last executing test programs:

16m35.796331853s ago: executing program 32 (id=71):
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r0, &(0x7f0000000440), 0x10)
listen(r0, 0x0)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r1, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10)
r2 = accept4$unix(r0, 0x0, 0x0, 0x0)
recvfrom$unix(r2, &(0x7f00000002c0)=""/236, 0x40000, 0x10120, 0x0, 0x0)

16m27.609750757s ago: executing program 33 (id=111):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x150)
symlinkat(&(0x7f0000000000)='.\x00', 0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00')
syz_mount_image$fuse(0x0, &(0x7f0000000300)='./bus\x00', 0x3000001, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000000)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@uuid_off}]})
syz_mount_image$fuse(&(0x7f00000000c0), &(0x7f00000001c0)='./file0\x00', 0x40000, &(0x7f0000000c00)=ANY=[], 0x1, 0x0, 0x0)
linkat(0xffffffffffffff9c, &(0x7f00000006c0)='./file1\x00', 0xffffffffffffff9c, &(0x7f0000000440)='./file7\x00', 0x1000)
mount$cgroup(0x0, &(0x7f0000000140)='./file7\x00', 0x0, 0x89020, 0x0)

16m18.254483791s ago: executing program 34 (id=150):
r0 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000140)=@req3={0x7813, 0x3, 0x0, 0x81, 0x1ff, 0x1, 0x1}, 0x1c)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000140)=@req3={0x7813, 0x3, 0x1, 0x81, 0x1ff, 0x801, 0x1}, 0x1c)
sendmmsg(r1, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x101d0}], 0x1}}], 0x400000000000181, 0x9200000000000000)
bind$tipc(r1, 0x0, 0x0)
recvmmsg$unix(r0, &(0x7f0000000500)=[{{0x0, 0x0, &(0x7f0000001480)=[{&(0x7f0000000300)=""/41, 0x29}], 0x1}}], 0x1, 0x0, 0x0)

16m17.148229377s ago: executing program 35 (id=153):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
syz_kvm_setup_cpu$x86(r1, r0, &(0x7f00003a1000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000000)="9a01000000f800b8d58800000f23d00f21f8351000000d0f23f864640f79ea66baf80cb8c85f5480ef66bafc0cecc4c2adac17b9550200000f320f2860c7c4e11751df0f2e2d00000080b9800000c00f3235008000000f30", 0x58}], 0x1, 0x4a, 0x0, 0x0)
ioctl$KVM_SET_GUEST_DEBUG_x86(r2, 0x4048ae9b, &(0x7f0000000080)={0x60003, 0x0, {[0xffffffffffffffff, 0x1f8, 0x83, 0xffffffffeff7ff15, 0x20000003, 0x4, 0x5, 0x3793f883]}})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16m1.777827638s ago: executing program 36 (id=173):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000002180)='blkio.bfq.io_merged\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x12, r0, 0x0)
ftruncate(r0, 0xc17a)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000080)=0x9, 0x8, 0x0)
mbind(&(0x7f00005f7000/0x2000)=nil, 0x2000, 0x0, 0x0, 0x2, 0x0)
mprotect(&(0x7f0000a15000/0x1000)=nil, 0x1000, 0x5)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x0)

15m41.73402257s ago: executing program 37 (id=271):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1c0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
r1 = landlock_create_ruleset(&(0x7f00000002c0)={0x7f6e}, 0x18, 0x0)
landlock_add_rule$LANDLOCK_RULE_PATH_BENEATH(r1, 0x1, &(0x7f0000000000)={0x2108, r0}, 0x0)
landlock_restrict_self(r1, 0x0)
landlock_restrict_self(r1, 0x0)
mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1/file2\x00', 0x81c0, 0x0)

15m6.875462133s ago: executing program 38 (id=609):
r0 = socket(0x2, 0x80805, 0x0)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r1, 0x0)
close(0x3)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000200)={<r2=>0x0, 0x10, &(0x7f00000001c0)=[@in={0x2, 0x4e23, @rand_addr=0x64010100}]}, &(0x7f0000000140)=0x10)
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r1, 0x84, 0x7a, &(0x7f0000000980)={<r3=>r2, @in6={{0xa, 0x4e21, 0x4, @ipv4={'\x00', '\xff\xff', @multicast1}}}}, &(0x7f0000000040)=0x84)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(r0, 0x84, 0x73, &(0x7f00000007c0)={r3, 0x8, 0x10, 0x100000000, 0x5}, &(0x7f0000000840)=0x18)

15m4.041371623s ago: executing program 39 (id=636):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x4}, 0x50)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x0, 0x11, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000ffffffff000000000000000085000000a8000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b705000000000000850000006a00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000dc0)={0x1f, 0x4, &(0x7f00000001c0)=@framed={{}, [@call={0x85, 0x0, 0x0, 0xa8}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x11}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x11, &(0x7f0000000200)=ANY=[], &(0x7f0000000b00)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x1a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)

14m48.657946518s ago: executing program 40 (id=756):
syz_mount_image$vfat(&(0x7f0000000780), &(0x7f0000000000)='./bus\x00', 0x90, &(0x7f0000000140)=ANY=[], 0x6, 0x2d7, &(0x7f0000000340)="$eJzs3T9rJGUYAPBnNrN/1GJTWInggBZWx+Vamw1yB2Iqjy1OCw3eHUh2Fe4g4h+cu0rsbCz9BILgB7GxsxRsBTsjBEZmdia7m4ybjWQjmt+vSN688zzzPvPOJJkmT957cXpwP4uHTz//JQaDJDqjfsRREtvRicaTWDL6OgCA/7Kjoojfi5mWwz9/tSJ3sMG6AIDNOef3fy2tPt4rI364utoAgM24e+/tN3f39m6/lWWDuDP98nCcRET5eXZ892F8EJN4EDdjGMcR1YtCN6q3hXJ4pyiKPM1K2/HKND8cl5nTd3+sz7/7W0SVvxPD2K6mTt42qvw39m7vZDML+XlZx7P1+qMy/1YM4/mT5KX8Wy35Me7Fqy8v1H8jhvHT+/FRTOJ+VcQ8/4udLHu9+OaPz94pyyvzk/xw3K/i5oqtZvH8iu8RAAAAAAAAAAAAAAAAAAAAAAD/Pzfq3jn9qPr3lFN1/52t4/KLbmSNeX+fDzt50x8oaU407w8UnaIo8iK+bfrr3MyyrKgD5/190nghrRsLAgAAAAAAAAAAAAAAAAAAwDX3+JNPD/YnkwePLmXQdANII+LPuxH/9DyjhZmXYnVwv15zfzLp1MPlmHRxJraamCRiZRnlRVzStpw3eOZMzfXgu+/PBidPZjcujbYTDs5ftNu+1gUHH3dn+9ga0zxdB/tJ+x72T4oflDcuTt+4XrSv3o1TM72/q7B5FNe7nF7roeGFt6X3XDXIV8REsur74rVfZ2UvXMVSTK/a1db0bj1YSD/1bKz1PMdgln72Z0WiWwcAAAAAAAAAAAAAAAAAAGzU/K9/Ww4+XZnaKfobKwsAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAArtT8//+vM0iXk9fI6sWjx//WtQEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHB9/BUAAP//gxtVEw==")
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x43, 0x0, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000140)=@x86={0x60, 0x1, 0xc, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x82, 0x9, 0x0, 0x0, 0x2, 0xfffffff8, 0x0, 0xff, 0xff, 0x40, '\x00', 0x0, 0x2})

14m33.639730989s ago: executing program 41 (id=891):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000001680)=ANY=[@ANYBLOB="1800000000030000000000000000000095"], &(0x7f0000001700)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x94)
syz_mount_image$fuse(0x0, &(0x7f0000000040)='./file0\x00', 0x20, 0x0, 0x0, 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f00000013c0)='./file0/file0\x00', 0x42, 0x0)
close(r1)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000240)={0x1, &(0x7f0000000200)=[{0x6, 0xff, 0x7, 0x7fc00002}]})
sendmsg$IPSET_CMD_GET_BYINDEX(r1, 0x0, 0x40804)
mount$9p_fd(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f00000002c0), 0x40, &(0x7f0000000500)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r0])

14m7.721547045s ago: executing program 3 (id=1130):
prlimit64(0x0, 0xe, &(0x7f00000003c0)={0x4, 0x80100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)=ANY=[@ANYBLOB="3000000013000100000000000000000007000000", @ANYRES32=r2, @ANYBLOB="000000000000000010000c"], 0x30}, 0x1, 0x0, 0x0, 0x8004}, 0x0)

14m7.343812218s ago: executing program 3 (id=1132):
r0 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x86)
fchdir(r1)
r2 = open(&(0x7f0000000100)='.\x00', 0x100080, 0x4)
flock(r2, 0x6)
symlink(&(0x7f0000000100)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00', &(0x7f00000002c0)='.\x02\x00')

14m7.104309618s ago: executing program 3 (id=1134):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x80003, 0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'lo\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_prio={{0x9}, {0x18, 0x2, {0xf, "0000000000000000000100000e00"}}}]}, 0x48}, 0x1, 0x0, 0x0, 0x2000000}, 0x0)
syz_emit_ethernet(0x22, &(0x7f00000000c0)={@empty, @random="a88b360800", @void, {@ipv4={0x800, @generic={{0x5, 0x4, 0x0, 0x17, 0x14, 0x64, 0x0, 0x0, 0x29, 0x0, @remote, @dev={0xac, 0x14, 0x14, 0xc}}}}}}, 0x0)
sendmmsg$inet(r0, &(0x7f0000005200)=[{{0x0, 0x4b, &(0x7f0000000000), 0x1}}], 0x1, 0x0)

14m6.797491722s ago: executing program 3 (id=1137):
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x2, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000005a0000008500000022000000180100002020702500000000002020200100000000000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007300000095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020097b1af8ff"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='rxrpc_recvmsg\x00', r0}, 0x18)
r1 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r1, &(0x7f0000000140)={&(0x7f0000000440)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @loopback}}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000100)="a6", 0xfffffcf4}, {0x0}], 0x2, &(0x7f0000001a00)=ANY=[@ANYBLOB="180000000000000010010000010000007d95df16a39b1a6c900000000000000001000005040500002b24ec10064b6f2f000000fb718aef932f3889d1fdda5b00000009860f5878c37ffe36e1165814d435be5b317c6c8189767d2f97879f07a515bb7c169f46933d9338f4ab04834e6f618988c5944741afe403461323110f62055394412158e7a3adb164d641aa40d4ab077fe34232aa8b319d7666d0998a61d7da0c86d70000001010"], 0x10b8}, 0x106)
recvmsg$kcm(r1, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x100)

14m6.550119457s ago: executing program 3 (id=1143):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x8, &(0x7f0000000040)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0])
mount(0x0, &(0x7f0000000440)='./file0\x00', &(0x7f0000000280)='autofs\x00', 0x201000c, &(0x7f0000000040))
chdir(&(0x7f00000000c0)='./file0\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x1)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000280)='./file0/file0\x00', 0x0, 0x12c1008, 0x0)

14m6.381974777s ago: executing program 3 (id=1145):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$bt_l2cap_L2CAP_OPTIONS(0xffffffffffffffff, 0x6, 0x1, &(0x7f00000000c0)={0x0, 0x747, 0x3, 0x4, 0xfb, 0x8, 0x101}, 0xc)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r0)
r2 = socket$kcm(0xa, 0x2, 0x0)
setsockopt$sock_attach_bpf(r2, 0x29, 0x17, 0x0, 0x1300)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000002c0)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000000)=ANY=[@ANYBLOB="88020000", @ANYRES16=r1, @ANYBLOB="010000000000000000003b00000008000300", @ANYRES32=r3, @ANYBLOB="6102330050300100080211000001080211000000505050505050"], 0x288}, 0x1, 0x0, 0x0, 0x800}, 0x0)

13m51.266894307s ago: executing program 42 (id=1145):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$bt_l2cap_L2CAP_OPTIONS(0xffffffffffffffff, 0x6, 0x1, &(0x7f00000000c0)={0x0, 0x747, 0x3, 0x4, 0xfb, 0x8, 0x101}, 0xc)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r0)
r2 = socket$kcm(0xa, 0x2, 0x0)
setsockopt$sock_attach_bpf(r2, 0x29, 0x17, 0x0, 0x1300)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000002c0)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000000)=ANY=[@ANYBLOB="88020000", @ANYRES16=r1, @ANYBLOB="010000000000000000003b00000008000300", @ANYRES32=r3, @ANYBLOB="6102330050300100080211000001080211000000505050505050"], 0x288}, 0x1, 0x0, 0x0, 0x800}, 0x0)

13m33.768044595s ago: executing program 6 (id=1433):
sendmsg$NL80211_CMD_DEL_KEY(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000280)={0x20, 0x0, 0x20, 0x70bd2a, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x81, 0x66}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x40004}, 0x4000000)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=@newtaction={0x14, 0x30, 0x9}, 0x14}}, 0x0)
ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000000000010000000900010073797a30000000004000ffff0900010073797a30000000000900020073797a31000000001400038008"], 0x138}, 0x1, 0x0, 0x0, 0x20040855}, 0x4000000)
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000070000040900010073797a30000000009c000000090a010400000000000000000700000308000a40000000000900020073797a30000000000900010073797a3000000000080005400000000d58001280200001800e000100636f6e6e6c696d69740000000c0002800800014000000008200001800e000100636f6e6e6c696d69740000000c00028008000140000000001400017b090001006cdbf80789f3f947dd0002800800"], 0xe4}, 0x1, 0x0, 0x0, 0x8001}, 0x20050840)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030041000b05d25a806c8c6394f90324fc60100000000a000200053582c137153e3704020180fc5409000c00", 0x33fe0}], 0x1}, 0x0)

13m33.643389872s ago: executing program 6 (id=1434):
brk(0x55555ede6001)
syz_open_procfs(0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x11, 0x3, &(0x7f0000000280)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfffffffc}}, &(0x7f0000000300)='syzkaller\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x9, 0x1, 0x56d, 0x2}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000600), &(0x7f0000001f80), 0xfffffffb, r1}, 0x38)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000200), &(0x7f00000004c0), 0x1000, r1, 0x0, 0x11000000}, 0x38)

13m32.833587627s ago: executing program 6 (id=1442):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)=@newqdisc={0x34, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_codel={{0xa}, {0x4}}]}, 0x34}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=@gettfilter={0x24, 0x2e, 0x205, 0x70bd2c, 0x25dfdafd, {0x0, 0x0, 0x0, r3, {0xc, 0xc}, {0x0, 0xfff1}, {0x0, 0x2}}}, 0x24}, 0x1, 0x0, 0x0, 0x4000000}, 0x4041080)

13m32.592849328s ago: executing program 6 (id=1445):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f00000003c0)={[{@max_batch_time={'max_batch_time', 0x3d, 0x7}}, {@journal_dev={'journal_dev', 0x3d, 0x1}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6a}}, {@user_xattr}, {@errors_remount}, {@nouid32}]}, 0x1, 0x441, &(0x7f00000011c0)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
creat(&(0x7f0000000380)='./bus\x00', 0x0)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0)
r0 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x1, 0x8005, 0x0, 0x0, 0x19, 0xd, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef3dc177e9b48b00", "f28359738e229a4c66810000000000d300e6d602000000000000000000000001", [0x8]})
lsetxattr$trusted_overlay_upper(&(0x7f0000000100)='./file1\x00', &(0x7f00000000c0), &(0x7f0000000080)=ANY=[], 0xfe37, 0x0)

13m32.109018972s ago: executing program 6 (id=1447):
mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0)
r0 = open$dir(&(0x7f0000000080)='./file0\x00', 0x149800, 0xa0)
io_setup(0x1, &(0x7f0000000b80)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f0000001d00)=[&(0x7f0000001a80)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f00000004c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r2}, 0x10)
open$dir(&(0x7f0000000140)='./file0\x00', 0x1, 0x0)

13m31.647059312s ago: executing program 6 (id=1450):
r0 = fsopen(&(0x7f0000000100)='configfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x1, 0x0)
fchdir(r1)
r2 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r2, &(0x7f0000000100)=""/157, 0x9d)
getdents(r2, &(0x7f0000001fc0)=""/184, 0xb8)

13m31.179255085s ago: executing program 43 (id=1450):
r0 = fsopen(&(0x7f0000000100)='configfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x1, 0x0)
fchdir(r1)
r2 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r2, &(0x7f0000000100)=""/157, 0x9d)
getdents(r2, &(0x7f0000001fc0)=""/184, 0xb8)

13m20.569570917s ago: executing program 2 (id=1452):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_X86_SET_MCE(r2, 0x4040ae9e, &(0x7f00000002c0)={0x9a00000000000000, 0x5000, 0x5, 0x4, 0x2})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000019000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x79, &(0x7f00000001c0)=[@cr4={0x1, 0x108044}], 0x1)
ioctl$KVM_X86_SETUP_MCE(r2, 0x4008ae9c, &(0x7f0000000280)={0x10, 0x1, 0x4})
ioctl$KVM_X86_SET_MCE(r2, 0x4040ae9e, &(0x7f0000000140)={0xe200000000000000, 0x80a0000, 0xfffffffffffffffd, 0x2, 0x2})

13m20.329998032s ago: executing program 2 (id=1527):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000440)=ANY=[@ANYBLOB="9feb010018030000000000007c0000007c00000002000000000000000000000e0000000000000000000000000600000d00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000c00000000000000000000000900000000000000000000000900000000000000000000000a02"], 0x0, 0x96}, 0x28)
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000000400)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@struct]}}, &(0x7f0000000040)=""/247, 0x26, 0xf7, 0x1}, 0x28)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8923, 0x0)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x6, 0x3, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000000000000000000000000009500000000000000"], &(0x7f0000000280)='GPL\x00', 0x5, 0xe2, &(0x7f00000002c0)=""/226, 0x0, 0x0, '\x00', 0x0, 0x25, r0, 0x8, 0x0, 0x0, 0x10, &(0x7f00000004c0), 0x2}, 0x80)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000001040)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x0, 0x0, 0x0, 0x2000000, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000a00)={r1, 0xe0, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000001000), 0x8, 0x0, 0x8, 0x29, 0x0}}, 0x10)

13m20.14243494s ago: executing program 2 (id=1530):
r0 = socket(0x2a, 0x2, 0x0)
getsockname$packet(r0, &(0x7f0000000200)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=@newqdisc={0x24, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {0x0, 0x6}, {0xffff, 0xffff}, {0x0, 0xfff1}}}, 0x24}}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0xfffffffffffffde2}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000740)=@newtfilter={0x3c, 0x2c, 0xd27, 0x70bd2d, 0x0, {0x0, 0x0, 0x0, r1, {0xe, 0xffff}, {}, {0x8, 0xffe0}}, [@filter_kind_options=@f_flower={{0xb}, {0xc, 0x2, [@TCA_FLOWER_FLAGS={0x8, 0x16, 0x1}]}}]}, 0x3c}}, 0x4000)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r2, &(0x7f00000002c0), 0x40000000000009f, 0x0)

13m19.985605018s ago: executing program 2 (id=1533):
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f00000001c0)='./file0\x00', 0x2048c5, &(0x7f0000002b40)={[{@fat=@flush}, {@fat=@showexec}, {@utf8}, {@shortname_mixed}, {@uni_xlate}, {@shortname_winnt}, {@shortname_lower}, {@fat=@errors_continue}, {@fat=@flush}, {@uni_xlate}, {@utf8no}, {}, {@fat=@umask={'umask', 0x3d, 0x8000}}]}, 0x0, 0x2a1, &(0x7f0000000840)="$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")
r0 = syz_open_procfs(0x0, &(0x7f0000000540)='mounts\x00')
mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f00000002c0)='./file0\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x1333c06, 0x0)
mount$bind(&(0x7f0000000300)='./file0\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x11080, 0x0)
mount$bind(&(0x7f0000000240)='.\x00', &(0x7f0000000280)='./file0\x00', 0x0, 0x1005848, 0x0)
read$FUSE(r0, &(0x7f0000000b00)={0x2020}, 0x2020)

13m19.791930851s ago: executing program 2 (id=1536):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1000003, 0x13, r2, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000000c0)={[0x1, 0xfffffffffffffffe, 0x4, 0x20000e695, 0x9, 0x400, 0x6, 0x0, 0xfffffffffffffffe, 0x0, 0x1000000200d1, 0xfffffffffffffffc, 0x6, 0x4, 0x0, 0xfffffffffffffe], 0x0, 0x8340})
bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x1, 0x4, 0x8, 0x2b, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x5, 0x0, 0x2}, 0x50)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

13m18.402161075s ago: executing program 2 (id=1556):
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000000)={'vcan0\x00', <r1=>0x0})
bind$can_j1939(r0, &(0x7f00000000c0)={0x1d, r1}, 0x18)
connect$can_j1939(r0, &(0x7f0000000140)={0x1d, r1}, 0x18)
sendmmsg$inet(r0, &(0x7f0000003b80)=[{{0x0, 0x0, &(0x7f0000002940)=[{&(0x7f0000000080)="12f7480371ec65c777", 0x9}], 0x1}}], 0x1, 0x20000010)
setsockopt$sock_int(r0, 0x1, 0x28, &(0x7f0000000280)=0xfff, 0x4)
recvmmsg(r0, &(0x7f0000000180)=[{{0x0, 0x0, 0x0}, 0x1}], 0x1, 0x0, 0x0)

13m18.099972264s ago: executing program 44 (id=1556):
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000000)={'vcan0\x00', <r1=>0x0})
bind$can_j1939(r0, &(0x7f00000000c0)={0x1d, r1}, 0x18)
connect$can_j1939(r0, &(0x7f0000000140)={0x1d, r1}, 0x18)
sendmmsg$inet(r0, &(0x7f0000003b80)=[{{0x0, 0x0, &(0x7f0000002940)=[{&(0x7f0000000080)="12f7480371ec65c777", 0x9}], 0x1}}], 0x1, 0x20000010)
setsockopt$sock_int(r0, 0x1, 0x28, &(0x7f0000000280)=0xfff, 0x4)
recvmmsg(r0, &(0x7f0000000180)=[{{0x0, 0x0, 0x0}, 0x1}], 0x1, 0x0, 0x0)

11m46.647965491s ago: executing program 1 (id=2473):
syz_mount_image$minix(&(0x7f0000000300), &(0x7f0000000180)='./file2\x00', 0x4000, &(0x7f0000001f00)=ANY=[], 0x1, 0x210, &(0x7f0000000700)="$eJzs28tOE1Ecx/Hf9EZFI17iJa5MTIwbqQIJ6Up5ADcuTVyQWkjjoEbcQEiUl3Dv1pWPQKLv4QvAwp0rjjkzp2nHDp0LM0yg309C50/n/M6cAc6h04sAzKznwa0nT+2gMsZ8vi/p1QtJjYoHB6BUxm2PDYDZU8899V8P1xAA59LRWl1SWwee9PvPXu/QfbVTPn44WquFhScdjuUvpc3ve8H2XiOan5d0eaL15AWJ+RbmH2qYtyPf613JePx5RY+va2nz4fk/eqCmxvJXJS1IQTfXJd2QdFOas21vSapFjt9y343yd8M79lOeBgAAAAAAU9mrz8XT5hM7qEt6ErvHXgdvDPx+/N5kTZd/mjPfcvmlaY1Mcn55/M7aSa29UdkMN3Muv9h777/JMG6gCLVs83/iaUH7F32Q0MGJ08GtDNH530w/GveM4Mbga6YMgND2zu7bdd/vfyyyeDatjZS1Q7siFDzC+OK7LfQ3fGWk5GPlKeximzc+fEGm6IF9UXIbk6LNRSoaxf6cf8r7f542IpPoh/vdZuj5ZdyuliLzNKJ+xgsTgNJ1Pm196Gzv7D4ebK1v9jf771ZWu93VleWlbid4WG5vzULVowRQhtF//5idad/EAwAAAAAAAAAAAAAAKnVb0p2g+nWcIcY7AwAAAIBz6Cw+FFX1OQIAAAAAAAAAAAAAcNH9CwAA///UBDZV")
r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000004c0)='.\x00', 0x101000, 0x108)
getdents64(r0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
r1 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r1, &(0x7f0000000540)=""/55, 0x37)

