last executing test programs:

6.939508383s ago: executing program 4 (id=2249):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}})
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
bind$xdp(0xffffffffffffffff, &(0x7f0000000100)={0x2c, 0x2}, 0x10)
sendmsg$NFT_BATCH(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000001000040000000000000000000000000a20000000000a01020000000000000000010000000900010073797a300000000058000000160a01000000000000000000010000000900010073797a30000000000900020073797a30000000002c0003800800014000000000080002400000000010000380140001007465616d3000000000000000000000005c000000160a0101000b000000000000010000000900020073797a30000000000900010073797a3000000000300003802c00038014"], 0xfc}}, 0x0)
write$tun(r0, &(0x7f00000004c0)={@val={0x8, 0x800}, @val={0x1, 0x0, 0x0, 0x5, 0x7ff, 0x7}, @ipv4=@tcp={{0x5, 0x4, 0x0, 0x2c, 0x8e8, 0x68, 0x0, 0x3, 0x6, 0x0, @loopback, @multicast1}, {{0x4e20, 0x4e28, 0x41424344, 0x41424344, 0x1, 0x0, 0x5, 0x10, 0x7, 0x0, 0x8}, {"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"}}}}, 0x8f6)
write$cgroup_pid(0xffffffffffffffff, 0x0, 0x0)

6.555958675s ago: executing program 4 (id=2253):
unshare(0x22020600)
r0 = socket(0x2a, 0x2, 0x0)
bind$unix(r0, &(0x7f00000004c0)=@file={0x1, './file0\x00'}, 0x6e)

6.416506086s ago: executing program 4 (id=2257):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000000)={'wlan1\x00', <r1=>0x0})
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x40, r2, 0x1, 0x70bd29, 0x0, {{0x2}, {@val={0x8, 0x3, r1}, @val={0xc, 0x99, {0x41, 0x60}}}}, [@chandef_params=[@NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x976}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}]]}, 0x40}}, 0x0)

6.290743396s ago: executing program 4 (id=2260):
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
mlockall(0x6)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffefffff6, 0x20031, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
syz_io_uring_setup(0x110, 0x0, 0x0, &(0x7f0000000280))
sched_setscheduler(0x0, 0x1, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000380)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f0000000000))
ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000000140)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x4})
ioctl$UFFDIO_COPY(r3, 0xc028aa03, &(0x7f0000000040)={&(0x7f00006c6000/0x400000)=nil, &(0x7f0000685000/0x4000)=nil, 0x400000, 0x0, 0x18100})

5.184241793s ago: executing program 4 (id=2272):
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, &(0x7f0000000040)={0x6, @private=0xa010100, 0x4e21, 0x2, 'sed\x00', 0x2, 0x0, 0x68}, 0x2c)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r4, @ANYBLOB="01000000020000001c0012000c000100626f6e64000000000c0002000800010005"], 0x3c}}, 0x0)
socket$kcm(0x29, 0x2, 0x0)
sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0xffffff1f, 0x0, 0x80, {0x0, 0x0, 0x0, 0x0, 0x0, 0x3f00}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @gretap={{0xb}, {0x8, 0x2, 0x0, 0x1, [@IFLA_GRE_COLLECT_METADATA={0x4}]}}}, @IFLA_MASTER={0x8, 0xa, r4}]}, 0x40}, 0x1, 0x0, 0x0, 0x2000c0c1}, 0x40000)
r6 = socket(0x1, 0x803, 0x0)
getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=@newlink={0x58, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x90646}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x18, 0x2, 0x0, 0x1, [@IFLA_VLAN_FLAGS={0xc, 0x2, {0x1f, 0x1f}}, @IFLA_VLAN_ID={0x6, 0x1, 0x1}]}}}, @IFLA_LINK={0x8, 0x5, r7}, @IFLA_MASTER={0x8, 0xa, r7}]}, 0x58}, 0x1, 0x0, 0x0, 0x600}, 0x0)

4.956735203s ago: executing program 4 (id=2275):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[@ANYBLOB="80000000", @ANYRES16=r1, @ANYBLOB="050027bd7000fedbdf250600000008000300", @ANYRES32=r2, @ANYBLOB="0800050006000000100017800400020004000600040002000c00178004000200040006001c00"], 0x80}, 0x1, 0x0, 0x0, 0x40048}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="6000000010004b04bd7000fcdbdf257a000d0000", @ANYRES32=0x0, @ANYBLOB="0010000020900000400012800b0001006272696467650000300002800c0023000100000000000080050016000000000008001b004b0f00000500250001000000050024"], 0x60}}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x40}}, 0xc000)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x1b, 0x3, &(0x7f0000000100)=@framed={{0x18, 0x0, 0x0, 0x0, 0x400, 0x0, 0x0, 0x0, 0x800}}, 0x0, 0x8, 0x0, 0x0, 0x40f00, 0x2, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x800}, 0x94)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000001c0)=@newlink={0x34, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x4, 0x0, 0x40000}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x4}, 0x8044)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r5, &(0x7f0000002540)={0x0, 0x0, &(0x7f0000002500)={&(0x7f00000001c0)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYBLOB="010028bd7000000000000c000000180001801400020076657468305f746f5f626f6e640000000c000380"], 0x38}}, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000580)={0x48, 0x3e, 0x107, 0x70bd27, 0x0, {0x1, 0x7c}, [@nested={0x4, 0xfc}, @nested={0xc, 0x1, 0x0, 0x1, [@typed={0x8, 0x6, 0x0, 0x0, @pid}]}, @nested={0x1b, 0x2, 0x0, 0x1, [@generic="725eb862cec9a478ce2057c5241935e6782507e230d548"]}, @typed={0x8, 0x7, 0x0, 0x0, @pid}]}, 0x48}, 0x1, 0x0, 0x0, 0xc000}, 0x4040)
r7 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r7, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58)
r8 = accept4(r7, 0x0, 0x0, 0x0)
accept4(r8, 0x0, 0x0, 0x0)
r9 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_int(r9, 0x29, 0x19, &(0x7f0000000000)=0x94b, 0x4)
r10 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f00000000c0)={'syztnl0\x00', &(0x7f0000000240)={'ip_vti0\x00', 0x0, 0x700, 0x20, 0x3, 0x7f, {{0x29, 0x4, 0x2, 0x3e, 0xa4, 0x65, 0x0, 0x18, 0x29, 0x0, @remote, @dev={0xac, 0x14, 0x14, 0x24}, {[@lsrr={0x83, 0x13, 0x6f, [@broadcast, @private=0xa010102, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast2]}, @ssrr={0x89, 0xb, 0xa4, [@empty, @loopback]}, @cipso={0x86, 0x16, 0x2, [{0x5, 0x8, "795cbc6581c9"}, {0x0, 0x8, "f902ba134855"}]}, @generic={0x83, 0x11, "2a4d62750fe97ca4287df0c3ddfc5e"}, @ra={0x94, 0x4}, @cipso={0x86, 0x26, 0x3, [{0x7, 0x4, 'i<'}, {0x1, 0x5, "fba59d"}, {0x6, 0x3, "ee"}, {0x6, 0xe, "e44cca510d63b2116560e5a7"}, {0x2, 0x6, "79b516b8"}]}, @ssrr={0x89, 0x13, 0x4a, [@local, @broadcast, @broadcast, @local]}, @lsrr={0x83, 0xb, 0x65, [@local, @multicast1]}]}}}}})
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000140)={'veth1_virt_wifi\x00'})
sendmsg$nl_route_sched(r10, &(0x7f0000006280)={0x0, 0x0, 0x0}, 0x0)
unshare(0x6a040000)
socket$can_raw(0x1d, 0x3, 0x1)
r11 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r11, &(0x7f0000000200)=[{0x0}], 0x1)

4.670177775s ago: executing program 1 (id=2282):
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
mlockall(0x6)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffefffff6, 0x20031, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
syz_io_uring_setup(0x110, 0x0, 0x0, &(0x7f0000000280))
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000380)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f0000000000))
ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000000140)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x4})
ioctl$UFFDIO_COPY(r3, 0xc028aa03, &(0x7f0000000040)={&(0x7f00006c6000/0x400000)=nil, &(0x7f0000685000/0x4000)=nil, 0x400000, 0x0, 0x18100})

4.403996057s ago: executing program 3 (id=2285):
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, &(0x7f0000000040)={0x6, @private=0xa010100, 0x4e21, 0x2, 'sed\x00', 0x2, 0x0, 0x68}, 0x2c)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r4, @ANYBLOB="01000000020000001c0012000c000100626f6e64000000000c0002000800010005"], 0x3c}}, 0x0)
socket$kcm(0x29, 0x2, 0x0)
sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0xffffff1f, 0x0, 0x80, {0x0, 0x0, 0x0, 0x0, 0x0, 0x3f00}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @gretap={{0xb}, {0x8, 0x2, 0x0, 0x1, [@IFLA_GRE_COLLECT_METADATA={0x4}]}}}, @IFLA_MASTER={0x8, 0xa, r4}]}, 0x40}, 0x1, 0x0, 0x0, 0x2000c0c1}, 0x40000)
r6 = socket(0x1, 0x803, 0x0)
getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=@newlink={0x58, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x90646}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x18, 0x2, 0x0, 0x1, [@IFLA_VLAN_FLAGS={0xc, 0x2, {0x1f, 0x1f}}, @IFLA_VLAN_ID={0x6, 0x1, 0x1}]}}}, @IFLA_LINK={0x8, 0x5, r7}, @IFLA_MASTER={0x8, 0xa, r7}]}, 0x58}, 0x1, 0x0, 0x0, 0x600}, 0x0)

