  373.025553][ T9000] IPVS: using max 29 ests per chain, 69600 per kthread
[  373.115181][   T30] kauditd_printk_skb: 46 callbacks suppressed
[  373.115201][   T30] audit: type=1326 audit(1744624076.214:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9003 comm="syz.1.899" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff35ef8d169 code=0x7ffc0000
[  373.353008][ T9009] netlink: 20 bytes leftover after parsing attributes in process `syz.4.901'.
[  373.364360][   T30] audit: type=1326 audit(1744624076.214:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9003 comm="syz.1.899" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff35ef8d169 code=0x7ffc0000
[  373.774879][   T30] audit: type=1326 audit(1744624076.214:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9003 comm="syz.1.899" exe="/root/syz-executor" sig=0 arch=c000003e syscall=279 compat=0 ip=0x7ff35ef8d169 code=0x7ffc0000
[  373.802108][   T30] audit: type=1326 audit(1744624076.214:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9003 comm="syz.1.899" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff35ef8d169 code=0x7ffc0000
[  373.832516][   T30] audit: type=1326 audit(1744624076.214:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9003 comm="syz.1.899" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff35ef8d169 code=0x7ffc0000
[  373.857606][   T30] audit: type=1326 audit(1744624076.214:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9003 comm="syz.1.899" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff35ef8d169 code=0x7ffc0000
[  373.869231][ T9015] xt_cluster: node mask cannot exceed total number of nodes
[  373.878917][    C1] vkms_vblank_simulate: vblank timer overrun
[  373.883056][   T30] audit: type=1326 audit(1744624076.214:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9003 comm="syz.1.899" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff35ef8d169 code=0x7ffc0000
[  373.926712][   T30] audit: type=1326 audit(1744624076.214:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9003 comm="syz.1.899" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff35ef8d169 code=0x7ffc0000
[  374.015334][   T30] audit: type=1326 audit(1744624076.214:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9003 comm="syz.1.899" exe="/root/syz-executor" sig=0 arch=c000003e syscall=302 compat=0 ip=0x7ff35ef8d169 code=0x7ffc0000
[  374.113431][   T30] audit: type=1326 audit(1744624076.214:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9003 comm="syz.1.899" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff35ef8d169 code=0x7ffc0000
[  375.513179][ T9053] openvswitch: netlink: Missing valid actions attribute.
[  375.591357][ T9054] overlayfs: failed to clone upperpath
[  376.205722][ T9053] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  378.691054][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  378.699280][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  378.784333][ T9089] netlink: 4 bytes leftover after parsing attributes in process `syz.0.926'.
[  378.835936][   T30] kauditd_printk_skb: 23 callbacks suppressed
[  378.835956][   T30] audit: type=1326 audit(1744624081.934:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9090 comm="syz.2.927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f267a58d169 code=0x7fc00000
[  378.934711][ T9098] netlink: 48 bytes leftover after parsing attributes in process `syz.0.930'.
[  378.948324][ T9098] netlink: 48 bytes leftover after parsing attributes in process `syz.0.930'.
[  379.078177][ T9109] netlink: 8 bytes leftover after parsing attributes in process `syz.0.933'.
[  379.091428][ T9109] netlink: 8 bytes leftover after parsing attributes in process `syz.0.933'.
[  379.914177][ T9111] ICMPv6: NA: aa:aa:aa:aa:aa:00 advertised our address fe80::aa on syz_tun!
[  379.980460][   T30] audit: type=1326 audit(1744624083.084:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9090 comm="syz.2.927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=291 compat=0 ip=0x7f267a58d169 code=0x7fc00000
[  380.045762][   T30] audit: type=1326 audit(1744624083.084:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9090 comm="syz.2.927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f267a58d169 code=0x7fc00000
[  380.111624][   T30] audit: type=1326 audit(1744624083.084:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9090 comm="syz.2.927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f267a58d169 code=0x7fc00000
[  380.174857][   T30] audit: type=1326 audit(1744624083.084:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9090 comm="syz.2.927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f267a58d169 code=0x7fc00000
[  380.238289][   T30] audit: type=1326 audit(1744624083.084:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9090 comm="syz.2.927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f267a58d169 code=0x7fc00000
[  380.259632][    C1] vkms_vblank_simulate: vblank timer overrun
[  380.370250][   T30] audit: type=1326 audit(1744624083.084:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9090 comm="syz.2.927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f267a58d169 code=0x7fc00000
[  380.391604][    C1] vkms_vblank_simulate: vblank timer overrun
[  380.435733][   T30] audit: type=1326 audit(1744624083.084:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9090 comm="syz.2.927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f267a58d169 code=0x7fc00000
[  381.104484][   T30] audit: type=1326 audit(1744624083.084:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9090 comm="syz.2.927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f267a58d169 code=0x7fc00000
[  381.127753][   T30] audit: type=1326 audit(1744624083.084:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9090 comm="syz.2.927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f267a58d169 code=0x7fc00000
[  382.506984][ T9142] netlink: 136 bytes leftover after parsing attributes in process `syz.4.946'.
[  382.534797][ T9142] A link change request failed with some changes committed already. Interface erspan0 may have been left with an inconsistent configuration, please check.
[  382.968015][ T9152] netlink: 16 bytes leftover after parsing attributes in process `syz.0.936'.
[  384.611582][ T9175] pim6reg: entered allmulticast mode
[  384.626762][ T9180] pim6reg: left allmulticast mode
[  385.758421][ T9208] overlayfs: failed to resolve './file1': -2
[  386.519946][ T9175] sctp: [Deprecated]: syz.1.956 (pid 9175) Use of struct sctp_assoc_value in delayed_ack socket option.
[  386.519946][ T9175] Use struct sctp_sack_info instead
[  386.762165][   T56] Bluetooth: hci2: unexpected event for opcode 0x1804
[  388.369517][ T9275] 9pnet_fd: Insufficient options for proto=fd
[  389.687387][ T9291] overlay: Bad value for 'workdir'
[  389.708376][ T9290] netlink: 20 bytes leftover after parsing attributes in process `syz.0.990'.
[  390.998960][   T56] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[  391.008536][   T56] Bluetooth: hci2: Injecting HCI hardware error event
[  391.016518][   T56] Bluetooth: hci2: hardware error 0x00
[  391.235075][ T9317] netlink: 'syz.2.998': attribute type 10 has an invalid length.
[  391.242970][ T9317] netlink: 40 bytes leftover after parsing attributes in process `syz.2.998'.
[  391.554035][ T9317] team0: Port device geneve0 added
[  392.911655][ T9344] overlay: Unknown parameter '�'
[  393.074764][   T56] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  393.107724][ T9349] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1006'.
[  393.187000][   T30] kauditd_printk_skb: 25 callbacks suppressed
[  393.187019][   T30] audit: type=1326 audit(1744624096.294:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9347 comm="syz.0.1005" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f18d9f8d169 code=0x0
[  394.535766][ T9374] netlink: del zone limit has 4 unknown bytes
[  397.253103][ T9417] IPVS: set_ctl: invalid protocol: 12 127.0.0.1:20003
[  399.770573][ T9448] overlayfs: failed to clone upperpath
[  400.491745][ T9460] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1036'.
[  402.546831][ T9498] geneve2: entered promiscuous mode
[  402.584555][ T9498] geneve2: entered allmulticast mode
[  402.967461][ T9510] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1054'.
[  403.214324][ T9510] netlink: 'syz.2.1054': attribute type 1 has an invalid length.
[  403.605168][ T9519] netdevsim netdevsim3: Direct firmware load for ./file0 failed with error -2
[  403.614455][ T9519] netdevsim netdevsim3: Falling back to sysfs fallback for: ./file0
[  404.133509][ T9537] openvswitch: netlink: Tunnel attr 0 has unexpected len 16 expected 8
[  405.227630][ T9551] netlink: 'syz.1.1065': attribute type 21 has an invalid length.
[  405.410277][ T9553] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1065'.
[  406.363443][ T9545] team0 (unregistering): Port device team_slave_0 removed
[  406.380732][ T9545] team0 (unregistering): Port device team_slave_1 removed
[  406.405958][ T9551] netlink: 'syz.1.1065': attribute type 6 has an invalid length.
[  406.413812][ T9551] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1065'.
[  407.084898][ T9585] overlayfs: failed to clone lowerpath
[  407.239662][ T9590] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1078'.
[  407.267752][ T9590] bridge0: port 3(netdevsim2) entered blocking state
[  407.285850][ T9590] bridge0: port 3(netdevsim2) entered disabled state
[  407.305680][ T9590] netdevsim netdevsim0 netdevsim2: entered allmulticast mode
[  407.333417][ T9590] netdevsim netdevsim0 netdevsim2: entered promiscuous mode
[  407.358276][ T9590] bridge0: port 3(netdevsim2) entered blocking state
[  407.365175][ T9590] bridge0: port 3(netdevsim2) entered forwarding state
[  408.381453][ T9601] overlay: ./file0 is not a directory
[  408.397932][ T9594] netlink: 48 bytes leftover after parsing attributes in process `syz.4.1079'.
[  408.754049][ T9614] openvswitch: netlink: Missing key (keys=40, expected=200000)
[  408.775006][ T9616] netlink: 64 bytes leftover after parsing attributes in process `syz.1.1086'.
[  408.793751][ T9616] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1086'.
[  408.803856][ T9616] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1086'.
[  408.959863][ T9621] Cannot find add_set index 0 as target
[  409.571826][ T9630] xt_ipcomp: unknown flags 12
[  413.677111][ T9670] netlink: 96 bytes leftover after parsing attributes in process `syz.4.1105'.
[  415.662141][ T9722] netlink: 'syz.1.1122': attribute type 10 has an invalid length.
[  415.689508][   T56] Bluetooth: hci3: Received unexpected HCI Event 0x00
[  420.575586][ T9764] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1137'.
[  422.356435][ T9816] netlink: 80 bytes leftover after parsing attributes in process `syz.3.1153'.
[  423.326921][ T9824] 9pnet_fd: Insufficient options for proto=fd
[  424.978435][ T9882] netlink: 4088 bytes leftover after parsing attributes in process `syz.3.1173'.