11m46.359439268s ago: executing program 1 (id=2477):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
bind$xdp(0xffffffffffffffff, &(0x7f0000000100)={0x2c, 0x2, 0x0, 0xa}, 0x10)
sendmsg$NFT_BATCH(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000001000040000000000000000000000000a20000000000a01020000000000000000010000000900010073797a300000000058000000160a01000000000000000000010000000900010073797a30000000000900020073797a30000000002c0003800800014000000000080002400000000010000380140001007465616d3000000000000000000000005c000000160a0101000b000000000000010000000900020073797a30000000000900010073797a3000000000300003802c00038014"], 0xfc}}, 0x0)
write$tun(r0, &(0x7f0000000840)={@val={0x8, 0x800}, @val={0x6, 0x0, 0x0, 0x0, 0x14}, @ipv4=@generic={{0x5, 0x4, 0x2, 0x2, 0x29, 0x66, 0x0, 0xb, 0x4, 0x0, @rand_addr=0x64010102, @broadcast}, "3297e3ba0fa8a2e71bd9fe1a399b5110420b70460c"}}, 0x37)

11m45.756228624s ago: executing program 1 (id=2482):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18010000120000000000000000000000850000006d000000180100002020642500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000280)='contention_end\x00', r0, 0x0, 0x3}, 0x18)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NFC_CMD_GET_TARGET(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000040)={0x14, 0x0, 0x4}, 0x14}}, 0x0)
syz_genetlink_get_family_id$nfc(&(0x7f0000000140), r1)
r2 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000300), r1)
sendmsg$NL802154_CMD_NEW_INTERFACE(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000580)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="0100000000000000eeff110000000a0004007778616e3300000008001500", @ANYRES32, @ANYBLOB="080001"], 0x30}}, 0x0)

11m45.522884643s ago: executing program 1 (id=2484):
syz_mount_image$udf(&(0x7f0000000240), &(0x7f0000000100)='./file1\x00', 0x1004000, &(0x7f0000000480)={[{@gid}, {@undelete}, {@anchor={'anchor', 0x3d, 0x4}}, {@lastblock={'lastblock', 0x3d, 0x4}}, {@uid_forget}, {@umask={'umask', 0x3d, 0x8}}, {@undelete}, {@iocharset={'iocharset', 0x3d, 'utf8'}}, {@uid_forget}, {@utf8}, {@uid}, {@nostrict}, {@session}, {@gid_forget}]}, 0x1, 0xc34, &(0x7f0000001bc0)="$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")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x109041, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000180)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x81105a, 0x0)
mount$bind(&(0x7f0000000880)='./file0/../file0\x00', &(0x7f0000000440)='./file0/file0\x00', 0x0, 0x1adc11, 0x0)
mount$bind(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000000)='./file0/file0\x00', 0x0, 0x887008, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
read$FUSE(r0, &(0x7f0000006b40)={0x2020}, 0x2020)

11m45.364934406s ago: executing program 1 (id=2486):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x101002, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000016000/0x18000)=nil, &(0x7f0000000300)=[@text32={0x20, 0x0}], 0x1, 0x59, 0x0, 0x0)
r3 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x2012, r3, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

11m44.598446842s ago: executing program 1 (id=2490):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x2, 0x4, 0x599, 0x1, 0x0, 0x1}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000001340), &(0x7f0000000900), 0x404, r2, 0x0, 0x1ba8847c99}, 0x38)

11m43.863086643s ago: executing program 45 (id=2490):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x2, 0x4, 0x599, 0x1, 0x0, 0x1}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000001340), &(0x7f0000000900), 0x404, r2, 0x0, 0x1ba8847c99}, 0x38)

11m7.898660095s ago: executing program 4 (id=2819):
r0 = syz_clone(0xa8200780, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
wait4(r0, 0x0, 0x80000000, 0x0)
fchdir(r1)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x800000, 0x0)
r2 = syz_open_procfs(r0, &(0x7f0000000040)='task\x00')
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
fstat(r2, &(0x7f00000029c0))

11m6.942451645s ago: executing program 4 (id=2829):
r0 = socket(0x10, 0x803, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = socket$unix(0x1, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2b, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0x7}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
r4 = socket(0x400000000010, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000ec0)=@newtfilter={0x68, 0x2c, 0xd27, 0x70bd2b, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0xb, 0xb}, {}, {0x7}}, [@filter_kind_options=@f_basic={{0xa}, {0x38, 0x2, [@TCA_BASIC_ACT={0x34, 0x3, [@m_mpls={0x30, 0x1, 0x0, 0x0, {{0x9}, {0x4}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x2, 0x2}}}}]}]}}]}, 0x68}, 0x1, 0x0, 0x0, 0x10}, 0x4)

11m6.744095638s ago: executing program 4 (id=2832):
getpid()
socket$inet_smc(0x2b, 0x1, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, &(0x7f0000000200)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})
socket$inet6_sctp(0xa, 0x5, 0x84)
socket$inet6_sctp(0xa, 0x5, 0x84)
r0 = syz_open_dev$ttys(0xc, 0x2, 0x0)
ioctl$TIOCGWINSZ(r0, 0x5413, &(0x7f0000000000))

11m6.574874002s ago: executing program 4 (id=2835):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x800714, &(0x7f0000000000), 0xff, 0x4a7, &(0x7f0000000280)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000002000)='./file0\x00', 0x110)
mount$bind(&(0x7f0000000100)='.\x00', &(0x7f0000000300)='./file0/../file0\x00', 0x0, 0x2151090, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000000)='./file0/file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
mount$bind(0x0, &(0x7f00000003c0)='./file0/file0\x00', 0x0, 0x80000, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
read$FUSE(r0, &(0x7f0000000280)={0x2020}, 0x2020)

11m6.297102158s ago: executing program 4 (id=2839):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$sock_timeval(r0, 0x1, 0x15, &(0x7f0000000040)={0x0, 0xea60}, 0x10)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000000)=0x400000001, 0x4)
setsockopt$inet6_tcp_int(r0, 0x6, 0x2000000000000022, &(0x7f0000000140)=0x1, 0x4)
connect$inet6(r0, &(0x7f0000000240)={0xa, 0x4e23, 0x6, @remote, 0x3}, 0x1c)
sendmmsg(r0, &(0x7f0000004c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4010)

11m5.035051086s ago: executing program 4 (id=2848):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
rseq(&(0x7f0000000300), 0x20, 0x0, 0x0)
unshare(0x22020600)
inotify_init1(0x0)
syz_usb_connect$uac1(0x69a90eab3db9c902, 0xa4, &(0x7f0000000740)=ANY=[@ANYBLOB="12010002000000406b1d0101400001020301090292"], &(0x7f0000000a80)={0x0, 0x0, 0x0, 0x0})
dup(0xffffffffffffffff)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
rseq(0x0, 0x0, 0x1000000, 0x0)

11m4.638156182s ago: executing program 46 (id=2848):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
rseq(&(0x7f0000000300), 0x20, 0x0, 0x0)
unshare(0x22020600)
inotify_init1(0x0)
syz_usb_connect$uac1(0x69a90eab3db9c902, 0xa4, &(0x7f0000000740)=ANY=[@ANYBLOB="12010002000000406b1d0101400001020301090292"], &(0x7f0000000a80)={0x0, 0x0, 0x0, 0x0})
dup(0xffffffffffffffff)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
rseq(0x0, 0x0, 0x1000000, 0x0)

13.837661734s ago: executing program 8 (id=6057):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = socket$netlink(0x10, 0x3, 0x4)
writev(r4, &(0x7f0000000000)=[{&(0x7f00000001c0)="580000001400add427323b472545b45602117fffffff81000e224e217f000001925aa80020007b00090080007f000001e809000000ff0000f03ac71036000000ffffffffffffffffffe7ee00000000000000000200000000", 0x58}], 0x1)

12.759677915s ago: executing program 8 (id=6064):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$inet(r1, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
recvmsg$unix(r0, &(0x7f0000000000)={0x0, 0x64, 0x0, 0x0, &(0x7f0000000200), 0x100}, 0x40000000)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
r2 = socket$kcm(0x2, 0x5, 0x84)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, &(0x7f00000003c0)=[{}, {0x10000002}]}, 0x90)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
close(r4)
recvmsg$unix(r3, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r5=>0xffffffffffffffff]}}], 0x18}, 0x0)
setsockopt$sock_attach_bpf(r2, 0x84, 0x6e, &(0x7f0000000000)=r5, 0x10)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x2}}, 0x0, 0x1a}, 0x28)
r6 = socket$kcm(0x2, 0x5, 0x84)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000340)='memory.events.local\x00', 0x26e1, 0x0)
setsockopt$sock_attach_bpf(r6, 0x84, 0x77, &(0x7f0000000000)=r7, 0x62)

11.855702492s ago: executing program 8 (id=6066):
openat$fb0(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r0 = syz_open_dev$vim2m(&(0x7f00000001c0), 0xfffffffffffffffb, 0x2)
r1 = syz_open_dev$evdev(&(0x7f0000000080), 0x0, 0x0)
syz_usb_connect$cdc_ecm(0x0, 0x56, 0x0, 0x0)
ioctl$EVIOCRMFF(r1, 0x4004550f, 0x0)
ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f00000000c0)={0x2, 0x1, 0x1})
ioctl$vim2m_VIDIOC_STREAMOFF(r0, 0x40045612, &(0x7f0000000000)=0x1)
ioctl$vim2m_VIDIOC_QBUF(r0, 0xc058560f, &(0x7f0000000200)=@mmap={0x1, 0x1, 0x4, 0x2, 0x6, {}, {0x1, 0x0, 0x5, 0x9, 0x64, 0xe, "7cf93be8"}, 0xfffffff7, 0x1, {}, 0x2})
socket$inet6(0xa, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_io_uring_setup(0x8d2, &(0x7f00000000c0)={0x0, 0x0, 0x3010}, &(0x7f0000000040)=<r3=>0x0, &(0x7f0000000080)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r2, 0x47ba, 0xa25d, 0x0, 0x0, 0x0)

9.846608534s ago: executing program 8 (id=6072):
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
r0 = openat$binderfs_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$BTRFS_IOC_SET_FEATURES(r0, 0x40309439, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="3000000010000100"/20, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=0x0, @ANYBLOB="08001b"], 0x30}}, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$team(&(0x7f00000044c0), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000004700)={'team0\x00', <r5=>0x0})
sendmsg$TEAM_CMD_OPTIONS_SET(r3, &(0x7f0000004bc0)={0x0, 0x0, &(0x7f0000004b80)={&(0x7f00000047c0)=ANY=[@ANYBLOB='`\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="050427bd7000fedbdf250100000008000100", @ANYRES32=r5, @ANYBLOB="4400028040000100240001006d6f6465000000000000000000000000000000000000000000000000000000000500030005000000100004006c6f616462616c616e6365"], 0x60}, 0x1, 0x0, 0x0, 0x4000401}, 0x44084)
syz_usb_connect$cdc_ncm(0x1, 0x0, 0x0, 0x0)
r6 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r6, &(0x7f0000000600)={0x0, 0xfffffffe, &(0x7f0000000080)=[{&(0x7f0000000000)="2e00000010008188040f80ec59acbc0413a1f8480f0000005e140602000000000e000a001000000002800000121f", 0x2e}], 0x1}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000004c00)=@newtfilter={0x24, 0x11, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x74, r5, {}, {}, {0x8, 0x5}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0x8881}, 0x0)

9.602473993s ago: executing program 9 (id=6074):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDSKBENT(r0, 0x4b47, &(0x7f0000000380)={0x0, 0x7f, 0x708})
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x1, 0x803, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB="580000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="8d2206000000ff002800128009000100766c616e00000000180002800c0002001f0000001f000000060001000100000008000500", @ANYRES32=r3, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r3], 0x58}, 0x1, 0x0, 0x0, 0x600}, 0x0)
r4 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r4, 0x29, 0x2a, &(0x7f0000000080)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @private1, 0xfffffffd}}}, 0x108)
r5 = socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$SIOCSIFMTU(r5, 0x8922, &(0x7f0000000440)={'syz_tun\x00', 0x101})
setsockopt$inet6_group_source_req(r4, 0x29, 0x2d, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @private2}}}, 0x108)
statx(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x800, 0x4, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, <r6=>0x0})
setuid(r6)

7.917829697s ago: executing program 9 (id=6080):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f00000017c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @empty, @multicast1}}}], 0x20}}], 0x1, 0x0)
r0 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r0, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0xc)
r1 = socket$netlink(0x10, 0x3, 0x0)
writev(r1, &(0x7f00000003c0)=[{&(0x7f0000000180)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1)
writev(r1, &(0x7f0000000300)=[{&(0x7f00000001c0)="390000001300034700bb5be1c3e4feff06000000010000004500000025000000190004000400ad000d00000000000006040000000000f93132", 0x39}], 0x1)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x28}}, 0x0)
r2 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r2, 0x0, 0x23, &(0x7f0000000080)={@multicast2, @loopback}, 0xc)
setsockopt$inet_msfilter(r2, 0x0, 0x29, &(0x7f0000000000)=ANY=[@ANYBLOB="e00000027fa80a0101"], 0x57)
setsockopt$inet_mreqsrc(r0, 0x0, 0x24, &(0x7f0000000440)={@multicast2, @loopback, @empty}, 0xc)
setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x2a, &(0x7f0000000580)={0x1, {{0x2, 0x4e24, @multicast2}}}, 0x88)

7.834007322s ago: executing program 9 (id=6081):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000001c0)={0x0, 0x0})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, 0x0, 0x0)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_open_dev$vim2m(0x0, 0x1, 0x2)
bpf$OBJ_GET_PROG(0x7, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20008014}, 0x4)
recvmsg$can_raw(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000009c0)=[{&(0x7f00000003c0)=""/15, 0xf}, {0x0}, {0x0}, {&(0x7f00000008c0)=""/235, 0xeb}], 0x4, &(0x7f0000000280)=""/7, 0x7}, 0x2040)
sched_setattr(0x0, 0x0, 0x0)
r2 = syz_open_dev$dri(&(0x7f0000000000), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB(r2, 0xc01c64ae, &(0x7f0000000100)={0x0, 0x4, 0x9, 0x3, 0x8, 0xa, 0xfffffffc})
unshare(0x40000080)

7.171492508s ago: executing program 8 (id=6083):
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000bc0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000640)=@newqdisc={0x58, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xe}, {0xffff, 0xffff}, {0x0, 0x2}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x2c, 0x2, [@TCA_TBF_PARMS={0x28, 0x1, {{0x6, 0x0, 0xc97f, 0x8, 0x0, 0x10000}, {0x9, 0x2, 0x71b, 0x7, 0x200, 0xfffffff8}, 0xc, 0x7fffffff, 0x21dc}}]}}]}, 0x58}}, 0x0)
r5 = socket$kcm(0x11, 0x3, 0x0)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r6)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$SIOCSIFHWADDR(r6, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$kcm(r5, &(0x7f00000000c0)={&(0x7f0000000380)=@xdp={0x2c, 0x7, r7, 0x3e}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000180)='\'', 0x1}], 0x1}, 0x4)

6.284981008s ago: executing program 8 (id=6088):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$pppl2tp(0x18, 0x1, 0x1)
r2 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r2, &(0x7f0000000200)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r2, 0x10f, 0x87, &(0x7f0000000000)={0x42, 0x1}, 0x10)
r3 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r3, &(0x7f0000000180)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x1, 0x5}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r3, 0x10f, 0x87, &(0x7f0000000240)={0x42, 0x1}, 0x10)
bind$tipc(r2, 0x0, 0x0)
bind$tipc(r2, 0x0, 0x0)

6.030167822s ago: executing program 0 (id=6090):
sendmsg$NLBL_MGMT_C_PROTOCOLS(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16, @ANYBLOB="020026bd7000fddbdf25070000000800020004000000140006002001000000000000000000000000000206000b002a000000080004000000000008000c0002000000060001002900000008000800ac1414aa"], 0x6c}, 0x1, 0x0, 0x0, 0x10}, 0x40090)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e9"], 0x0)
write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000499000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f320f300f20e06635800000000f22e02b6aa6c8", 0x4a}], 0x1, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x18, 0x0, 0x0, &(0x7f0000000000)='GPL\x00', 0x2a7, 0x0, 0x0, 0x40f00, 0x24, '\x00', 0x0, 0x0, r2, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3ff}, 0x94)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

5.804009974s ago: executing program 0 (id=6091):
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r0 = syz_open_dev$MSR(&(0x7f0000000340), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
openat$sequencer(0xffffffffffffff9c, 0x0, 0x80200, 0x0)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-twofish-3way\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r2 = accept4(r1, 0x0, 0x0, 0x80800)
sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000540)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0x10}, {&(0x7f0000000380)="ebe3a0e961837b796cfd1647e2080000000000000080b3720022205e81f4a7f71c197baae1efd7e8004a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0x4d}, {&(0x7f00000006c0)="e8710e444d50a969ff678371e3214aeee71dee3819271482a4975a52c18b9b8b4db3945d1032005eabe97b4dc33a47d3a158da98255ccdd4c15eb6c9857345444d8456d30026b433a2efdd5b00186f35cdcdb93a4722bf356a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e8927d2a8103ef2f4b93766b756b66f74f46cf801704d27a8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511ce678c0bb8e26d7b48241847bf9e343ef4e55d45e2a0000000000000000000", 0xfffffe7f}, {&(0x7f0000000400)="04c6a9c756754e10ed8d88c06d7a674db97cd0e21437530a3945ac896fa7f8e368f87de990e40a896805e49ce1e13103d82fffe82237f587e63d95e01ef451eaba2dd01c56e7f23c1fcccbea54dae8e295f2e533e4a34175026a9964eebc1aaae05e44a19a27bee2f591abe2f456448754670a7c3e2e4b47a71bc7"}, {&(0x7f0000000300)}], 0x3}], 0x1, 0x40800)
recvmsg(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)

5.299037699s ago: executing program 7 (id=6092):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000300)=@abs={0x0, 0x0, 0xb}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r3, &(0x7f0000000000)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2c}}, 0x10)
connect$inet(r3, &(0x7f0000000280)={0x2, 0x4, @multicast1}, 0x10)
sendmmsg$inet(r3, &(0x7f0000004540)=[{{&(0x7f0000000040)={0x2, 0x4e22, @multicast1}, 0x7e1f, 0x0}, 0xee0000b0}, {{0x0, 0x0, &(0x7f00000012c0)=[{&(0x7f0000001100)="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", 0xc3}, {&(0x7f0000000d80)="7d68e6de85f9b0cbc9d710267f321ec64eab043ecad9af7e01e9463218ec45924a99867163e468d36a682fadd749caa325e685d75559a87139e02fae7271be8f55671cfd32a09896278d1941370174720838039d0989bc3394b8a4c4f4a30f0496be313d6d60fe47966c634a3ee1f659e8ef310647725bda0130d5de5028220a4cf5fc808a75694738ee26cb21302b4bba4265b845a5d5dce706d9820c6936b122f9658446d74a9016b94424971dd443a6907eb5c73b6b200e92b23f2c36a214729b0bc231511e4c", 0xc8}, {&(0x7f0000000380)="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", 0x9fd}], 0x3}}, {{0x0, 0x0, &(0x7f00000017c0)=[{&(0x7f0000001700)="a6", 0x1}], 0x300}}], 0x3, 0x0)

4.635556683s ago: executing program 0 (id=6094):
socket$inet_mptcp(0x2, 0x1, 0x106)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="140000003a0001032dbd7000fcffffff05000000230a15eb7bd4cf004121"], 0x14}, 0x1, 0x0, 0x0, 0x448d3}, 0x0)

4.586468629s ago: executing program 5 (id=6095):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f05ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = syz_io_uring_setup(0x117, &(0x7f0000000100)={0x0, 0x4, 0x80, 0x2000000, 0x3a2}, &(0x7f00000001c0)=<r4=>0x0, &(0x7f0000000180)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffc00, 0x0, 0x4)
syz_io_uring_submit(r4, r5, &(0x7f0000000040)=@IORING_OP_RECVMSG={0xa, 0x58, 0xf06c71492a5acdc4, r2, 0x0, 0x0, 0x0, 0x2042, 0x1, {0x1}})
io_uring_enter(r3, 0x47f6, 0x80ffff, 0x0, 0x0, 0x0)

4.548795413s ago: executing program 9 (id=6096):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x1000000)
syz_io_uring_submit(0x0, 0x0, 0x0)
socket$key(0xf, 0x3, 0x2)
bind$inet(r0, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)
connect$inet(r0, &(0x7f0000000480)={0x2, 0x4e23, @multicast2}, 0x10)
setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f00000002c0)={{{@in=@multicast2, @in6=@mcast1, 0x4e20, 0x4, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x3, 0xfffffffffffffffe}, {0x0, 0x0, 0xfffffffffffffffc, 0xff}, 0x0, 0x0, 0x1}, {{@in=@dev={0xac, 0x14, 0x14, 0x3c}, 0x0, 0x32}, 0x0, @in=@private=0xa010100, 0x0, 0x2, 0x0, 0xb7, 0xfffffffe, 0xffffff7e}}, 0xe8)
sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x1c)

4.079672403s ago: executing program 7 (id=6097):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000480)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, 0x0, 0x0)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000200)='/proc/bus/input/devices\x00', 0x0, 0x0)
r3 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r2, &(0x7f00000000c0)={0x30000000})

3.525937933s ago: executing program 5 (id=6098):
r0 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r0, &(0x7f0000000040)={0x10, 0x0, 0x25dfdbfb, 0x2ffffffff}, 0xc)
r1 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r1, &(0x7f0000000180)={0x10, 0x0, 0x25dfdbfb, 0x2ffffffff}, 0xc)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(0x0, r2)
read$msr(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000880)={0x18, 0x0, 0x0, 0x0}, 0x94)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(0xffffffffffffffff, 0x40a85323, 0x0)

3.390868524s ago: executing program 0 (id=6099):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000080), 0x20400, 0x0)
ioctl$RTC_PIE_ON(r3, 0x7005)
prctl$PR_SET_MM_MAP(0x3c, 0xe, 0x0, 0x0)
ioctl$RTC_IRQP_SET(r3, 0x4008700c, 0x2ae)

2.505111484s ago: executing program 0 (id=6100):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
io_uring_setup(0x4f06, 0x0)
r0 = io_uring_setup(0x5ea4, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000002c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
syz_emit_ethernet(0x82, &(0x7f0000000040)=ANY=[@ANYBLOB="0180c2"], 0x0)
sendmsg$NL80211_CMD_FRAME(r1, &(0x7f0000000c00)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000000)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000000ffdbff253b00000008000300", @ANYRES32=r2, @ANYBLOB="2e003300d0000009ffffffffffff080211000000505050505050200000042503"], 0x4c}, 0x1, 0x0, 0x0, 0x68804}, 0x24000846)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_io_uring_setup(0x1e1e, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, 0x0, 0x0, 0x4)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c643c, 0x0)