4.100437968s ago: executing program 3 (id=2287):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x8004)
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, 0x0, 0x20040000)
socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r2, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
bind$inet(r2, &(0x7f0000000080)={0x2, 0x4e21, @multicast1}, 0x10)
connect$inet(r2, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1d}}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r2, 0x6, 0xd, &(0x7f0000000100)='scalable', 0x8)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r2, 0x6, 0x16, &(0x7f0000000000)=[@mss, @sack_perm, @window={0x3, 0x7}, @mss={0x2, 0xfff}, @window={0x3, 0x0, 0x401}, @window], 0x20000000000000e4)
setsockopt$inet_tcp_TCP_REPAIR(r2, 0x6, 0x13, &(0x7f00000001c0), 0x4)
sendto$inet(r2, &(0x7f0000000000), 0xffffffffffffff94, 0xb, 0x0, 0x0)
recvfrom$inet(r2, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0xc9100120, 0x0, 0xfffffffffffffd25)
r3 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x28012, r3, 0x0)
mmap(&(0x7f00009c5000/0x1000)=nil, 0x1000, 0x3, 0x28012, r3, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_INTERFACE(0xffffffffffffffff, 0x0, 0x0)
sendmsg$NL80211_CMD_GET_INTERFACE(r0, 0x0, 0x20040000)
mmap(&(0x7f0000ae0000/0x3000)=nil, 0x3000, 0x0, 0x12, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)

3.125090333s ago: executing program 3 (id=2291):
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0xa, 0x4, &(0x7f0000000080)=@framed={{}, [@ldst={0x2, 0x0, 0x3, 0x1, 0x0, 0x5f}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf}, 0x94)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0x0, 0x1}, 0x6)
close(0x4)
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x400888}, 0xc, 0x0}, 0x8000)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r1, &(0x7f00000002c0)={0xa, 0x4e22, 0x0, @local, 0xb}, 0x1c)
listen(r1, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000500)={'vcan0\x00'})
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000300)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(blowfish)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d", 0x8)
r3 = accept4(r2, 0x0, 0x0, 0x800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)

2.864540264s ago: executing program 3 (id=2292):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
sendmmsg$inet(r0, &(0x7f0000003340)=[{{&(0x7f0000000040)={0x2, 0x4e23, @empty}, 0x10, 0x0}}], 0x1, 0x20000010)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)

2.655562395s ago: executing program 2 (id=2294):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=@newtfilter={0x48, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x0, 0x9}, {}, {0xd, 0xfff1}}, [@filter_kind_options=@f_cgroup={{0xb}, {0x18, 0x2, [@TCA_CGROUP_EMATCHES={0x14, 0x3, 0x0, 0x1, [@TCA_EMATCH_TREE_LIST={0x10, 0x2, 0x0, 0x1, [@TCF_EM_IPT={0xc, 0x1, 0x0, 0x0, {{0x3, 0x9, 0x80}}}]}]}]}}]}, 0x48}}, 0x1)
socket$netlink(0x10, 0x3, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x275a, 0x0)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000000)={0x18})
mmap(&(0x7f000039f000/0x1000)=nil, 0x1000, 0x300000e, 0x11, r0, 0x9cc21000)
r1 = socket(0x10, 0x803, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5452, 0x0)
sendmsg$NL80211_CMD_CRIT_PROTOCOL_START(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={0x0, 0x1c}}, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000780), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000040)={'wlan0\x00'})
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000180)={0xffffffffffffffff, &(0x7f0000000340)="9f227e2c", &(0x7f0000000000)=""/10, 0x2}, 0x20)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="4000000010000305000000000007000000000000", @ANYRES32=0x0, @ANYBLOB="0000000000100000180012800e0001007769726567756172640000000400028008000a00", @ANYRES32], 0x40}, 0x1, 0x0, 0x0, 0x800}, 0xc0b0)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000880)=@ipv6_newroute={0x1c, 0x18, 0x1, 0x70bd2c, 0x0, {0xa, 0x0, 0x14, 0x0, 0xfe, 0x4, 0xff, 0x6}}, 0x1c}}, 0x0)
sendmmsg(r3, &(0x7f00000002c0), 0x40000000000009f, 0x14000000)

2.208317138s ago: executing program 2 (id=2298):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
connect$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x8ef, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0xe)
r1 = syz_init_net_socket$bt_bnep(0x1f, 0x3, 0x4)
ioctl$sock_bt_bnep_BNEPCONNADD(r1, 0x400442c8, &(0x7f0000000100)=ANY=[@ANYRES32=r0, @ANYBLOB="1d"])

2.075027989s ago: executing program 1 (id=2299):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x1f, 0x2, &(0x7f0000001c40)=ANY=[@ANYBLOB="85000000a800000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x13}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x6}, 0x66)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="0c000000040000000400000009"], 0x48)
bpf$PROG_BIND_MAP(0x23, &(0x7f0000000000)={r1, r2}, 0xc)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0)
r4 = openat$cgroup_devices(r3, &(0x7f0000000100)='devices.allow\x00', 0x2, 0x0)
write$cgroup_devices(r4, &(0x7f00000000c0)={'c', ' *:* ', 'rwm\x00'}, 0xa)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000900)={0x0, 0x0, &(0x7f00000024c0), &(0x7f0000001280), 0xffffffff, r2}, 0x38)
sendmsg$netlink(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000340)=ANY=[@ANYBLOB="180100002e000100000000000000000004001980040111800001cf80d478b585fcf4962925eb81095dd3d92e983e841d6ef7368187237f5e91a74d5705ec63198f3bec68ef62803fe98daf2de4c76a713091d7d093f16995a391c42d5dfc312e9b67f3e831135d0600000000f6ff00156436b0ed25721632972efdd7a775655ff99c2abdc650ece6458a5f9db07c36adc6ebcfe60b70e5a54a83041bc8e1c08dc0afd69868ed00009634f84ef01b3f9c31b8c76a0e2ac9dba5adc10a3c9a2360cb2fe6e11e9efcaff1b39dd49895a112f947e4923d9b5c428a37b673f33f3ed02d225807d47efe0a590665b49bf5eaa0890c512f2a01eb6713c6b3539790dca05a2632596c591745bbbf4953c0a783a881f8cf755e000000"], 0x118}], 0x1, 0x0, 0x0, 0x84}, 0x300)

2.032193299s ago: executing program 0 (id=2300):
r0 = socket(0xa, 0x1, 0x0)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f00000001c0)={0x3, {{0xa, 0x4e24, 0x2, @mcast1, 0xff7ffffd}}, {{0xa, 0x4e08, 0x4a3, @local, 0x4f1}}}, 0x108)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2c, &(0x7f0000000180)={0x0, {{0xa, 0x4e20, 0xbe, @mcast1, 0xbfd}}, {{0xa, 0x4e20, 0x9, @empty, 0xfffffe01}}}, 0x108)

1.943510339s ago: executing program 1 (id=2301):
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x5, &(0x7f0000000040)=@framed={{0x35, 0xa, 0x0, 0x0, 0x0, 0x61, 0x11, 0x7c}, [@initr0]}, &(0x7f0000000000)='GPL\x00'}, 0x90)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000840)={0xffffffffffffffff, &(0x7f0000000240), &(0x7f0000000080)=@tcp}, 0x20)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000001d80)={0x0, @in6={{0xa, 0x4e23, 0x20006, @empty, 0x6}}, 0x7f, 0x2, 0x0, 0x5, 0x392, 0x94}, 0x9c)
r1 = bpf$ITER_CREATE(0xb, &(0x7f0000000100), 0x0)
close(r1)
syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/net\x00')
r2 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000005c0)={r2, 0x0, 0x24, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0xa)
r3 = syz_open_procfs$namespace(0x0, &(0x7f0000000280)='ns/net\x00')
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000480)={@cgroup=r3, 0x11, 0x0, 0x0, 0x0, 0x1000000, 0x0, 0x0, 0x0, 0x0}, 0x40)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)={0x58, r5, 0x1, 0x0, 0x0, {}, [@TIPC_NLA_NODE={0x44, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_KEY={0x3c, 0x4, {'gcm(aes)\x00', 0x14, "e3de3d7b4cd07ec3ee777de774fc7987cca41989"}}, @TIPC_NLA_NODE_KEY_MASTER={0x4}]}]}, 0x58}, 0x1, 0x0, 0x0, 0x4}, 0x4000004)