[  425.012286][ T9881] IPVS: set_ctl: invalid protocol: 50 224.0.0.2:20000
[  428.978630][T10004] openvswitch: netlink: Missing key (keys=40, expected=2000)
[  429.073958][T10013] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  429.329862][T10026] netlink: 136 bytes leftover after parsing attributes in process `syz.3.1228'.
[  435.050600][T10094] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1245'.
[  435.053173][T10095] netlink: 'syz.0.1249': attribute type 10 has an invalid length.
[  435.066377][ T5904] IPVS: starting estimator thread 0...
[  435.101098][T10095] 8021q: adding VLAN 0 to HW filter on device team0
[  435.113072][T10095] bond0: (slave team0): Enslaving as an active interface with an up link
[  435.565711][T10097] IPVS: using max 26 ests per chain, 62400 per kthread
[  437.280862][T10134] netlink: 136 bytes leftover after parsing attributes in process `syz.1.1262'.
[  440.141885][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  440.149231][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  440.578616][T10213] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1283'.
[  445.286735][T10257] netlink: 'syz.2.1296': attribute type 10 has an invalid length.
[  445.461502][   T30] audit: type=1107 audit(1744624148.484:129): pid=10258 uid=0 auid=4294967295 ses=4294967295 subj=_ msg='aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  447.455584][T10273] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1301'.
[  448.612879][T10273] Process accounting resumed
[  448.831853][T10291] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1306'.
[  448.887721][   T30] audit: type=1800 audit(1744624151.994:130): pid=10296 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.1.1308" name="nullb0" dev="tmpfs" ino=1114 res=0 errno=0
[  449.946515][T10307] netlink: 'syz.2.1311': attribute type 1 has an invalid length.
[  450.116757][T10307] 8021q: adding VLAN 0 to HW filter on device bond2
[  450.132303][T10311] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1312'.
[  451.156044][T10348] overlayfs: failed to clone upperpath
[  452.856759][T10362] atomic_op ffff888027533998 conn xmit_atomic 0000000000000000
[  454.641953][T10393] xt_l2tp: invalid flags combination: 4
[  454.823717][T10399] netlink: 'syz.3.1342': attribute type 10 has an invalid length.
[  454.864556][T10399] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  455.954112][T10417] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1344'.
[  458.012142][T10450] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1358'.
[  459.208887][T10465] openvswitch: netlink: Key 0 has unexpected len 20 expected 0
[  460.186421][T10474] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1364'.
[  460.217967][T10474] netlink: 52 bytes leftover after parsing attributes in process `syz.2.1364'.
[  460.744315][T10478] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1367'.
[  460.921821][T10486] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1370'.
[  461.570720][T10484] netlink: 48 bytes leftover after parsing attributes in process `syz.0.1369'.
[  461.735062][T10498] openvswitch: netlink: Missing valid actions attribute.
[  461.763726][T10497] ipip0: entered allmulticast mode
[  461.769181][T10498] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  461.850860][T10498] netlink: zone id is out of range
[  461.859527][T10498] netlink: zone id is out of range
[  461.882626][T10498] netlink: 104 bytes leftover after parsing attributes in process `syz.2.1374'.
[  461.955182][T10512] overlayfs: option "uuid=on" requires an upper fs, falling back to uuid=null.
[  461.966176][T10512] overlayfs: missing 'lowerdir'
[  462.014837][T10514] netlink: zone id is out of range
[  462.020340][T10514] netlink: zone id is out of range
[  462.026604][T10514] netlink: zone id is out of range
[  462.031967][T10514] netlink: zone id is out of range
[  462.039921][T10514] netlink: zone id is out of range
[  462.263053][T10519] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1382'.
[  462.273175][T10519] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1382'.
[  462.282320][T10519] netlink: 'syz.2.1382': attribute type 20 has an invalid length.
[  464.110374][T10543] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1389'.
[  465.828197][T10582] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1401'.
[  467.406184][T10614] overlayfs: missing 'lowerdir'
[  468.695061][T10634] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  468.704048][T10634] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  468.713237][T10634] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  469.940223][T10656] net_ratelimit: 12 callbacks suppressed
[  469.940248][T10656] openvswitch: netlink: IP tunnel attribute has 8 unknown bytes.
[  470.164827][T10664] bridge_slave_0: left allmulticast mode
[  470.205493][T10664] bridge_slave_0: left promiscuous mode
[  470.218518][T10664] bridge0: port 1(bridge_slave_0) entered disabled state
[  470.229741][T10668] xt_addrtype: both incoming and outgoing interface limitation cannot be selected
[  470.280149][T10664] bridge_slave_1: left allmulticast mode
[  470.306785][T10664] bridge_slave_1: left promiscuous mode
[  470.318251][T10664] bridge0: port 2(bridge_slave_1) entered disabled state
[  470.379934][T10664] bond0: (slave bond_slave_0): Releasing backup interface
[  470.381794][T10674] openvswitch: netlink: IPv6 tunnel dst address is zero
[  470.426714][T10664] bond0: (slave bond_slave_1): Releasing backup interface
[  470.498819][T10664] team0: Port device team_slave_0 removed
[  470.542113][T10664] team0: Port device team_slave_1 removed
[  470.564004][T10664] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  470.573924][T10664] batman_adv: batadv0: Removing interface: batadv_slave_0
[  470.590371][T10664] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  470.603930][T10664] batman_adv: batadv0: Removing interface: batadv_slave_1
[  470.702588][T10664] bond0: (slave netdevsim0): Releasing backup interface
[  470.762787][T10664] bond1: (slave bond2): Releasing backup interface
[  470.845567][T10664] syz.3.1429 (10664) used greatest stack depth: 19080 bytes left
[  471.157824][T10697] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  471.166708][T10697] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  471.176400][T10697] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  471.295269][T10699] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1442'.
[  471.352333][T10705] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1443'.
[  477.981376][T10816] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  477.990210][T10816] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  477.999415][T10816] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  478.077450][T10821] netlink: 'syz.2.1468': attribute type 58 has an invalid length.
[  478.923289][T10840] Cannot find del_set index 3 as target
[  481.454145][T10881] overlayfs: failed to clone upperpath
[  493.564817][T11020] tmpfs: Bad value for 'usrquota_block_hardlimit'
[  493.657101][T11027] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1522'.
[  493.699177][T11027] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1522'.
[  493.728967][T11027] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1522'.
[  493.745830][T11027] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1522'.
[  493.791778][T11027] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1522'.
[  493.808423][T11027] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1522'.
[  493.821508][T11027] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1522'.
[  493.861964][T11027] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1522'.
[  493.883579][T11027] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1522'.
[  493.893850][T11027] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1522'.
[  494.197432][T11038] overlayfs: failed to clone upperpath
[  499.460665][T11101] __nla_validate_parse: 56 callbacks suppressed
[  499.460688][T11101] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1542'.
[  501.257780][T11118] sctp: [Deprecated]: syz.1.1547 (pid 11118) Use of struct sctp_assoc_value in delayed_ack socket option.
[  501.257780][T11118] Use struct sctp_sack_info instead
[  501.856281][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  501.862625][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  502.043112][T11127] overlay: ./bus is not a directory
[  503.580446][   T30] audit: type=1326 audit(1744624206.674:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11155 comm="syz.0.1558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f18d9f8d169 code=0x7ffc0000
[  503.602046][    C1] vkms_vblank_simulate: vblank timer overrun
[  503.642527][T11156] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1558'.
[  503.843158][   T30] audit: type=1326 audit(1744624206.674:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11155 comm="syz.0.1558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f18d9f8d169 code=0x7ffc0000
[  503.864909][   T30] audit: type=1326 audit(1744624206.684:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11155 comm="syz.0.1558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=445 compat=0 ip=0x7f18d9f8d169 code=0x7ffc0000
[  503.886507][    C1] vkms_vblank_simulate: vblank timer overrun
[  503.893422][   T30] audit: type=1326 audit(1744624206.684:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11155 comm="syz.0.1558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f18d9f8d169 code=0x7ffc0000
[  503.915136][   T30] audit: type=1326 audit(1744624206.684:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11155 comm="syz.0.1558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f18d9f8d169 code=0x7ffc0000
[  503.936699][    C1] vkms_vblank_simulate: vblank timer overrun
[  504.088743][   T30] audit: type=1326 audit(1744624206.724:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11155 comm="syz.0.1558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f18d9f8d169 code=0x7ffc0000
[  504.567127][   T30] audit: type=1326 audit(1744624206.724:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11155 comm="syz.0.1558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f18d9f8d169 code=0x7ffc0000
[  504.602480][   T30] audit: type=1326 audit(1744624206.724:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11155 comm="syz.0.1558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f18d9f8d169 code=0x7ffc0000
[  504.668239][   T30] audit: type=1326 audit(1744624206.734:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11155 comm="syz.0.1558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f18d9f8d169 code=0x7ffc0000
[  504.726106][   T30] audit: type=1326 audit(1744624206.734:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11155 comm="syz.0.1558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f18d9f8d169 code=0x7ffc0000
[  509.041733][T11220] openvswitch: netlink: Key 0 has unexpected len 20 expected 0
[  510.899208][T11232] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1578'.
[  511.021344][T11235] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1578'.
[  511.074821][T11236] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1578'.
[  511.156149][T11235] batadv0: entered promiscuous mode
[  511.168241][T11235] macvtap1: entered promiscuous mode
[  511.173779][T11235] macvtap1: entered allmulticast mode
[  511.218405][T11235] batadv0: entered allmulticast mode
[  511.285728][   T30] kauditd_printk_skb: 13 callbacks suppressed
[  511.285849][   T30] audit: type=1800 audit(1744624214.354:154): pid=11239 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.4.1577" name="SYSV00000000" dev="tmpfs" ino=1 res=0 errno=0
[  511.347619][T11235] 8021q: adding VLAN 0 to HW filter on device macvtap1
[  513.502859][T11261] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1586'.
[  514.905229][T11285] 9pnet_fd: Insufficient options for proto=fd
[  516.106769][T11307] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1597'.
[  518.800775][T11336] 9pnet_fd: Insufficient options for proto=fd
[  519.958869][T11357] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1609'.
[  520.912172][T11365] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1612'.
[  521.807466][T11379] 9pnet_fd: Insufficient options for proto=fd
[  530.539393][T11445] openvswitch: netlink: Key 0 has unexpected len 20 expected 0
[  531.116587][T11446] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
[  533.332130][T11483] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1643'.
[  533.368316][T11483] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1643'.