2.306206731s ago: executing program 0 (id=6101):
r0 = socket$inet(0x2, 0x3, 0x6)
setsockopt$SO_RDS_MSG_RXPATH_LATENCY(0xffffffffffffffff, 0x114, 0xa, 0x0, 0x4)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000001040)={'gre0\x00', &(0x7f0000000380)={'syztnl2\x00', 0x0, 0x2100, 0x700, 0x10000, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x60, 0x0, 0x0, 0x2f, 0x0, @initdev={0xac, 0x1e, 0x1, 0x0}, @remote}}}})
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010600000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff1b000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}})
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
bind$xdp(0xffffffffffffffff, &(0x7f0000000100)={0x2c, 0x2}, 0x10)
sendmsg$NFT_BATCH(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000001000040000000000000000000000000a20000000000a01020000000000000000010000000900010073797a300000000058000000160a01000000000000000000010000000900010073797a30000000000900020073797a30000000002c0003800800014000000000080002400000000010000380140001007465616d3000000000000000000000005c000000160a0101000b000000000000010000000900020073797a30000000000900010073797a3000000000300003802c00038014"], 0xfc}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a01020000000000100000020000000900020073797a310000000008000440000000000900010073797a3000000000080003400000000a14000000110001"], 0x64}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000140)={0x0, 0x35, &(0x7f0000000480)={&(0x7f0000000380)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a34000000140affffffff00000000000002000009080003400000000a0900010073797a30000000000c000640000000000000000214000000020a010100000000000000000000000a14000000110001"], 0x70}}, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x40ead000)
madvise(&(0x7f0000130000/0xd000)=nil, 0xd000, 0x66)

2.305132065s ago: executing program 5 (id=6111):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x1)
r3 = gettid()
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000003900)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd120000000000008500000006000000b70000000000000095000000000000003faf4f1e7f2aa3d9b18ed81c0c869b51ec6c0af4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f36c70d0f13905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64f751a0f241b07080008002d75593a286cecc93e64c227c95aa0b784625704f07a72c234664c0af9360a1f7a5e6b607130c89f18c0c1089d8b853289e01aa27ae8b09e00e79ab20b0b8e1148f49faf2ad0000000000000006fa03c6468972089b302d7bf6023cdcedb5e0125ebbc08dee510cb2364149215108333719acd97cfa107d40224edc5465a932b77e74e802a0d42bc6099ad2300000080006ef6c1ff0900000000000010c63a949e8b7955394ffa82b8e942c89112f4ab87b1bfeda7be586602d985430cea0162ab3fcf4591c926abfb0767192302000000b0eea24492a660583eecb42cbcd3de3a83209da17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c95c25a573dc2edcaea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b5b7632f32030916f89c6dad7603f2ba2a790d62d6faec2fed44da4928b30142ba11de6c5d50b83bae613402216b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0eb97fca585ec6bf5af51d564beb6d952aab9c70764b0a8a7583c90b3433b809bdb9fbd48bc873495cbff8a326eea31ae4e0f7505ebf6c9d13330ca005ace1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223a0eb4fa39f6b5c02e6d6d90756ff57902a8f57000000009700cf0b4b8bc2294133000000000000000000030000000000000000000000000010008bc0d9559711e6e8861c46495ba585a4b2d02edc3e28dd271c896249ed85b980680b00002b435ac15fc0288d9b2a169cdcacc413038dafb7a2c8cb482bac0ac502d9ba96ffffff7f0000100000000000007d5ad897ef3b7cda42013d53046da21b40216e14ba2d6ad5656bfff17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccff729433282830689da6b53b263339863297771429d120000003341bf4abacac95900fca0493cf29b33dcc9ffffffffffffffd39fec2271ff01589646efd1cf870cd7bb2366fde41f94290c2a5ff870ce41fd3467decb05cfd9fcb32c8ed1dbd9d10a64c1083d5e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78100788f11f76161d46ea3abe0fa4d30dc94ef241875f3b4ce0232fcea69c271d7fa29822aea68a660e717a04becff0f719197724f4fce1093b62d7e8c7123d8ec571be54c72d978cf906df0042e36acd37d7f9e119f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2ae582786105c7df8be5877050c91301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c4d75cf2458e3546c1c776da64fb5abee0acfd235f2f4632c9062ece84c99a061887a20639b41c8c12ee86c50804042b3fb5aac518a75f9e7d7101d5e186c489b3a06fb99e0aa7f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af40326993947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f54c2d3335457acf37331766e472391e358c3b377327ac9ecc34f24c9ae153ec60ac0694dc55bff9f5f45f90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e66964ae09bb6d163118e4cbe024fd4500f8ff0700000000cc9d8046c216c1f895778cb25122a2a9f9b444aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99b355b72d538ba4958ea8e4aa37094191e10096e7e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250ddc8674152f94e3a409e2a3bce109b60000000000000000d6d5210d7503000000a87a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137abf9a404abde7750898b1bd627e873f8703be8672d70d1ab57075228a9f46ed9bd1f08fb8191bbab2dc51de3a61f0868afc4294859323e6c257a45319f18101288d139bd3da20fed05a8fe64680b0a3fc22dd70400000000946912d6c98cd1a9fbe1e7d58c08acaf30235b918a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ced69993e9960ff5f76015e6009556237badf4e7965bbe2777e808fcba821aa8e8c5c39609ff854352cb4900000000000000000000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66418d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466a53f1c96e0d4b3bc19faa5449209b083dbd334b47f067bbab40743b2a42010082008df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c3431ee97471c7868dcda7eaa69eb7f7f80572fdd11bb1d0d1280fbc22bf73468788df51710d7d31c632fc5ed1762eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331945ecefa26b8471d42645288d7226bbd9ccd628ab84875f2c50ba891cea592b0430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71f96756ea5cce7daac4be290159f6bcd75f0dda9de5532e71ae9e48b0ed0254a83100000000f6fbb869604d51a36a54c832e45b2569dc0d90b075225fde44c4e0973171ad47d6b0fdf9743af932cd6db49a47613808bad959710300000000000000832d0a45fa4242e24c7e800003c9e8095e02985f28e678f66422436f949e2ab8f162d7e3f855e378f4a1f40b0c6fb2d4b205a800b6d713acebc5b014e61a543a5a194f9ac18d76b5440e3b1a569e7397f6cafa86966d7ba19e720413267a6ccea9c439671d2c680f2753ca184eeeb843450368acb4383a01d25eb3d1e23e0f2645d1cdfa9fa410632f95a5f622f851c66ee7e30393cd7a4d67ff2a49c4f93c0984b5c2d4523497e4d64f95f08493564a1df87111c9bf3194fef97dcecc467ace45feeb685c5870d05f88a0f463db88d377442e1349acaf766218b54a9d624778e1c4e064c98e494198276eb2df7766411bef0ebb5000000000006065d635b0b7a00ee767221d8af9753387e0cd8d718f54a29df6eba3bd4c440e6e2172e3fcc01b8babb757b5c59217b80d0db3ba582814a604e4ef7a803e9ca7c85b35c9b93a9e0885e238b44ae1c2e64cce3b27083b8246829e64056000302bffff15405bd5f2eba20000000000000000000000000000000000009a9823fd8fbc5aa16509945ed032b48ea12d8e0588dc52702e4084913a06d468d0928bad76d697e1f85ab030e788d38788ee5b5428d4a971cc97db9fd231088e570735ce129e7e77fc2777692664a1488fd8d6dff4dad618fd54f529d4555c6507009ee69dd1bc55258789b24052137e9637f3efbab71720f88c3c44b3b7486f979e8a3174b531f573fe0e5239c000be2733c49546f6e8a9175ec6f14dbf72cac91643b2fd99c29eca28a3c2e60d5e5b8795fae16a7c3ea57e728eca35eaf0155a39f97580e079175426c088a0208040982a0000000000000000000000000051ceaaf0159fe61f2eade7603d0a7a56fb09cd119ac06adb6597155ae47846892bb423c024d8cbe9240b71ec6dc2124d3a19e2d714b273d95d1d3aa737cb04a33615ff2a730e51067d5d675d7122361c37c61a43b5afd865b60d4cae891b73220f17d25985a7f76834995e53a93a1c7b9eef267df691ca983a0b15bda7f6c5c1ca7aa50261a3089a1ebf0734c9b07e8951ff023263ad5aed8cfb49b49e128c697724c057d22c5df5aef27ce3db11d5ad5527d149d076e1a87e2df27c0cb8a67ad026bf953e88f10447e125c2c0f1aebee1f3390a9e3ddad4e2a6e0f6e4569fdefa19e870e04acf9493b963f98e23cfc665e4f465fa3f801e1957c399e45f61d3459b1c606204368bb931345af2823c487d2fd99db6ea6e008e7ffa06ca861551189d155bd077a79fe2c7e961352e56824f727d21d41eae78bfec4a2d7a7edbc8ef958c5ea599f7c25bf71c2340558aa12fdd24a88aaad5921aee7dae6a2f3009d9cb43ab4898d0f0aa565431b6abe585d75db04d1c9ba0b9de4ae8b0d3132bc6810cc9a693979f55174a72e1df9fdef35bc470f9e6e591982757f45c52c645d891bf63bb21fb66926ebe1a8525611fc3e8bb8795c36dc2a86b5ab46ff33cc74f61751b2dae92676db85c8d0c721b7ea4544bf51c95c86fcac1f434d09d1ee4928aafe23de66fed972e0dddfb33f64e48701b049239e7f552d816441d11c4c2647c014462344359198d97c4b6e9ed31ca18987b64de079b2bed641e8a92f13ca70844c65cb423d01950b0ebf44bd28e09c05d9ae5dd689fb880fb18d042219f5ac60c3a03b085abf3e8e3efc842a8d328733461f04c99607061c65ed14c61322a5ac2d371a95b8ad867ec92d13a4fa4ae033a09673866cd77f4bcdaaa05207166b19a8758d8855400d8c6a7242dc207251e8797eca24ea4f487663e60f2f5e1f1424958fd148f846830e88a42d93e1fe9c0b4a4a268921738938aa9f3cb3811ac87c54c8ebc8bcfb4613cc3a997ff1579edbd4ade8020e3ad001b072b1a751b588ac4639f35a58e00a50c0270608c7a7f10132b1c25b9ea81232fbef665f6212f875b2a0000000000000000000000000000cf7b6c4ba9bec153d6834bfef080df374703a8ff56a63ec1fe5f2e05a79e3cace7283dd68d41e94420c325fe4dae144fde5ec25a87d625cab20753a77b323fa3783c8b675859b9012647885a242adfee2fe812ecbe5191e0a15142f7349e7627cc39d724e2e34e7a24154f26ae3125b36d0504965295d0453902ac7079b11a3a1e655e482331e3dc35b2e7e4e3ea99064fe5b9c8ae0ca3e5fd653f3286a99d81ce4eba765c38d097391ad4babac38ce5b4344e24a361cd54e5"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x2a}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r4}, 0x10)
r5 = syz_clone(0x200, 0x0, 0x0, 0x0, 0x0, 0x0)
kcmp(r3, r5, 0x5, 0xffffffffffffffff, 0xffffffffffffffff)

1.68675146s ago: executing program 7 (id=6102):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000040)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffc000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffc}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0)
futex(&(0x7f000000cffc), 0x80000000000b, 0x0, 0x0, &(0x7f0000048000)=0x2000000, 0x300)
futex(&(0x7f000000cffc), 0xc, 0x1, 0x0, &(0x7f0000048000)=0x1, 0x0)

1.088936441s ago: executing program 5 (id=6103):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x14, &(0x7f0000002240)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffc01}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0xb5111132c32e4187}}, @printk={@ld, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x101}, {0x85, 0x0, 0x0, 0x2d}}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000980)={&(0x7f0000000940)='tlb_flush\x00', r1}, 0x10)
socket$inet_udp(0x2, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
ioctl$KDFONTOP_GET(0xffffffffffffffff, 0x4b72, &(0x7f0000000080)={0x1, 0x0, 0x13, 0x2, 0x125, 0x0})
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x15)
kexec_load(0xff0e, 0x0, 0x0, 0x0)

999.327607ms ago: executing program 9 (id=6104):
syz_open_procfs(0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x3d, &(0x7f0000000040)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffffdbd}]})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = syz_open_procfs(0x0, &(0x7f00000003c0)='net/mcfilter6\x00')
preadv(r3, &(0x7f0000000340)=[{&(0x7f0000000000)=""/135, 0x87}], 0x1, 0x5d, 0x40000003)

695.474686ms ago: executing program 7 (id=6105):
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff7000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ff8000/0x3000)=nil, 0x0}, 0x68)
io_uring_setup(0x24, &(0x7f0000000040)={0x0, 0x2234, 0x1c450, 0x2, 0x8000b0})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
fcntl$lock(r2, 0x24, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x8000000000000001, 0xffffffffffffffff})
write$binfmt_script(r2, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x1, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x64, 0x0, 0x0)
sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

602.733303ms ago: executing program 5 (id=6106):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=@ipv6_newnexthop={0x1c, 0x68, 0x5fb9a818fb7378e9, 0x0, 0x0, {}, [@NHA_BLACKHOLE={0x4}]}, 0x1c}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x34, 0x10, 0x437, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x8800}, [@IFLA_IFNAME={0x14, 0x3, 'tunl0\x00'}]}, 0x34}, 0x1, 0x0, 0x0, 0x4008000}, 0x40020)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000300)=@newnexthop={0x24, 0x68, 0x1, 0x70bd27, 0x7ffffffc, {}, [@NHA_GROUP={0xc, 0x2, [{0x1, 0x4}]}]}, 0x24}}, 0x4000)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000380)=ANY=[@ANYBLOB="300000001800dd8d00000000000000000a000000000000060000000008001e0002"], 0x30}}, 0x4090)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x38}, 0x1, 0x300}, 0x0)
r3 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)=ANY=[], 0x24}}, 0x0)
sendmmsg$alg(r3, &(0x7f0000000140), 0x4924b68, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000e40), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_ENABLE(r4, &(0x7f00000010c0)={0x0, 0x0, &(0x7f0000001080)={&(0x7f0000000000)={0x6c, r5, 0x1, 0x0, 0x0, {}, [@TIPC_NLA_BEARER={0x58, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x0, 0x0, @loopback}}, {0x20, 0x2, @in6={0xa, 0x0, 0x0, @mcast2}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz0\x00'}]}]}, 0x6c}}, 0x0)

291.475167ms ago: executing program 7 (id=6107):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x2)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r1)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x10, 0x803, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={0x0, 0x28}}, 0x0)
getsockname$packet(r4, &(0x7f0000000140)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000000)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="340000001000390400"/20, @ANYRES32=r5, @ANYBLOB="8106010000000200140012800b000100627269646765"], 0x34}}, 0x20044002)
r6 = socket(0x1, 0x803, 0x0)
r7 = socket(0x10, 0x803, 0x0)
getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000280)=0x14)
sendmsg$nl_route(r7, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB="340000001400b59500000000000000000a000000", @ANYRES32=r8, @ANYBLOB="1400020000ff"], 0x34}}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11ffffffff000000", @ANYRES32=r2, @ANYBLOB="01"], 0x3c}}, 0x0)

140.92525ms ago: executing program 5 (id=6108):
r0 = socket$inet6(0xa, 0x5, 0x0)
connect$inet6(r0, 0x0, 0x0)
r1 = socket$inet6(0xa, 0x5, 0x0)
bind$inet6(r1, 0x0, 0x0)
accept$ax25(0xffffffffffffffff, 0x0, &(0x7f0000000100))
socket(0x10, 0x3, 0x0)
r2 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r2, 0x29, 0x2e, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}, 0x20000}}, {{0xa, 0x0, 0x40000, @dev={0xfe, 0x80, '\x00', 0x26}}}}, 0x108)
setsockopt$inet6_group_source_req(r2, 0x29, 0x2e, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @loopback}}}, 0x108)
close(r2)
r3 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r3, 0x29, 0x2e, &(0x7f0000000080)={0x0, {{0xa, 0x4, 0x0, @mcast1={0xff, 0x7}, 0x8a4}}, {{0xa, 0x4e20, 0xfe, @remote}}}, 0x108)
r4 = socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$SIOCSIFMTU(r4, 0x8922, &(0x7f0000000440)={'syz_tun\x00', 0x101})

80.763061ms ago: executing program 7 (id=6109):
getdents(0xffffffffffffffff, &(0x7f0000000040)=""/44, 0x2c)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(0xffffffffffffffff, 0x4018620d, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
r2 = syz_io_uring_setup(0x111, &(0x7f0000000140)={0x0, 0x0, 0x800, 0x3, 0x1}, &(0x7f0000000340)=<r3=>0x0, &(0x7f0000000000)=<r4=>0x0)
r5 = landlock_create_ruleset(&(0x7f00000000c0)={0x501b, 0x2, 0x1}, 0x18, 0x0)
landlock_restrict_self(r5, 0x5)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f0000000300)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, 0xffffffffffffff9c, 0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x80})
io_uring_enter(r2, 0x3516, 0x2000, 0x0, 0x0, 0xfffffdcf)

0s ago: executing program 9 (id=6110):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x9)
sendmsg$NFT_BATCH(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={{0x14, 0x3ec}, [], {0x14, 0x3f2, 0x1, 0x0, 0x0, {0xa}}}, 0x28}}, 0x4000000)

kernel console output (not intermixed with test programs):