1.943216229s ago: executing program 3 (id=2302):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xc, 0xf}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x8001}, 0x20008850)
r4 = socket$inet6(0xa, 0x2, 0x0)
r5 = socket(0x400000000010, 0x3, 0x0)
r6 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000027c0)=@newtfilter={0x874, 0x2c, 0xd27, 0x30bd29, 0x25dfdc00, {0x0, 0x0, 0x0, r7, {0x0, 0x4}, {}, {0x8}}, [@filter_kind_options=@f_matchall={{0xd}, {0x840, 0x2, [@TCA_MATCHALL_ACT={0x83c, 0x2, [@m_police={0x838, 0x1, 0x0, 0x0, {{0xb}, {0x80c, 0x2, 0x0, 0x1, [[@TCA_POLICE_RATE={0x404, 0x2, [0x1ff, 0x3, 0x10000, 0x81, 0x7f, 0xfffffffb, 0x4, 0x2, 0xffffffc0, 0x5, 0x2234, 0x7f, 0x81b, 0x803, 0x5, 0x0, 0x3, 0x7ed53619, 0x1, 0x2, 0x9644, 0x4, 0x58b, 0x85a, 0x3ff, 0x9, 0x2, 0x1, 0x0, 0x80000000, 0x10001, 0x790, 0x5, 0xab2, 0xfffffff9, 0x1a77, 0x9, 0x3, 0x400, 0x63c, 0x4, 0xffffffff, 0x1, 0x5, 0x1, 0x5b1f, 0x7b0, 0x7, 0x100, 0x6, 0xd, 0xff, 0x3, 0x10000, 0x6, 0x6b7, 0x1ff, 0x80, 0x4, 0x7, 0x3, 0xa14, 0x3, 0x2, 0x80000000, 0x81, 0x7, 0x8, 0x5, 0x10001, 0xf7, 0x3, 0xfffffff9, 0x9, 0x4, 0x8, 0xfff, 0x3, 0x1, 0x6, 0x7, 0x8, 0x100, 0xc0000000, 0x6, 0x6, 0x6, 0x12a, 0x80000001, 0x8, 0x1d24, 0x2, 0x9, 0x1, 0x7f, 0x7, 0x863c, 0xff, 0x24, 0x5, 0x7, 0x6, 0x7a, 0x8, 0x0, 0x7, 0x470, 0x7f, 0x6, 0x0, 0x1, 0x0, 0x4, 0x9, 0x61, 0x200, 0x6, 0x2, 0x2, 0x6, 0x10001, 0x8, 0x7, 0xf, 0xda56, 0x7ffffffe, 0x80, 0x2f0cb955, 0x7, 0xfed, 0xf, 0x6ae, 0x2, 0x1, 0x9, 0x8001, 0x0, 0xec000, 0x0, 0x1, 0x2, 0xfffffffb, 0x7, 0x8, 0x4, 0x1, 0xffffcf1b, 0x282, 0x5517bc7b, 0x3, 0x4, 0xb6b, 0x5, 0x0, 0xac, 0x9, 0x6, 0x10, 0x53146b, 0x8, 0x80000001, 0x0, 0x74, 0x2, 0x7fffffff, 0x0, 0xa, 0x6, 0xffffffff, 0x8, 0x2, 0x7, 0x7f, 0x5, 0x3, 0xa, 0x1, 0x0, 0x9, 0x300, 0x5, 0x3, 0x6, 0xffffffff, 0xffb, 0xff, 0x8, 0x8, 0x3, 0x2, 0x5, 0xfca, 0x399d, 0x6, 0x8ab6, 0x18000, 0x2, 0xfffffff9, 0x2, 0x2, 0x528c, 0x5, 0x200, 0xac, 0xf, 0xd05, 0x9a2ce73, 0x4, 0x6, 0xe074, 0x6b10, 0x5, 0x1, 0x6, 0xb, 0xa26, 0xaf6, 0x0, 0xec, 0x8, 0xde16, 0xc418, 0xffffffff, 0xffffffff, 0x9, 0x400, 0x80001, 0x5, 0x354d, 0x5, 0x2, 0x1, 0x2007, 0x1, 0x177, 0x7, 0x0, 0x80, 0x5, 0x8, 0xfffffffb, 0x9, 0xe7b, 0x0, 0x7, 0x42bf, 0x10000, 0x9, 0x9, 0x6, 0x4b75, 0x80000001, 0x1000, 0x5915, 0x10001, 0x1]}], [@TCA_POLICE_PEAKRATE={0x404, 0x3, [0x1080, 0x4, 0xec2, 0x6, 0x8, 0x400, 0x5, 0x1, 0x7, 0x470, 0x487, 0x100, 0xa99, 0xffffff01, 0x5, 0x37f, 0x30, 0x6, 0x3, 0x3, 0x800, 0x0, 0x40, 0x3, 0x4, 0x5, 0x7, 0x12, 0x2, 0x8, 0x101, 0xffffffff, 0x2, 0x10000, 0xa6, 0x3, 0x10000, 0x5, 0x4, 0x0, 0x3, 0x0, 0xd, 0x40006, 0x98, 0x8, 0x6, 0x9, 0x1000, 0xb3000, 0xf, 0x3, 0x9, 0xb4, 0x94d, 0x9, 0x8, 0x6, 0x100, 0xec0, 0xffff, 0x4, 0x2, 0x3ff, 0x3e, 0xb828, 0x0, 0x0, 0x365, 0x8, 0x8, 0xf, 0x1, 0xfffffffe, 0xfffffff6, 0x93, 0x7ff, 0x92, 0x0, 0x800007, 0xfffffffc, 0x7ff, 0x9, 0x2, 0x0, 0x2, 0x8, 0x4, 0x3, 0x9, 0xc, 0x0, 0x3, 0x3, 0x400, 0x100000, 0x7f, 0x2, 0x8, 0x4, 0x7, 0x4, 0x7, 0xfffffffa, 0x101, 0xadd9, 0x1, 0x0, 0x7, 0x7fffffff, 0x2, 0x4, 0x0, 0x9, 0x4, 0x3, 0x8, 0x9, 0x6, 0x6, 0x2, 0xb, 0x3, 0x7f, 0xffff, 0x401, 0x1685, 0xa252, 0x2, 0x200, 0x3, 0x1, 0x400, 0xfffffffc, 0xfffffffc, 0x1000, 0x7ff, 0x1, 0x1f6, 0x751, 0x7, 0x40000000, 0x5, 0xffffdbb7, 0x50, 0xf, 0xf, 0xe, 0x3, 0x0, 0x81, 0xfff80000, 0x7a7, 0x1, 0x6, 0x3, 0x8, 0x7, 0x5, 0x2, 0x0, 0x4e8, 0x80, 0x3, 0x8, 0x5, 0x0, 0x5, 0x7fff, 0x7, 0x8, 0x6a4941c5, 0x2ea567b4, 0x8, 0x80000000, 0x6, 0x40, 0x2, 0xfff, 0x8, 0x7, 0x1, 0x1, 0x0, 0x0, 0xd3bed341, 0x691f, 0x0, 0x2, 0x9, 0x6, 0x0, 0x1ff, 0x3, 0x3, 0x6, 0x5fc8462f, 0x0, 0x7, 0xffff, 0xfffffffc, 0x5, 0x0, 0xb9a6, 0x522, 0x2, 0x2, 0x100, 0x8, 0xbb99, 0xb8000000, 0x8, 0xffffff01, 0xc0a1, 0x8, 0x8, 0x7, 0x59, 0x9, 0x2, 0x101, 0x5f502dca, 0x7, 0x0, 0x4, 0x6, 0x80000001, 0x3, 0xffffff97, 0x2, 0xfff, 0x1, 0x40, 0x8, 0x3, 0x710, 0x8, 0x1, 0xfffff339, 0x3, 0x8001, 0x1, 0x8001, 0x9, 0x8, 0xfffffffa, 0x8, 0x9, 0x3, 0xe, 0x10000, 0x9, 0x9, 0x7, 0xfffffff8]}]]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x3}}}}]}]}}]}, 0x874}, 0x1, 0x0, 0x0, 0x10}, 0x0)
r8 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r8)
socket(0x2, 0x5, 0x0)
ioctl$SIOCSIFHWADDR(r8, 0x8914, &(0x7f00000000c0)={'syzkaller0\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}})
r9 = socket$unix(0x1, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r10=>0x0})
sendmmsg$inet(r4, &(0x7f00000017c0)=[{{&(0x7f0000000040)={0x2, 0x4e21, @local}, 0x10, 0x0, 0x0, &(0x7f00000006c0)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r10, @dev={0xac, 0x14, 0x14, 0x41}, @empty}}}], 0x20}}], 0x27, 0x0)

1.89507343s ago: executing program 0 (id=2303):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSARP(r0, 0x891b, &(0x7f0000000580)={{0x2, 0x4e22, @broadcast}, {0x6, @remote}, 0x18, {0x2, 0x4e24, @remote}, 'macsec0\x00'})

1.84171232s ago: executing program 1 (id=2304):
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x4, 0xc, &(0x7f0000000240)=@framed={{0x18, 0x2, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x10000007}, [@call={0x85, 0x0, 0x0, 0x27}, @printk={@li, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x10}}]}, &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f00000004c0)={'vcan0\x00', <r2=>0x0})
connect$can_bcm(r1, &(0x7f00000000c0)={0x1d, r2}, 0x10)
sendmsg$NFNL_MSG_ACCT_GET(r0, 0x0, 0x48404)
sendmsg$can_bcm(r1, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000000)=ANY=[@ANYBLOB="05000000460a"], 0x80}}, 0x0)
r3 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, &(0x7f0000000500)={<r4=>0x0, 0x10}, &(0x7f0000000540)=0x8)
setsockopt$inet_sctp_SCTP_ASSOCINFO(r3, 0x84, 0x1, &(0x7f0000000580)={r4, 0x0, 0x3, 0xca8, 0x5, 0x1}, 0x14)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)=ANY=[], 0x24}}, 0x0)
sendmsg$can_bcm(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000014c0)=ANY=[@ANYBLOB="0500"], 0x48}, 0x1, 0x0, 0x0, 0x2004c870}, 0x4000000)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r7, 0x8933, &(0x7f0000000000)={'vcan0\x00', <r8=>0x0})
bind$can_raw(r7, 0x0, 0x0)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$ETHTOOL_MSG_PRIVFLAGS_GET(r9, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000200)={0x2c, 0x0, 0x1, 0x0, 0x0, {}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip_vti0\x00'}]}]}, 0x2c}}, 0x0)
setsockopt$CAN_RAW_FILTER(r7, 0x65, 0x1, &(0x7f0000000040)=[{{0x3, 0x0, 0x1}, {0x3, 0x1, 0x0, 0x1}}, {{0x3, 0x1, 0x1}, {0x3, 0x0, 0x1}}], 0x10)
sendmsg$nl_route_sched(r6, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=@getchain={0x24, 0x11, 0x839, 0x70bd29, 0x0, {0x0, 0x0, 0x0, r8, {0x1}, {0xffff, 0x6}, {0x1}}}, 0x24}}, 0x80)