[  538.345553][T11541] openvswitch: netlink: Tunnel attr 0 has unexpected len 16 expected 8
[  540.568648][   T30] audit: type=1326 audit(1744624242.924:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11561 comm="syz.4.1663" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1895b8d169 code=0x7ffc0000
[  540.593967][   T30] audit: type=1326 audit(1744624242.924:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11561 comm="syz.4.1663" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1895b8d169 code=0x7ffc0000
[  540.615573][    C1] vkms_vblank_simulate: vblank timer overrun
[  541.958602][T11586] openvswitch: netlink: Key 0 has unexpected len 20 expected 0
[  542.634647][T11583] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  542.643581][T11583] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  542.653317][T11583] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  542.783561][T11593] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  542.792428][T11593] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  542.801688][T11593] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  546.817919][T11639] veth0: entered promiscuous mode
[  546.870916][T11643] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  546.879763][T11643] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  546.888944][T11643] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  547.628292][T11644] netlink: 'syz.3.1683': attribute type 3 has an invalid length.
[  547.798392][T11647] veth0: left promiscuous mode
[  552.326673][T11699] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  552.335581][T11699] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  552.344706][T11699] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  556.396548][T11756] af_packet: tpacket_rcv: packet too big, clamped from 3 to 4294967272. macoff=96
[  556.841740][T11764] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  556.850565][T11764] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  556.859720][T11764] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  558.477678][T11794] pimreg: entered allmulticast mode
[  559.852612][T11833] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  559.861462][T11833] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  559.870777][T11833] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  561.789524][T11857] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1748'.
[  561.903001][T11863] ipip0: entered allmulticast mode
[  562.367533][T11874] RDS: rds_bind could not find a transport for 100:806:aaaa:aaaa:aaaa::, load rds_tcp or rds_rdma?
[  562.992551][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  562.999118][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  564.068127][T11908] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  564.076997][T11908] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  564.086156][T11908] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  564.402317][T11920] netlink: 'syz.3.1766': attribute type 27 has an invalid length.
[  574.220607][T12034] netlink: 'syz.0.1802': attribute type 5 has an invalid length.
[  574.240944][T12034] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1802'.
[  574.502723][T12044] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1804'.
[  574.855767][T12049] 9pnet_fd: Insufficient options for proto=fd
[  575.126238][T12053] 9pnet_fd: Insufficient options for proto=fd
[  577.295988][   T56] Bluetooth: hci3: unexpected event for opcode 0x1405
[  578.772832][T12078] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1815'.
[  579.967357][T12088] 9pnet_fd: Insufficient options for proto=fd
[  580.393254][T12098] IPVS: sync thread started: state = MASTER, mcast_ifn = bridge_slave_0, syncid = 0, id = 0
[  580.789628][T12109] netlink: 'syz.2.1824': attribute type 1 has an invalid length.
[  582.439128][T12129] 9pnet_fd: Insufficient options for proto=fd
[  582.714794][T12133] 9pnet_fd: Insufficient options for proto=fd
[  582.927004][T12139] IPVS: ip_vs_add_dest(): server weight less than zero
[  583.337228][T12149] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  583.346230][T12149] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  583.355437][T12149] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  584.432817][T12160] IPVS: sync thread started: state = MASTER, mcast_ifn = bridge_slave_0, syncid = 0, id = 0
[  584.497545][T12161] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  584.506510][T12161] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  584.515728][T12161] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  585.318117][T12169] openvswitch: netlink: Key 0 has unexpected len 20 expected 0
[  586.147103][T12180] overlayfs: failed to clone upperpath
[  588.479560][T12208] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1855'.
[  588.495645][T12208] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1855'.
[  588.505484][T12208] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1855'.
[  589.189952][T12211] openvswitch: netlink: Key 0 has unexpected len 20 expected 0
[  589.775069][T12216] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  589.783854][T12216] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  589.793011][T12216] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  590.104263][T12222] openvswitch: netlink: Tunnel attr 0 has unexpected len 16 expected 8
[  591.459096][T12238] overlay: ./bus is not a directory
[  593.862101][T12263] openvswitch: netlink: Key 0 has unexpected len 20 expected 0
[  594.717395][T12262] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1873'.
[  594.731321][T12262] bridge0: entered promiscuous mode
[  594.736873][T12262] macvlan2: entered promiscuous mode
[  595.828116][T12283] overlay: ./bus is not a directory
[  596.201316][T12298] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  596.210586][T12298] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  596.219777][T12298] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  596.699204][T12307] openvswitch: netlink: Key 0 has unexpected len 20 expected 0
[  599.028078][T12324] netlink: 168 bytes leftover after parsing attributes in process `syz.0.1893'.
[  600.639433][T12367] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1908'.
[  602.307278][T12384] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  602.316075][T12384] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  602.325206][T12384] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  602.567590][T12386] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1906'.
[  604.435653][T12405] overlayfs: failed to clone lowerpath
[  604.596679][T12409] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1920'.
[  604.663384][T12410] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1920'.
[  604.840034][T12418] netlink: 72 bytes leftover after parsing attributes in process `syz.0.1922'.
[  607.676986][T12443] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1931'.
[  607.691619][T12436] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  607.968025][T12455] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  607.976983][T12455] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  607.986881][T12455] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  612.891423][T12518] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  612.901213][T12518] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  612.910454][T12518] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  614.078834][T12532] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1959'.
[  614.088107][T12532] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1959'.
[  614.110265][T12532] xt_l2tp: invalid flags combination: 4
[  614.952330][T12545] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1963'.
[  615.428412][T12557] overlayfs: failed to resolve './file0': -2
[  616.591356][T12577] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1974'.
[  616.618778][T12577] bridge: RTM_NEWNEIGH with invalid ether address
[  616.631330][T12577] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1974'.
[  616.642531][T12577] netlink: 2 bytes leftover after parsing attributes in process `syz.3.1974'.
[  616.903555][T12582] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  616.923774][T12582] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  620.326400][T12613] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  620.768514][T12651] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1993'.
[  621.960908][T12664] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1997'.
[  622.289853][T12674] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1999'.
[  622.447145][T12679] bridge0: port 4(vlan2) entered blocking state
[  622.454001][T12679] bridge0: port 4(vlan2) entered disabled state
[  622.462904][T12667] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1999'.
[  622.485846][T12679] vlan2: entered allmulticast mode
[  622.492204][T12679] gretap0: entered allmulticast mode
[  622.505117][T12679] vlan2: entered promiscuous mode
[  622.520499][T12679] gretap0: entered promiscuous mode
[  622.697935][T12679] bridge0: port 4(vlan2) entered blocking state
[  622.705764][T12679] bridge0: port 4(vlan2) entered forwarding state
[  624.433104][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  624.439717][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  625.902516][T12753] lo speed is unknown, defaulting to 1000
[  625.912178][T12753] lo speed is unknown, defaulting to 1000
[  625.921212][T12753] lo speed is unknown, defaulting to 1000
[  625.981150][T12758] syz.2.2023 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  626.243895][T12753] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  626.272723][T12753] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  626.346496][T12766] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2028'.
[  627.097776][T12753] lo speed is unknown, defaulting to 1000
[  627.124547][T12753] lo speed is unknown, defaulting to 1000
[  627.150212][T12753] lo speed is unknown, defaulting to 1000
[  627.154491][T12768] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2027'.
[  627.175808][T12753] lo speed is unknown, defaulting to 1000
[  627.182793][T12753] lo speed is unknown, defaulting to 1000
[  627.787324][T12790] cgroup: none used incorrectly
[  628.601948][T12796] fuse: Unknown parameter ''
[  628.627987][T12796] 9pnet_fd: Insufficient options for proto=fd
[  630.991055][T12832] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2044'.
[  634.985721][T12877] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2056'.
[  635.085153][   T30] audit: type=1326 audit(1744624338.184:157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12856 comm="syz.2.2053" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f267a58d169 code=0x7ffc0000
[  635.201118][   T30] audit: type=1326 audit(1744624338.184:158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12856 comm="syz.2.2053" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f267a58d169 code=0x7ffc0000
[  635.234136][   T30] audit: type=1326 audit(1744624338.184:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12856 comm="syz.2.2053" exe="/root/syz-executor" sig=0 arch=c000003e syscall=291 compat=0 ip=0x7f267a58d169 code=0x7ffc0000
[  635.256390][   T30] audit: type=1326 audit(1744624338.184:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12856 comm="syz.2.2053" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f267a58d169 code=0x7ffc0000
[  635.277940][    C1] vkms_vblank_simulate: vblank timer overrun
[  635.323175][   T30] audit: type=1326 audit(1744624338.184:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12856 comm="syz.2.2053" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f267a58d169 code=0x7ffc0000
[  635.344755][    C1] vkms_vblank_simulate: vblank timer overrun
[  635.357621][   T30] audit: type=1326 audit(1744624338.184:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12856 comm="syz.2.2053" exe="/root/syz-executor" sig=0 arch=c000003e syscall=233 compat=0 ip=0x7f267a58d169 code=0x7ffc0000
[  635.379187][    C1] vkms_vblank_simulate: vblank timer overrun
[  635.390418][   T30] audit: type=1326 audit(1744624338.184:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12856 comm="syz.2.2053" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f267a58d169 code=0x7ffc0000
[  635.411980][    C1] vkms_vblank_simulate: vblank timer overrun
[  635.596615][T12880] 9pnet_fd: Insufficient options for proto=fd
[  635.615357][   T30] audit: type=1326 audit(1744624338.184:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12856 comm="syz.2.2053" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7f267a58d169 code=0x7ffc0000
[  635.674476][   T30] audit: type=1326 audit(1744624338.184:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12856 comm="syz.2.2053" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f267a58d169 code=0x7ffc0000
[  635.712121][   T30] audit: type=1326 audit(1744624338.184:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12856 comm="syz.2.2053" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f267a58d169 code=0x7ffc0000
[  637.432459][T12904] netlink: 36 bytes leftover after parsing attributes in process `syz.2.2065'.
[  637.463872][T12904] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2065'.
[  639.491486][T12927] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2074'.
[  639.517611][   T56] Bluetooth: hci1: unexpected event for opcode 0x1003
[  640.786581][T12948] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2079'.