2][T14020] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  430.151950][T14226] lo: left allmulticast mode
[  430.157509][T14020] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  430.295672][T14020] 8021q: adding VLAN 0 to HW filter on device bond0
[  430.305993][T14240] netlink: 96 bytes leftover after parsing attributes in process `syz.9.2929'.
[  430.358478][T14020] 8021q: adding VLAN 0 to HW filter on device team0
[  430.381875][T13818] bridge0: port 1(bridge_slave_0) entered blocking state
[  430.389215][T13818] bridge0: port 1(bridge_slave_0) entered forwarding state
[  430.417143][T14244] netlink: 104 bytes leftover after parsing attributes in process `syz.5.2931'.
[  430.432355][T13272] bridge0: port 2(bridge_slave_1) entered blocking state
[  430.439564][T13272] bridge0: port 2(bridge_slave_1) entered forwarding state
[  431.543817][T14020] 8021q: adding VLAN 0 to HW filter on device batadv0
[  431.767691][T14020] veth0_vlan: entered promiscuous mode
[  432.515344][T14020] veth1_vlan: entered promiscuous mode
[  432.770796][T14020] veth0_macvtap: entered promiscuous mode
[  432.794612][T14020] veth1_macvtap: entered promiscuous mode
[  432.988362][T14020] batman_adv: batadv0: Interface activated: batadv_slave_0
[  433.028840][T14020] batman_adv: batadv0: Interface activated: batadv_slave_1
[  433.170389][T13812] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  433.189202][T13812] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  433.209638][T13812] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  433.234577][T13812] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  433.576310][T13264] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  433.587930][T14305] overlayfs: failed to clone upperpath
[  433.621171][T13264] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  433.696534][T13264] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  433.706402][T13264] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  434.150574][T14331] loop0: detected capacity change from 0 to 4096
[  434.186753][T14326] bridge1: entered promiscuous mode
[  434.192246][T14326] bridge1: entered allmulticast mode
[  435.678475][T14372] ref_ctr going negative. vaddr: 0x200000ffd000, curr val: -26339, delta: 1
[  435.691904][T14372] ref_ctr increment failed for inode: 0x27 offset: 0x5 ref_ctr_offset: 0x1000 of mm: 0xffff88803124b100
[  436.205423][T14400] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2984'.
[  436.683741][T14417] batadv1: entered promiscuous mode
[  437.006346][T14426] loop0: detected capacity change from 0 to 128
[  437.027588][T14426] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256
[  437.090340][T14426] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  437.355857][T14443] overlayfs: failed to clone upperpath
[  437.475949][T14450] overlayfs: failed to clone upperpath
[  437.603578][ T5912] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[  437.903365][ T5912] usb 1-1: config index 0 descriptor too short (expected 23569, got 27)
[  437.919679][ T5912] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  437.930837][ T5912] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  437.946217][ T5912] usb 1-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  437.967376][ T5912] usb 1-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  437.989513][ T5912] usb 1-1: Manufacturer: syz
[  438.009211][ T5912] usb 1-1: config 0 descriptor??
[  438.072704][ T5912] igorplugusb 1-1:0.0: incorrect number of endpoints
[  438.284101][T12729] usb 1-1: USB disconnect, device number 4
[  438.704873][T14482] overlayfs: failed to clone upperpath
[  440.167779][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  440.174348][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  440.240065][T14526] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3035'.
[  441.231131][T14554] program syz.0.3045 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  442.942673][T14592] vlan2: entered allmulticast mode
[  442.947938][T14592] veth0_to_bond: entered allmulticast mode
[  443.154340][ T6985] IPVS: starting estimator thread 0...
[  443.271118][T14602] IPVS: using max 35 ests per chain, 84000 per kthread
[  443.964083][T14612] delete_channel: no stack
[  443.998625][T14616] overlayfs: failed to clone upperpath
[  444.771753][T14630] loop0: detected capacity change from 0 to 2048
[  444.843291][T14630] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  445.088445][T14632] netdevsim netdevsim7 netdevsim0: entered promiscuous mode
[  445.174276][T14632] macsec1: entered promiscuous mode
[  445.238026][T14632] macsec1: entered allmulticast mode
[  445.282458][T14632] netdevsim netdevsim7 netdevsim0: entered allmulticast mode
[  445.321959][T14632] netdevsim netdevsim7 netdevsim0: left allmulticast mode
[  445.373700][T14632] netdevsim netdevsim7 netdevsim0: left promiscuous mode
[  445.919196][T14654] netlink: 'syz.9.3083': attribute type 12 has an invalid length.
[  445.931594][T14653] netlink: 'syz.8.3084': attribute type 1 has an invalid length.
[  446.058477][T14653] 8021q: adding VLAN 0 to HW filter on device bond1
[  446.376405][T14657] bond1: (slave veth3): Enslaving as an active interface with a down link
[  446.494289][T14653] bond1: (slave dummy0): making interface the new active one
[  446.752783][T14653] dummy0: entered promiscuous mode
[  446.766606][T14653] bond1: (slave dummy0): Enslaving as an active interface with an up link
[  448.901537][T14694] netdevsim netdevsim9 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  448.914024][T14694] netdevsim netdevsim9 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  449.063629][T14694] netdevsim netdevsim9 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  449.074054][T14694] netdevsim netdevsim9 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  449.184679][T14694] netdevsim netdevsim9 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  449.196983][T14694] netdevsim netdevsim9 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  449.436747][T14694] netdevsim netdevsim9 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  449.465635][T14694] netdevsim netdevsim9 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  450.098199][ T6894] netdevsim netdevsim9 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  450.114021][ T6894] netdevsim netdevsim9 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  450.167812][ T6894] netdevsim netdevsim9 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  450.186368][ T6894] netdevsim netdevsim9 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  450.254417][ T2973] netdevsim netdevsim9 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  450.263053][ T2973] netdevsim netdevsim9 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  450.324113][ T2973] netdevsim netdevsim9 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  450.373791][ T2973] netdevsim netdevsim9 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  450.863756][T14719] bridge0: port 3(syz_tun) entered blocking state
[  450.870542][T14719] bridge0: port 3(syz_tun) entered disabled state
[  450.928256][T14719] syz_tun: entered allmulticast mode
[  450.942412][T14722] netlink: 'syz.7.3108': attribute type 4 has an invalid length.
[  450.987164][T14719] syz_tun: entered promiscuous mode
[  450.997674][T14725] netlink: 'syz.7.3108': attribute type 4 has an invalid length.
[  451.831924][T14752] netlink: 'syz.9.3117': attribute type 1 has an invalid length.
[  452.039034][T14752] 8021q: adding VLAN 0 to HW filter on device bond1
[  452.613014][T14758] bond1: (slave geneve2): making interface the new active one
[  452.639338][T14758] bond1: (slave geneve2): Enslaving as an active interface with an up link
[  456.488071][   T30] audit: type=1804 audit(1765254303.183:212): pid=14839 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.3148" name="file0" dev="tmpfs" ino=3735 res=1 errno=0
[  457.677014][T14869] bridge0: port 3(syz_tun) entered blocking state
[  457.683710][T14869] bridge0: port 3(syz_tun) entered forwarding state
[  457.736350][T14868] gtp0: entered promiscuous mode
[  457.755468][T14868] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3160'.
[  457.969860][T14879] netlink: 44 bytes leftover after parsing attributes in process `syz.5.3164'.
[  458.478338][T14893] overlayfs: failed to clone upperpath
[  458.543605][ T2973] dummy0: left promiscuous mode
[  459.176268][   T30] audit: type=1326 audit(1765254305.873:213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14889 comm="syz.7.3166" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f9a1fb8f749 code=0x0
[  459.823219][T14927] No control pipe specified
[  459.938231][T14930] overlayfs: failed to clone upperpath
[  460.037556][T14941] netlink: 28 bytes leftover after parsing attributes in process `syz.9.3187'.
[  460.047564][T14941] netlink: 28 bytes leftover after parsing attributes in process `syz.9.3187'.
[  461.583144][T14969] wg2: entered promiscuous mode
[  461.590727][T14977] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3201'.
[  461.599945][T14969] wg2: entered allmulticast mode
[  462.938694][T15024] netdevsim netdevsim5 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  462.953034][T15024] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  463.249687][T15024] netdevsim netdevsim5 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  463.329424][T15024] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  463.495287][T15024] netdevsim netdevsim5 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  463.529232][T15024] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  463.703793][T15024] netdevsim netdevsim5 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  463.741169][T15024] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  464.209645][ T6894] netdevsim netdevsim5 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  464.223391][ T6894] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  464.302655][ T6894] netdevsim netdevsim5 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  464.331783][ T6894] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  464.368904][ T6894] netdevsim netdevsim5 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  464.398886][ T6894] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  464.421586][ T6894] netdevsim netdevsim5 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  464.445201][ T6894] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  464.663689][T15052] netlink: 'syz.7.3229': attribute type 12 has an invalid length.
[  469.032071][T15148] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3265'.
[  469.182112][T15157] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3267'.
[  469.223852][T15157] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3267'.
[  470.227870][   T30] audit: type=1804 audit(1765254316.923:214): pid=15166 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.3271" name="file0" dev="tmpfs" ino=333 res=1 errno=0
[  470.490866][T15174] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  472.663401][T15207] dvmrp0: entered allmulticast mode
[  473.194183][   T30] audit: type=1804 audit(1765254319.893:215): pid=15216 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.8.3291" name="file0" dev="tmpfs" ino=3660 res=1 errno=0
[  473.772541][T15222] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3293'.
[  475.124404][T15261] netlink: 'syz.0.3308': attribute type 10 has an invalid length.
[  475.164975][T15261] netlink: 40 bytes leftover after parsing attributes in process `syz.0.3308'.
[  475.248552][T15261] team0: Failed to send options change via netlink (err -105)
[  475.263815][T15261] team0: Port device geneve0 added
[  475.294945][   T30] audit: type=1326 audit(1765254321.993:216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15268 comm="syz.7.3311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9a1fb8f749 code=0x7ffc0000
[  475.382754][   T30] audit: type=1326 audit(1765254321.993:217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15268 comm="syz.7.3311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9a1fb8f749 code=0x7ffc0000
[  475.443730][   T30] audit: type=1326 audit(1765254321.993:218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15268 comm="syz.7.3311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9a1fb8f749 code=0x7ffc0000
[  475.486920][   T30] audit: type=1326 audit(1765254321.993:219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15268 comm="syz.7.3311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9a1fb8f749 code=0x7ffc0000
[  475.545337][   T30] audit: type=1326 audit(1765254321.993:220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15268 comm="syz.7.3311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9a1fb8f749 code=0x7ffc0000
[  475.614286][   T30] audit: type=1326 audit(1765254321.993:221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15268 comm="syz.7.3311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9a1fb8f749 code=0x7ffc0000
[  475.637579][   T30] audit: type=1326 audit(1765254321.993:222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15268 comm="syz.7.3311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9a1fb8f749 code=0x7ffc0000
[  475.660834][   T30] audit: type=1326 audit(1765254322.023:223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15268 comm="syz.7.3311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9a1fb8f749 code=0x7ffc0000
[  475.687979][   T30] audit: type=1326 audit(1765254322.023:224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15268 comm="syz.7.3311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f9a1fb865e7 code=0x7ffc0000
[  475.767604][   T30] audit: type=1326 audit(1765254322.023:225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15268 comm="syz.7.3311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f9a1fb2b829 code=0x7ffc0000
[  476.577495][T15309] netlink: 60 bytes leftover after parsing attributes in process `syz.0.3324'.
[  478.992705][T15323] Set syz1 is full, maxelem 65536 reached
[  480.952519][T15354] netlink: 'syz.9.3345': attribute type 1 has an invalid length.
[  481.083471][T15354] 8021q: adding VLAN 0 to HW filter on device bond2
[  481.200367][T15358] bond2: (slave veth0_to_bond): making interface the new active one
[  481.243147][T15358] bond2: (slave veth0_to_bond): Enslaving as an active interface with an up link
[  481.279338][T15359] bond2: entered promiscuous mode
[  481.306885][T15359] veth0_to_bond: entered promiscuous mode
[  481.421580][T15359] bond2: entered allmulticast mode
[  481.426948][T15359] veth0_to_bond: entered allmulticast mode
[  481.763219][T15367] cgroup: fork rejected by pids controller in /syz0
[  484.895234][T15451] cgroup: fork rejected by pids controller in /syz7
[  487.853517][T15605] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3385'.
[  487.894203][T15605] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3385'.
[  487.998652][T15614] netlink: 4 bytes leftover after parsing attributes in process `syz.7.3384'.
[  492.625290][T15715] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for ip6erspan0
[  500.167361][T15806] tipc: Failed to remove unknown binding: 66,1,1/0:2216962674/2216962676
[  500.196826][T15806] tipc: Failed to remove unknown binding: 66,1,1/0:2216962674/2216962676
[  500.482555][T15808] netlink: 4 bytes leftover after parsing attributes in process `syz.8.3453'.
[  500.684657][T15808] batman_adv: batadv0: Removing interface: batadv_slave_1
[  501.596907][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  501.603585][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  502.506385][T15845] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3468'.
[  503.950843][T15889] overlayfs: failed to clone upperpath
[  504.978937][T15928] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3488'.
[  504.989612][T15928] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3488'.
[  504.998873][T15928] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3488'.
[  505.008148][T15928] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3488'.
[  505.017058][T15928] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3488'.
[  505.026280][T15928] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3488'.
[  505.035454][T15928] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3488'.
[  505.044926][T15928] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3488'.
[  505.854639][T15940] overlayfs: failed to clone upperpath
[  508.090744][T15976] __nla_validate_parse: 143 callbacks suppressed
[  508.090757][T15976] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3506'.
[  508.215479][T15981] l2tp_ppp: sess 2/0: no socket in recv
[  509.293110][T15999] netdevsim netdevsim7 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  509.305852][T15999] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  509.625361][T15999] netdevsim netdevsim7 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  509.646661][T15999] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  509.800836][T16020] overlayfs: failed to clone upperpath
[  509.884539][T15999] netdevsim netdevsim7 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  509.913106][T15999] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  510.083619][T15999] netdevsim netdevsim7 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  510.103207][T15999] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  510.472612][ T6894] netdevsim netdevsim7 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  510.483038][ T6894] netdevsim netdevsim7 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  510.575248][T13810] netdevsim netdevsim7 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  510.601674][T13810] netdevsim netdevsim7 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  510.661711][ T6894] netdevsim netdevsim7 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  510.691533][ T6894] netdevsim netdevsim7 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  510.890565][T14284] netdevsim netdevsim7 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  510.913132][T14284] netdevsim netdevsim7 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  511.682833][T16037] overlayfs: failed to clone upperpath
[  513.361094][ T5839] Bluetooth: hci3: command tx timeout
[  513.800132][T16078] overlayfs: failed to clone upperpath
[  515.003269][T16066] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  515.036746][T16066] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  515.435768][T16099] netlink: 'syz.8.3551': attribute type 10 has an invalid length.
[  515.616374][T16066] ipip0: left promiscuous mode
[  515.680381][T16066] bridge0: left promiscuous mode
[  515.691122][T16066] bridge0: left allmulticast mode
[  515.782003][T16099] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  515.791651][T13815] netdevsim netdevsim7 eth0: unset [0, 0] type 1 family 0 port 8472 - 0
[  515.800810][T13815] netdevsim netdevsim7 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  515.817951][T13815] netdevsim netdevsim7 eth1: unset [0, 0] type 1 family 0 port 8472 - 0
[  515.826515][T13815] netdevsim netdevsim7 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  515.835647][T13815] netdevsim netdevsim7 eth2: unset [0, 0] type 1 family 0 port 8472 - 0
[  515.862054][T13815] netdevsim netdevsim7 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  515.870535][T13815] netdevsim netdevsim7 eth3: unset [0, 0] type 1 family 0 port 8472 - 0
[  515.882650][T13815] netdevsim netdevsim7 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  517.621558][T16143] netlink: 20 bytes leftover after parsing attributes in process `syz.8.3569'.
[  517.630927][T16143] x_tables: (null)_tables: SNAT target: only valid in nat table, not syz0
[  523.719810][T16247] overlayfs: failed to clone upperpath
[  527.309160][T16348] overlayfs: failed to clone upperpath
[  527.404447][T16351] bond0: (slave bond_slave_0): Releasing backup interface
[  527.756706][T16351] team0: Port device team_slave_0 removed
[  527.796286][T16351] team0: Port device team_slave_1 removed
[  527.845873][T16357] overlayfs: failed to clone upperpath
[  527.909199][T16351] batman_adv: batadv0: Removing interface: batadv_slave_0
[  527.960452][T16351] batman_adv: batadv0: Removing interface: batadv_slave_1
[  528.042304][T16351] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  528.642576][T16379] overlayfs: failed to clone upperpath
[  528.947014][T16377] cgroup: fork rejected by pids controller in /syz5
[  534.827080][T16526] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3693'.
[  539.656807][   T30] kauditd_printk_skb: 126 callbacks suppressed
[  539.656823][   T30] audit: type=1326 audit(1765254642.352:352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16571 comm="syz.9.3707" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f90b678f749 code=0x0
[  539.841459][T16591] sch_tbf: burst 19872 is lower than device lo mtu (11337746) !
[  540.493570][T16602] vlan3: entered allmulticast mode
[  540.498744][T16602] bond0: entered allmulticast mode
[  540.531043][T16602] bond_slave_0: entered allmulticast mode
[  540.542334][T16602] bond_slave_1: entered allmulticast mode
[  540.561367][T16602] bridge0: port 3(vlan3) entered blocking state
[  540.567889][T16602] bridge0: port 3(vlan3) entered disabled state
[  540.583520][T16602] vlan3: entered promiscuous mode
[  540.588622][T16602] bond0: entered promiscuous mode
[  540.611052][T16602] bond_slave_0: entered promiscuous mode
[  540.617000][T16602] bond_slave_1: entered promiscuous mode
[  540.624059][T16602] bridge0: port 3(vlan3) entered blocking state
[  540.631044][T16602] bridge0: port 3(vlan3) entered forwarding state
[  540.661940][T16607] bridge_slave_0: left allmulticast mode
[  540.669438][T16607] bridge_slave_0: left promiscuous mode
[  540.684504][T16607] bridge0: port 1(bridge_slave_0) entered disabled state
[  540.713281][T16607] bridge_slave_1: left allmulticast mode
[  540.719234][T16607] bridge_slave_1: left promiscuous mode
[  540.729646][T16607] bridge0: port 2(bridge_slave_1) entered disabled state
[  540.758735][T16607] bond0: (slave bond_slave_0): Releasing backup interface
[  540.783041][T16607] bond_slave_0: left promiscuous mode
[  540.798855][T16607] bond_slave_0: left allmulticast mode
[  540.830526][T16607] bond0: (slave bond_slave_1): Releasing backup interface
[  540.863281][T16607] bond_slave_1: left promiscuous mode
[  540.868962][T16607] bond_slave_1: left allmulticast mode
[  540.905656][T16607] team0: Port device team_slave_0 removed
[  540.936694][T16607] team0: Port device team_slave_1 removed
[  540.952785][T16607] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  540.970382][T16607] batman_adv: batadv0: Removing interface: batadv_slave_0
[  540.985679][T16607] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  541.003418][T16607] batman_adv: batadv0: Removing interface: batadv_slave_1
[  541.014253][T16607] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  541.043635][   T76] bridge0: port 3(vlan3) entered disabled state
[  541.723782][T16624] netlink: 12 bytes leftover after parsing attributes in process `syz.5.3725'.
[  541.830461][T16624] macvlan2: entered promiscuous mode
[  541.888538][T16624] macvlan2: entered allmulticast mode
[  541.927676][T16624] bond2: entered promiscuous mode
[  541.933694][T16624] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  542.005802][T16624] bond2: left promiscuous mode
[  542.065863][ T6985] libceph: connect (1)[c::]:6789 error -101
[  542.072520][ T6985] libceph: mon0 (1)[c::]:6789 connect error
[  542.181931][T16634] ceph: No mds server is up or the cluster is laggy
[  542.462839][T16646] netlink: 'syz.5.3732': attribute type 2 has an invalid length.
[  542.499512][T16646] !: entered promiscuous mode
[  542.513533][T16646] netlink: 'syz.5.3732': attribute type 2 has an invalid length.
[  542.522138][T16646] !: left promiscuous mode
[  542.688723][T16654] netlink: 8 bytes leftover after parsing attributes in process `syz.8.3735'.
[  542.702286][T16654] netlink: 8 bytes leftover after parsing attributes in process `syz.8.3735'.
[  543.163965][T16671] sch_fq: defrate 4294967295 ignored.
[  544.633788][ T5844] Bluetooth: hci3: command 0x0406 tx timeout
[  545.906557][T16724] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3758'.
[  547.921197][T16771] overlayfs: option "workdir=./file0" is useless in a non-upper mount, ignore
[  548.137628][T16772] netlink: 408 bytes leftover after parsing attributes in process `syz.9.3775'.
[  548.466712][T16771] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  549.113776][T16784] netlink: 52 bytes leftover after parsing attributes in process `syz.7.3778'.
[  549.618283][T16792] mac80211_hwsim hwsim21 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  550.166576][T16807] netlink: 4 bytes leftover after parsing attributes in process `syz.8.3785'.
[  550.293106][T16811] netlink: 'syz.7.3791': attribute type 1 has an invalid length.
[  550.316300][T16807] syz_tun: left allmulticast mode
[  550.352558][T16807] syz_tun: left promiscuous mode
[  550.360245][T16807] bridge0: port 3(syz_tun) entered disabled state
[  550.461771][T16807] bridge_slave_1: left allmulticast mode
[  550.467443][T16807] bridge_slave_1: left promiscuous mode
[  550.484912][T16807] bridge0: port 2(bridge_slave_1) entered disabled state
[  550.532119][T16807] bridge_slave_0: left allmulticast mode
[  550.537804][T16807] bridge_slave_0: left promiscuous mode
[  550.581896][T16807] bridge0: port 1(bridge_slave_0) entered disabled state
[  551.044827][T16829] netlink: 4 bytes leftover after parsing attributes in process `syz.8.3797'.
[  551.434987][T16841] netlink: 'syz.7.3803': attribute type 1 has an invalid length.
[  551.663997][T16857] netlink: 24 bytes leftover after parsing attributes in process `syz.0.3810'.
[  553.009952][T16893] netlink: 8 bytes leftover after parsing attributes in process `syz.9.3820'.
[  553.793214][T16905] cgroup: fork rejected by pids controller in /syz9
[  554.115688][T16943] netlink: 'syz.9.3829': attribute type 8 has an invalid length.
[  554.737434][ T5839] Bluetooth: hci1: Malformed MSFT vendor event: 0x02
[  555.634204][T16981] netlink: 12 bytes leftover after parsing attributes in process `syz.8.3843'.
[  558.821010][T17033] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  558.850915][T17033] batman_adv: batadv0: Removing interface: batadv_slave_0