1.634141131s ago: executing program 3 (id=2305):
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
socket$nl_xfrm(0x10, 0x3, 0x6)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r3=>0x0}, &(0x7f0000001080)=0x8)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000380)={0x28, 0x0, 0x100, 0x70bd2b, 0x25dfdbfd, {{}, {@val={0x8}, @val={0xc, 0x99, {0x1, 0x24}}}}}, 0x28}, 0x1, 0x0, 0x0, 0x4040845}, 0x1)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000003c0)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_TRIGGER_SCAN(r4, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000380)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="0500000000000000000021000000080003", @ANYRES32=r5, @ANYBLOB="10007d8005"], 0x2c}, 0x1, 0x0, 0x0, 0x20004080}, 0x0)
getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(0xffffffffffffffff, 0x84, 0x66, &(0x7f0000000ac0)={r3, 0xd0}, 0x0)
r6 = socket$inet_smc(0x2b, 0x1, 0x0)
connect$inet(r6, &(0x7f0000000000)={0x2, 0x4001, @remote}, 0x10)
setsockopt$SO_BINDTODEVICE_wg(r6, 0x1, 0x19, &(0x7f0000000080)='wg1\x00', 0x4)
sendto$inet(r6, &(0x7f0000000040)="e5", 0xffffffe4, 0x0, 0x0, 0x0)
ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, &(0x7f0000000100)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})
syz_open_procfs(0x0, &(0x7f0000000700)='mounts\x00')

1.579543511s ago: executing program 0 (id=2306):
socket$inet(0x10, 0x3, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
bind$netlink(r1, &(0x7f0000000100)={0x10, 0x0, 0x25dfdbfd, 0x400}, 0xc)
getsockname$packet(r1, &(0x7f0000000600)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
sendmsg$nl_route(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000340)=@newlink={0x20, 0x10, 0x40d, 0x70bd2d, 0x20000000, {0x0, 0x0, 0x0, r2, 0x50504}}, 0x20}, 0x1, 0x0, 0x0, 0x40040}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
socket(0x1, 0x803, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001400)=@newlink={0x44, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0x4}}}, @IFLA_LINK={0x8}, @IFLA_MASTER={0x8}]}, 0x44}}, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$NL80211_CMD_NEW_KEY(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)={0x14, 0x0, 0x0, 0xfffffffd, 0x25dfdbfb, {{}, {@void, @void}}}, 0x14}, 0x1, 0x0, 0x0, 0x800}, 0x20008084)
ioctl$sock_SIOCBRDELBR(r4, 0x89a2, &(0x7f0000000000)='bridge0\x00')
r5 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r5, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000080)}, 0x0)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)={0x38, 0x1403, 0xc23, 0x70bd2a, 0x25dfdbff, "", [{{0x9, 0x2, 'syz1\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'syz_tun\x00'}}]}, 0x38}, 0x1, 0x0, 0x0, 0x48845}, 0x4000)

1.579298151s ago: executing program 1 (id=2307):
ioctl$PPPIOCNEWUNIT(0xffffffffffffffff, 0xc004743e, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000200)='sched_switch\x00'}, 0x10)
r0 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_TX_RING(r0, 0x11b, 0x3, &(0x7f00000001c0)=0x200000, 0x4)
setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f0000000240)={0x0, 0x1228000, 0x1000, 0x2, 0x1}, 0x20)

1.533875501s ago: executing program 0 (id=2308):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=@newtfilter={0x48, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x0, 0x9}, {}, {0xd, 0xfff1}}, [@filter_kind_options=@f_cgroup={{0xb}, {0x18, 0x2, [@TCA_CGROUP_EMATCHES={0x14, 0x3, 0x0, 0x1, [@TCA_EMATCH_TREE_LIST={0x10, 0x2, 0x0, 0x1, [@TCF_EM_IPT={0xc, 0x1, 0x0, 0x0, {{0x3, 0x9, 0x80}}}]}]}]}}]}, 0x48}}, 0x1)
socket$netlink(0x10, 0x3, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x275a, 0x0)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000000)={0x18})
mmap(&(0x7f000039f000/0x1000)=nil, 0x1000, 0x300000e, 0x11, r0, 0x9cc21000)
r1 = socket(0x10, 0x803, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5452, 0x0)
sendmsg$NL80211_CMD_CRIT_PROTOCOL_START(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={0x0, 0x1c}}, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000780), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000040)={'wlan0\x00'})
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000180)={0xffffffffffffffff, &(0x7f0000000340)="9f227e2c", &(0x7f0000000000)=""/10, 0x2}, 0x20)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="4000000010000305000000000007000000000000", @ANYRES32=0x0, @ANYBLOB="0000000000100000180012800e0001007769726567756172640000000400028008000a00", @ANYRES32], 0x40}, 0x1, 0x0, 0x0, 0x800}, 0xc0b0)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000880)=@ipv6_newroute={0x1c, 0x18, 0x1, 0x70bd2c, 0x0, {0xa, 0x0, 0x14, 0x0, 0xfe, 0x4, 0xff, 0x6}}, 0x1c}}, 0x0)
sendmmsg(r3, &(0x7f00000002c0), 0x40000000000009f, 0x14000000)

1.360916672s ago: executing program 1 (id=2309):
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
mlockall(0x6)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffefffff6, 0x20031, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
syz_io_uring_setup(0x110, 0x0, 0x0, &(0x7f0000000280))
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000380)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f0000000000))
ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000000140)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x4})
ioctl$UFFDIO_COPY(r3, 0xc028aa03, &(0x7f0000000040)={&(0x7f00006c6000/0x400000)=nil, &(0x7f0000685000/0x4000)=nil, 0x400000, 0x0, 0x18100})

1.259639523s ago: executing program 2 (id=2310):
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, &(0x7f0000000040)={0x6, @private=0xa010100, 0x4e21, 0x2, 'sed\x00', 0x2, 0x0, 0x68}, 0x2c)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$IPVS_CMD_SET_INFO(0xffffffffffffffff, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={&(0x7f0000000a80)={0x14}, 0x14}}, 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r3, @ANYBLOB="01000000020000001c0012000c000100626f6e64000000000c0002000800010005"], 0x3c}}, 0x0)
socket$kcm(0x29, 0x2, 0x0)
sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0xffffff1f, 0x0, 0x80, {0x0, 0x0, 0x0, 0x0, 0x0, 0x3f00}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @gretap={{0xb}, {0x8, 0x2, 0x0, 0x1, [@IFLA_GRE_COLLECT_METADATA={0x4}]}}}, @IFLA_MASTER={0x8, 0xa, r3}]}, 0x40}, 0x1, 0x0, 0x0, 0x2000c0c1}, 0x40000)
r5 = socket(0x1, 0x803, 0x0)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=@newlink={0x58, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x90646}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x18, 0x2, 0x0, 0x1, [@IFLA_VLAN_FLAGS={0xc, 0x2, {0x1f, 0x1f}}, @IFLA_VLAN_ID={0x6, 0x1, 0x1}]}}}, @IFLA_LINK={0x8, 0x5, r6}, @IFLA_MASTER={0x8, 0xa, r6}]}, 0x58}, 0x1, 0x0, 0x0, 0x600}, 0x0)

1.080442444s ago: executing program 2 (id=2311):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000200)={0xa, 0x0, 0x2, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000000c0), 0x3)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000080)=0x1, 0x4)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f0000000140)=@gcm_128={{0x303}, "87ee8ac6c46dad33", "2607080d7f4fcf00fd4ef2dece6c7c58", '\x00', '#\x00'}, 0x28)
mmap(&(0x7f0000000000/0x95c000)=nil, 0x95c000, 0x200000b, 0x8c4b815a5465c2b2, 0xffffffffffffffff, 0x0)
sendmsg$inet(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000009c0)=[{&(0x7f0000000240)="6e37cff5b582e082d58cb23de3c19dc4971d9b59ddb52ae25a3ca48e8d5284721b4b722d1fd011fc3144e4ceb18b32b5b819d56f4aa3fe1aaf904aa07b7b748ab54c9b47531624c0ca3cc3e9246587e7cea8af062e15c1c27d8e9d9328114f2bda697decbedc50cc278f543faa13098717d9f379121225b179faeebe79be6a82dea4403a3bc7990b1cfee9e5a1aaf11b32facecc76bc0ad86f4fa184dd6e451992a564475498a4e85e9484c9a357c08060637ee267f307d605e87225cb4175be29", 0xc1}], 0x1}, 0x0)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x2, &(0x7f0000000680)=@gcm_128={{0x303}, "000137d7009400", "a8b6c5b29ca2b841381ac2fc7ddf972d", "e9be1eae", "bb10000000000001"}, 0x28)
readv(r0, &(0x7f0000000e40)=[{&(0x7f0000000f40)=""/250, 0xfa}], 0x1)