[  643.548918][   T56] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  643.558765][   T56] Bluetooth: hci1: Injecting HCI hardware error event
[  643.567521][   T56] Bluetooth: hci1: hardware error 0x00
[  646.217387][   T56] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  648.103230][T13043] overlayfs: failed to resolve './file1': -2
[  648.770058][   T30] kauditd_printk_skb: 24 callbacks suppressed
[  648.770075][   T30] audit: type=1800 audit(1744624351.864:191): pid=13065 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.0.2115" name="nullb0" dev="tmpfs" ino=2306 res=0 errno=0
[  651.618346][T13094] netlink: 'syz.0.2125': attribute type 12 has an invalid length.
[  651.658223][T13094] netlink: 'syz.0.2125': attribute type 29 has an invalid length.
[  651.682621][T13094] netlink: 148 bytes leftover after parsing attributes in process `syz.0.2125'.
[  651.692825][T13094] netlink: 'syz.0.2125': attribute type 1 has an invalid length.
[  651.701253][T13094] netlink: 'syz.0.2125': attribute type 2 has an invalid length.
[  651.709540][T13094] netlink: 39 bytes leftover after parsing attributes in process `syz.0.2125'.
[  651.718867][T13093] netlink: 'syz.0.2125': attribute type 12 has an invalid length.
[  651.768171][T13093] netlink: 'syz.0.2125': attribute type 29 has an invalid length.
[  651.814055][T13093] netlink: 148 bytes leftover after parsing attributes in process `syz.0.2125'.
[  651.840448][T13093] netlink: 'syz.0.2125': attribute type 1 has an invalid length.
[  651.857623][T13093] netlink: 'syz.0.2125': attribute type 2 has an invalid length.
[  651.870990][T13093] netlink: 39 bytes leftover after parsing attributes in process `syz.0.2125'.
[  656.181538][T13158] tipc: Enabled bearer <eth:syz_tun>, priority 10
[  656.190853][T13158] netlink: 14 bytes leftover after parsing attributes in process `syz.4.2140'.
[  656.199956][T13158] tipc: Resetting bearer <eth:syz_tun>
[  657.478108][T13158] tipc: Disabling bearer <eth:syz_tun>
[  657.548129][T13164] overlayfs: failed to clone lowerpath
[  657.642386][T13165] overlayfs: failed to clone upperpath
[  664.013324][T13247] netlink: 'syz.4.2175': attribute type 1 has an invalid length.
[  664.129420][T13247] netlink: 'syz.4.2175': attribute type 2 has an invalid length.
[  664.137788][T13247] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2175'.
[  664.315043][T13251] dccp_close: ABORT with 28 bytes unread
[  666.243996][T13265] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  666.433354][T13275] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2184'.
[  669.768310][T13320] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2198'.
[  670.950813][T13330] overlayfs: failed to clone upperpath
[  672.176195][T13356] netlink: 36 bytes leftover after parsing attributes in process `syz.3.2204'.
[  672.217138][T13356] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2204'.
[  672.234448][T13356] netlink: 36 bytes leftover after parsing attributes in process `syz.3.2204'.
[  672.243646][T13356] netlink: 36 bytes leftover after parsing attributes in process `syz.3.2204'.
[  672.980343][T13365] overlayfs: failed to clone upperpath
[  673.025221][T13367] cgroup: Unknown subsys name 'cpuset'
[  673.201330][T13376] tipc: Enabled bearer <eth:gre0>, priority 22
[  674.793009][T13398] 9pnet_virtio: no channels available for device 127.0.0.1
[  679.054223][T13430] overlay: Unknown parameter 'userxattr:/'
[  680.210148][T13432] lo speed is unknown, defaulting to 1000
[  680.891745][T13455] netlink: 'syz.3.2238': attribute type 3 has an invalid length.
[  680.932392][T13455] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2238'.
[  682.622565][T13471] capability: warning: `syz.0.2243' uses 32-bit capabilities (legacy support in use)
[  682.857725][T13480] overlay: Bad value for 'verity'
[  683.434520][T13495] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2252'.
[  686.526077][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  686.532563][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  687.538515][T13512] openvswitch: netlink: Key 0 has unexpected len 20 expected 0
[  688.389297][   T30] audit: type=1326 audit(1744624391.499:192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13514 comm="syz.1.2258" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff35ef8d169 code=0x7ffc0000
[  688.448718][   T30] audit: type=1326 audit(1744624391.499:193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13514 comm="syz.1.2258" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff35ef8d169 code=0x7ffc0000
[  688.521267][   T30] audit: type=1326 audit(1744624391.499:194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13514 comm="syz.1.2258" exe="/root/syz-executor" sig=0 arch=c000003e syscall=237 compat=0 ip=0x7ff35ef8d169 code=0x7ffc0000
[  688.571709][   T30] audit: type=1326 audit(1744624391.499:195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13514 comm="syz.1.2258" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff35ef8d169 code=0x7ffc0000
[  688.642847][   T30] audit: type=1326 audit(1744624391.499:196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13514 comm="syz.1.2258" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff35ef8d169 code=0x7ffc0000
[  688.698943][   T30] audit: type=1326 audit(1744624391.499:197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13514 comm="syz.1.2258" exe="/root/syz-executor" sig=0 arch=c000003e syscall=450 compat=0 ip=0x7ff35ef8d169 code=0x7ffc0000
[  688.759574][   T30] audit: type=1326 audit(1744624391.499:198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13514 comm="syz.1.2258" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff35ef8d169 code=0x7ffc0000
[  688.836531][   T30] audit: type=1326 audit(1744624391.499:199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13514 comm="syz.1.2258" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff35ef8d169 code=0x7ffc0000
[  689.867546][T13541] 9pnet_fd: Insufficient options for proto=fd
[  697.781040][T13642] tipc: Enabling of bearer <eth:gre0> rejected, already enabled
[  698.010663][T13647] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  698.019495][T13647] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  698.028696][T13647] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  698.328856][T13650] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2302'.
[  698.337845][T13650] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2302'.
[  701.777159][T13684] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2308'.
[  702.902024][T13693] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable
[  706.041215][T13724] openvswitch: netlink: Key 0 has unexpected len 20 expected 0
[  708.970136][T13752] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  708.978985][T13752] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  708.988212][T13752] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  712.995610][T13804] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2345'.
[  713.574798][T13805] overlayfs: failed to clone upperpath
[  714.349624][T13817] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  714.358535][T13817] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  714.367748][T13817] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  714.974817][T13828] syz_tun: entered allmulticast mode
[  714.993550][T13828] syz_tun: left allmulticast mode
[  718.458153][T13864] lo speed is unknown, defaulting to 1000
[  720.545197][T13882] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2368'.
[  720.571155][T13882] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2368'.
[  720.610715][T13882] netlink: 'syz.1.2368': attribute type 13 has an invalid length.
[  720.628651][T13882] netlink: 'syz.1.2368': attribute type 12 has an invalid length.
[  721.880473][T13897] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2373'.
[  725.872134][T13933] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2382'.
[  726.742909][T13944] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2387'.
[  726.797086][T13949] netlink: 'syz.2.2387': attribute type 10 has an invalid length.
[  726.822021][T13949] 8021q: adding VLAN 0 to HW filter on device team0
[  726.850608][T13949] bond0: (slave team0): Enslaving as an active interface with an up link
[  727.760398][T13956] netlink: 'syz.0.2390': attribute type 1 has an invalid length.