[  558.875338][T17033] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  558.884010][T17033] batman_adv: batadv0: Removing interface: batadv_slave_1
[  559.803762][T17056] af_packet: tpacket_rcv: packet too big, clamped from 60 to 4294967272. macoff=96
[  563.089951][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  563.096392][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  564.081751][T17079] overlayfs: failed to clone upperpath
[  565.176020][T17175] netlink: 12 bytes leftover after parsing attributes in process `syz.5.3899'.
[  565.521075][T17185] netlink: 20 bytes leftover after parsing attributes in process `syz.9.3902'.
[  565.588518][T17192] netlink: 20 bytes leftover after parsing attributes in process `syz.9.3902'.
[  565.882654][T17202] overlayfs: failed to clone upperpath
[  565.978957][T17209] sch_tbf: burst 19872 is lower than device lo mtu (32783) !
[  568.381834][T17248] 8021q: adding VLAN 0 to HW filter on device bond1
[  568.498949][T17251] bond1: (slave ip6gretap1): Enslaving as a backup interface with an up link
[  568.551202][T13815] bond1: Warning: No 802.3ad response from the link partner for any adapters in the bond
[  568.967186][T17259] netlink: 128 bytes leftover after parsing attributes in process `syz.0.3926'.
[  569.754073][T17275] netlink: 'syz.5.3931': attribute type 1 has an invalid length.
[  569.794434][T17275] bond3: entered promiscuous mode
[  569.799572][T17275] bond3: entered allmulticast mode
[  569.806496][T17275] 8021q: adding VLAN 0 to HW filter on device bond3
[  571.543853][T17314] netlink: 64 bytes leftover after parsing attributes in process `syz.5.3945'.
[  571.606303][T17316] netlink: 'syz.9.3946': attribute type 16 has an invalid length.
[  571.736988][T17316] netlink: 'syz.9.3946': attribute type 17 has an invalid length.
[  572.183314][T17316] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  575.036415][   T30] audit: type=1326 audit(1765254677.732:353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17376 comm="syz.7.3968" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f9a1fb8f749 code=0x0
[  577.375056][T17416] netlink: 4 bytes leftover after parsing attributes in process `syz.7.3975'.
[  581.827545][T17469] netlink: 24 bytes leftover after parsing attributes in process `syz.5.3987'.
[  584.691958][T17501] netlink: 4 bytes leftover after parsing attributes in process `syz.7.3996'.
[  584.906579][T17504] netlink: 12 bytes leftover after parsing attributes in process `syz.9.3997'.
[  584.958884][T17510] netlink: 12 bytes leftover after parsing attributes in process `syz.9.3997'.
[  585.188688][T17510] netlink: 12 bytes leftover after parsing attributes in process `syz.9.3997'.
[  585.300915][T17510] netlink: 12 bytes leftover after parsing attributes in process `syz.9.3997'.
[  585.462221][T17504] netlink: 12 bytes leftover after parsing attributes in process `syz.9.3997'.
[  586.201780][T17531] bond0: (slave bridge0): Releasing backup interface
[  586.261781][T17532] netlink: 'syz.9.4002': attribute type 10 has an invalid length.
[  586.269877][T17532] netlink: 2 bytes leftover after parsing attributes in process `syz.9.4002'.
[  586.322321][T17531] bridge0: port 2(bridge_slave_1) entered disabled state
[  586.329602][T17531] bridge0: port 1(bridge_slave_0) entered disabled state
[  586.372204][T17535] netlink: 4 bytes leftover after parsing attributes in process `syz.9.4002'.
[  586.421679][T17531] bond0: (slave team0): Releasing backup interface
[  586.506430][T17531] bridge_slave_0: left promiscuous mode
[  586.561266][T17531] bridge0: port 1(bridge_slave_0) entered disabled state
[  586.671765][T17531] bridge_slave_1: left allmulticast mode
[  586.687421][T17531] bridge_slave_1: left promiscuous mode
[  586.707759][T17531] bridge0: port 2(bridge_slave_1) entered disabled state
[  586.748975][T17531] bond2: (slave veth0_to_bond): Releasing active interface
[  586.764308][T17531] veth0_to_bond: left promiscuous mode
[  586.843008][T17531] veth0_to_bond: left allmulticast mode
[  586.925453][T17531] bond0: (slave bond_slave_0): Releasing backup interface
[  586.992235][T17531] bond0: (slave bond_slave_1): Releasing backup interface
[  587.077920][T17531] team0: Port device team_slave_0 removed
[  587.229210][T17531] team0: Port device team_slave_1 removed
[  587.261795][T17531] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  587.282646][T17531] batman_adv: batadv0: Removing interface: batadv_slave_0
[  587.322928][T17531] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  587.346082][T17531] batman_adv: batadv0: Removing interface: batadv_slave_1
[  587.374719][T17531] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  587.447417][T17532] team0: entered promiscuous mode
[  587.458057][T17532] 8021q: adding VLAN 0 to HW filter on device team0
[  587.471553][T17532] bridge0: port 1(team0) entered blocking state
[  587.479634][T17532] bridge0: port 1(team0) entered disabled state
[  587.487468][T17532] team0: entered allmulticast mode
[  587.506404][T17535] team0: left allmulticast mode
[  587.517405][T17535] bridge0: port 1(team0) entered disabled state
[  590.056204][ T6985] libceph: connect (1)[c::]:6789 error -101
[  590.063802][ T6985] libceph: mon0 (1)[c::]:6789 connect error
[  590.192986][T17586] ceph: No mds server is up or the cluster is laggy
[  591.380555][T17620] netlink: 'syz.7.4033': attribute type 1 has an invalid length.
[  591.585862][T17625] bond1: entered promiscuous mode
[  591.612102][T17625] bond1: entered allmulticast mode
[  591.657737][T17625] 8021q: adding VLAN 0 to HW filter on device bond1
[  591.723258][T17627] 8021q: adding VLAN 0 to HW filter on device bond2
[  591.733578][T17627] bond2: entered promiscuous mode
[  591.739277][T17627] bond2: entered allmulticast mode
[  591.764408][T17627] bond1: (slave bond2): Enslaving as a backup interface with a down link
[  594.785721][ T5839] Bluetooth: hci1: unexpected event for opcode 0x2028
[  595.396109][T12707] IPVS: starting estimator thread 0...
[  595.402605][T17665] IPVS: wlc: FWM 3 0x00000003 - no destination available
[  595.531461][T17698] IPVS: using max 51 ests per chain, 122400 per kthread
[  596.933556][T14279] IPVS: stop unused estimator thread 0...
[  597.763241][T17732] netlink: 12 bytes leftover after parsing attributes in process `syz.8.4069'.
[  598.321092][   T30] audit: type=1326 audit(1765254700.982:354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17742 comm="syz.5.4074" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ba6b8f749 code=0x7ffc0000
[  598.385599][   T30] audit: type=1326 audit(1765254700.982:355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17742 comm="syz.5.4074" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ba6b8f749 code=0x7ffc0000
[  598.438472][   T30] audit: type=1326 audit(1765254700.982:356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17742 comm="syz.5.4074" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ba6b8f749 code=0x7ffc0000
[  598.464021][   T30] audit: type=1326 audit(1765254700.982:357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17742 comm="syz.5.4074" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ba6b8f749 code=0x7ffc0000
[  598.554646][   T30] audit: type=1326 audit(1765254700.982:358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17742 comm="syz.5.4074" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f8ba6b8f749 code=0x7ffc0000
[  598.741594][   T30] audit: type=1326 audit(1765254700.982:359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17742 comm="syz.5.4074" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ba6b8f749 code=0x7ffc0000
[  598.789602][   T30] audit: type=1326 audit(1765254700.982:360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17742 comm="syz.5.4074" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ba6b8f749 code=0x7ffc0000
[  599.129988][   T30] audit: type=1326 audit(1765254700.982:361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17742 comm="syz.5.4074" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ba6b8f749 code=0x7ffc0000
[  599.359183][   T30] audit: type=1326 audit(1765254700.982:362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17742 comm="syz.5.4074" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ba6b8f749 code=0x7ffc0000
[  599.565864][   T30] audit: type=1326 audit(1765254700.982:363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17742 comm="syz.5.4074" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f8ba6b8f749 code=0x7ffc0000
[  601.099957][T17777] netlink: 'syz.9.4086': attribute type 1 has an invalid length.
[  601.205417][T17779] netlink: 4 bytes leftover after parsing attributes in process `syz.9.4086'.
[  601.312719][T17777] 8021q: adding VLAN 0 to HW filter on device bond3
[  603.682617][T17779] bond3 (unregistering): Released all slaves
[  604.583144][   T30] kauditd_printk_skb: 47 callbacks suppressed
[  604.583164][   T30] audit: type=1804 audit(1765254707.262:411): pid=17821 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.7.4100" name="file0" dev="tmpfs" ino=4903 res=1 errno=0
[  606.746313][T17834] bond2: option active_slave: mode dependency failed, not supported in mode balance-xor(2)
[  606.798877][T17834] bond2 (unregistering): Released all slaves
[  606.961490][T17844] netlink: 8 bytes leftover after parsing attributes in process `syz.9.4106'.
[  606.972086][T17844] 8021q: VLANs not supported on ip6_vti0
[  607.198194][T17823] overlayfs: failed to clone upperpath
[  607.641997][T17866] netlink: 8 bytes leftover after parsing attributes in process `syz.8.4117'.
[  607.651162][T17866] netlink: 12 bytes leftover after parsing attributes in process `syz.8.4117'.
[  607.701501][T17866] netlink: 'syz.8.4117': attribute type 20 has an invalid length.
[  607.718699][T17866] netlink: 8 bytes leftover after parsing attributes in process `syz.8.4117'.
[  607.741049][T17866] netlink: 12 bytes leftover after parsing attributes in process `syz.8.4117'.
[  607.757390][T17866] netlink: 'syz.8.4117': attribute type 20 has an invalid length.
[  608.811362][T17900] syz_tun: entered allmulticast mode
[  608.837031][T17899] syz_tun: left allmulticast mode
[  609.474698][T17909] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  609.510476][   T30] audit: type=1804 audit(1765254712.202:412): pid=17904 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.4132" name="file0" dev="tmpfs" ino=4749 res=1 errno=0
[  609.521550][T17909] team0: No ports can be present during mode change
[  611.577899][T17958] netlink: 12 bytes leftover after parsing attributes in process `syz.9.4151'.
[  611.685028][T17958] vlan3: entered allmulticast mode
[  611.705409][T17958] bridge0: entered allmulticast mode
[  611.724428][T17958] bridge0: port 1(vlan3) entered blocking state
[  611.740238][T17958] bridge0: port 1(vlan3) entered disabled state
[  611.907929][T17964] wg2: left promiscuous mode
[  611.914806][T17964] wg2: left allmulticast mode
[  611.950063][T17964] geneve2: left promiscuous mode
[  611.956989][T17964] ip6tnl2: left promiscuous mode
[  611.983359][T17973] netlink: 212368 bytes leftover after parsing attributes in process `syz.9.4156'.
[  612.369275][T17990] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4161'.
[  612.429388][T17992] syz_tun: entered allmulticast mode
[  613.872845][T18002] orangefs_mount: mount request failed with -4
[  617.966872][T18065] overlayfs: failed to clone upperpath
[  618.930415][T18086] bridge: RTM_NEWNEIGH with invalid ether address
[  619.861255][T18114] netdevsim netdevsim9 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  619.883580][T18114] netdevsim netdevsim9 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  620.127064][T18114] netdevsim netdevsim9 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  620.153700][T18114] netdevsim netdevsim9 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  620.254861][T18114] netdevsim netdevsim9 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  620.300311][T18114] netdevsim netdevsim9 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  620.470374][T18114] netdevsim netdevsim9 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  620.531347][T18114] netdevsim netdevsim9 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  620.899483][T14284] netdevsim netdevsim9 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  620.934437][T14284] netdevsim netdevsim9 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  621.056988][T13812] netdevsim netdevsim9 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  621.081649][T13812] netdevsim netdevsim9 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  621.173641][T14284] netdevsim netdevsim9 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  621.234784][T14284] netdevsim netdevsim9 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  621.804325][T14284] netdevsim netdevsim9 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  621.868853][T14284] netdevsim netdevsim9 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  622.929445][T18155] netlink: 188 bytes leftover after parsing attributes in process `syz.5.4218'.
[  624.477069][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  624.483672][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  627.244944][T18249] netlink: 24 bytes leftover after parsing attributes in process `syz.0.4248'.
[  633.030931][T18333] netlink: 156 bytes leftover after parsing attributes in process `syz.9.4272'.
[  633.068300][T18333] netlink: 12 bytes leftover after parsing attributes in process `syz.9.4272'.
[  635.514608][T18374] netlink: 4 bytes leftover after parsing attributes in process `syz.8.4284'.
[  637.004958][T18382] netlink: 48 bytes leftover after parsing attributes in process `syz.9.4287'.
[  637.478136][   T30] audit: type=1326 audit(1765254740.172:413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18393 comm="syz.8.4293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a1bb8f749 code=0x7ffc0000
[  637.524450][   T30] audit: type=1326 audit(1765254740.202:415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18393 comm="syz.8.4293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a1bb8f749 code=0x7ffc0000
[  637.550105][   T30] audit: type=1326 audit(1765254740.192:414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18393 comm="syz.8.4293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a1bb8f749 code=0x7ffc0000
[  637.628844][   T30] audit: type=1326 audit(1765254740.202:416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18393 comm="syz.8.4293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a1bb8f749 code=0x7ffc0000
[  637.726997][   T30] audit: type=1326 audit(1765254740.202:417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18393 comm="syz.8.4293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f0a1bb8f749 code=0x7ffc0000
[  637.854139][   T30] audit: type=1326 audit(1765254740.202:418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18393 comm="syz.8.4293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a1bb8f749 code=0x7ffc0000
[  637.918228][   T30] audit: type=1326 audit(1765254740.202:419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18393 comm="syz.8.4293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a1bb8f749 code=0x7ffc0000
[  637.984716][   T30] audit: type=1326 audit(1765254740.202:420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18393 comm="syz.8.4293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a1bb8f749 code=0x7ffc0000
[  638.309506][   T30] audit: type=1326 audit(1765254740.202:421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18393 comm="syz.8.4293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a1bb8f749 code=0x7ffc0000
[  638.332399][T18415] netlink: 'syz.8.4300': attribute type 10 has an invalid length.
[  638.335096][T18415] 8021q: adding VLAN 0 to HW filter on device team0
[  638.360322][   T30] audit: type=1326 audit(1765254740.202:422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18393 comm="syz.8.4293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a1bb8f749 code=0x7ffc0000
[  638.365445][T18415] bond0: (slave team0): Enslaving as an active interface with an up link
[  639.150586][T18415] netlink: 'syz.8.4300': attribute type 10 has an invalid length.
[  639.174902][T18415] add_ndev_hash(bond0) on ffff8880352b4000 done
[  639.378507][T18415] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  639.553723][T18415] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  640.068086][T18449] netlink: 'syz.0.4311': attribute type 4 has an invalid length.
[  640.089670][T18449] netlink: 'syz.0.4311': attribute type 4 has an invalid length.
[  642.224370][T18516] netlink: 'syz.8.4336': attribute type 4 has an invalid length.
[  642.374151][T18520] netlink: 52 bytes leftover after parsing attributes in process `syz.5.4335'.
[  644.266936][ T5839] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci3/hci3:201'
[  644.277030][ T5839] CPU: 1 UID: 0 PID: 5839 Comm: kworker/u9:4 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  644.277052][ T5839] Tainted: [L]=SOFTLOCKUP
[  644.277056][ T5839] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  644.277063][ T5839] Workqueue: hci3 hci_rx_work
[  644.277159][ T5839] Call Trace:
[  644.277166][ T5839]  <TASK>
[  644.277173][ T5839]  dump_stack_lvl+0x189/0x250
[  644.277190][ T5839]  ? __pfx_dump_stack_lvl+0x10/0x10
[  644.277203][ T5839]  ? __pfx__printk+0x10/0x10
[  644.277221][ T5839]  ? kernfs_path_from_node+0x250/0x290
[  644.277233][ T5839]  ? kernfs_path_from_node+0x2f/0x290
[  644.277246][ T5839]  sysfs_create_dir_ns+0x259/0x280
[  644.277258][ T5839]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  644.277269][ T5839]  ? do_raw_spin_unlock+0x122/0x240
[  644.277286][ T5839]  kobject_add_internal+0x6ab/0xcc0
[  644.277303][ T5839]  kobject_add+0x155/0x220
[  644.277317][ T5839]  ? __pfx_kobject_add+0x10/0x10
[  644.277328][ T5839]  ? _raw_spin_unlock+0x28/0x50
[  644.277343][ T5839]  ? get_device_parent+0x366/0x3a0
[  644.277359][ T5839]  device_add+0x408/0xb80
[  644.277374][ T5839]  hci_conn_add_sysfs+0xd5/0x210
[  644.277417][ T5839]  le_conn_complete_evt+0xf1d/0x1420
[  644.277456][ T5839]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  644.277467][ T5839]  ? __mutex_unlock_slowpath+0x1a1/0x730
[  644.277476][ T5839]  ? __asan_memcpy+0x40/0x70
[  644.277489][ T5839]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  644.277499][ T5839]  ? skb_pull_data+0xfb/0x200
[  644.277539][ T5839]  hci_le_enh_conn_complete_evt+0x189/0x4a0
[  644.277553][ T5839]  ? __pfx_hci_le_enh_conn_complete_evt+0x10/0x10
[  644.277567][ T5839]  hci_event_packet+0x78f/0x1260
[  644.277606][ T5839]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  644.277619][ T5839]  ? __pfx_hci_event_packet+0x10/0x10
[  644.277632][ T5839]  ? kcov_remote_start+0x4d3/0x7f0
[  644.277646][ T5839]  ? lockdep_hardirqs_on+0x98/0x140
[  644.277658][ T5839]  ? hci_send_to_monitor+0xe2/0x590
[  644.277673][ T5839]  hci_rx_work+0x3ee/0x1060
[  644.277689][ T5839]  ? process_one_work+0x868/0x15a0
[  644.277699][ T5839]  process_one_work+0x93a/0x15a0
[  644.277721][ T5839]  ? __pfx_process_one_work+0x10/0x10
[  644.277736][ T5839]  ? assign_work+0x3c7/0x5b0
[  644.277748][ T5839]  worker_thread+0x9b0/0xee0
[  644.277773][ T5839]  kthread+0x711/0x8a0
[  644.277787][ T5839]  ? __pfx_worker_thread+0x10/0x10
[  644.277796][ T5839]  ? __pfx_kthread+0x10/0x10
[  644.277809][ T5839]  ? _raw_spin_unlock_irq+0x23/0x50
[  644.277822][ T5839]  ? lockdep_hardirqs_on+0x98/0x140
[  644.277835][ T5839]  ? __pfx_kthread+0x10/0x10
[  644.277848][ T5839]  ret_from_fork+0x599/0xb30
[  644.277860][ T5839]  ? __pfx_ret_from_fork+0x10/0x10
[  644.277875][ T5839]  ? __switch_to_asm+0x39/0x70
[  644.277886][ T5839]  ? __switch_to_asm+0x33/0x70
[  644.277897][ T5839]  ? __pfx_kthread+0x10/0x10
[  644.277910][ T5839]  ret_from_fork_asm+0x1a/0x30
[  644.277932][ T5839]  </TASK>
[  644.277957][ T5839] kobject: kobject_add_internal failed for hci3:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  644.581096][ T5839] Bluetooth: hci3: failed to register connection device
[  647.047343][T18585] netlink: 24 bytes leftover after parsing attributes in process `syz.0.4358'.
[  647.449511][T18594] netlink: 4 bytes leftover after parsing attributes in process `syz.8.4361'.
[  647.473393][T18585] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4358'.
[  648.107660][T18612] netlink: 4 bytes leftover after parsing attributes in process `syz.9.4367'.
[  648.142300][T18612] netlink: 'syz.9.4367': attribute type 10 has an invalid length.
[  649.363141][T18630] overlayfs: failed to clone upperpath
[  654.052948][T18688] overlayfs: failed to clone upperpath
[  656.972237][T18724] netlink: 76 bytes leftover after parsing attributes in process `syz.8.4402'.
[  660.401449][T18770] netlink: 55631 bytes leftover after parsing attributes in process `syz.8.4413'.
[  660.560667][   T30] kauditd_printk_skb: 45 callbacks suppressed
[  660.560684][   T30] audit: type=1326 audit(1765254763.252:468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18773 comm="syz.8.4415" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a1bb8f749 code=0x7ff00000
[  660.651018][   T30] audit: type=1326 audit(1765254763.252:469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18773 comm="syz.8.4415" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a1bb8f749 code=0x7ff00000
[  660.773389][   T30] audit: type=1326 audit(1765254763.252:470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18773 comm="syz.8.4415" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a1bb8f749 code=0x7ff00000
[  660.910678][   T30] audit: type=1326 audit(1765254763.252:471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18773 comm="syz.8.4415" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a1bb8f749 code=0x7ff00000
[  661.141076][   T30] audit: type=1326 audit(1765254763.252:472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18773 comm="syz.8.4415" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a1bb8f749 code=0x7ff00000
[  661.861238][   T30] audit: type=1326 audit(1765254763.252:473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18773 comm="syz.8.4415" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a1bb8f749 code=0x7ff00000
[  662.076154][   T30] audit: type=1326 audit(1765254763.252:474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18773 comm="syz.8.4415" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a1bb8f749 code=0x7ff00000
[  662.161182][   T30] audit: type=1326 audit(1765254763.252:475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18773 comm="syz.8.4415" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a1bb8f749 code=0x7ff00000
[  662.271171][   T30] audit: type=1326 audit(1765254763.252:476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18773 comm="syz.8.4415" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a1bb8f749 code=0x7ff00000
[  662.337046][T18786] batman_adv: batadv0: Adding interface: dummy0
[  662.401096][T18786] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  662.421128][   T30] audit: type=1326 audit(1765254763.252:477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18773 comm="syz.8.4415" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a1bb8f749 code=0x7ff00000
[  662.505023][T18786] batman_adv: batadv0: Interface activated: dummy0
[  662.823052][T18787] batadv0: mtu less than device minimum
[  662.830665][T18787] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  662.843431][T18787] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  662.855582][T18787] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  662.867723][T18787] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  662.879534][T18787] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  662.891569][T18787] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  662.903567][T18787] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  662.915640][T18787] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  662.927578][T18787] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  665.607043][ T5839] Bluetooth: hci2: unexpected event for opcode 0x0c1c
[  665.819732][ T5839] Bluetooth: hci3: unexpected event for opcode 0x201c
[  666.580208][   T30] kauditd_printk_skb: 57 callbacks suppressed
[  666.580224][   T30] audit: type=1800 audit(1765254769.272:535): pid=18837 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.4435" name="file1" dev="tmpfs" ino=5074 res=0 errno=0
[  666.614166][T18837] kAFS: unable to lookup cell 'syz1'
[  668.354764][T18892] add_ndev_hash(wlan0) on ffff88806b358000 done
[  668.361235][T18892] siw: device registration error -23
[  668.404621][T18895] netlink: 12 bytes leftover after parsing attributes in process `syz.9.4451'.
[  668.418927][T18895] netlink: 'syz.9.4451': attribute type 11 has an invalid length.
[  668.443608][T18895] netlink: 12 bytes leftover after parsing attributes in process `syz.9.4451'.
[  668.491178][T18895] netlink: 'syz.9.4451': attribute type 11 has an invalid length.
[  669.723345][ T5839] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[  669.734972][ T5839] Bluetooth: hci2: Injecting HCI hardware error event
[  669.750047][ T5844] Bluetooth: hci2: hardware error 0x00
[  671.994388][ T5844] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  674.392975][T18995] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4474'.
[  677.962246][ T5844] Bluetooth: hci1: unexpected event for opcode 0x1003
[  679.153636][T19061] netlink: 'syz.5.4494': attribute type 1 has an invalid length.
[  679.209245][T19061] 8021q: adding VLAN 0 to HW filter on device bond4
[  679.238223][T19061] bond4: up delay (35976) is not a multiple of miimon (100), value rounded to 35900 ms
[  679.258579][T19061] bond4: entered allmulticast mode
[  679.289036][T19061] bond4: (slave ip6gretap2): Enslaving as an active interface with an up link
[  679.418776][T19072] bridge0: port 1(vlan4) entered blocking state
[  679.451288][T19072] bridge0: port 1(vlan4) entered disabled state
[  679.734655][T19072] vlan4: entered allmulticast mode
[  679.790847][T19072] bridge0: entered allmulticast mode
[  679.894055][T19072] vlan4: left allmulticast mode
[  679.924888][T19072] bridge0: left allmulticast mode
[  682.000021][ T5844] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  682.009060][ T5844] Bluetooth: hci1: Injecting HCI hardware error event
[  682.021614][ T5844] Bluetooth: hci1: hardware error 0x00
[  682.420307][T19133] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4517'.