930.003685ms ago: executing program 2 (id=2312):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0xa2f01, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r2 = socket$packet(0x11, 0x2, 0x300)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r4 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}})
write$tun(r3, &(0x7f0000000300)={@val={0x1c, 0xd}, @val={0x1, 0x0, 0x0, 0xfea, 0x3d, 0x5}, @ipv4=@udp={{0x5, 0x4, 0x0, 0x5, 0x42, 0x67, 0x0, 0x79, 0x11, 0x0, @initdev={0xac, 0x1e, 0xfd, 0x0}, @rand_addr=0x64010100}, {0x4e20, 0x4e22, 0x2e, 0x0, @gue={{0x1, 0x0, 0x1, 0xff, 0x0, @void}, "ed131ccc8134175a5a46a742c85032e122fdf9ba762f0f356539ca8633eff2656384"}}}}, 0x50)
setsockopt$packet_int(r2, 0x107, 0xa, &(0x7f0000000080)=0x1, 0x4)
setsockopt$packet_rx_ring(r2, 0x107, 0x5, &(0x7f0000000140)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x7ff, 0xf83, 0x3}, 0x1c)
r5 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r1, &(0x7f0000000dc0)=ANY=[], 0x9e)
r6 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000640)}, 0x0)
r7 = socket$inet(0x2, 0x6000000000000001, 0x0)
mmap(&(0x7f0000001000/0x200000)=nil, 0x200000, 0x2000001, 0x2011, r7, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'syz_tun\x00'})
bpf$BPF_LINK_CREATE_XDP(0x1c, 0x0, 0x0)
sendmsg$TIPC_NL_KEY_FLUSH(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB, @ANYRES16=0x0], 0x2a8}, 0x1, 0x0, 0x0, 0x8040}, 0x20044801)

875.708065ms ago: executing program 0 (id=2313):
socket$inet_icmp_raw(0x2, 0x3, 0x1)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x5)
close(0x4)
syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00')
unshare(0x6a040000)
r0 = socket$netlink(0x10, 0x3, 0x12)
writev(r0, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0258ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000040000000000000000fff5dd", 0x45}, {&(0x7f0000000300)="cb19f81a4e809d9d4f73dab00e82e481390622", 0x13}], 0x2)

285.649µs ago: executing program 0 (id=2314):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="ac000000000000000000000000000000850000006d000000850000007d0000009500000000000000b3c18ae03f75d805164dde77efd76d91de4d0279a74489d2409d3a5be9ee5a6599426ecfa53c0be1d135573c1ac06d4291ed1c080d4f"], &(0x7f00000000c0)='GPL\x00', 0x4, 0xad, &(0x7f00000003c0)=""/173}, 0x80)
r3 = socket$inet6(0xa, 0x80001, 0x0)
setsockopt$inet6_MCAST_JOIN_GROUP(r3, 0x29, 0x2a, &(0x7f0000fca000)={0x100000001, {{0xa, 0x0, 0x0, @mcast1}}}, 0x88)
setsockopt$inet6_MCAST_MSFILTER(r3, 0x29, 0x30, 0x0, 0x310)
setsockopt$inet6_MCAST_MSFILTER(r3, 0x29, 0x30, &(0x7f0000000840)=ANY=[@ANYBLOB="01000000000000000a00000000000000ff01000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100000001"], 0x110)
sendmsg$NL80211_CMD_CONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000240)={0x30, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}]]}, 0x30}}, 0x0)
pipe(&(0x7f0000000780)={<r4=>0xffffffffffffffff})
sendmsg$SMC_PNETID_GET(r4, 0x0, 0x4001)
syz_80211_inject_frame(0x0, &(0x7f0000000300)=@mgmt_frame=@probe_response={{{}, {}, @device_b, @device_a, @from_mac}, 0x0, @default, 0x1, @val={0x0, 0x6, @default_ap_ssid}, @val, @void, @void, @void, @void, @void, @void}, 0x2e)
nanosleep(&(0x7f0000000340)={0x0, 0x2faf080}, 0x0)
syz_80211_inject_frame(0x0, &(0x7f0000000400)=@mgmt_frame=@auth={{{}, {}, @device_b, @device_a, @from_mac, {0x0, 0x1}}, 0x0, 0x2, 0x0, @void}, 0x1e)
syz_80211_inject_frame(&(0x7f00000004c0)=@device_b, &(0x7f0000000500)=@mgmt_frame=@assoc_resp={{{}, {}, @device_b, @device_a, @from_mac, {0x0, 0x2}}, 0x1, 0x0, @default, @val, @void}, 0x20)
r5 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
write$cgroup_int(r6, &(0x7f0000000200), 0xffffffc1)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x22052, r6, 0x0)
mmap(&(0x7f00007a6000/0x3000)=nil, 0x3000, 0x100000c, 0x22051, r6, 0x0)
write$rfkill(r5, &(0x7f0000000080)={0x0, 0x1, 0x3, 0x1}, 0x8)

0s ago: executing program 2 (id=2315):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xc, 0xf}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x8001}, 0x20008850)
r4 = socket$inet6(0xa, 0x2, 0x0)
r5 = socket(0x400000000010, 0x3, 0x0)
r6 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000027c0)=@newtfilter={0x874, 0x2c, 0xd27, 0x30bd29, 0x25dfdc00, {0x0, 0x0, 0x0, r7, {0x0, 0x4}, {}, {0x8}}, [@filter_kind_options=@f_matchall={{0xd}, {0x840, 0x2, [@TCA_MATCHALL_ACT={0x83c, 0x2, [@m_police={0x838, 0x1, 0x0, 0x0, {{0xb}, {0x80c, 0x2, 0x0, 0x1, [[@TCA_POLICE_RATE={0x404, 0x2, [0x1ff, 0x3, 0x10000, 0x81, 0x7f, 0xfffffffb, 0x4, 0x2, 0xffffffc0, 0x5, 0x2234, 0x7f, 0x81b, 0x803, 0x5, 0x0, 0x3, 0x7ed53619, 0x1, 0x2, 0x9644, 0x4, 0x58b, 0x85a, 0x3ff, 0x9, 0x2, 0x1, 0x0, 0x80000000, 0x10001, 0x790, 0x5, 0xab2, 0xfffffff9, 0x1a77, 0x9, 0x3, 0x400, 0x63c, 0x4, 0xffffffff, 0x1, 0x5, 0x1, 0x5b1f, 0x7b0, 0x7, 0x100, 0x6, 0xd, 0xff, 0x3, 0x10000, 0x6, 0x6b7, 0x1ff, 0x80, 0x4, 0x7, 0x3, 0xa14, 0x3, 0x2, 0x80000000, 0x81, 0x7, 0x8, 0x5, 0x10001, 0xf7, 0x3, 0xfffffff9, 0x9, 0x4, 0x8, 0xfff, 0x3, 0x1, 0x6, 0x7, 0x8, 0x100, 0xc0000000, 0x6, 0x6, 0x6, 0x12a, 0x80000001, 0x8, 0x1d24, 0x2, 0x9, 0x1, 0x7f, 0x7, 0x863c, 0xff, 0x24, 0x5, 0x7, 0x6, 0x7a, 0x8, 0x0, 0x7, 0x470, 0x7f, 0x6, 0x0, 0x1, 0x0, 0x4, 0x9, 0x61, 0x200, 0x6, 0x2, 0x2, 0x6, 0x10001, 0x8, 0x7, 0xf, 0xda56, 0x7ffffffe, 0x80, 0x2f0cb955, 0x7, 0xfed, 0xf, 0x6ae, 0x2, 0x1, 0x9, 0x8001, 0x0, 0xec000, 0x0, 0x1, 0x2, 0xfffffffb, 0x7, 0x8, 0x4, 0x1, 0xffffcf1b, 0x282, 0x5517bc7b, 0x3, 0x4, 0xb6b, 0x5, 0x0, 0xac, 0x9, 0x6, 0x10, 0x53146b, 0x8, 0x80000001, 0x0, 0x74, 0x2, 0x7fffffff, 0x0, 0xa, 0x6, 0xffffffff, 0x8, 0x2, 0x7, 0x7f, 0x5, 0x3, 0xa, 0x1, 0x0, 0x9, 0x300, 0x5, 0x3, 0x6, 0xffffffff, 0xffb, 0xff, 0x8, 0x8, 0x3, 0x2, 0x5, 0xfca, 0x399d, 0x6, 0x8ab6, 0x18000, 0x2, 0xfffffff9, 0x2, 0x2, 0x528c, 0x5, 0x200, 0xac, 0xf, 0xd05, 0x9a2ce73, 0x4, 0x6, 0xe074, 0x6b10, 0x5, 0x1, 0x6, 0xb, 0xa26, 0xaf6, 0x0, 0xec, 0x8, 0xde16, 0xc418, 0xffffffff, 0xffffffff, 0x9, 0x400, 0x80001, 0x5, 0x354d, 0x5, 0x2, 0x1, 0x2007, 0x1, 0x177, 0x7, 0x0, 0x80, 0x5, 0x8, 0xfffffffb, 0x9, 0xe7b, 0x0, 0x7, 0x42bf, 0x10000, 0x9, 0x9, 0x6, 0x4b75, 0x80000001, 0x1000, 0x5915, 0x10001, 0x1]}], [@TCA_POLICE_PEAKRATE={0x404, 0x3, [0x1080, 0x4, 0xec2, 0x6, 0x8, 0x400, 0x5, 0x1, 0x7, 0x470, 0x487, 0x100, 0xa99, 0xffffff01, 0x5, 0x37f, 0x30, 0x6, 0x3, 0x3, 0x800, 0x0, 0x40, 0x3, 0x4, 0x5, 0x7, 0x12, 0x2, 0x8, 0x101, 0xffffffff, 0x2, 0x10000, 0xa6, 0x3, 0x10000, 0x5, 0x4, 0x0, 0x3, 0x0, 0xd, 0x40006, 0x98, 0x8, 0x6, 0x9, 0x1000, 0xb3000, 0xf, 0x3, 0x9, 0xb4, 0x94d, 0x9, 0x8, 0x6, 0x100, 0xec0, 0xffff, 0x4, 0x2, 0x3ff, 0x3e, 0xb828, 0x0, 0x0, 0x365, 0x8, 0x8, 0xf, 0x1, 0xfffffffe, 0xfffffff6, 0x93, 0x7ff, 0x92, 0x0, 0x800007, 0xfffffffc, 0x7ff, 0x9, 0x2, 0x0, 0x2, 0x8, 0x4, 0x3, 0x9, 0xc, 0x0, 0x3, 0x3, 0x400, 0x100000, 0x7f, 0x2, 0x8, 0x4, 0x7, 0x4, 0x7, 0xfffffffa, 0x101, 0xadd9, 0x1, 0x0, 0x7, 0x7fffffff, 0x2, 0x4, 0x0, 0x9, 0x4, 0x3, 0x8, 0x9, 0x6, 0x6, 0x2, 0xb, 0x3, 0x7f, 0xffff, 0x401, 0x1685, 0xa252, 0x2, 0x200, 0x3, 0x1, 0x400, 0xfffffffc, 0xfffffffc, 0x1000, 0x7ff, 0x1, 0x1f6, 0x751, 0x7, 0x40000000, 0x5, 0xffffdbb7, 0x50, 0xf, 0xf, 0xe, 0x3, 0x0, 0x81, 0xfff80000, 0x7a7, 0x1, 0x6, 0x3, 0x8, 0x7, 0x5, 0x2, 0x0, 0x4e8, 0x80, 0x3, 0x8, 0x5, 0x0, 0x5, 0x7fff, 0x7, 0x8, 0x6a4941c5, 0x2ea567b4, 0x8, 0x80000000, 0x6, 0x40, 0x2, 0xfff, 0x8, 0x7, 0x1, 0x1, 0x0, 0x0, 0xd3bed341, 0x691f, 0x0, 0x2, 0x9, 0x6, 0x0, 0x1ff, 0x3, 0x3, 0x6, 0x5fc8462f, 0x0, 0x7, 0xffff, 0xfffffffc, 0x5, 0x0, 0xb9a6, 0x522, 0x2, 0x2, 0x100, 0x8, 0xbb99, 0xb8000000, 0x8, 0xffffff01, 0xc0a1, 0x8, 0x8, 0x7, 0x59, 0x9, 0x2, 0x101, 0x5f502dca, 0x7, 0x0, 0x4, 0x6, 0x80000001, 0x3, 0xffffff97, 0x2, 0xfff, 0x1, 0x40, 0x8, 0x3, 0x710, 0x8, 0x1, 0xfffff339, 0x3, 0x8001, 0x1, 0x8001, 0x9, 0x8, 0xfffffffa, 0x8, 0x9, 0x3, 0xe, 0x10000, 0x9, 0x9, 0x7, 0xfffffff8]}]]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x3}}}}]}]}}]}, 0x874}, 0x1, 0x0, 0x0, 0x10}, 0x0)
r8 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r8)
socket(0x2, 0x5, 0x0)
ioctl$SIOCSIFHWADDR(r8, 0x8914, &(0x7f00000000c0)={'syzkaller0\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}})
r9 = socket$unix(0x1, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r10=>0x0})
sendmmsg$inet(r4, &(0x7f00000017c0)=[{{&(0x7f0000000040)={0x2, 0x4e21, @local}, 0x10, 0x0, 0x0, &(0x7f00000006c0)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r10, @dev={0xac, 0x14, 0x14, 0x41}, @empty}}}], 0x20}}], 0x27, 0x0)