[  727.952172][T13956] bond1: entered promiscuous mode
[  727.958326][T13956] 8021q: adding VLAN 0 to HW filter on device bond1
[  728.721760][T13960] bond1: (slave bridge1): making interface the new active one
[  728.744180][T13960] bridge1: entered promiscuous mode
[  728.765632][T13960] bond1: (slave bridge1): Enslaving as an active interface with an up link
[  729.973484][   T30] audit: type=1326 audit(1744624432.999:200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13984 comm="syz.3.2399" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff3ed98d169 code=0x7ffc0000
[  730.464398][   T30] audit: type=1326 audit(1744624432.999:201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13984 comm="syz.3.2399" exe="/root/syz-executor" sig=0 arch=c000003e syscall=130 compat=0 ip=0x7ff3ed98d169 code=0x7ffc0000
[  730.486004][    C1] vkms_vblank_simulate: vblank timer overrun
[  730.559340][   T30] audit: type=1326 audit(1744624432.999:202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13984 comm="syz.3.2399" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff3ed98d169 code=0x7ffc0000
[  731.315189][   T30] audit: type=1326 audit(1744624432.999:203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13984 comm="syz.3.2399" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff3ed98d169 code=0x7ffc0000
[  731.337188][    C1] vkms_vblank_simulate: vblank timer overrun
[  732.082609][T14014] overlayfs: failed to clone upperpath
[  735.660413][T14053] openvswitch: netlink: Tunnel attr 0 has unexpected len 16 expected 8
[  735.860258][T14055] xt_l2tp: missing protocol rule (udp|l2tpip)
[  738.798890][   T56] Bluetooth: hci4: unexpected event for opcode 0x1004
[  741.866677][T14128] openvswitch: netlink: Tunnel attr 0 has unexpected len 16 expected 8
[  742.880564][   T56] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0
[  742.890944][   T56] Bluetooth: hci4: Injecting HCI hardware error event
[  742.900943][T12990] Bluetooth: hci4: hardware error 0x00
[  745.943307][T12990] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  746.461931][T14189] syz.3.2458: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  746.548647][T14189] CPU: 0 UID: 0 PID: 14189 Comm: syz.3.2458 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(full) 
[  746.548695][T14189] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  746.548708][T14189] Call Trace:
[  746.548716][T14189]  <TASK>
[  746.548725][T14189]  dump_stack_lvl+0x241/0x360
[  746.548774][T14189]  ? __pfx_dump_stack_lvl+0x10/0x10
[  746.548801][T14189]  ? __pfx__printk+0x10/0x10
[  746.548827][T14189]  ? cpuset_print_current_mems_allowed+0x1f/0x350
[  746.548856][T14189]  ? cpuset_print_current_mems_allowed+0x1f/0x350
[  746.548883][T14189]  ? cpuset_print_current_mems_allowed+0x31e/0x350
[  746.548911][T14189]  warn_alloc+0x27c/0x410
[  746.548935][T14189]  ? is_mmconf_reserved+0x3a1/0x3f0
[  746.548958][T14189]  ? __vmalloc_node_range_noprof+0x108/0x1390
[  746.548983][T14189]  ? __pfx_warn_alloc+0x10/0x10
[  746.549008][T14189]  ? kasan_save_track+0x3f/0x80
[  746.549034][T14189]  ? __kasan_kmalloc+0x9d/0xb0
[  746.549063][T14189]  ? xsk_setsockopt+0x449/0x840
[  746.549081][T14189]  ? do_sock_setsockopt+0x3b1/0x710
[  746.549099][T14189]  ? __x64_sys_setsockopt+0x1ee/0x280
[  746.549117][T14189]  ? do_syscall_64+0xf3/0x230
[  746.549139][T14189]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  746.549169][T14189]  __vmalloc_node_range_noprof+0x128/0x1390
[  746.549224][T14189]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  746.549254][T14189]  ? __kasan_kmalloc+0x9d/0xb0
[  746.549289][T14189]  vmalloc_user_noprof+0x74/0x80
[  746.549313][T14189]  ? xskq_create+0xb6/0x170
[  746.549333][T14189]  xskq_create+0xb6/0x170
[  746.549357][T14189]  xsk_init_queue+0xa1/0x100
[  746.549381][T14189]  xsk_setsockopt+0x449/0x840
[  746.549404][T14189]  ? __pfx_xsk_setsockopt+0x10/0x10
[  746.549429][T14189]  ? __lock_acquire+0xad5/0xd80
[  746.549455][T14189]  ? __pfx_xsk_setsockopt+0x10/0x10
[  746.549474][T14189]  do_sock_setsockopt+0x3b1/0x710
[  746.549501][T14189]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  746.549525][T14189]  ? __fget_files+0x2a/0x420
[  746.549553][T14189]  ? __fget_files+0x39d/0x420
[  746.549574][T14189]  ? __fget_files+0x2a/0x420
[  746.549606][T14189]  __x64_sys_setsockopt+0x1ee/0x280
[  746.549634][T14189]  do_syscall_64+0xf3/0x230
[  746.549659][T14189]  ? clear_bhb_loop+0x45/0xa0
[  746.549682][T14189]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  746.549711][T14189] RIP: 0033:0x7ff3ed98d169
[  746.549731][T14189] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  746.549749][T14189] RSP: 002b:00007ff3ee777038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  746.549772][T14189] RAX: ffffffffffffffda RBX: 00007ff3edba6160 RCX: 00007ff3ed98d169
[  746.549787][T14189] RDX: 0000000000000006 RSI: 000000000000011b RDI: 0000000000000006
[  746.549799][T14189] RBP: 00007ff3eda0e990 R08: 0000000000000004 R09: 0000000000000000
[  746.549811][T14189] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000000
[  746.549824][T14189] R13: 0000000000000000 R14: 00007ff3edba6160 R15: 00007ffdb1da1178
[  746.549855][T14189]  </TASK>
[  746.550280][T14189] Mem-Info:
[  747.596919][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  747.603241][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  747.621902][T14189] active_anon:4633 inactive_anon:4601 isolated_anon:0
[  747.621902][T14189]  active_file:22058 inactive_file:39072 isolated_file:0
[  747.621902][T14189]  unevictable:768 dirty:164 writeback:0
[  747.621902][T14189]  slab_reclaimable:10419 slab_unreclaimable:103413
[  747.621902][T14189]  mapped:29889 shmem:6921 pagetables:843
[  747.621902][T14189]  sec_pagetables:0 bounce:0
[  747.621902][T14189]  kernel_misc_reclaimable:0
[  747.621902][T14189]  free:1305380 free_pcp:4825 free_cma:0
[  747.670252][T14189] Node 0 active_anon:18532kB inactive_anon:18404kB active_file:88160kB inactive_file:156288kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:119556kB dirty:656kB writeback:0kB shmem:26148kB shmem_thp:2048kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11052kB pagetables:3372kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  747.725044][T14189] Node 1 active_anon:0kB inactive_anon:0kB active_file:72kB inactive_file:0kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  747.760944][T14189] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  747.793544][T14189] lowmem_reserve[]: 0 2488 2488 2488 2488
[  747.815311][T14189] Node 0 DMA32 free:1309176kB boost:0kB min:34152kB low:42688kB high:51224kB reserved_highatomic:0KB active_anon:18528kB inactive_anon:19500kB active_file:88072kB inactive_file:156276kB unevictable:1536kB writepending:656kB present:3129332kB managed:2547736kB mlocked:0kB bounce:0kB free_pcp:8752kB local_pcp:6964kB free_cma:0kB
[  747.857703][T14189] lowmem_reserve[]: 0 0 0 0 0
[  747.863418][T14189] Node 0 Normal free:0kB boost:0kB min:0kB low:0kB high:0kB reserved_highatomic:0KB active_anon:4kB inactive_anon:4kB active_file:88kB inactive_file:12kB unevictable:0kB writepending:0kB present:1048580kB managed:112kB mlocked:0kB bounce:0kB free_pcp:4kB local_pcp:0kB free_cma:0kB
[  747.894909][T14189] lowmem_reserve[]: 0 0 0 0 0
[  747.905586][T14189] Node 1 Normal free:3906740kB boost:0kB min:55748kB low:69684kB high:83620kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:72kB inactive_file:0kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  747.938174][T14189] lowmem_reserve[]: 0 0 0 0 0
[  747.942966][T14189] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  747.975031][T14189] Node 0 DMA32: 569*4kB (UME) 266*8kB (UME) 711*16kB (UME) 836*32kB (UME) 346*64kB (UME) 86*128kB (UME) 65*256kB (UME) 52*512kB (UM) 21*1024kB (UME) 8*2048kB (UM) 281*4096kB (UM) = 1307812kB
[  748.055527][T14189] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[  748.404340][T14189] Node 1 Normal: 261*4kB (UME) 58*8kB (UME) 45*16kB (UME) 220*32kB (UME) 114*64kB (UME) 32*128kB (UME) 18*256kB (UME) 7*512kB (UM) 1*1024kB (M) 3*2048kB (U) 945*4096kB (M) = 3906740kB
[  748.454104][T14189] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  748.473851][T14189] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  748.494303][T14207] openvswitch: netlink: Tunnel attr 0 has unexpected len 16 expected 8
[  748.516111][T14189] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  748.544205][T14189] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  748.582565][T14189] 75947 total pagecache pages
[  748.657077][T14189] 0 pages in swap cache
[  748.672719][T14189] Free swap  = 124996kB
[  748.682552][T14189] Total swap = 124996kB
[  748.691356][T14189] 2097051 pages RAM
[  748.716073][T14189] 0 pages HighMem/MovableOnly
[  748.720899][T14189] 428458 pages reserved
[  748.731841][T14189] 0 pages cma reserved
[  748.933388][T14212] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2468'.
[  749.382918][T14216] bond0: option active_slave: mode dependency failed, not supported in mode balance-rr(0)
[  750.342984][T14227] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2473'.
[  750.365493][T14227] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2473'.
[  752.021229][T14240] vlan2: entered allmulticast mode
[  752.163541][T14240] bridge0: port 3(vlan2) entered blocking state
[  752.303707][T14240] bridge0: port 3(vlan2) entered disabled state
[  752.457942][T14247] overlayfs: failed to clone upperpath
[  752.466948][T14240] vlan2: entered promiscuous mode
[  752.472637][T14240] bridge0: mtu less than device minimum
[  752.765871][T14255] fuse: Invalid rootmode
[  752.827312][T14251] 9pnet_fd: Insufficient options for proto=fd
[  752.860055][T14251] sctp: [Deprecated]: syz.0.2472 (pid 14251) Use of int in maxseg socket option.
[  752.860055][T14251] Use struct sctp_assoc_value instead
[  753.377566][T14261] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2482'.
[  753.424013][T14265] =======================================================
[  753.424013][T14265] WARNING: The mand mount option has been deprecated and
[  753.424013][T14265]          and is ignored by this kernel. Remove the mand
[  753.424013][T14265]          option from the mount to silence this warning.
[  753.424013][T14265] =======================================================
[  754.810790][T14283] wireguard0: entered promiscuous mode
[  754.861907][T14283] wireguard0: entered allmulticast mode
[  755.041211][T14294] openvswitch: netlink: Tunnel attr 0 has unexpected len 16 expected 8
[  757.006812][T14338] futex_wake_op: syz.0.2506 tries to shift op by 35; fix this program
[  757.017528][T14338] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2506'.
[  757.027258][T14338] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2506'.
[  757.041286][T14337] futex_wake_op: syz.0.2506 tries to shift op by 35; fix this program
[  757.978787][T14356] netlink: 52 bytes leftover after parsing attributes in process `syz.2.2513'.
[  757.996363][T14356] netlink: 21 bytes leftover after parsing attributes in process `syz.2.2513'.
[  758.015443][T14356] netlink: 21 bytes leftover after parsing attributes in process `syz.2.2513'.
[  758.388363][T14352] netlink: 'syz.1.2511': attribute type 2 has an invalid length.
[  762.083691][T14400] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  762.093027][T14400] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  762.102229][T14400] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  765.815482][T14485] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  765.824236][T14485] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  765.833549][T14485] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  766.734698][T14502] netlink: 36 bytes leftover after parsing attributes in process `syz.0.2559'.
[  766.780647][T14502] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2559'.
[  766.829862][T14504] netlink: 'syz.1.2560': attribute type 11 has an invalid length.
[  767.663174][T14529] openvswitch: netlink: Tunnel attr 0 has unexpected len 16 expected 8
[  768.495680][T14533] cgroup: none used incorrectly
[  771.469502][T14559] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  771.478344][T14559] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  771.487562][T14559] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  771.635531][T14563] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  772.268333][T14572] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2584'.
[  772.280715][T14572] xt_hashlimit: overflow, try lower: 18446744073709551615/7
[  776.595423][T14626] caif0: entered allmulticast mode
[  778.004793][T14654] trusted_key: encrypted_key: hex blob is missing
[  778.215024][T14651] openvswitch: netlink: Tunnel attr 0 has unexpected len 16 expected 8
[  778.609273][T14670] fuse: Bad value for 'user_id'
[  778.614197][T14670] fuse: Bad value for 'user_id'
[  778.964414][T14673] openvswitch: netlink: Key 0 has unexpected len 20 expected 0
[  782.850357][T14737] openvswitch: netlink: Key 0 has unexpected len 20 expected 0
[  788.004367][T14807] tipc: Started in network mode
[  788.009389][T14807] tipc: Node identity 7, cluster identity 4711
[  788.015606][T14807] tipc: Node number set to 7
[  788.923669][T14823] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2661'.