[  682.463111][T19133] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4517'.
[  684.238576][ T5844] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  684.866683][T19163] net_ratelimit: 11 callbacks suppressed
[  684.866700][T19163] Set syz0 is full, maxelem 0 reached
[  684.944452][T19163] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable
[  685.534246][T19173] netlink: 4 bytes leftover after parsing attributes in process `syz.7.4530'.
[  685.553597][T19177] overlayfs: failed to clone upperpath
[  685.935111][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  685.942691][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  690.841774][T19234] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  691.221980][T19234] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  692.731265][T19265] netlink: 'syz.8.4558': attribute type 4 has an invalid length.
[  692.799958][T19234] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  693.102606][T19269] netlink: 4 bytes leftover after parsing attributes in process `syz.9.4560'.
[  693.198022][T19234] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  693.234448][T19269] netlink: 4 bytes leftover after parsing attributes in process `syz.9.4560'.
[  693.481187][   T60] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  693.556114][   T60] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  693.831617][ T7150] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  694.045022][T14279] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  694.859438][T19300] netlink: 104 bytes leftover after parsing attributes in process `syz.5.4570'.
[  694.875288][T19300] netlink: 104 bytes leftover after parsing attributes in process `syz.5.4570'.
[  697.347656][T19329] netlink: 'syz.8.4580': attribute type 1 has an invalid length.
[  697.448050][T19329] 8021q: adding VLAN 0 to HW filter on device bond2
[  697.512605][T19335] vlan3: entered allmulticast mode
[  697.517807][T19335] veth0_to_bond: entered allmulticast mode
[  697.546934][T19335] bond2: (slave vlan3): Opening slave failed
[  706.353719][T19433] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4609'.
[  707.768597][T19456] netlink: 12 bytes leftover after parsing attributes in process `syz.9.4614'.
[  708.820107][T19467] Invalid source name
[  708.824275][T19467] UBIFS error (pid: 19467): cannot open "./file0", error -22
[  715.248244][T19537] sch_tbf: burst 1821 is lower than device lo mtu (11337746) !
[  715.732252][T19546] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4643'.
[  718.933351][   T30] audit: type=1326 audit(1765254821.632:536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19576 comm="syz.7.4655" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9a1fb8f749 code=0x7ffc0000
[  719.006994][   T30] audit: type=1326 audit(1765254821.632:537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19576 comm="syz.7.4655" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9a1fb8f749 code=0x7ffc0000
[  719.078032][   T30] audit: type=1326 audit(1765254821.652:538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19576 comm="syz.7.4655" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9a1fb8f749 code=0x7ffc0000
[  719.135337][   T30] audit: type=1326 audit(1765254821.652:539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19576 comm="syz.7.4655" exe="/root/syz-executor" sig=0 arch=c000003e syscall=83 compat=0 ip=0x7f9a1fb8f749 code=0x7ffc0000
[  719.251204][   T30] audit: type=1326 audit(1765254821.652:540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19576 comm="syz.7.4655" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9a1fb8f749 code=0x7ffc0000
[  719.489794][   T30] audit: type=1326 audit(1765254821.652:541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19576 comm="syz.7.4655" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9a1fb8f749 code=0x7ffc0000
[  719.588911][   T30] audit: type=1326 audit(1765254821.652:542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19576 comm="syz.7.4655" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9a1fb8f749 code=0x7ffc0000
[  719.793093][   T30] audit: type=1326 audit(1765254821.652:543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19576 comm="syz.7.4655" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9a1fb8f749 code=0x7ffc0000
[  719.873240][   T30] audit: type=1326 audit(1765254821.652:544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19576 comm="syz.7.4655" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f9a1fb8f749 code=0x7ffc0000
[  720.228428][   T30] audit: type=1326 audit(1765254821.652:545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19576 comm="syz.7.4655" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f9a1fb8f783 code=0x7ffc0000
[  720.784202][T19602] IPVS: Unknown mcast interface: hsr0
[  723.147984][T19642] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[  723.176670][T19642] CIFS: Unable to determine destination address
[  724.058160][T19663] netlink: 22 bytes leftover after parsing attributes in process `syz.5.4685'.
[  728.708443][T19705] netlink: 24 bytes leftover after parsing attributes in process `syz.8.4698'.
[  729.666168][T19719] netlink: 64 bytes leftover after parsing attributes in process `syz.9.4702'.
[  730.721037][T19732] sit1: entered allmulticast mode
[  734.390013][T20184] syz_tun: entered allmulticast mode
[  734.465980][T20184] pimreg: entered allmulticast mode
[  734.517085][T20183] syz_tun: left allmulticast mode
[  734.702132][T20193] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  734.765967][T20195] netlink: 'syz.7.4726': attribute type 10 has an invalid length.
[  734.854970][T20195] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  738.629171][T20247] ptrace attach of "./syz-executor exec"[9934] was attempted by "./syz-executor exec"[20247]
[  739.425411][T20262] netlink: 8 bytes leftover after parsing attributes in process `syz.7.4746'.
[  742.087594][T20291] netlink: 6 bytes leftover after parsing attributes in process `syz.8.4754'.
[  742.180483][T20291] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  743.896608][T20316] overlayfs: failed to clone upperpath
[  744.544467][T20323] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4765'.
[  744.770819][T20321] overlayfs: failed to clone upperpath
[  745.001520][T20323] hsr_slave_1 (unregistering): left promiscuous mode
[  745.760113][   T30] kauditd_printk_skb: 112 callbacks suppressed
[  745.760130][   T30] audit: type=1326 audit(1765254848.452:658): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20348 comm="syz.0.4775" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fcfb7f8f749 code=0x0
[  745.848018][T20353] netlink: 28 bytes leftover after parsing attributes in process `syz.5.4776'.
[  745.857664][T20353] netlink: 28 bytes leftover after parsing attributes in process `syz.5.4776'.
[  746.326885][T20353] ip6gretap0: entered promiscuous mode
[  746.346870][T20353] syz_tun: entered promiscuous mode
[  747.163374][T20367] overlayfs: failed to clone upperpath
[  747.362468][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  747.369995][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  748.515144][T20382] netlink: 'syz.5.4784': attribute type 1 has an invalid length.
[  748.680652][T20382] 8021q: adding VLAN 0 to HW filter on device bond5
[  748.952824][T20384] vlan0: entered allmulticast mode
[  748.973399][T20384] veth0_to_bond: entered allmulticast mode
[  749.006249][T20384] bond5: (slave vlan0): making interface the new active one
[  749.051805][T20384] bond5: (slave vlan0): Enslaving as an active interface with an up link
[  751.304864][   T30] audit: type=1326 audit(1765254854.002:659): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20418 comm="syz.0.4796" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcfb7f8f749 code=0x7ffc0000
[  751.412923][   T30] audit: type=1326 audit(1765254854.042:660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20418 comm="syz.0.4796" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcfb7f8f749 code=0x7ffc0000
[  751.516642][   T30] audit: type=1326 audit(1765254854.042:661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20418 comm="syz.0.4796" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcfb7f8f749 code=0x7ffc0000
[  751.616212][T20427] sit1: entered allmulticast mode
[  751.631198][   T30] audit: type=1326 audit(1765254854.052:662): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20418 comm="syz.0.4796" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcfb7f8f749 code=0x7ffc0000
[  751.849798][   T30] audit: type=1326 audit(1765254854.052:663): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20418 comm="syz.0.4796" exe="/root/syz-executor" sig=0 arch=c000003e syscall=83 compat=0 ip=0x7fcfb7f8f749 code=0x7ffc0000
[  751.948922][   T30] audit: type=1326 audit(1765254854.052:664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20418 comm="syz.0.4796" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcfb7f8f749 code=0x7ffc0000
[  752.008032][   T30] audit: type=1326 audit(1765254854.052:665): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20418 comm="syz.0.4796" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcfb7f8f749 code=0x7ffc0000
[  752.130341][   T30] audit: type=1326 audit(1765254854.062:666): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20418 comm="syz.0.4796" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcfb7f8f749 code=0x7ffc0000
[  752.165836][   T30] audit: type=1326 audit(1765254854.062:667): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20418 comm="syz.0.4796" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcfb7f8f749 code=0x7ffc0000
[  752.491241][   T30] audit: type=1326 audit(1765254854.092:668): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20418 comm="syz.0.4796" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fcfb7f8f749 code=0x7ffc0000
[  756.421788][T20479] netlink: 'syz.7.4813': attribute type 1 has an invalid length.
[  756.441175][T20479] netlink: 'syz.7.4813': attribute type 4 has an invalid length.
[  756.461746][T20479] netlink: 9462 bytes leftover after parsing attributes in process `syz.7.4813'.
[  756.555861][T20479] netlink: 'syz.7.4813': attribute type 1 has an invalid length.
[  756.593476][T20479] netlink: 'syz.7.4813': attribute type 4 has an invalid length.
[  756.613689][T20479] netlink: 9462 bytes leftover after parsing attributes in process `syz.7.4813'.
[  757.484577][T20491] xt_CT: No such helper "pptp"
[  760.149100][T20521] netlink: 'syz.7.4824': attribute type 4 has an invalid length.
[  760.242428][T20525] netlink: 'syz.7.4824': attribute type 4 has an invalid length.
[  760.619979][T20529] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4826'.
[  761.110432][T20540] netlink: 'syz.8.4831': attribute type 14 has an invalid length.
[  761.144636][T20540] netlink: 8 bytes leftover after parsing attributes in process `syz.8.4831'.
[  761.163967][T20547] overlayfs: failed to clone upperpath
[  761.170127][T20548] netlink: 24 bytes leftover after parsing attributes in process `syz.9.4834'.
[  761.469299][T20556] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4837'.
[  763.760411][T20583] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4844'.
[  763.792109][T20579] netlink: 4 bytes leftover after parsing attributes in process `syz.9.4843'.
[  763.841695][T20579] netlink: 4 bytes leftover after parsing attributes in process `syz.9.4843'.
[  763.973006][T20585] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4844'.
[  764.053538][T20579] netlink: 4 bytes leftover after parsing attributes in process `syz.9.4843'.
[  765.947550][T20598] netlink: 8 bytes leftover after parsing attributes in process `syz.7.4848'.
[  766.649348][T20617] netlink: 4 bytes leftover after parsing attributes in process `syz.7.4855'.
[  766.771701][T12707] libceph: connect (1)[c::]:6789 error -101
[  766.775724][T20617] netlink: 12 bytes leftover after parsing attributes in process `syz.7.4855'.
[  766.801698][T12707] libceph: mon0 (1)[c::]:6789 connect error
[  766.818618][T20618] ceph: No mds server is up or the cluster is laggy
[  767.863195][T20642] netlink: 'syz.8.4861': attribute type 10 has an invalid length.
[  767.873806][T20642] netlink: 40 bytes leftover after parsing attributes in process `syz.8.4861'.
[  767.894356][T20642] team0: Port device geneve0 added
[  767.900413][ T3817] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  767.912704][ T3817] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  767.922267][ T3817] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  767.931423][ T3817] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  768.006220][T20647] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  768.039112][T20647] x_tables: ip_tables: rpfilter match: used from hooks FORWARD, but only valid from PREROUTING
[  768.849908][T20666] sit2: entered allmulticast mode
[  776.803466][T20765] netlink: 'syz.0.4904': attribute type 29 has an invalid length.
[  777.011227][T20765] netlink: 'syz.0.4904': attribute type 29 has an invalid length.
[  779.042307][   T30] kauditd_printk_skb: 85 callbacks suppressed
[  779.042325][   T30] audit: type=1326 audit(1765254881.742:754): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20793 comm="syz.8.4914" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a1bb8f749 code=0x7ffc0000
[  779.109240][   T30] audit: type=1326 audit(1765254881.742:755): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20793 comm="syz.8.4914" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a1bb8f749 code=0x7ffc0000
[  779.166653][   T30] audit: type=1326 audit(1765254881.772:756): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20793 comm="syz.8.4914" exe="/root/syz-executor" sig=0 arch=c000003e syscall=101 compat=0 ip=0x7f0a1bb8f749 code=0x7ffc0000
[  779.234966][   T30] audit: type=1326 audit(1765254881.772:757): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20793 comm="syz.8.4914" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a1bb8f749 code=0x7ffc0000
[  779.294965][   T30] audit: type=1326 audit(1765254881.772:758): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20793 comm="syz.8.4914" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a1bb8f749 code=0x7ffc0000
[  779.362406][   T30] audit: type=1326 audit(1765254881.772:759): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20793 comm="syz.8.4914" exe="/root/syz-executor" sig=0 arch=c000003e syscall=434 compat=0 ip=0x7f0a1bb8f749 code=0x7ffc0000
[  779.417125][   T30] audit: type=1326 audit(1765254881.772:760): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20793 comm="syz.8.4914" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a1bb8f749 code=0x7ffc0000
[  779.478744][   T30] audit: type=1326 audit(1765254881.772:761): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20793 comm="syz.8.4914" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a1bb8f749 code=0x7ffc0000
[  779.537491][   T30] audit: type=1326 audit(1765254881.772:762): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20793 comm="syz.8.4914" exe="/root/syz-executor" sig=0 arch=c000003e syscall=448 compat=0 ip=0x7f0a1bb8f749 code=0x7ffc0000
[  779.684024][   T30] audit: type=1326 audit(1765254881.772:763): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20793 comm="syz.8.4914" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a1bb8f749 code=0x7ffc0000
[  783.052319][T20865] netlink: 8 bytes leftover after parsing attributes in process `syz.9.4937'.
[  784.477699][T20879] overlayfs: failed to clone upperpath
[  784.521453][T20879] overlayfs: failed to clone upperpath
[  784.818999][T20884] netlink: set zone limit has 4 unknown bytes
[  786.683038][T20915] netlink: 'syz.9.4953': attribute type 1 has an invalid length.
[  786.822512][T20917] netlink: 4 bytes leftover after parsing attributes in process `syz.9.4953'.
[  786.889397][T20915] 8021q: adding VLAN 0 to HW filter on device bond3
[  793.561928][T21005] netlink: 8 bytes leftover after parsing attributes in process `syz.8.4984'.
[  793.692917][T21005] netlink: 8 bytes leftover after parsing attributes in process `syz.8.4984'.
[  799.640279][T21087] cifs: Unknown parameter 'no'‘a�£Nð[G¶zob,erèèµ;%j¸¼
[  799.640279][T21087] ‡üzæ,€@q¬Ú÷ôÐåéJ#³"ŽÚh/.�W1ȱ¨nNCº"†CÙ×ðÚ<“™+`# ÷Ž¢k²–'
[  799.758591][T21087] CIFS mount error: No usable UNC path provided in device string!
[  799.758591][T21087] 
[  799.897453][T21087] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  800.815860][T21107] netlink: 'syz.7.5012': attribute type 1 has an invalid length.
[  801.435772][T21110] bond3: (slave gretap2): making interface the new active one
[  801.475275][T21110] bond3: (slave gretap2): Enslaving as an active interface with an up link
[  801.576094][T21113] vlan2: entered allmulticast mode
[  801.581488][T21113] bond3: entered allmulticast mode
[  801.732292][T21113] gretap2: entered allmulticast mode
[  801.774799][T21113] bond3: (slave vlan2): the slave hw address is in use by the bond; couldn't find a slave with a free hw address to give it (this should not have happened)
[  803.396048][T21137] netlink: 256 bytes leftover after parsing attributes in process `syz.0.5021'.
[  803.569062][T21137] syz_tun: entered allmulticast mode
[  803.589872][T21136] syz_tun: left allmulticast mode
[  805.306162][T21165] trusted_key: encrypted_key: insufficient parameters specified
[  805.944073][T21180] netlink: 'syz.9.5034': attribute type 16 has an invalid length.
[  805.961183][T21180] netlink: 'syz.9.5034': attribute type 17 has an invalid length.
[  805.973997][T21180] team0: left promiscuous mode
[  806.044215][T21180] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  808.817447][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  808.825532][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  809.188070][T21238] netlink: 'syz.0.5056': attribute type 6 has an invalid length.
[  809.229576][T21237] delete_channel: no stack
[  810.080188][T21243] orangefs_mount: mount request failed with -4
[  810.741390][   T30] kauditd_printk_skb: 188 callbacks suppressed
[  810.741407][   T30] audit: type=1326 audit(1765254913.432:952): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21270 comm="syz.8.5066" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a1bb8f749 code=0x7ffc0000
[  811.171546][   T30] audit: type=1326 audit(1765254913.522:953): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21270 comm="syz.8.5066" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f0a1bb8f749 code=0x7ffc0000
[  811.195093][   T30] audit: type=1326 audit(1765254913.522:954): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21270 comm="syz.8.5066" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a1bb8f749 code=0x7ffc0000
[  811.218185][   T30] audit: type=1326 audit(1765254913.532:955): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21270 comm="syz.8.5066" exe="/root/syz-executor" sig=0 arch=c000003e syscall=328 compat=0 ip=0x7f0a1bb8f749 code=0x7ffc0000
[  811.494460][   T30] audit: type=1326 audit(1765254913.532:956): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21270 comm="syz.8.5066" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a1bb8f749 code=0x7ffc0000
[  811.554421][   T30] audit: type=1326 audit(1765254913.532:957): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21270 comm="syz.8.5066" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0a1bb8f749 code=0x7ffc0000
[  811.579667][T21282] netlink: 12 bytes leftover after parsing attributes in process `syz.9.5068'.
[  811.966481][   T30] audit: type=1326 audit(1765254913.532:958): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21270 comm="syz.8.5066" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a1bb8f749 code=0x7ffc0000
[  811.989589][   T30] audit: type=1326 audit(1765254913.532:959): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21270 comm="syz.8.5066" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0a1bb8f749 code=0x7ffc0000
[  812.021231][   T30] audit: type=1326 audit(1765254913.532:960): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21270 comm="syz.8.5066" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a1bb8f749 code=0x7ffc0000
[  812.058057][   T30] audit: type=1326 audit(1765254913.532:961): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21270 comm="syz.8.5066" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0a1bb8f749 code=0x7ffc0000
[  813.024199][T21300] netlink: 28 bytes leftover after parsing attributes in process `syz.7.5076'.
[  813.158553][T21300] netlink: 28 bytes leftover after parsing attributes in process `syz.7.5076'.
[  817.239373][   T30] kauditd_printk_skb: 13 callbacks suppressed
[  817.239391][   T30] audit: type=1326 audit(1765254919.932:975): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21342 comm="syz.8.5087" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a1bb8f749 code=0x7ffc0000
[  817.332803][   T30] audit: type=1326 audit(1765254919.932:976): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21342 comm="syz.8.5087" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a1bb8f749 code=0x7ffc0000
[  817.359692][   T30] audit: type=1326 audit(1765254919.932:977): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21342 comm="syz.8.5087" exe="/root/syz-executor" sig=0 arch=c000003e syscall=138 compat=0 ip=0x7f0a1bb8f749 code=0x7ffc0000
[  817.383056][   T30] audit: type=1326 audit(1765254919.932:978): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21342 comm="syz.8.5087" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a1bb8f749 code=0x7ffc0000
[  817.444318][   T30] audit: type=1326 audit(1765254919.932:979): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21342 comm="syz.8.5087" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a1bb8f749 code=0x7ffc0000
[  818.255091][   T49] Process accounting resumed
[  820.855266][T21419] netlink: 24 bytes leftover after parsing attributes in process `syz.0.5110'.
[  824.418229][   T30] audit: type=1326 audit(1765254927.112:980): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21473 comm="syz.0.5126" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcfb7f8f749 code=0x7ffc0000
[  824.425915][T21474] netlink: 180 bytes leftover after parsing attributes in process `syz.0.5126'.
[  824.465390][T21475] netlink: 'syz.8.5124': attribute type 1 has an invalid length.
[  824.490010][T21475] netlink: 'syz.8.5124': attribute type 4 has an invalid length.
[  824.924416][   T30] audit: type=1326 audit(1765254927.112:981): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21473 comm="syz.0.5126" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fcfb7f8f749 code=0x7ffc0000
[  824.948323][   T30] audit: type=1326 audit(1765254927.112:982): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21473 comm="syz.0.5126" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcfb7f8f749 code=0x7ffc0000
[  824.978000][   T30] audit: type=1326 audit(1765254927.112:983): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21473 comm="syz.0.5126" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcfb7f8f749 code=0x7ffc0000
[  825.001554][T21475] netlink: 15334 bytes leftover after parsing attributes in process `syz.8.5124'.
[  825.013963][T21480] netlink: 180 bytes leftover after parsing attributes in process `syz.0.5126'.
[  825.023446][   T30] audit: type=1326 audit(1765254927.112:984): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21473 comm="syz.0.5126" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7fcfb7f8f749 code=0x7ffc0000
[  825.140764][   T30] audit: type=1326 audit(1765254927.112:985): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21473 comm="syz.0.5126" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcfb7f8f749 code=0x7ffc0000
[  825.164246][   T30] audit: type=1326 audit(1765254927.112:986): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21473 comm="syz.0.5126" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcfb7f8f749 code=0x7ffc0000
[  825.193258][T21480] netlink: 180 bytes leftover after parsing attributes in process `syz.0.5126'.
[  825.201461][   T30] audit: type=1326 audit(1765254927.112:987): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21473 comm="syz.0.5126" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fcfb7f8f749 code=0x7ffc0000
[  825.250571][   T30] audit: type=1326 audit(1765254927.112:988): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21473 comm="syz.0.5126" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcfb7f8f749 code=0x7ffc0000
[  825.327081][   T30] audit: type=1326 audit(1765254927.112:989): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21473 comm="syz.0.5126" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fcfb7f8f749 code=0x7ffc0000
[  830.106607][T21579] bond1: left promiscuous mode
[  830.111641][T21579] bond2: left promiscuous mode
[  830.253414][T21580] netlink: 4 bytes leftover after parsing attributes in process `syz.9.5154'.
[  830.543525][T21589] netlink: 24 bytes leftover after parsing attributes in process `syz.5.5157'.
[  834.397649][T21633] batadv_slave_0: entered promiscuous mode
[  834.718994][T21640] netlink: 'syz.9.5172': attribute type 13 has an invalid length.
[  835.083461][T21651] ptrace attach of "./syz-executor exec"[14020] was attempted by "./syz-executor exec"[21651]
[  835.199458][T21640] batman_adv: batadv0: Interface deactivated: dummy0
[  837.598171][ T6894] netdevsim netdevsim9 eth0: unset [0, 0] type 1 family 0 port 8472 - 0
[  837.631934][ T6894] netdevsim netdevsim9 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  837.673405][ T6894] netdevsim netdevsim9 eth1: unset [0, 0] type 1 family 0 port 8472 - 0
[  837.692054][ T6894] netdevsim netdevsim9 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  837.702439][ T6894] netdevsim netdevsim9 eth2: unset [0, 0] type 1 family 0 port 8472 - 0
[  837.714520][ T6894] netdevsim netdevsim9 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  837.832421][ T6894] netdevsim netdevsim9 eth3: unset [0, 0] type 1 family 0 port 8472 - 0
[  837.861428][ T6894] netdevsim netdevsim9 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  839.132009][T21703] netlink: 'syz.0.5191': attribute type 1 has an invalid length.
[  839.282721][T21703] 8021q: adding VLAN 0 to HW filter on device bond2
[  839.497555][T21713] overlayfs: failed to clone upperpath