kernel console output (not intermixed with test programs):

 T5680] ntfs: (device loop2): ntfs_read_locked_inode(): Corrupt standard information attribute in inode.
[  171.856740][ T5680] ntfs: (device loop2): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[  171.870185][ T5680] ntfs: (device loop2): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[  171.883484][ T5680] ntfs: volume version 3.1.
[  172.104803][ T5695] netlink: 8 bytes leftover after parsing attributes in process `syz.4.363'.
[  173.013613][ T5709] loop3: detected capacity change from 0 to 256
[  173.027329][ T5656] BTRFS error (device loop1): open_ctree failed: -12
[  173.134898][ T4196] ntfs: (device loop2): ntfs_put_super(): Volume has errors.  Leaving volume marked dirty.  Run chkdsk.
[  173.553251][ T5723] loop3: detected capacity change from 0 to 256
[  175.382549][ T5743] loop0: detected capacity change from 0 to 4096
[  175.445646][ T5743] ntfs: (device loop0): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel.
[  175.619402][ T5743] ntfs: (device loop0): ntfs_read_locked_inode(): Corrupt standard information attribute in inode.
[  175.673693][ T5743] ntfs: (device loop0): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[  175.725335][ T5743] ntfs: (device loop0): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[  175.769101][ T5743] ntfs: volume version 3.1.
[  176.611258][ T4183] ntfs: (device loop0): ntfs_put_super(): Volume has errors.  Leaving volume marked dirty.  Run chkdsk.
[  177.602290][ T5780] loop0: detected capacity change from 0 to 256
[  178.267769][ T4200] Bluetooth: hci4: link tx timeout
[  178.273227][ T4200] Bluetooth: hci4: killing stalled connection 11:aa:aa:aa:aa:aa
[  178.317111][ T5789] bridge0: port 3(syz_tun) entered blocking state
[  178.377537][ T5789] bridge0: port 3(syz_tun) entered disabled state
[  178.408995][ T5789] device syz_tun entered promiscuous mode
[  178.417531][ T5789] bridge0: port 3(syz_tun) entered blocking state
[  178.424488][ T5789] bridge0: port 3(syz_tun) entered forwarding state
[  178.490882][ T5790] netlink: 'syz.4.391': attribute type 10 has an invalid length.
[  178.529919][ T5790] bridge0: port 3(syz_tun) entered disabled state
[  178.536572][ T5790] bridge0: port 2(bridge_slave_1) entered disabled state
[  178.544385][ T5790] bridge0: port 1(bridge_slave_0) entered disabled state
[  178.684509][ T5790] bridge0: port 3(syz_tun) entered blocking state
[  178.691079][ T5790] bridge0: port 3(syz_tun) entered forwarding state
[  178.698409][ T5790] bridge0: port 2(bridge_slave_1) entered blocking state
[  178.705530][ T5790] bridge0: port 2(bridge_slave_1) entered forwarding state
[  178.712911][ T5790] bridge0: port 1(bridge_slave_0) entered blocking state
[  178.720115][ T5790] bridge0: port 1(bridge_slave_0) entered forwarding state
[  178.784443][ T5790] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  178.829473][ T5796] loop1: detected capacity change from 0 to 4096
[  178.843644][ T5796] ntfs: (device loop1): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel.
[  178.851056][ T5795] __ib_cache_gid_add: unable to add gid fe80:0000:0000:0000:a8aa:aaff:feaa:aa17 error=-28
[  178.906169][ T5796] ntfs: (device loop1): ntfs_read_locked_inode(): Corrupt standard information attribute in inode.
[  178.922175][ T5796] ntfs: (device loop1): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[  178.934379][ T5799] device syzkaller0 entered promiscuous mode
[  178.941822][ T5796] ntfs: (device loop1): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[  178.978719][ T5796] ntfs: volume version 3.1.
[  179.640531][ T5795] infiniband syz1: set active
[  179.672302][ T5795] infiniband syz1: added syz_tun
[  179.727716][ T5795] infiniband syz1: Couldn't open port 1
[  179.826805][ T5795] RDS/IB: syz1: added
[  179.841972][ T5795] smc: adding ib device syz1 with port count 1
[  179.876345][ T5795] smc:    ib device syz1 port 1 has pnetid 
[  180.100702][ T5822] loop2: detected capacity change from 0 to 64
[  180.618948][ T4289] Bluetooth: hci4: command 0x0406 tx timeout
[  181.025469][ T4182] ntfs: (device loop1): ntfs_put_super(): Volume has errors.  Leaving volume marked dirty.  Run chkdsk.
[  181.325249][ T5837] loop0: detected capacity change from 0 to 256
[  182.486647][ T5854] Zero length message leads to an empty skb
[  182.741494][ T5861] loop1: detected capacity change from 0 to 4096
[  182.814406][ T5861] ntfs: (device loop1): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel.
[  182.923472][ T5861] ntfs: (device loop1): ntfs_read_locked_inode(): Corrupt standard information attribute in inode.
[  182.965941][ T5861] ntfs: (device loop1): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[  182.995547][ T5861] ntfs: (device loop1): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[  183.055271][ T5861] ntfs: volume version 3.1.
[  183.142939][ T5868] netlink: 'syz.2.419': attribute type 12 has an invalid length.
[  183.198581][ T5868] netlink: 'syz.2.419': attribute type 29 has an invalid length.
[  183.249530][ T5868] netlink: 148 bytes leftover after parsing attributes in process `syz.2.419'.
[  183.286806][ T5868] netlink: 'syz.2.419': attribute type 2 has an invalid length.
[  183.345433][ T5868] netlink: 23 bytes leftover after parsing attributes in process `syz.2.419'.
[  183.403693][ T5871] netlink: 'syz.4.420': attribute type 12 has an invalid length.
[  183.419221][ T5871] netlink: 'syz.4.420': attribute type 29 has an invalid length.
[  183.456307][ T5871] netlink: 148 bytes leftover after parsing attributes in process `syz.4.420'.
[  183.515938][ T5871] netlink: 'syz.4.420': attribute type 2 has an invalid length.
[  183.524984][ T5871] netlink: 23 bytes leftover after parsing attributes in process `syz.4.420'.
[  184.501924][ T4182] ntfs: (device loop1): ntfs_put_super(): Volume has errors.  Leaving volume marked dirty.  Run chkdsk.
[  184.898014][ T5898] loop3: detected capacity change from 0 to 64
[  185.323702][ T5912] loop0: detected capacity change from 0 to 256
[  185.865614][ T5412] Bluetooth: hci0: command 0x0406 tx timeout
[  185.876823][ T5412] Bluetooth: hci2: command 0x0406 tx timeout
[  186.012899][ T5412] Bluetooth: hci1: command 0x0406 tx timeout
[  186.143510][ T5412] Bluetooth: hci3: command 0x0406 tx timeout
[  187.714380][ T5942] tipc: Started in network mode
[  187.744392][ T5942] tipc: Node identity Zpvfo., cluster identity 4711
[  187.755267][ T5942] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  187.776515][ T5947] device syzkaller0 entered promiscuous mode
[  187.808699][ T5942] sch_tbf: burst 127 is lower than device syzkaller0 mtu (1514) !
[  187.835952][ T5949] netlink: 4 bytes leftover after parsing attributes in process `syz.4.448'.
[  187.865418][ T5949] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  188.017194][ T5949] batman_adv: batadv0: Removing interface: batadv_slave_1
[  188.065650][ T5947] tipc: Resetting bearer <eth:syzkaller0>
[  188.112728][ T5941] tipc: Resetting bearer <eth:syzkaller0>
[  188.159198][ T5941] tipc: Disabling bearer <eth:syzkaller0>
[  189.257900][ T5975] loop1: detected capacity change from 0 to 256
[  190.252656][ T5991] vcan0: tx drop: invalid sa for name 0xfffffffffffffffe
[  190.588872][ T5997] tipc: New replicast peer: 255.255.255.255
[  190.605766][ T5997] tipc: Enabled bearer <udp:syz2>, priority 10
[  190.778774][ T4191] Bluetooth: hci4: link tx timeout
[  190.784082][ T4191] Bluetooth: hci4: killing stalled connection 11:aa:aa:aa:aa:aa
[  191.474764][ T6003] loop1: detected capacity change from 0 to 64
[  191.617491][ T4289] tipc: Node number set to 895383142
[  191.914657][  T144] nci: nci_rf_intf_activated_ntf_packet: unsupported activation_rf_tech_and_mode 0x8
[  192.289455][ T6018] tipc: Started in network mode
[  192.294574][ T6018] tipc: Node identity 86e6e3bd8f73, cluster identity 4711
[  192.317315][ T6018] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  192.334395][ T6018] device syzkaller0 entered promiscuous mode
[  192.372783][ T6018] tipc: Resetting bearer <eth:syzkaller0>
[  192.384956][ T6017] tipc: Resetting bearer <eth:syzkaller0>
[  192.419203][ T6017] tipc: Disabling bearer <eth:syzkaller0>
[  192.549513][ T6027] loop0: detected capacity change from 0 to 256
[  193.160063][ T6040] loop2: detected capacity change from 0 to 4096
[  193.246213][ T6040] ntfs: (device loop2): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel.