[  788.943969][T14823] 8021q: adding VLAN 0 to HW filter on device ipvlan2
[  789.360278][T14835] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2667'.
[  790.609544][T14864] /dev/nullb0: Can't lookup blockdev
[  791.637251][T14878] netdevsim netdevsim0: Direct firmware load for ./file0 failed with error -2
[  791.646485][T14878] netdevsim netdevsim0: Falling back to sysfs fallback for: ./file0
[  795.163257][T14923] netlink: 76 bytes leftover after parsing attributes in process `syz.4.2692'.
[  795.213160][T14922] netlink: 36 bytes leftover after parsing attributes in process `syz.1.2685'.
[  795.243339][T14923] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2692'.
[  795.493386][T14929] openvswitch: netlink: Key type 12550 is out of range max 32
[  796.187338][   T30] audit: type=1326 audit(1744624499.299:204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14941 comm="syz.0.2699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f18d9f8d169 code=0x7ffc0000
[  796.224333][T14943] netlink: 'syz.0.2699': attribute type 1 has an invalid length.
[  796.248648][   T30] audit: type=1326 audit(1744624499.319:205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14941 comm="syz.0.2699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f18d9f8d169 code=0x7ffc0000
[  796.299293][   T30] audit: type=1326 audit(1744624499.329:206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14941 comm="syz.0.2699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=12 compat=0 ip=0x7f18d9f8d169 code=0x7ffc0000
[  796.379312][T14946] netlink: 10 bytes leftover after parsing attributes in process `syz.2.2701'.
[  796.390140][   T30] audit: type=1326 audit(1744624499.329:207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14941 comm="syz.0.2699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f18d9f8d169 code=0x7ffc0000
[  796.439637][   T30] audit: type=1326 audit(1744624499.329:208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14941 comm="syz.0.2699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f18d9f8d169 code=0x7ffc0000
[  796.465448][   T30] audit: type=1326 audit(1744624499.329:209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14941 comm="syz.0.2699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f18d9f8d169 code=0x7ffc0000
[  796.491195][   T30] audit: type=1326 audit(1744624499.329:210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14941 comm="syz.0.2699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f18d9f8d169 code=0x7ffc0000
[  797.416209][   T30] audit: type=1326 audit(1744624499.329:211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14941 comm="syz.0.2699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f18d9f8d169 code=0x7ffc0000
[  797.451355][T14958] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  797.460223][T14958] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  797.469594][T14958] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  797.548993][   T30] audit: type=1326 audit(1744624499.329:212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14941 comm="syz.0.2699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f18d9f8d169 code=0x7ffc0000
[  797.603075][   T30] audit: type=1326 audit(1744624499.329:213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14941 comm="syz.0.2699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f18d9f8d169 code=0x7ffc0000
[  802.138982][T15001] openvswitch: netlink: Key 0 has unexpected len 20 expected 0
[  803.845157][T15007] xt_l2tp: invalid flags combination: 4
[  804.134398][T15034] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  804.143200][T15034] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  804.152367][T15034] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  804.433466][T15048] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2727'.
[  805.827014][   T56] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  805.839224][   T56] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  805.847917][   T56] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  805.856425][   T56] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  805.864211][   T56] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  805.954203][T15056] lo speed is unknown, defaulting to 1000
[  806.553960][T15064] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2736'.
[  807.579980][T15056] chnl_net:caif_netlink_parms(): no params data found
[  807.960300][T12990] Bluetooth: hci5: command tx timeout
[  808.642173][T15103] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2745'.
[  808.764494][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  808.770943][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  809.044926][T15056] bridge0: port 1(bridge_slave_0) entered blocking state
[  809.052597][T15056] bridge0: port 1(bridge_slave_0) entered disabled state
[  809.062171][T15056] bridge_slave_0: entered allmulticast mode
[  809.688291][T15056] bridge_slave_0: entered promiscuous mode
[  809.698211][T15056] bridge0: port 2(bridge_slave_1) entered blocking state
[  809.712039][T15056] bridge0: port 2(bridge_slave_1) entered disabled state
[  809.719483][T15056] bridge_slave_1: entered allmulticast mode
[  809.767920][T15056] bridge_slave_1: entered promiscuous mode
[  809.781345][T15114] netdevsim netdevsim3 netdevsim0: entered promiscuous mode
[  809.789354][T15114] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  809.840576][T15115] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  809.849385][T15115] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  809.858623][T15115] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  810.075300][T12990] Bluetooth: hci5: command tx timeout
[  810.169864][T15056] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  810.188076][T15056] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  810.241964][T15056] team0: Port device team_slave_0 added
[  810.258511][T15123] netlink: 'syz.0.2749': attribute type 9 has an invalid length.
[  810.258886][T15056] team0: Port device team_slave_1 added
[  810.374085][T15056] batman_adv: batadv0: Adding interface: batadv_slave_0
[  810.382856][T15056] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  810.415312][T15056] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  810.434079][T15056] batman_adv: batadv0: Adding interface: batadv_slave_1
[  810.446299][T15056] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  810.486518][T15056] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  810.574745][T15056] hsr_slave_0: entered promiscuous mode
[  810.586046][T15056] hsr_slave_1: entered promiscuous mode
[  810.592524][T15056] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  810.603819][T15056] Cannot create hsr debugfs directory
[  811.105057][T15056] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  811.275085][T15056] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  812.145811][T12990] Bluetooth: hci5: command tx timeout
[  812.375723][T15056] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  812.707613][T15153] netlink: 'syz.4.2760': attribute type 21 has an invalid length.
[  812.722387][T15056] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  812.744618][T15153] netlink: 128 bytes leftover after parsing attributes in process `syz.4.2760'.
[  812.759873][T15153] netlink: 'syz.4.2760': attribute type 4 has an invalid length.
[  812.773047][T15153] netlink: 3 bytes leftover after parsing attributes in process `syz.4.2760'.
[  813.006866][T15056] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  813.026351][T15056] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  813.087693][T15056] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  813.106652][T15056] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  813.567052][T15056] 8021q: adding VLAN 0 to HW filter on device bond0
[  813.614363][T15056] 8021q: adding VLAN 0 to HW filter on device team0
[  813.640389][T10758] bridge0: port 1(bridge_slave_0) entered blocking state
[  813.647632][T10758] bridge0: port 1(bridge_slave_0) entered forwarding state
[  813.693280][T10758] bridge0: port 2(bridge_slave_1) entered blocking state
[  813.700571][T10758] bridge0: port 2(bridge_slave_1) entered forwarding state
[  814.040808][T15056] 8021q: adding VLAN 0 to HW filter on device batadv0
[  814.089896][T15056] veth0_vlan: entered promiscuous mode
[  814.107318][T15056] veth1_vlan: entered promiscuous mode
[  814.162845][T15056] veth0_macvtap: entered promiscuous mode
[  814.185767][T12990] Bluetooth: hci5: command tx timeout
[  814.190589][T15056] veth1_macvtap: entered promiscuous mode
[  814.218527][T15056] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  814.229903][T15056] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  814.240664][T15056] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  814.251263][T15056] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  814.261195][T15056] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  814.272111][T15056] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  814.302285][T15056] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  814.313343][T15056] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  814.327428][T15056] batman_adv: batadv0: Interface activated: batadv_slave_0
[  814.344690][T15056] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  814.355928][T15056] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  814.368690][T15056] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  814.379647][T15056] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  814.391594][T15056] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  814.403680][T15056] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  814.416090][T15056] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  814.448656][T15056] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  814.460665][T15056] batman_adv: batadv0: Interface activated: batadv_slave_1
[  814.481394][T15056] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  815.173057][T15056] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  815.182395][T15056] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  815.187289][T15190] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2771'.
[  815.191179][T15056] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  815.403060][ T1109] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  815.426301][ T1109] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  815.503143][T10758] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  815.518453][T10758] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  815.759455][T15207] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2776'.
[  816.070150][T15209] tipc: Started in network mode
[  816.075110][T15209] tipc: Node identity 7, cluster identity 4711
[  816.081317][T15209] tipc: Node number set to 7
[  816.895324][   T30] kauditd_printk_skb: 3 callbacks suppressed
[  816.895344][   T30] audit: type=1326 audit(1744624519.982:217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15172 comm="syz.3.2768" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff3ed98d169 code=0x7fc00000
[  817.460575][T15237] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2784'.
[  822.620632][T15324] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2811'.
[  825.236837][   T30] audit: type=1326 audit(1744624528.344:218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15359 comm="syz.3.2819" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff3ed98d169 code=0x0
[  826.642262][ T5904] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[  826.874250][ T5904] usb 2-1: New USB device found, idVendor=04f3, idProduct=0755, bcdDevice= 0.00
[  826.894823][ T5904] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  826.912422][ T5904] usb 2-1: config 0 descriptor??