[  842.872376][T21752] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  843.637029][T21752] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  844.206164][T21752] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  844.741376][T21752] bond0: (slave netdevsim0): Releasing backup interface
[  844.919825][T21752] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  846.290322][ T6894] netdevsim netdevsim8 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  846.874735][ T6894] netdevsim netdevsim8 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  846.913471][ T6894] netdevsim netdevsim8 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  846.975824][ T6894] netdevsim netdevsim8 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  848.569916][T21826] netlink: 'syz.0.5227': attribute type 12 has an invalid length.
[  849.330279][T21838] netlink: 28 bytes leftover after parsing attributes in process `syz.5.5231'.
[  849.359335][T21838] netlink: 'syz.5.5231': attribute type 7 has an invalid length.
[  849.381081][T21838] netlink: 'syz.5.5231': attribute type 8 has an invalid length.
[  849.390376][T21838] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5231'.
[  849.791576][T21848] overlayfs: failed to clone upperpath
[  850.673061][   T30] kauditd_printk_skb: 7 callbacks suppressed
[  850.673077][   T30] audit: type=1800 audit(3912738601.376:997): pid=21864 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.8.5239" name="bus" dev="tmpfs" ino=5849 res=0 errno=0
[  851.751450][T21873] CIFS mount error: No usable UNC path provided in device string!
[  851.751450][T21873] 
[  851.761648][T21873] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  853.134071][T21898] netlink: 'syz.5.5251': attribute type 1 has an invalid length.
[  853.232312][T21898] bond6: entered promiscuous mode
[  853.281894][T21898] 8021q: adding VLAN 0 to HW filter on device bond6
[  853.372505][T21901] 8021q: adding VLAN 0 to HW filter on device bond6
[  853.407539][T21901] bond6: (slave gre7): The slave device specified does not support setting the MAC address
[  853.448986][T21901] bond6: (slave gre7): Setting fail_over_mac to active for active-backup mode
[  853.532864][T21901] bond6: (slave gre7): making interface the new active one
[  853.553205][T21901] gre7: entered promiscuous mode
[  853.612996][T21901] bond6: (slave gre7): Enslaving as an active interface with an up link
[  853.913929][T21914] netdevsim netdevsim5 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  853.952323][T21914] netdevsim netdevsim5 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  854.213572][T21914] netdevsim netdevsim5 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  854.242672][T21914] netdevsim netdevsim5 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  854.590577][T21914] netdevsim netdevsim5 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  854.613731][T21914] netdevsim netdevsim5 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  855.056721][ T5844] Bluetooth: hci5: unexpected event for opcode 0x1005
[  855.087667][T21914] netdevsim netdevsim5 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  855.118064][T21914] netdevsim netdevsim5 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  855.169317][T21928] tipc: Failed to remove unknown binding: 66,1,1/0:1734958993/1734958995
[  855.491768][ T7150] netdevsim netdevsim5 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  855.499995][ T7150] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  855.597448][ T7150] netdevsim netdevsim5 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  855.691803][ T7150] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  855.727984][ T7150] netdevsim netdevsim5 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  856.028623][T21926] tipc: Failed to remove unknown binding: 66,1,1/0:1734958993/1734958995
[  856.057162][T21926] tipc: Failed to remove unknown binding: 66,1,1/0:1734958993/1734958995
[  856.064309][ T7150] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  856.147772][ T7150] netdevsim netdevsim5 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  856.184866][ T7150] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  857.438654][T21963] netlink: 'syz.8.5273': attribute type 33 has an invalid length.
[  857.457356][T21963] netlink: 152 bytes leftover after parsing attributes in process `syz.8.5273'.
[  857.498436][T21963] netlink: 4 bytes leftover after parsing attributes in process `syz.8.5273'.
[  858.409869][T21963] bond1: (slave dummy0): Releasing active interface
[  861.384806][T22012] netlink: 'syz.5.5288': attribute type 10 has an invalid length.
[  861.465337][T22012] netlink: 2 bytes leftover after parsing attributes in process `syz.5.5288'.
[  861.806327][T22012] team0: entered promiscuous mode
[  861.838828][T22012] team_slave_0: entered promiscuous mode
[  861.870359][T22012] team_slave_1: entered promiscuous mode
[  861.955769][T22012] geneve0: entered promiscuous mode
[  862.452697][T22038] overlayfs: failed to clone upperpath
[  870.404036][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  870.410410][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  870.532670][T22151] netlink: 4 bytes leftover after parsing attributes in process `syz.8.5330'.
[  870.545437][T22151] team1 (uninitialized): Failed to send options change via netlink (err -105)
[  870.647231][T22151] team1: entered promiscuous mode
[  870.770128][T22151] team1: entered allmulticast mode
[  870.777535][T22150] batadv_slave_1: entered promiscuous mode
[  870.786606][T22149] batadv_slave_1: left promiscuous mode
[  872.088512][ T6894] netdevsim netdevsim8 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  872.121384][ T6894] netdevsim netdevsim8 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  872.201597][ T6894] netdevsim netdevsim8 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  872.221246][ T6894] netdevsim netdevsim8 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  874.713088][ T5844] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci3/hci3:201'
[  874.731130][ T5844] CPU: 1 UID: 0 PID: 5844 Comm: kworker/u9:7 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  874.731160][ T5844] Tainted: [L]=SOFTLOCKUP
[  874.731166][ T5844] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  874.731176][ T5844] Workqueue: hci3 hci_rx_work
[  874.731202][ T5844] Call Trace:
[  874.731209][ T5844]  <TASK>
[  874.731219][ T5844]  dump_stack_lvl+0x189/0x250
[  874.731246][ T5844]  ? __pfx_dump_stack_lvl+0x10/0x10
[  874.731265][ T5844]  ? __pfx__printk+0x10/0x10
[  874.731295][ T5844]  ? kernfs_path_from_node+0x250/0x290
[  874.731314][ T5844]  ? kernfs_path_from_node+0x2f/0x290
[  874.731336][ T5844]  sysfs_create_dir_ns+0x259/0x280
[  874.731361][ T5844]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  874.731382][ T5844]  ? do_raw_spin_unlock+0x122/0x240
[  874.731409][ T5844]  kobject_add_internal+0x6ab/0xcc0
[  874.731437][ T5844]  kobject_add+0x155/0x220
[  874.731472][ T5844]  ? __pfx_kobject_add+0x10/0x10
[  874.731493][ T5844]  ? _raw_spin_unlock+0x28/0x50
[  874.731518][ T5844]  ? get_device_parent+0x366/0x3a0
[  874.731545][ T5844]  device_add+0x408/0xb80
[  874.731571][ T5844]  hci_conn_add_sysfs+0xd5/0x210
[  874.731598][ T5844]  le_conn_complete_evt+0xf1d/0x1420
[  874.731629][ T5844]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  874.731646][ T5844]  ? __mutex_unlock_slowpath+0x1a1/0x730
[  874.731661][ T5844]  ? __asan_memcpy+0x40/0x70
[  874.731684][ T5844]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  874.731698][ T5844]  ? skb_pull_data+0xfb/0x200
[  874.731724][ T5844]  hci_le_conn_complete_evt+0x187/0x480
[  874.731751][ T5844]  hci_event_packet+0x78f/0x1260
[  874.731770][ T5844]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  874.731794][ T5844]  ? __pfx_hci_event_packet+0x10/0x10
[  874.731811][ T5844]  ? kcov_remote_start+0x4d3/0x7f0
[  874.731834][ T5844]  ? lockdep_hardirqs_on+0x98/0x140
[  874.731853][ T5844]  ? hci_send_to_monitor+0xe2/0x590
[  874.731876][ T5844]  hci_rx_work+0x3ee/0x1060
[  874.731906][ T5844]  ? process_one_work+0x868/0x15a0
[  874.731923][ T5844]  process_one_work+0x93a/0x15a0
[  874.731965][ T5844]  ? __pfx_process_one_work+0x10/0x10
[  874.731992][ T5844]  ? assign_work+0x3c7/0x5b0
[  874.732016][ T5844]  worker_thread+0x9b0/0xee0
[  874.732063][ T5844]  kthread+0x711/0x8a0
[  874.732089][ T5844]  ? __pfx_worker_thread+0x10/0x10
[  874.732108][ T5844]  ? __pfx_kthread+0x10/0x10
[  874.732131][ T5844]  ? _raw_spin_unlock_irq+0x23/0x50
[  874.732153][ T5844]  ? lockdep_hardirqs_on+0x98/0x140
[  874.732168][ T5844]  ? __pfx_kthread+0x10/0x10
[  874.732190][ T5844]  ret_from_fork+0x599/0xb30
[  874.732209][ T5844]  ? __pfx_ret_from_fork+0x10/0x10
[  874.732234][ T5844]  ? __switch_to_asm+0x39/0x70
[  874.732256][ T5844]  ? __switch_to_asm+0x33/0x70
[  874.732274][ T5844]  ? __pfx_kthread+0x10/0x10
[  874.732297][ T5844]  ret_from_fork_asm+0x1a/0x30
[  874.732337][ T5844]  </TASK>
[  874.732368][ T5844] kobject: kobject_add_internal failed for hci3:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  874.792225][T22202] netlink: 24 bytes leftover after parsing attributes in process `syz.8.5343'.
[  874.794720][ T5844] Bluetooth: hci3: failed to register connection device
[  875.548311][   T30] audit: type=1804 audit(3912738626.236:998): pid=22212 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.8.5347" name="bus" dev="ramfs" ino=76476 res=1 errno=0
[  875.933817][   T30] audit: type=1804 audit(3912738626.606:999): pid=22212 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.8.5347" name="bus" dev="ramfs" ino=76476 res=1 errno=0
[  876.004098][T22214] ptrace attach of "./syz-executor exec"[22213] was attempted by "./syz-executor exec"[22214]
[  877.766435][T22236] netlink: 'syz.7.5352': attribute type 10 has an invalid length.
[  877.781213][T22236] netlink: 2 bytes leftover after parsing attributes in process `syz.7.5352'.
[  877.955788][T22236] team0: entered promiscuous mode
[  877.966116][T22236] bridge0: entered promiscuous mode
[  878.305240][T22236] 8021q: adding VLAN 0 to HW filter on device team0
[  879.496995][T22269] Process accounting resumed
[  879.644630][T22276] netlink: 32 bytes leftover after parsing attributes in process `syz.9.5363'.
[  879.654047][T22276] netlink: 32 bytes leftover after parsing attributes in process `syz.9.5363'.
[  881.358534][T22301] netlink: 'syz.8.5369': attribute type 10 has an invalid length.
[  881.377654][   T30] audit: type=1804 audit(3912738632.056:1000): pid=22302 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.7.5379" name="file0" dev="tmpfs" ino=6233 res=1 errno=0
[  881.381587][T22301] netlink: 2 bytes leftover after parsing attributes in process `syz.8.5369'.
[  881.400100][T22302] ref_ctr going negative. vaddr: 0x200000ffd002, curr val: -14123, delta: 1
[  881.407930][T22301] team0: entered promiscuous mode
[  881.422386][T22301] team_slave_0: entered promiscuous mode
[  881.428460][T22301] team_slave_1: entered promiscuous mode
[  881.434719][T22301] geneve0: entered promiscuous mode
[  881.446689][T22301] 8021q: adding VLAN 0 to HW filter on device team0
[  881.511774][T22302] ref_ctr increment failed for inode: 0x1859 offset: 0x5 ref_ctr_offset: 0x2 of mm: 0xffff8880213e4980
[  881.512234][T22301] bond0: (slave team0): Releasing backup interface
[  881.656409][T22307] ref_ctr going negative. vaddr: 0x200000ffd002, curr val: -14123, delta: -1
[  881.751891][T22307] ref_ctr decrement failed for inode: 0x1859 offset: 0x5 ref_ctr_offset: 0x2 of mm: 0xffff8880213e4980
[  881.864385][T22307] uprobe: syz.7.5379:22307 failed to unregister, leaking uprobe
[  885.865909][T22359] netlink: 'syz.0.5387': attribute type 1 has an invalid length.
[  886.410011][T22367] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5387'.
[  886.576413][T22364] ip6gre2: entered promiscuous mode
[  887.042814][T22364] bond3: (slave ip6gre2): The slave device specified does not support setting the MAC address
[  887.078042][T22364] bond3: (slave ip6gre2): Setting fail_over_mac to active for active-backup mode
[  887.110706][T22364] bond3: (slave ip6gre2): making interface the new active one
[  887.140888][T22364] bond3: (slave ip6gre2): Enslaving as an active interface with an up link
[  888.142233][T22367] bond3 (unregistering): (slave ip6gre2): Releasing backup interface
[  888.206507][T22367] bond3 (unregistering): Released all slaves
[  888.701488][T22387] netlink: 'syz.9.5395': attribute type 12 has an invalid length.
[  891.667682][T22445] netlink: 'syz.8.5409': attribute type 1 has an invalid length.
[  891.720085][T22445] 8021q: adding VLAN 0 to HW filter on device bond3
[  891.767570][T22449] bond3: (slave geneve3): making interface the new active one
[  891.795551][T22449] bond3: (slave geneve3): Enslaving as an active interface with an up link
[  891.834612][T21375] netdevsim netdevsim8 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  891.869124][T21375] netdevsim netdevsim8 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  891.893959][T21375] netdevsim netdevsim8 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  892.221306][T21375] netdevsim netdevsim8 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  892.833644][T22468] futex_wake_op: syz.7.5413 tries to shift op by -1; fix this program
[  896.503322][T22509] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  896.737791][T22509] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  896.929335][T22509] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  897.060572][T22509] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  897.360134][T13815] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  897.423128][T21375] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  897.479763][T21375] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  897.564133][T14282] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  901.829315][T22582] netlink: 96 bytes leftover after parsing attributes in process `syz.5.5442'.
[  902.183015][T22589] x_tables: ip_tables: rpfilter match: used from hooks FORWARD, but only valid from PREROUTING
[  905.806745][   T30] audit: type=1804 audit(3912738656.506:1001): pid=22635 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.9.5462" name="bus" dev="ramfs" ino=78166 res=1 errno=0
[  905.871752][   T30] audit: type=1804 audit(3912738656.506:1002): pid=22635 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.9.5462" name="bus" dev="ramfs" ino=78166 res=1 errno=0
[  909.640773][T22681] netlink: 'syz.8.5476': attribute type 64 has an invalid length.
[  909.666936][T22681] netlink: 'syz.8.5476': attribute type 4 has an invalid length.
[  911.326715][T22706] netlink: 12 bytes leftover after parsing attributes in process `syz.8.5483'.
[  914.212017][T22750] fuse: Unknown parameter 'fd0x0000000000000004'
[  916.549846][T22772] netlink: 64 bytes leftover after parsing attributes in process `syz.7.5501'.
[  916.766967][   T30] audit: type=1804 audit(3912738667.386:1003): pid=22775 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.5503" name="bus" dev="ramfs" ino=78432 res=1 errno=0
[  916.891092][   T30] audit: type=1804 audit(3912738667.386:1004): pid=22775 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.5503" name="bus" dev="ramfs" ino=78432 res=1 errno=0
[  918.343025][T22804] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  918.409087][T22804] netlink: 'syz.0.5510': attribute type 10 has an invalid length.
[  918.437166][T22804] bridge0: port 3(vlan3) entered disabled state
[  918.703434][T22804] 8021q: adding VLAN 0 to HW filter on device bond0
[  918.737096][T22804] team0: Port device bond0 added
[  919.461821][   T30] audit: type=1326 audit(3912738670.166:1005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22817 comm="syz.5.5516" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ba6b8f749 code=0x7ffc0000
[  919.718747][   T30] audit: type=1326 audit(3912738670.166:1006): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22817 comm="syz.5.5516" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f8ba6b8f749 code=0x7ffc0000
[  919.959490][   T30] audit: type=1326 audit(3912738670.166:1007): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22817 comm="syz.5.5516" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ba6b8f749 code=0x7ffc0000
[  920.313007][   T30] audit: type=1326 audit(3912738670.166:1008): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22817 comm="syz.5.5516" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7f8ba6b8f749 code=0x7ffc0000
[  920.351958][   T30] audit: type=1326 audit(3912738670.166:1009): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22817 comm="syz.5.5516" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ba6b8f749 code=0x7ffc0000
[  920.374864][   T30] audit: type=1326 audit(3912738670.166:1010): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22817 comm="syz.5.5516" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f8ba6b8f749 code=0x7ffc0000
[  920.399168][   T30] audit: type=1326 audit(3912738670.166:1011): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22817 comm="syz.5.5516" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ba6b8f749 code=0x7ffc0000
[  920.423895][   T30] audit: type=1326 audit(3912738670.166:1012): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22817 comm="syz.5.5516" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f8ba6b8f749 code=0x7ffc0000
[  923.424356][T22870] netlink: 'syz.9.5527': attribute type 10 has an invalid length.
[  930.163100][T22966] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5558'.
[  931.675665][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  931.683085][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  932.405367][T22983] netlink: 'syz.5.5561': attribute type 7 has an invalid length.
[  932.413675][T22983] netlink: 'syz.5.5561': attribute type 5 has an invalid length.
[  932.421540][T22983] netlink: 17 bytes leftover after parsing attributes in process `syz.5.5561'.
[  932.838006][T22989] netlink: 'syz.0.5564': attribute type 3 has an invalid length.
[  937.972395][T23053] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5582'.
[  938.012535][T23053] netlink: 24 bytes leftover after parsing attributes in process `syz.0.5582'.
[  939.478959][T23078] netlink: 'syz.5.5589': attribute type 1 has an invalid length.
[  942.941405][T23115] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5598'.
[  942.972815][T23115] netlink: 'syz.0.5598': attribute type 3 has an invalid length.
[  944.595555][   T30] kauditd_printk_skb: 35 callbacks suppressed
[  944.595575][   T30] audit: type=1326 audit(3912738695.296:1048): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23128 comm="syz.8.5602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a1bb8f749 code=0x7ffc0000
[  945.126104][   T30] audit: type=1326 audit(3912738695.296:1049): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23128 comm="syz.8.5602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a1bb8f749 code=0x7ffc0000
[  945.191628][   T30] audit: type=1326 audit(3912738695.336:1050): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23128 comm="syz.8.5602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7f0a1bb8f749 code=0x7ffc0000
[  945.284895][   T30] audit: type=1326 audit(3912738695.336:1051): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23128 comm="syz.8.5602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a1bb8f749 code=0x7ffc0000
[  945.376759][   T30] audit: type=1326 audit(3912738695.336:1052): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23128 comm="syz.8.5602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a1bb8f749 code=0x7ffc0000
[  945.505902][   T30] audit: type=1326 audit(3912738695.336:1053): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23128 comm="syz.8.5602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f0a1bb8f749 code=0x7ffc0000
[  945.530584][   T30] audit: type=1326 audit(3912738695.336:1054): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23128 comm="syz.8.5602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a1bb8f749 code=0x7ffc0000
[  945.594915][   T30] audit: type=1326 audit(3912738695.336:1055): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23128 comm="syz.8.5602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f0a1bb8f749 code=0x7ffc0000
[  945.683633][   T30] audit: type=1326 audit(3912738695.336:1056): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23128 comm="syz.8.5602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a1bb8f749 code=0x7ffc0000
[  946.215676][   T30] audit: type=1326 audit(3912738695.336:1057): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23128 comm="syz.8.5602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f0a1bb8f749 code=0x7ffc0000
[  946.317843][T23148] netlink: 12 bytes leftover after parsing attributes in process `syz.8.5608'.
[  946.478933][T23148] bond4: (slave bridge5): Enslaving as an active interface with an up link
[  947.422612][T23148] macvlan2: entered promiscuous mode
[  947.427931][T23148] macvlan2: entered allmulticast mode
[  947.548972][T23148] bond4: entered promiscuous mode
[  947.574490][T23148] bridge5: entered promiscuous mode
[  947.592428][T23148] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  948.008005][T23148] bond4: left promiscuous mode
[  948.021522][T23148] bridge5: left promiscuous mode
[  949.864386][T23194] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5624'.
[  953.742642][   T30] kauditd_printk_skb: 45 callbacks suppressed
[  953.742659][   T30] audit: type=1326 audit(3912738704.446:1103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23244 comm="syz.5.5638" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f8ba6b8f749 code=0x0
[  953.829815][T23246] xt_TPROXY: Can be used only with -p tcp or -p udp
[  958.562273][T23313] add_ndev_hash(wg1) on ffff88807c7c4000 done
[  958.573299][T23313] wg1 speed is unknown, defaulting to 1000
[  958.591635][T23313] wg1 speed is unknown, defaulting to 1000
[  958.643223][T23313] wg1 speed is unknown, defaulting to 1000
[  958.749918][T23313] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  958.882814][T23316] netlink: 'syz.5.5656': attribute type 1 has an invalid length.
[  959.163773][T23316] bond7: entered promiscuous mode
[  959.169516][T23316] 8021q: adding VLAN 0 to HW filter on device bond7
[  959.436586][T23320] bond7: (slave ipvlan0): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond.
[  959.467312][T23320] bond7: (slave ipvlan0): The slave device specified does not support setting the MAC address
[  959.480584][T23320] bond7: (slave ipvlan0): Setting fail_over_mac to active for active-backup mode
[  960.098399][T23313] wg1 speed is unknown, defaulting to 1000
[  960.128292][T23313] wg1 speed is unknown, defaulting to 1000
[  960.137206][T23313] wg1 speed is unknown, defaulting to 1000
[  960.146401][T23313] wg1 speed is unknown, defaulting to 1000
[  960.158688][T23313] wg1 speed is unknown, defaulting to 1000
[  960.690446][T23340] netlink: 'syz.7.5663': attribute type 4 has an invalid length.
[  961.385875][   T30] audit: type=1326 audit(3912738712.086:1104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23345 comm="syz.9.5666" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f90b678f749 code=0x0
[  966.088809][T23431] netlink: 'syz.0.5687': attribute type 14 has an invalid length.
[  969.200781][T23470] ref_ctr increment failed for inode: 0x18d9 offset: 0x5 ref_ctr_offset: 0x1000 of mm: 0xffff888057053100
[  970.233421][T23490] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
[  970.351713][T23490] netlink: 'syz.5.5702': attribute type 10 has an invalid length.
[  970.383983][T23490] 8021q: adding VLAN 0 to HW filter on device bond0
[  970.422018][T23490] bond0: entered promiscuous mode
[  970.543952][T23490] bond_slave_0: entered promiscuous mode
[  970.550412][T23490] bond_slave_1: entered promiscuous mode
[  970.559202][T23490] team0: Port device bond0 added
[  971.872143][T23513] netlink: 277 bytes leftover after parsing attributes in process `syz.9.5706'.
[  973.600802][T23532] bridge0: entered allmulticast mode
[  975.300202][T23555] netlink: 12 bytes leftover after parsing attributes in process `syz.7.5719'.
[  975.388287][T23555] bridge3: port 1(veth13) entered blocking state
[  975.396887][T23555] bridge3: port 1(veth13) entered disabled state
[  975.403584][T23555] veth13: entered allmulticast mode
[  975.410235][T23555] veth13: entered promiscuous mode
[  975.877571][T23557] bridge3: port 2(veth15) entered blocking state
[  975.884395][T23557] bridge3: port 2(veth15) entered disabled state
[  975.892034][T23557] veth15: entered allmulticast mode
[  976.936329][T23557] veth15: entered promiscuous mode
[  977.547650][T23582] netlink: 8 bytes leftover after parsing attributes in process `syz.9.5727'.
[  977.560255][T23582] netlink: 'syz.9.5727': attribute type 30 has an invalid length.
[  977.772553][T13812] netdevsim netdevsim9 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  977.781621][T13812] netdevsim netdevsim9 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  977.800440][T13812] netdevsim netdevsim9 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  977.814387][T13812] netdevsim netdevsim9 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  978.679162][T23613] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5736'.
[  979.507789][T23625] netlink: 16 bytes leftover after parsing attributes in process `syz.8.5739'.
[  981.727758][T23651] ptrace attach of "./syz-executor exec"[9934] was attempted by "\x09   
                   Àÿ      Àÿ      Ðÿ      àÿ              ðÿ      °ÿ      Àÿ                 ÿÿÿÿ                                                                                                                                                                                                                      /dev/rtc#                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                
[  982.705998][T23666] netlink: 20 bytes leftover after parsing attributes in process `syz.0.5750'.
[  982.706398][T23665] bridge1: entered allmulticast mode
[  987.974907][T23713] wg1 speed is unknown, defaulting to 1000
[  988.433428][T23726] netlink: 28 bytes leftover after parsing attributes in process `syz.7.5766'.
[  991.070664][T23764] netlink: 64 bytes leftover after parsing attributes in process `syz.9.5777'.
[  991.152784][T23762] bridge0: entered allmulticast mode
[  991.185813][T23762] vlan3: left promiscuous mode
[  991.203257][T23762] bond0: left promiscuous mode