[  193.309361][ T6040] ntfs: (device loop2): ntfs_read_locked_inode(): Corrupt standard information attribute in inode.
[  193.351581][ T6040] ntfs: (device loop2): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[  193.394273][ T6040] ntfs: (device loop2): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[  193.431046][ T6040] ntfs: volume version 3.1.
[  194.065757][ T1422] ieee802154 phy0 wpan0: encryption failed: -22
[  194.072208][ T1422] ieee802154 phy1 wpan1: encryption failed: -22
[  194.295176][ T4196] ntfs: (device loop2): ntfs_put_super(): Volume has errors.  Leaving volume marked dirty.  Run chkdsk.
[  194.641558][ T6059] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci4/hci4:200/input5
[  195.063822][ T6069] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  195.300946][ T6078] netlink: 4 bytes leftover after parsing attributes in process `syz.1.489'.
[  195.324860][ T6078] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  195.346800][ T6078] batman_adv: batadv0: Removing interface: batadv_slave_0
[  195.373357][ T6078] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  195.399052][ T6078] batman_adv: batadv0: Removing interface: batadv_slave_1
[  195.409633][ T6080] loop0: detected capacity change from 0 to 64
[  195.949447][ T6084] loop4: detected capacity change from 0 to 4096
[  195.997159][ T6084] ntfs: (device loop4): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel.
[  196.079892][ T6084] ntfs: (device loop4): ntfs_read_locked_inode(): Corrupt standard information attribute in inode.
[  196.106629][ T6084] ntfs: (device loop4): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[  196.150926][ T6084] ntfs: (device loop4): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[  196.196435][ T6084] ntfs: volume version 3.1.
[  196.448115][ T6097] loop3: detected capacity change from 0 to 256
[  197.019561][ T4189] ntfs: (device loop4): ntfs_put_super(): Volume has errors.  Leaving volume marked dirty.  Run chkdsk.
[  199.035688][ T6140] loop4: detected capacity change from 0 to 4096
[  199.073082][ T6140] ntfs: (device loop4): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel.
[  199.161941][ T6140] ntfs: (device loop4): ntfs_read_locked_inode(): Corrupt standard information attribute in inode.
[  199.200303][ T6140] ntfs: (device loop4): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[  199.252091][ T6140] ntfs: (device loop4): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[  199.267053][ T6140] ntfs: volume version 3.1.
[  199.539615][ T6146] loop3: detected capacity change from 0 to 64
[  202.005779][ T6176] loop0: detected capacity change from 0 to 256
[  202.232163][ T6180] device syzkaller0 entered promiscuous mode
[  202.521025][ T4189] ntfs: (device loop4): ntfs_put_super(): Volume has errors.  Leaving volume marked dirty.  Run chkdsk.
[  203.599546][ T6208] loop3: detected capacity change from 0 to 4096
[  203.640625][ T6208] ntfs: (device loop3): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel.
[  203.668773][ T6208] ntfs: (device loop3): ntfs_read_locked_inode(): Corrupt standard information attribute in inode.
[  203.684026][ T6208] ntfs: (device loop3): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[  203.701825][ T6208] ntfs: (device loop3): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[  203.724980][ T6208] ntfs: volume version 3.1.
[  204.051855][ T6213] loop0: detected capacity change from 0 to 64
[  206.280306][ T6236] device bond1 entered promiscuous mode
[  206.363275][ T6236] device bond_slave_0 entered promiscuous mode
[  206.369893][ T6236] device bond_slave_1 entered promiscuous mode
[  206.376126][ T6236] device wlan1 entered promiscuous mode
[  206.382239][ T6236] device bridge0 entered promiscuous mode
[  206.474176][ T6236] 8021q: adding VLAN 0 to HW filter on device macvlan3
[  206.486669][ T4548] __ib_cache_gid_add: unable to add gid fe80:0000:0000:0000:a0d0:a1ff:feb7:64ee error=-28
[  206.486725][ T6236] bond1: (slave macvlan3): making interface the new active one
[  206.486743][ T6236] device macvlan3 entered promiscuous mode
[  206.486754][ T6236] device bond0 entered promiscuous mode
[  206.622136][ T6236] bond1: (slave macvlan3): Enslaving as an active interface with an up link
[  206.662534][ T6234] netlink: 'syz.2.547': attribute type 13 has an invalid length.
[  206.672478][ T6242] hsr0: VLAN not yet supported
[  206.673003][ T6236] syz.4.548 (6236) used greatest stack depth: 19040 bytes left
[  206.710367][ T6234] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  206.729161][ T6234] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  206.761087][ T6234] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  206.967240][ T6249] loop1: detected capacity change from 0 to 256
[  206.992617][ T4190] ntfs: (device loop3): ntfs_put_super(): Volume has errors.  Leaving volume marked dirty.  Run chkdsk.
[  208.627513][ T6281] netlink: 12 bytes leftover after parsing attributes in process `syz.2.556'.
[  209.293891][ T6299] loop4: detected capacity change from 0 to 4096
[  209.318194][ T6299] ntfs: (device loop4): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel.
[  209.433303][ T6299] ntfs: (device loop4): ntfs_read_locked_inode(): Corrupt standard information attribute in inode.
[  209.479129][ T6299] ntfs: (device loop4): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[  209.514531][ T6299] ntfs: (device loop4): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[  209.542134][ T6299] ntfs: volume version 3.1.
[  210.055835][ T6303] loop1: detected capacity change from 0 to 64
[  211.394225][ T6316] ip6t_REJECT: TCP_RESET illegal for non-tcp
[  211.421753][ T6316] Cannot find map_set index 0 as target
[  211.777235][ T6328] 0: reclassify loop, rule prio 0, protocol 800
[  211.808206][ T6332] loop3: detected capacity change from 0 to 256
[  211.852264][ T6330] netlink: 4 bytes leftover after parsing attributes in process `syz.2.575'.
[  211.868194][    C0] vxcan1: j1939_session_tx_dat: 0xffff8880602a6800: queue data error: -100
[  212.924965][ T4189] ntfs: (device loop4): ntfs_put_super(): Volume has errors.  Leaving volume marked dirty.  Run chkdsk.
[  214.516432][ T6368] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  214.632080][ T6370] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  214.674441][ T6370] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  214.903476][ T6380] loop3: detected capacity change from 0 to 64
[  215.024993][ T6382] loop0: detected capacity change from 0 to 4096
[  215.054499][ T6382] ntfs: (device loop0): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel.
[  215.150634][ T6382] ntfs: (device loop0): ntfs_read_locked_inode(): Corrupt standard information attribute in inode.
[  215.177670][ T6382] ntfs: (device loop0): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[  215.195851][ T6382] ntfs: (device loop0): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[  215.228406][ T6382] ntfs: volume version 3.1.
[  216.216980][ T6408] device bond1 entered promiscuous mode
[  216.238036][ T4183] ntfs: (device loop0): ntfs_put_super(): Volume has errors.  Leaving volume marked dirty.  Run chkdsk.
[  216.399268][ T6421] loop0: detected capacity change from 0 to 256
[  216.724400][ T6425] device syzkaller0 entered promiscuous mode
[  216.995251][ T6430] device syzkaller0 entered promiscuous mode
[  217.235916][ T6433] netlink: 40 bytes leftover after parsing attributes in process `syz.1.605'.
[  217.930143][ T6444] device syzkaller0 entered promiscuous mode
[  218.016994][ T6442] loop1: detected capacity change from 0 to 4096
[  218.038133][ T6442] ntfs: (device loop1): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel.
[  218.074393][ T6448] netlink: 24 bytes leftover after parsing attributes in process `syz.3.611'.
[  218.113130][ T6442] ntfs: (device loop1): ntfs_read_locked_inode(): Corrupt standard information attribute in inode.
[  218.153423][ T6442] ntfs: (device loop1): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[  218.219985][ T6442] ntfs: (device loop1): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[  218.273619][ T6442] ntfs: volume version 3.1.
[  218.622157][ T6464] loop4: detected capacity change from 0 to 64
[  219.390875][ T4182] ntfs: (device loop1): ntfs_put_super(): Volume has errors.  Leaving volume marked dirty.  Run chkdsk.