[  827.373590][ T5904] elan 0003:04F3:0755.0002: hidraw0: USB HID v1.01 Device [HID 04f3:0755] on usb-dummy_hcd.1-1/input0
[  827.546242][ T5904] usb 2-1: USB disconnect, device number 2
[  827.579639][   T56] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  827.588814][   T56] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  827.599068][   T56] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  827.608249][   T56] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  827.619436][   T56] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  827.668330][T15417] lo speed is unknown, defaulting to 1000
[  827.974294][T15417] chnl_net:caif_netlink_parms(): no params data found
[  828.032096][ T5827] syz-executor (5827) used greatest stack depth: 18936 bytes left
[  828.647664][   T54] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  828.724166][T15417] bridge0: port 1(bridge_slave_0) entered blocking state
[  828.747915][T15417] bridge0: port 1(bridge_slave_0) entered disabled state
[  828.773155][T15417] bridge_slave_0: entered allmulticast mode
[  828.801242][T15417] bridge_slave_0: entered promiscuous mode
[  828.852524][   T54] bridge0: port 3(netdevsim2) entered disabled state
[  828.926007][   T54] netdevsim netdevsim0 netdevsim2 (unregistering): left allmulticast mode
[  828.946827][   T54] netdevsim netdevsim0 netdevsim2 (unregistering): left promiscuous mode
[  828.958848][   T54] bridge0: port 3(netdevsim2) entered disabled state
[  828.991038][   T54] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  829.017673][T15417] bridge0: port 2(bridge_slave_1) entered blocking state
[  829.028424][T15417] bridge0: port 2(bridge_slave_1) entered disabled state
[  829.035904][T15417] bridge_slave_1: entered allmulticast mode
[  829.054049][T15417] bridge_slave_1: entered promiscuous mode
[  829.270112][   T54] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  829.433916][   T54] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  829.530768][T15417] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  829.565810][T15417] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  829.702155][   T56] Bluetooth: hci1: command tx timeout
[  829.889441][T15417] team0: Port device team_slave_0 added
[  829.907647][T15417] team0: Port device team_slave_1 added
[  830.800573][T15469] DRBG: could not allocate digest TFM handle: hmac(sha512)
[  831.197439][T15417] batman_adv: batadv0: Adding interface: batadv_slave_0
[  831.215720][T15417] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  831.241693][    C1] vkms_vblank_simulate: vblank timer overrun
[  831.259370][T15417] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  831.271371][   T54] vlan2: left allmulticast mode
[  831.276608][   T54] gretap0: left allmulticast mode
[  831.292465][   T54] vlan2: left promiscuous mode
[  831.297288][   T54] gretap0: left promiscuous mode
[  831.516502][   T54] bridge0: port 4(vlan2) entered disabled state
[  832.156077][   T56] Bluetooth: hci1: command tx timeout
[  832.184316][   T54] bridge_slave_1: left allmulticast mode
[  832.190193][   T54] bridge_slave_1: left promiscuous mode
[  832.201693][   T54] bridge0: port 2(bridge_slave_1) entered disabled state
[  832.833621][   T54] bridge_slave_0: left allmulticast mode
[  832.839541][   T54] bridge_slave_0: left promiscuous mode
[  832.867371][   T54] bridge0: port 1(bridge_slave_0) entered disabled state
[  833.150077][ T5941] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  833.341103][ T5941] usb 2-1: Using ep0 maxpacket: 8
[  833.348135][ T5941] usb 2-1: too many endpoints for config 0 interface 0 altsetting 0: 255, using maximum allowed: 30
[  833.365489][ T5941] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  833.380414][ T5941] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  833.404049][ T5941] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 255
[  833.417212][ T5941] usb 2-1: New USB device found, idVendor=17ef, idProduct=6067, bcdDevice= 0.00
[  833.426493][ T5941] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  833.436903][ T5941] usb 2-1: config 0 descriptor??
[  833.460960][   T54] bond1 (unregistering): (slave bridge1): Releasing backup interface
[  833.469374][   T54] bridge1 (unregistering): left promiscuous mode
[  833.638350][   T54] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  833.655244][   T54] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  833.668400][   T54] bond0 (unregistering): (slave team0): Releasing backup interface
[  833.687890][   T54] bond0 (unregistering): Released all slaves
[  833.807976][   T54] bond1 (unregistering): Released all slaves
[  833.824624][T15417] batman_adv: batadv0: Adding interface: batadv_slave_1
[  833.831739][T15417] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  833.857635][    C1] vkms_vblank_simulate: vblank timer overrun
[  833.864104][T15417] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  833.988302][   T54] tipc: Left network mode
[  834.022033][ T5941] lenovo 0003:17EF:6067.0003: hidraw0: USB HID v0.07 Device [HID 17ef:6067] on usb-dummy_hcd.1-1/input0
[  834.083979][ T5941] usb 2-1: USB disconnect, device number 3
[  834.132851][T15417] hsr_slave_0: entered promiscuous mode
[  834.140157][T15417] hsr_slave_1: entered promiscuous mode
[  834.149489][T15417] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  834.158862][T15417] Cannot create hsr debugfs directory
[  834.183375][   T56] Bluetooth: hci1: command tx timeout
[  834.706932][   T54] hsr_slave_0: left promiscuous mode
[  834.736560][   T54] hsr_slave_1: left promiscuous mode
[  834.764709][   T54] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  834.807536][   T54] batman_adv: batadv0: Removing interface: batadv_slave_0
[  834.846088][   T54] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  834.870345][   T54] batman_adv: batadv0: Removing interface: batadv_slave_1
[  835.004612][   T54] veth1_macvtap: left promiscuous mode
[  835.025800][   T54] veth0_macvtap: left promiscuous mode
[  835.050749][   T54] veth1_vlan: left promiscuous mode
[  835.501166][ T5941] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  835.662101][ T5941] usb 2-1: Using ep0 maxpacket: 16
[  835.690649][ T5941] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  835.722691][ T5941] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  835.752956][ T5941] usb 2-1: New USB device found, idVendor=046d, idProduct=c623, bcdDevice= 0.00
[  835.765080][ T5941] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  835.801113][ T5941] usb 2-1: config 0 descriptor??
[  836.259574][ T5941] logitech 0003:046D:C623.0004: unknown main item tag 0x6
[  836.267934][   T56] Bluetooth: hci1: command tx timeout
[  836.270202][ T5941] logitech 0003:046D:C623.0004: unknown main item tag 0x0
[  836.280683][ T5941] logitech 0003:046D:C623.0004: unknown main item tag 0x2
[  836.287837][ T5941] logitech 0003:046D:C623.0004: unknown main item tag 0x0
[  836.295038][ T5941] logitech 0003:046D:C623.0004: unknown main item tag 0x0
[  836.302642][ T5941] logitech 0003:046D:C623.0004: unknown main item tag 0x0
[  836.310186][ T5941] logitech 0003:046D:C623.0004: reserved main item tag 0xd
[  836.317689][ T5941] logitech 0003:046D:C623.0004: unknown main item tag 0x0
[  836.325401][ T5941] logitech 0003:046D:C623.0004: unknown main item tag 0x0
[  836.339252][   T54] team0 (unregistering): Port device team_slave_1 removed
[  836.353118][ T5941] logitech 0003:046D:C623.0004: unknown main item tag 0x0
[  836.379862][ T5941] logitech 0003:046D:C623.0004: unknown main item tag 0x0
[  836.407923][ T5941] logitech 0003:046D:C623.0004: unknown main item tag 0x0
[  836.421916][ T5941] logitech 0003:046D:C623.0004: unknown main item tag 0x0
[  836.442715][ T5941] logitech 0003:046D:C623.0004: unknown main item tag 0x0
[  836.452531][   T54] team0 (unregistering): Port device team_slave_0 removed
[  836.470128][ T5941] logitech 0003:046D:C623.0004: unknown main item tag 0x0
[  836.484456][ T5941] logitech 0003:046D:C623.0004: unknown main item tag 0x0
[  836.492283][ T5941] logitech 0003:046D:C623.0004: unknown main item tag 0x0
[  836.499454][ T5941] logitech 0003:046D:C623.0004: unknown main item tag 0x0
[  836.507825][ T5941] logitech 0003:046D:C623.0004: unknown main item tag 0x0
[  836.515056][ T5941] logitech 0003:046D:C623.0004: unknown main item tag 0x0
[  836.522294][ T5941] logitech 0003:046D:C623.0004: unknown main item tag 0x0
[  836.530026][ T5941] logitech 0003:046D:C623.0004: unknown main item tag 0x0
[  836.538175][ T5941] logitech 0003:046D:C623.0004: unknown main item tag 0x0
[  836.545551][ T5941] logitech 0003:046D:C623.0004: unknown main item tag 0x0
[  836.552773][ T5941] logitech 0003:046D:C623.0004: unknown main item tag 0x0
[  836.560206][ T5941] logitech 0003:046D:C623.0004: unknown main item tag 0x0
[  836.567367][ T5941] logitech 0003:046D:C623.0004: unknown main item tag 0x0
[  836.575512][ T5941] logitech 0003:046D:C623.0004: unknown main item tag 0x0
[  836.584625][ T5941] logitech 0003:046D:C623.0004: unknown main item tag 0x0
[  836.591927][ T5941] logitech 0003:046D:C623.0004: unknown main item tag 0x0
[  836.599124][ T5941] logitech 0003:046D:C623.0004: unknown main item tag 0x0
[  836.606364][ T5941] logitech 0003:046D:C623.0004: unknown main item tag 0x0
[  836.613751][ T5941] logitech 0003:046D:C623.0004: unknown main item tag 0x0
[  836.630332][ T5941] logitech 0003:046D:C623.0004: hidraw0: USB HID v0.00 Device [HID 046d:c623] on usb-dummy_hcd.1-1/input0
[  836.645967][ T5941] usb 2-1: USB disconnect, device number 4
[  837.017004][T15535] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2890'.
[  839.415955][T15555] bridge0: port 4(gretap0) entered blocking state
[  839.422821][T15555] bridge0: port 4(gretap0) entered disabled state
[  839.429538][T15555] gretap0: entered allmulticast mode
[  839.436746][T15555] gretap0: entered promiscuous mode
[  839.442801][T15555] bridge0: mtu less than device minimum
[  839.452295][T15555] gretap0: left allmulticast mode
[  839.457374][T15555] gretap0: left promiscuous mode
[  839.462883][T15555] bridge0: port 4(gretap0) entered disabled state
[  839.522281][T15555] bridge0: mtu less than device minimum
[  840.259153][ T1211] lo speed is unknown, defaulting to 1000
[  842.866232][T15593] overlayfs: failed to clone upperpath
[  842.887153][T15593] overlayfs: failed to clone upperpath
[  842.914406][T15417] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  842.926326][T15417] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  843.045912][T15601] dccp_invalid_packet: P.Data Offset(100) too large
[  843.059214][T15601] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  843.509209][T15417] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  843.530885][T15417] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  843.659047][T15417] 8021q: adding VLAN 0 to HW filter on device bond0
[  843.690750][T15417] 8021q: adding VLAN 0 to HW filter on device team0
[  843.705299][ T6007] bridge0: port 1(bridge_slave_0) entered blocking state
[  843.712579][ T6007] bridge0: port 1(bridge_slave_0) entered forwarding state
[  843.748407][ T6007] bridge0: port 2(bridge_slave_1) entered blocking state
[  843.755662][ T6007] bridge0: port 2(bridge_slave_1) entered forwarding state
[  843.798102][ T5941] usb 2-1: new full-speed USB device number 5 using dummy_hcd
[  843.973827][ T5941] usb 2-1: config 0 has an invalid interface number: 20 but max is 0
[  843.988624][ T5941] usb 2-1: config 0 has no interface number 0
[  844.001496][ T5941] usb 2-1: New USB device found, idVendor=04e6, idProduct=000b, bcdDevice= 1.00
[  844.021798][ T5941] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  844.039544][ T5941] usb 2-1: Product: syz
[  844.048019][ T5941] usb 2-1: Manufacturer: syz
[  844.059946][ T5941] usb 2-1: SerialNumber: syz
[  844.129657][ T5941] usb 2-1: config 0 descriptor??