[  991.223198][T23762] bridge0: port 3(vlan3) entered disabled state
[  992.964276][T23787] wg1 speed is unknown, defaulting to 1000
[  993.126998][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  993.133686][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  996.726330][T23827] netlink: 8 bytes leftover after parsing attributes in process `syz.8.5792'.
[  996.737558][T23827] netlink: 'syz.8.5792': attribute type 30 has an invalid length.
[  996.777273][   T12] netdevsim netdevsim8 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  996.786159][   T12] netdevsim netdevsim8 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  996.795672][   T12] netdevsim netdevsim8 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  996.804711][   T12] netdevsim netdevsim8 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  996.817283][T23832] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  996.944813][T23837] bond0: (slave wlan1): Releasing backup interface
[  996.955651][T23837] bond0: Destroying bond
[  997.107613][T23837] bond0 (unregistering): Released all slaves
[  998.141143][T23866] xt_TCPMSS: Only works on TCP SYN packets
[  998.655686][T23869] netlink: 12 bytes leftover after parsing attributes in process `syz.0.5805'.
[  998.757967][T23871] sctp: [Deprecated]: syz.5.5806 (pid 23871) Use of struct sctp_assoc_value in delayed_ack socket option.
[  998.757967][T23871] Use struct sctp_sack_info instead
[  998.973726][T23875] netlink: 24 bytes leftover after parsing attributes in process `syz.7.5808'.
[ 1003.366789][   T30] audit: type=1326 audit(3912738754.066:1105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23950 comm="syz.8.5826" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f0a1bb8f749 code=0x0
[ 1004.942045][T23967] netlink: 'syz.0.5829': attribute type 3 has an invalid length.
[ 1006.481747][T23989] netlink: 4 bytes leftover after parsing attributes in process `syz.9.5837'.
[ 1006.632731][T23989] netlink: 12 bytes leftover after parsing attributes in process `syz.9.5837'.
[ 1006.835656][T24000] netlink: 12 bytes leftover after parsing attributes in process `syz.0.5841'.
[ 1006.872524][T24001] netlink: 4 bytes leftover after parsing attributes in process `syz.8.5839'.
[ 1006.958647][T23995] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5838'.
[ 1006.981585][T23995] netlink: 'syz.5.5838': attribute type 30 has an invalid length.
[ 1007.025776][T24002] veth9: entered promiscuous mode
[ 1007.032171][T24002] veth9: entered allmulticast mode
[ 1007.332732][T24002] bridge0: port 1(veth9) entered blocking state
[ 1007.340078][T24002] bridge0: port 1(veth9) entered disabled state
[ 1007.352592][T24002] bridge0: port 1(veth9) entered blocking state
[ 1007.359149][T24002] bridge0: port 1(veth9) entered forwarding state
[ 1007.410221][T24003] veth11: entered promiscuous mode
[ 1007.416072][T24003] veth11: entered allmulticast mode
[ 1007.423799][T24003] bridge0: port 2(veth11) entered blocking state
[ 1007.434253][T24003] bridge0: port 2(veth11) entered disabled state
[ 1007.455150][T24003] bridge0: port 2(veth11) entered blocking state
[ 1007.461784][T24003] bridge0: port 2(veth11) entered forwarding state
[ 1007.475772][ T7150] bridge0: port 1(veth9) entered disabled state
[ 1007.498149][ T7150] bridge0: port 2(veth11) entered disabled state
[ 1008.878546][T24038] tipc: Started in network mode
[ 1008.884633][T24038] tipc: Node identity a6abc89b9317, cluster identity 4711
[ 1008.892567][T24038] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1009.106792][T24042] netlink: 'syz.0.5855': attribute type 1 has an invalid length.
[ 1009.288783][T24042] bond3: entered promiscuous mode
[ 1009.296544][T24042] 8021q: adding VLAN 0 to HW filter on device bond3
[ 1009.362025][T24051] bond3: (slave ipvlan2): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond.
[ 1009.376167][T24051] bond3: (slave ipvlan2): The slave device specified does not support setting the MAC address
[ 1009.701547][T24051] bond3: (slave ipvlan2): Setting fail_over_mac to active for active-backup mode
[ 1010.025500][   T49] tipc: Node number set to 901564571
[ 1010.796125][   T30] audit: type=1804 audit(3912738761.496:1106): pid=24071 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.9.5860" name="bus" dev="ramfs" ino=82643 res=1 errno=0
[ 1019.790824][T24160] : entered promiscuous mode
[ 1022.381875][T24197] netlink: 'syz.8.5894': attribute type 7 has an invalid length.
[ 1022.389963][T24197] netlink: 'syz.8.5894': attribute type 8 has an invalid length.
[ 1027.722678][T24252] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5908'.
[ 1027.808877][T24250] netlink: 'syz.0.5907': attribute type 10 has an invalid length.
[ 1028.438672][T24261] netlink: 'syz.9.5911': attribute type 39 has an invalid length.
[ 1041.558918][T13264] netdevsim netdevsim5 eth0: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1041.592547][T13264] netdevsim netdevsim5 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1041.631320][T13264] netdevsim netdevsim5 eth1: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1041.640089][T13264] netdevsim netdevsim5 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1041.671378][T13264] netdevsim netdevsim5 eth2: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1041.705225][T13264] netdevsim netdevsim5 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1041.731108][T13264] netdevsim netdevsim5 eth3: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1041.901855][T13264] netdevsim netdevsim5 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1042.371766][T24467] (syz.8.5960,24467,1):dlmfs_mkdir:421 ERROR: invalid domain name for directory.
[ 1044.139255][T24484] netlink: 4 bytes leftover after parsing attributes in process `syz.8.5963'.
[ 1045.755129][T24501] overlayfs: missing 'lowerdir'
[ 1047.175677][T24520] ptrace attach of "./syz-executor exec"[6178] was attempted by "./syz-executor exec"[24520]
[ 1054.456442][T24588] wg1 speed is unknown, defaulting to 1000
[ 1054.558591][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[ 1054.565123][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[ 1056.952812][   T30] audit: type=1326 audit(3912738807.656:1107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24607 comm="syz.0.6001" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcfb7f8f749 code=0x7ffc0000
[ 1057.020454][   T30] audit: type=1326 audit(3912738807.656:1108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24607 comm="syz.0.6001" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcfb7f8f749 code=0x7ffc0000
[ 1057.130143][   T30] audit: type=1326 audit(3912738807.776:1109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24607 comm="syz.0.6001" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fcfb7f8f749 code=0x7ffc0000
[ 1057.203102][   T30] audit: type=1326 audit(3912738807.776:1110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24607 comm="syz.0.6001" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcfb7f8f749 code=0x7ffc0000
[ 1057.246373][ T1135] netdevsim netdevsim8 eth0: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1057.267898][ T1135] netdevsim netdevsim8 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1057.294341][   T30] audit: type=1326 audit(3912738807.776:1111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24607 comm="syz.0.6001" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcfb7f8f749 code=0x7ffc0000
[ 1057.323425][ T1135] netdevsim netdevsim8 eth1: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1057.333834][ T1135] netdevsim netdevsim8 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1057.347251][ T1135] netdevsim netdevsim8 eth2: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1057.358513][ T1135] netdevsim netdevsim8 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1057.370270][ T1135] netdevsim netdevsim8 eth3: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1057.393979][ T1135] netdevsim netdevsim8 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1061.760489][T24684] netlink: 8 bytes leftover after parsing attributes in process `syz.5.6025'.
[ 1061.882702][T24688] netlink: 4 bytes leftover after parsing attributes in process `syz.5.6025'.
[ 1062.176242][T24691] set match dimension is over the limit!
[ 1069.407633][T24785] netlink: 12 bytes leftover after parsing attributes in process `syz.8.6051'.
[ 1071.733478][   T30] audit: type=1326 audit(3912738822.436:1112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24811 comm="syz.9.6062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90b678f749 code=0x7ffc0000
[ 1071.776894][T24412] IPVS: starting estimator thread 0...
[ 1071.813737][   T30] audit: type=1326 audit(3912738822.456:1113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24811 comm="syz.9.6062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90b678f749 code=0x7ffc0000
[ 1071.961590][   T30] audit: type=1326 audit(3912738822.456:1114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24811 comm="syz.9.6062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f90b678f749 code=0x7ffc0000
[ 1072.011307][   T30] audit: type=1326 audit(3912738822.456:1115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24811 comm="syz.9.6062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90b678f749 code=0x7ffc0000
[ 1072.048942][T24813] IPVS: using max 51 ests per chain, 122400 per kthread
[ 1072.090700][   T30] audit: type=1326 audit(3912738822.456:1116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24811 comm="syz.9.6062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90b678f749 code=0x7ffc0000
[ 1072.184804][   T30] audit: type=1326 audit(3912738822.456:1117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24811 comm="syz.9.6062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f90b678f749 code=0x7ffc0000
[ 1072.252471][   T30] audit: type=1326 audit(3912738822.456:1118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24811 comm="syz.9.6062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90b678f749 code=0x7ffc0000
[ 1072.292247][   T30] audit: type=1326 audit(3912738822.456:1119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24811 comm="syz.9.6062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90b678f749 code=0x7ffc0000
[ 1072.380713][   T30] audit: type=1326 audit(3912738822.456:1120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24811 comm="syz.9.6062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f90b678f749 code=0x7ffc0000
[ 1072.505815][   T30] audit: type=1326 audit(3912738822.466:1121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24811 comm="syz.9.6062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90b678f749 code=0x7ffc0000
[ 1074.192310][T24838] netlink: 'syz.0.6067': attribute type 21 has an invalid length.
[ 1074.200175][T24838] netlink: 128 bytes leftover after parsing attributes in process `syz.0.6067'.
[ 1074.209463][T24838] netlink: 'syz.0.6067': attribute type 5 has an invalid length.
[ 1074.217251][T24838] netlink: 'syz.0.6067': attribute type 6 has an invalid length.
[ 1074.225063][T24838] netlink: 3 bytes leftover after parsing attributes in process `syz.0.6067'.
[ 1075.174006][T24852] bond0: (slave bond_slave_0): Releasing backup interface
[ 1075.234392][T24852] bond0: (slave bond_slave_1): Releasing backup interface
[ 1075.259053][T24861] netlink: 'syz.8.6072': attribute type 10 has an invalid length.
[ 1075.333647][T24852] team_slave_0: left promiscuous mode
[ 1075.364066][T24852] team0: Port device team_slave_0 removed
[ 1075.370436][T24852] team_slave_1: left promiscuous mode
[ 1075.453968][T24867] netlink: 4 bytes leftover after parsing attributes in process `syz.8.6072'.
[ 1075.486811][T24852] team0: Port device team_slave_1 removed
[ 1075.496327][T24852] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1075.515934][T24852] geneve0: left promiscuous mode
[ 1075.828004][T24852] team0: Port device geneve0 removed
[ 1075.848980][T24852] bond1: (slave veth3): Releasing active interface
[ 1075.913739][T24852] bond3: (slave geneve3): Releasing active interface
[ 1075.937835][T24852] bond4: (slave bridge5): Releasing backup interface
[ 1075.966797][T24855] team0: Mode changed to "loadbalance"
[ 1075.994515][T24861] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1076.002199][T24861] bond0: entered promiscuous mode
[ 1076.008162][T24861] team0: Port device bond0 added
[ 1076.286528][T24867] bond0: left promiscuous mode
[ 1076.294820][T24867] team0 (unregistering): Port device bond0 removed
[ 1076.798063][T24880] netlink: 'syz.9.6080': attribute type 4 has an invalid length.
[ 1076.814274][T24880] netlink: 'syz.9.6080': attribute type 4 has an invalid length.
[ 1076.937752][T24884] tipc: Enabled bearer <eth:ip6gre0>, priority 10
[ 1077.431971][T24888] wg1 speed is unknown, defaulting to 1000
[ 1077.683213][T24897] tipc: Started in network mode
[ 1077.689954][T24897] tipc: Node identity 6, cluster identity 4711
[ 1077.708298][T24897] tipc: Node number set to 6
[ 1079.244797][T24920] tipc: Failed to remove unknown binding: 66,1,1/0:2370147475/2370147477
[ 1079.302680][T24920] tipc: Failed to remove unknown binding: 66,1,1/0:2370147475/2370147477
[ 1082.928856][T24969] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6101'.
[ 1082.974419][T24964] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6101'.
[ 1084.430144][T24985] netlink: 12 bytes leftover after parsing attributes in process `syz.5.6106'.
[ 1084.454845][T24987] netlink: 4 bytes leftover after parsing attributes in process `syz.7.6107'.
[ 1084.476367][T24985] tipc: Started in network mode
[ 1084.484102][T24987] netlink: 8 bytes leftover after parsing attributes in process `syz.7.6107'.
[ 1084.486035][T24985] tipc: Node identity 00000000000000000000000000000001, cluster identity 4711
[ 1084.503788][T24985] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[ 1084.520541][T24987] netlink: 28 bytes leftover after parsing attributes in process `syz.7.6107'.
[ 1084.684712][T24990] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] SMP KASAN PTI
[ 1084.697082][T24990] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]
[ 1084.705512][T24990] CPU: 1 UID: 0 PID: 24990 Comm: syz.5.6108 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1084.716464][T24990] Tainted: [L]=SOFTLOCKUP
[ 1084.720795][T24990] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 1084.730856][T24990] RIP: 0010:ip6_create_rt_rcu+0x92/0x4c0
[ 1084.736603][T24990] Code: 08 4a 89 04 21 e8 ce ae b5 f7 4c 89 f0 48 c1 e8 03 42 80 3c 20 00 74 08 4c 89 f7 e8 18 0e 1c f8 49 8b 1e 48 89 d8 48 c1 e8 03 <42> 80 3c 20 00 74 08 48 89 df e8 ff 0d 1c f8 48 8b 1b 4c 89 74 24
[ 1084.756294][T24990] RSP: 0018:ffffc9000435f220 EFLAGS: 00010246
[ 1084.762374][T24990] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000080000
[ 1084.770370][T24990] RDX: ffffc900045d1000 RSI: 000000000000009b RDI: 000000000000009c
[ 1084.778343][T24990] RBP: ffffc9000435f2d0 R08: ffffc9000435f24f R09: 0000000000000000
[ 1084.786307][T24990] R10: ffffc9000435f240 R11: fffff5200086be4a R12: dffffc0000000000
[ 1084.794284][T24990] R13: dffffc0000000000 R14: ffffc9000435f3e0 R15: ffff8880557d8000
[ 1084.802250][T24990] FS:  00007f8ba4df66c0(0000) GS:ffff888125f35000(0000) knlGS:0000000000000000
[ 1084.811177][T24990] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1084.818017][T24990] CR2: 000000110c35a5ba CR3: 000000007b788000 CR4: 00000000003526f0
[ 1084.826076][T24990] DR0: 0000000000000080 DR1: 0000000000000003 DR2: 0000000000000008
[ 1084.834051][T24990] DR3: 0000000080000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400
[ 1084.842018][T24990] Call Trace:
[ 1084.845289][T24990]  <TASK>
[ 1084.848208][T24990]  ? __pfx_ip6_create_rt_rcu+0x10/0x10
[ 1084.853667][T24990]  ip6_pol_route_lookup+0xb0b/0xcd0
[ 1084.858931][T24990]  ? ip6_pol_route_lookup+0xd2/0xcd0
[ 1084.864244][T24990]  ? __pfx_ip6_pol_route_lookup+0x10/0x10
[ 1084.869961][T24990]  ? rcuref_put+0x1b7/0x210
[ 1084.874723][T24990]  ? __pfx_rcuref_put+0x10/0x10
[ 1084.879572][T24990]  ? kasan_save_track+0x3e/0x80
[ 1084.884411][T24990]  ? __kasan_kmalloc+0x93/0xb0
[ 1084.889164][T24990]  ? __kmalloc_noprof+0x41d/0x800
[ 1084.894178][T24990]  ? dst_release+0x79/0x1b0
[ 1084.898672][T24990]  fib6_rule_lookup+0x62a/0x6f0
[ 1084.903660][T24990]  ? __pfx_ip6_pol_route_lookup+0x10/0x10
[ 1084.909374][T24990]  ? __pfx_fib6_rule_lookup+0x10/0x10
[ 1084.914731][T24990]  ? __lock_acquire+0x6b6/0x2cf0
[ 1084.919661][T24990]  ? rt6_lookup+0xb9/0x1d0
[ 1084.924070][T24990]  rt6_lookup+0x119/0x1d0
[ 1084.928390][T24990]  ? __pfx_rt6_lookup+0x10/0x10
[ 1084.933407][T24990]  ? trace_kmalloc+0x1f/0xb0
[ 1084.937982][T24990]  ? __kmalloc_noprof+0x43e/0x800
[ 1084.943005][T24990]  ? sock_kmalloc+0xd6/0x160
[ 1084.947686][T24990]  ? ip6_mc_find_dev+0x45/0x300
[ 1084.952600][T24990]  ? ip6_mc_find_dev+0x45/0x300
[ 1084.957495][T24990]  ip6_mc_find_dev+0xf4/0x300
[ 1084.962180][T24990]  __ipv6_sock_mc_join+0x47c/0x770
[ 1084.967287][T24990]  do_ipv6_mcast_group_source+0x306/0x3e0
[ 1084.973072][T24990]  ? trace_sched_exit_tp+0x36/0xf0
[ 1084.978182][T24990]  ? __pfx_do_ipv6_mcast_group_source+0x10/0x10
[ 1084.984412][T24990]  ? __lock_acquire+0x6b6/0x2cf0
[ 1084.989340][T24990]  ? look_up_lock_class+0x74/0x150
[ 1084.994456][T24990]  ? register_lock_class+0x51/0x320
[ 1084.999664][T24990]  ? __lock_acquire+0x6b6/0x2cf0
[ 1085.004637][T24990]  ? __local_bh_enable_ip+0x12d/0x1c0
[ 1085.010021][T24990]  ? __pfx___local_bh_enable_ip+0x10/0x10
[ 1085.015751][T24990]  do_ipv6_setsockopt+0x15f9/0x2eb0
[ 1085.020951][T24990]  ? __pfx_do_ipv6_setsockopt+0x10/0x10
[ 1085.026505][T24990]  ? __pfx_aa_label_sk_perm+0x10/0x10
[ 1085.031865][T24990]  ? __lock_acquire+0x6b6/0x2cf0
[ 1085.036793][T24990]  ? __pfx___might_resched+0x10/0x10
[ 1085.042068][T24990]  ? do_futex+0x333/0x420
[ 1085.046382][T24990]  ? aa_sk_perm+0x15f/0x920
[ 1085.050888][T24990]  ? aa_sk_perm+0x7ee/0x920
[ 1085.055400][T24990]  ? __pfx_aa_sk_perm+0x10/0x10
[ 1085.060246][T24990]  ? aa_sock_opt_perm+0xff/0x1a0
[ 1085.065172][T24990]  ipv6_setsockopt+0x59/0x170
[ 1085.069848][T24990]  ? __pfx_sock_common_setsockopt+0x10/0x10
[ 1085.075760][T24990]  do_sock_setsockopt+0x17c/0x1b0
[ 1085.080852][T24990]  __x64_sys_setsockopt+0x13f/0x1b0
[ 1085.086072][T24990]  do_syscall_64+0xfa/0xf80
[ 1085.090588][T24990]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1085.096654][T24990]  ? clear_bhb_loop+0x60/0xb0
[ 1085.101327][T24990]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1085.107206][T24990] RIP: 0033:0x7f8ba6b8f749
[ 1085.111619][T24990] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1085.131498][T24990] RSP: 002b:00007f8ba4df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[ 1085.139916][T24990] RAX: ffffffffffffffda RBX: 00007f8ba6de5fa0 RCX: 00007f8ba6b8f749
[ 1085.147890][T24990] RDX: 000000000000002e RSI: 0000000000000029 RDI: 0000000000000006
[ 1085.155853][T24990] RBP: 00007f8ba6c13f91 R08: 0000000000000108 R09: 0000000000000000
[ 1085.163813][T24990] R10: 0000200000000200 R11: 0000000000000246 R12: 0000000000000000
[ 1085.171789][T24990] R13: 00007f8ba6de6038 R14: 00007f8ba6de5fa0 R15: 00007ffc5306f7b8
[ 1085.179958][T24990]  </TASK>
[ 1085.183085][T24990] Modules linked in:
[ 1085.188197][T24990] ---[ end trace 0000000000000000 ]---
[ 1085.250779][T24990] RIP: 0010:ip6_create_rt_rcu+0x92/0x4c0
[ 1085.256904][T24990] Code: 08 4a 89 04 21 e8 ce ae b5 f7 4c 89 f0 48 c1 e8 03 42 80 3c 20 00 74 08 4c 89 f7 e8 18 0e 1c f8 49 8b 1e 48 89 d8 48 c1 e8 03 <42> 80 3c 20 00 74 08 48 89 df e8 ff 0d 1c f8 48 8b 1b 4c 89 74 24
[ 1085.314912][T24990] RSP: 0018:ffffc9000435f220 EFLAGS: 00010246
[ 1085.321740][T24997] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#2] SMP KASAN PTI
[ 1085.325037][T24990] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000080000
[ 1085.333651][T24997] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]
[ 1085.333679][T24997] CPU: 0 UID: 0 PID: 24997 Comm: syz.5.6108 Tainted: G      D      L      syzkaller #0 PREEMPT(full) 
[ 1085.333704][T24997] Tainted: [D]=DIE, [L]=SOFTLOCKUP
[ 1085.333711][T24997] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 1085.333729][T24997] RIP: 0010:ip6_create_rt_rcu+0x92/0x4c0
[ 1085.333758][T24997] Code: 08 4a 89 04 21 e8 ce ae b5 f7 4c 89 f0 48 c1 e8 03 42 80 3c 20 00 74 08 4c 89 f7 e8 18 0e 1c f8 49 8b 1e 48 89 d8 48 c1 e8 03 <42> 80 3c 20 00 74 08 48 89 df e8 ff 0d 1c f8 48 8b 1b 4c 89 74 24
[ 1085.333773][T24997] RSP: 0018:ffffc9000520f220 EFLAGS: 00010246
[ 1085.333790][T24997] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000080000
[ 1085.333802][T24997] RDX: ffffc9000e00b000 RSI: 0000000000000097 RDI: 0000000000000098
[ 1085.333815][T24997] RBP: ffffc9000520f2d0 R08: ffffc9000520f24f R09: 0000000000000000
[ 1085.333827][T24997] R10: ffffc9000520f240 R11: fffff52000a41e4a R12: dffffc0000000000
[ 1085.333841][T24997] R13: dffffc0000000000 R14: ffffc9000520f3e0 R15: ffff8880557d8000
[ 1085.333856][T24997] FS:  00007f8ba4db46c0(0000) GS:ffff888125e35000(0000) knlGS:0000000000000000
[ 1085.333871][T24997] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1085.333884][T24997] CR2: 0000001b2ef20ff8 CR3: 000000007b788000 CR4: 00000000003526f0
[ 1085.333899][T24997] Call Trace:
[ 1085.333907][T24997]  <TASK>
[ 1085.333916][T24997]  ? __pfx_ip6_create_rt_rcu+0x10/0x10
[ 1085.333941][T24997]  ? lock_release+0x4b/0x3b0
[ 1085.333962][T24997]  ip6_pol_route_lookup+0xb0b/0xcd0
[ 1085.333989][T24997]  ? ip6_pol_route_lookup+0xd2/0xcd0
[ 1085.343279][T24990] RDX: ffffc900045d1000 RSI: 000000000000009b RDI: 000000000000009c
[ 1085.350362][T24997]  ? __pfx_ip6_pol_route_lookup+0x10/0x10
[ 1085.512369][T24997]  ? rcuref_put+0x1b7/0x210
[ 1085.516875][T24997]  ? __pfx_rcuref_put+0x10/0x10
[ 1085.521715][T24997]  ? kasan_save_track+0x3e/0x80
[ 1085.526552][T24997]  ? __kasan_kmalloc+0x93/0xb0
[ 1085.531309][T24997]  ? __kmalloc_noprof+0x41d/0x800
[ 1085.536324][T24997]  ? dst_release+0x79/0x1b0
[ 1085.540823][T24997]  fib6_rule_lookup+0x62a/0x6f0
[ 1085.545664][T24997]  ? __pfx_ip6_pol_route_lookup+0x10/0x10
[ 1085.551378][T24997]  ? __pfx_fib6_rule_lookup+0x10/0x10
[ 1085.556788][T24997]  ? rt6_lookup+0xb9/0x1d0
[ 1085.561202][T24997]  rt6_lookup+0x119/0x1d0
[ 1085.565569][T24997]  ? __pfx_rt6_lookup+0x10/0x10
[ 1085.570411][T24997]  ? trace_kmalloc+0x1f/0xb0
[ 1085.574987][T24997]  ? __kmalloc_noprof+0x43e/0x800
[ 1085.580014][T24997]  ? sock_kmalloc+0xd6/0x160
[ 1085.584592][T24997]  ? ip6_mc_find_dev+0x45/0x300
[ 1085.589441][T24997]  ? ip6_mc_find_dev+0x45/0x300
[ 1085.594370][T24997]  ip6_mc_find_dev+0xf4/0x300
[ 1085.599040][T24997]  __ipv6_sock_mc_join+0x47c/0x770
[ 1085.604143][T24997]  do_ipv6_mcast_group_source+0x306/0x3e0
[ 1085.609851][T24997]  ? trace_sched_exit_tp+0x36/0xf0
[ 1085.615045][T24997]  ? __pfx_do_ipv6_mcast_group_source+0x10/0x10
[ 1085.621281][T24997]  ? is_bpf_text_address+0x292/0x2b0
[ 1085.626555][T24997]  ? rcu_is_watching+0x15/0xb0
[ 1085.631315][T24997]  ? __pfx___schedule+0x10/0x10
[ 1085.636166][T24997]  ? futex_unqueue+0x22/0x240
[ 1085.640828][T24997]  ? rcu_is_watching+0x15/0xb0
[ 1085.645588][T24997]  ? __local_bh_enable_ip+0x12d/0x1c0
[ 1085.650950][T24997]  ? __pfx___local_bh_enable_ip+0x10/0x10
[ 1085.656665][T24997]  do_ipv6_setsockopt+0x15f9/0x2eb0
[ 1085.661859][T24997]  ? __pfx_do_ipv6_setsockopt+0x10/0x10
[ 1085.667405][T24997]  ? __pfx_aa_label_sk_perm+0x10/0x10
[ 1085.672780][T24997]  ? futex_wait+0x285/0x360
[ 1085.677281][T24997]  ? __pfx_futex_wait+0x10/0x10
[ 1085.682209][T24997]  ? __pfx___might_resched+0x10/0x10
[ 1085.687487][T24997]  ? do_futex+0x333/0x420
[ 1085.691808][T24997]  ? aa_sk_perm+0x15f/0x920
[ 1085.696391][T24997]  ? aa_sk_perm+0x7ee/0x920
[ 1085.700881][T24997]  ? __pfx_aa_sk_perm+0x10/0x10
[ 1085.705715][T24997]  ? aa_sock_opt_perm+0xff/0x1a0
[ 1085.710733][T24997]  ipv6_setsockopt+0x59/0x170
[ 1085.715405][T24997]  ? __pfx_sock_common_setsockopt+0x10/0x10
[ 1085.721288][T24997]  do_sock_setsockopt+0x17c/0x1b0
[ 1085.726302][T24997]  __x64_sys_setsockopt+0x13f/0x1b0
[ 1085.731488][T24997]  do_syscall_64+0xfa/0xf80
[ 1085.735977][T24997]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1085.742028][T24997]  ? clear_bhb_loop+0x60/0xb0
[ 1085.746692][T24997]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1085.752572][T24997] RIP: 0033:0x7f8ba6b8f749
[ 1085.756977][T24997] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1085.776742][T24997] RSP: 002b:00007f8ba4db4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[ 1085.785246][T24997] RAX: ffffffffffffffda RBX: 00007f8ba6de6180 RCX: 00007f8ba6b8f749
[ 1085.793228][T24997] RDX: 000000000000002e RSI: 0000000000000029 RDI: 0000000000000006
[ 1085.801203][T24997] RBP: 00007f8ba6c13f91 R08: 0000000000000108 R09: 0000000000000000
[ 1085.809174][T24997] R10: 0000200000000080 R11: 0000000000000246 R12: 0000000000000000
[ 1085.817133][T24997] R13: 00007f8ba6de6218 R14: 00007f8ba6de6180 R15: 00007ffc5306f7b8
[ 1085.825103][T24997]  </TASK>
[ 1085.828110][T24997] Modules linked in:
[ 1085.832367][T24997] ---[ end trace 0000000000000000 ]---
[ 1085.838337][T24990] RBP: ffffc9000435f2d0 R08: ffffc9000435f24f R09: 0000000000000000
[ 1085.847251][T24990] R10: ffffc9000435f240 R11: fffff5200086be4a R12: dffffc0000000000
[ 1085.855431][T24990] R13: dffffc0000000000 R14: ffffc9000435f3e0 R15: ffff8880557d8000
[ 1085.864413][T24990] FS:  00007f8ba4df66c0(0000) GS:ffff888125e35000(0000) knlGS:0000000000000000
[ 1085.873519][T24990] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1085.880242][T24997] RIP: 0010:ip6_create_rt_rcu+0x92/0x4c0
[ 1085.885963][T24997] Code: 08 4a 89 04 21 e8 ce ae b5 f7 4c 89 f0 48 c1 e8 03 42 80 3c 20 00 74 08 4c 89 f7 e8 18 0e 1c f8 49 8b 1e 48 89 d8 48 c1 e8 03 <42> 80 3c 20 00 74 08 48 89 df e8 ff 0d 1c f8 48 8b 1b 4c 89 74 24
[ 1085.901078][T24990] CR2: 00007f9a209a8d58 CR3: 000000007b788000 CR4: 00000000003526f0
[ 1085.906466][T24997] RSP: 0018:ffffc9000435f220 EFLAGS: 00010246
[ 1085.921617][T24990] DR0: 0000000000000080 DR1: 0000000000000003 DR2: 0000000000000008
[ 1085.931019][T24997] 
[ 1085.943716][T24997] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000080000
[ 1085.959889][T24990] DR3: 0000000080000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400
[ 1085.968067][T24997] RDX: ffffc900045d1000 RSI: 000000000000009b RDI: 000000000000009c
[ 1085.978787][T24997] RBP: ffffc9000435f2d0 R08: ffffc9000435f24f R09: 0000000000000000
[ 1085.981952][T24990] Kernel panic - not syncing: Fatal exception
[ 1085.987139][T24990] Kernel Offset: disabled