[  844.137239][ T5941] usb-storage 2-1:0.20: USB Mass Storage device detected
[  844.202245][T15417] 8021q: adding VLAN 0 to HW filter on device batadv0
[  844.218142][T15626] 
[  844.220524][T15626] ======================================================
[  844.227560][T15626] WARNING: possible circular locking dependency detected
[  844.234601][T15626] 6.15.0-rc2-syzkaller #0 Not tainted
[  844.239992][T15626] ------------------------------------------------------
[  844.247042][T15626] syz.4.2917/15626 is trying to acquire lock:
[  844.247055][T15417] veth0_vlan: entered promiscuous mode
[  844.253106][T15626] ffffffff900eb1c8 (rtnl_mutex){+.+.}-{4:4}, at: do_ip_setsockopt+0x10f0/0x39c0
[  844.267660][T15626] 
[  844.267660][T15626] but task is already holding lock:
[  844.274651][T15417] veth1_vlan: entered promiscuous mode
[  844.275029][T15626] ffff88805b4166a8 (&smc->clcsock_release_lock){+.+.}-{4:4}, at: smc_setsockopt+0x1b2/0xd50
[  844.290619][T15626] 
[  844.290619][T15626] which lock already depends on the new lock.
[  844.290619][T15626] 
[  844.301048][T15626] 
[  844.301048][T15626] the existing dependency chain (in reverse order) is:
[  844.310070][T15626] 
[  844.310070][T15626] -> #2 (&smc->clcsock_release_lock){+.+.}-{4:4}:
[  844.318692][T15626]        lock_acquire+0x116/0x2f0
[  844.323747][T15626]        __mutex_lock+0x1a5/0x10c0
[  844.328873][T15626]        smc_switch_to_fallback+0x35/0xda0
[  844.334693][T15626]        smc_sendmsg+0x11f/0x530
[  844.339645][T15626]        __sock_sendmsg+0x221/0x270
[  844.344861][T15626]        __sys_sendto+0x365/0x4c0
[  844.349889][T15626]        __x64_sys_sendto+0xde/0x100
[  844.355174][T15626]        do_syscall_64+0xf3/0x230
[  844.360205][T15626]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  844.366624][T15626] 
[  844.366624][T15626] -> #1 (sk_lock-AF_INET){+.+.}-{0:0}:
[  844.374280][T15626]        lock_acquire+0x116/0x2f0
[  844.379312][T15626]        lock_sock_nested+0x48/0x100
[  844.384604][T15626]        gtp_encap_enable_socket+0x306/0x630
[  844.390616][T15626]        gtp_newlink+0x605/0xf80
[  844.395562][T15626]        rtnl_newlink_create+0x39b/0xcb0
[  844.401196][T15626]        rtnl_newlink+0x18b0/0x1fe0
[  844.406406][T15626]        rtnetlink_rcv_msg+0x80f/0xd70
[  844.411875][T15626]        netlink_rcv_skb+0x208/0x480
[  844.417175][T15626]        netlink_unicast+0x7f8/0x9a0
[  844.422471][T15626]        netlink_sendmsg+0x8c3/0xcd0
[  844.427767][T15626]        __sock_sendmsg+0x221/0x270
[  844.432978][T15626]        ____sys_sendmsg+0x523/0x860
[  844.438274][T15626]        __sys_sendmsg+0x271/0x360
[  844.443385][T15626]        do_syscall_64+0xf3/0x230
[  844.448413][T15626]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  844.454837][T15626] 
[  844.454837][T15626] -> #0 (rtnl_mutex){+.+.}-{4:4}:
[  844.462068][T15626]        validate_chain+0xa69/0x24e0
[  844.467374][T15626]        __lock_acquire+0xad5/0xd80
[  844.472575][T15626]        lock_acquire+0x116/0x2f0
[  844.477596][T15626]        __mutex_lock+0x1a5/0x10c0
[  844.482711][T15626]        do_ip_setsockopt+0x10f0/0x39c0
[  844.488262][T15626]        ip_setsockopt+0x63/0x100
[  844.493291][T15626]        smc_setsockopt+0x25c/0xd50
[  844.498492][T15626]        do_sock_setsockopt+0x3b1/0x710
[  844.504042][T15626]        __x64_sys_setsockopt+0x1ee/0x280
[  844.509769][T15626]        do_syscall_64+0xf3/0x230
[  844.514800][T15626]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  844.521229][T15626] 
[  844.521229][T15626] other info that might help us debug this:
[  844.521229][T15626] 
[  844.531454][T15626] Chain exists of:
[  844.531454][T15626]   rtnl_mutex --> sk_lock-AF_INET --> &smc->clcsock_release_lock
[  844.531454][T15626] 
[  844.545059][T15626]  Possible unsafe locking scenario:
[  844.545059][T15626] 
[  844.552502][T15626]        CPU0                    CPU1
[  844.557861][T15626]        ----                    ----
[  844.563222][T15626]   lock(&smc->clcsock_release_lock);
[  844.568598][T15626]                                lock(sk_lock-AF_INET);
[  844.575552][T15626]                                lock(&smc->clcsock_release_lock);
[  844.583464][T15626]   lock(rtnl_mutex);
[  844.587492][T15626] 
[  844.587492][T15626]  *** DEADLOCK ***
[  844.587492][T15626] 
[  844.595632][T15626] 1 lock held by syz.4.2917/15626:
[  844.600738][T15626]  #0: ffff88805b4166a8 (&smc->clcsock_release_lock){+.+.}-{4:4}, at: smc_setsockopt+0x1b2/0xd50
[  844.611324][T15626] 
[  844.611324][T15626] stack backtrace:
[  844.617216][T15626] CPU: 0 UID: 0 PID: 15626 Comm: syz.4.2917 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(full) 
[  844.617239][T15626] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  844.617250][T15626] Call Trace:
[  844.617257][T15626]  <TASK>
[  844.617265][T15626]  dump_stack_lvl+0x241/0x360
[  844.617294][T15626]  ? __pfx_dump_stack_lvl+0x10/0x10
[  844.617317][T15626]  ? __pfx__printk+0x10/0x10
[  844.617339][T15626]  ? print_lock+0x171/0x1a0
[  844.617359][T15626]  print_circular_bug+0x2e1/0x300
[  844.617381][T15626]  check_noncircular+0x142/0x160
[  844.617405][T15626]  validate_chain+0xa69/0x24e0
[  844.617427][T15626]  ? finish_task_switch+0x1e5/0x870
[  844.617460][T15626]  __lock_acquire+0xad5/0xd80
[  844.617478][T15626]  lock_acquire+0x116/0x2f0
[  844.617493][T15626]  ? do_ip_setsockopt+0x10f0/0x39c0
[  844.617517][T15626]  __mutex_lock+0x1a5/0x10c0
[  844.617539][T15626]  ? do_ip_setsockopt+0x10f0/0x39c0
[  844.617559][T15626]  ? look_up_lock_class+0x7b/0x170
[  844.617579][T15626]  ? register_lock_class+0x54/0x330
[  844.617595][T15626]  ? do_ip_setsockopt+0x10f0/0x39c0
[  844.617614][T15626]  ? __pfx___mutex_lock+0x10/0x10
[  844.617634][T15626]  ? __lock_acquire+0xad5/0xd80
[  844.617653][T15626]  ? __pfx___mutex_trylock_common+0x10/0x10
[  844.617676][T15626]  do_ip_setsockopt+0x10f0/0x39c0
[  844.617700][T15626]  ? __pfx_do_ip_setsockopt+0x10/0x10
[  844.617723][T15626]  ? smc_setsockopt+0x1b2/0xd50
[  844.617747][T15626]  ? __pfx___mutex_lock+0x10/0x10
[  844.617778][T15626]  ip_setsockopt+0x63/0x100
[  844.617801][T15626]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  844.617831][T15626]  smc_setsockopt+0x25c/0xd50
[  844.617856][T15626]  ? __pfx_smc_setsockopt+0x10/0x10
[  844.617877][T15626]  ? __lock_acquire+0xad5/0xd80
[  844.617895][T15626]  ? __pfx_smc_setsockopt+0x10/0x10
[  844.617913][T15626]  do_sock_setsockopt+0x3b1/0x710
[  844.617933][T15626]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  844.617947][T15626]  ? __fget_files+0x2a/0x420
[  844.617968][T15626]  ? __fget_files+0x39d/0x420
[  844.617985][T15626]  ? __fget_files+0x2a/0x420
[  844.618007][T15626]  __x64_sys_setsockopt+0x1ee/0x280
[  844.618034][T15626]  do_syscall_64+0xf3/0x230
[  844.618056][T15626]  ? clear_bhb_loop+0x45/0xa0
[  844.618076][T15626]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  844.618093][T15626] RIP: 0033:0x7f1895b8d169
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  844.618108][T15626] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  844.618124][T15626] RSP: 002b:00007f18969e8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  844.618142][T15626] RAX: ffffffffffffffda RBX: 00007f1895da6080 RCX: 00007f1895b8d169
[  844.618154][T15626] RDX: 0000000000000029 RSI: 0000000000000000 RDI: 0000000000000003
[  844.618164][T15626] RBP: 00007f1895c0e990 R08: 0000000000000014 R09: 0000000000000000
[  844.618175][T15626] R10: 0000200000000040 R11: 0000000000000246 R12: 0000000000000000
[  844.618185][T15626] R13: 0000000000000000 R14: 00007f1895da6080 R15: 00007fff726f3f58
[  844.618204][T15626]  </TASK>
[  844.636175][T15417] veth0_macvtap: entered promiscuous mode
[  845.034098][ T5941] usb-storage 2-1:0.20: Quirks match for vid 04e6 pid 000b: 4
[  845.538700][   T48] usb 2-1: USB disconnect, device number 5