[  219.788922][ T6491] bond1: (slave macvlan3): Error -98 calling set_mac_address
[  220.533947][ T6513] loop1: detected capacity change from 0 to 256
[  220.837414][ T6516] loop0: detected capacity change from 0 to 4096
[  220.901897][ T6516] ntfs: (device loop0): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel.
[  220.971162][ T6516] ntfs: (device loop0): ntfs_read_locked_inode(): Corrupt standard information attribute in inode.
[  221.002534][ T6516] ntfs: (device loop0): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[  221.048502][ T6516] ntfs: (device loop0): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[  221.096344][ T6516] ntfs: volume version 3.1.
[  221.518787][ T6521] bridge0: port 2(bridge_slave_1) entered disabled state
[  221.526219][ T6521] bridge0: port 1(bridge_slave_0) entered disabled state
[  222.279619][ T4289] Bluetooth: hci1: command 0x0419 tx timeout
[  222.554943][ T6552] loop3: detected capacity change from 0 to 256
[  223.212389][ T6559] loop4: detected capacity change from 0 to 64
[  223.513587][ T4183] ntfs: (device loop0): ntfs_put_super(): Volume has errors.  Leaving volume marked dirty.  Run chkdsk.
[  224.980220][ T6593] loop4: detected capacity change from 0 to 256
[  225.323095][ T6596] loop3: detected capacity change from 0 to 4096
[  225.416574][ T6596] ntfs: (device loop3): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel.
[  225.652923][ T6604] loop0: detected capacity change from 0 to 64
[  225.722849][ T6596] ntfs: (device loop3): ntfs_read_locked_inode(): Corrupt standard information attribute in inode.
[  225.788502][ T6596] ntfs: (device loop3): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[  225.852306][ T6596] ntfs: (device loop3): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[  225.946294][ T6596] ntfs: volume version 3.1.
[  226.219041][ T6613] TCP: MD5 Hash failed for (0.0.0.0, 0)->(0.0.0.0, 20002) L3 index 0
[  226.478574][ T6620] device syzkaller0 entered promiscuous mode
[  226.747672][ T6625] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[  228.072513][ T4190] ntfs: (device loop3): ntfs_put_super(): Volume has errors.  Leaving volume marked dirty.  Run chkdsk.
[  228.384658][ T6650] loop3: detected capacity change from 0 to 256
[  228.529581][ T4191] Bluetooth: hci4: link tx timeout
[  228.534908][ T4191] Bluetooth: hci4: killing stalled connection 10:aa:aa:aa:aa:aa
[  228.545888][ T4191] Bluetooth: hci4: link tx timeout
[  228.551030][ T4191] Bluetooth: hci4: killing stalled connection 11:aa:aa:aa:aa:aa
[  228.705955][ T6652] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  229.250946][ T6666] netlink: 'syz.1.689': attribute type 2 has an invalid length.
[  229.270884][ T6663] netlink: 28 bytes leftover after parsing attributes in process `syz.0.687'.
[  229.295029][ T6666] netlink: 'syz.1.689': attribute type 4 has an invalid length.
[  229.313484][ T6663] netlink: 28 bytes leftover after parsing attributes in process `syz.0.687'.
[  229.666376][ T6675] loop2: detected capacity change from 0 to 4096
[  229.720814][ T6675] ntfs: (device loop2): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel.
[  229.839406][ T6675] ntfs: (device loop2): ntfs_read_locked_inode(): Corrupt standard information attribute in inode.
[  229.884856][ T6675] ntfs: (device loop2): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[  229.942035][ T6675] ntfs: (device loop2): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[  230.006254][ T6675] ntfs: volume version 3.1.
[  230.582534][ T6697] loop1: detected capacity change from 0 to 64
[  230.595532][ T5412] Bluetooth: hci4: command 0x0406 tx timeout
[  230.733265][ T6701] loop3: detected capacity change from 0 to 256
[  232.010017][ T4196] ntfs: (device loop2): ntfs_put_super(): Volume has errors.  Leaving volume marked dirty.  Run chkdsk.
[  232.326804][ T6731] netlink: 8 bytes leftover after parsing attributes in process `syz.2.711'.
[  232.518771][ T6736] x_tables: duplicate entry at hook 3
[  232.681449][ T6741] loop2: detected capacity change from 0 to 256
[  233.145286][ T6753] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  233.173149][ T6751] loop1: detected capacity change from 0 to 4096
[  233.346560][ T6751] ntfs: (device loop1): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel.
[  233.568113][ T6751] ntfs: (device loop1): ntfs_read_locked_inode(): Corrupt standard information attribute in inode.
[  233.615221][ T6751] ntfs: (device loop1): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[  233.708094][ T6751] ntfs: (device loop1): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[  233.768330][ T6751] ntfs: volume version 3.1.
[  234.311598][ T6775] loop4: detected capacity change from 0 to 64
[  235.676757][ T6797] netlink: 12 bytes leftover after parsing attributes in process `syz.3.733'.
[  236.734564][ T6812] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  237.068286][ T4182] ntfs: (device loop1): ntfs_put_super(): Volume has errors.  Leaving volume marked dirty.  Run chkdsk.
[  238.200424][ T6836] loop0: detected capacity change from 0 to 256
[  238.266357][ T6840] tipc: Enabling <eth:lo> not permitted
[  238.329861][ T6840] tipc: Enabling of bearer <eth:lo> rejected, failed to enable media
[  239.048568][ T6856] loop1: detected capacity change from 0 to 4096
[  239.190762][ T6856] ntfs: (device loop1): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel.
[  239.264642][ T6856] ntfs: (device loop1): ntfs_read_locked_inode(): Corrupt standard information attribute in inode.
[  239.302684][ T6861] loop0: detected capacity change from 0 to 64
[  239.308891][ T6856] ntfs: (device loop1): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[  239.308969][ T6856] ntfs: (device loop1): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[  239.333026][ T6856] ntfs: volume version 3.1.
[  239.720314][ T4182] ntfs: (device loop1): ntfs_put_super(): Volume has errors.  Leaving volume marked dirty.  Run chkdsk.
[  240.519635][ T6878] netlink: 'syz.3.762': attribute type 12 has an invalid length.
[  240.545103][ T6878] netlink: 'syz.3.762': attribute type 29 has an invalid length.
[  240.563076][ T6878] netlink: 148 bytes leftover after parsing attributes in process `syz.3.762'.
[  240.582850][ T6878] netlink: 'syz.3.762': attribute type 1 has an invalid length.
[  240.808138][ T6886] loop3: detected capacity change from 0 to 256
[  240.826426][ T6888] bond1: option mode: unable to set because the bond device has slaves
[  240.851264][ T6888] bond1: (slave macvlan3): Error -98 calling set_mac_address
[  240.903767][ T6889] netlink: 'syz.1.765': attribute type 10 has an invalid length.
[  240.943388][ T6889] bridge0: port 2(bridge_slave_1) entered disabled state
[  240.951441][ T6889] bridge0: port 1(bridge_slave_0) entered disabled state
[  241.046078][ T6889] bridge0: port 2(bridge_slave_1) entered blocking state
[  241.053184][ T6889] bridge0: port 2(bridge_slave_1) entered forwarding state
[  241.060668][ T6889] bridge0: port 1(bridge_slave_0) entered blocking state
[  241.067787][ T6889] bridge0: port 1(bridge_slave_0) entered forwarding state
[  241.116817][ T6889] device bridge0 entered promiscuous mode
[  241.123756][ T6889] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  241.489433][ T6899] loop1: detected capacity change from 0 to 4096
[  241.606288][ T6899] ntfs: (device loop1): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel.
[  241.673996][ T6899] ntfs: (device loop1): ntfs_read_locked_inode(): Corrupt standard information attribute in inode.
[  241.715152][ T6899] ntfs: (device loop1): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[  241.755123][ T6899] ntfs: (device loop1): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[  241.800263][ T6899] ntfs: volume version 3.1.
[  242.109430][ T4182] ntfs: (device loop1): ntfs_put_super(): Volume has errors.  Leaving volume marked dirty.  Run chkdsk.
[  242.272125][ T6908] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  243.231580][ T6935] loop0: detected capacity change from 0 to 256
[  243.394075][ T6931] loop2: detected capacity change from 0 to 4096
[  243.496297][ T6931] ntfs: (device loop2): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel.
[  243.584986][ T6931] ntfs: (device loop2): ntfs_read_locked_inode(): Corrupt standard information attribute in inode.
[  243.644017][ T6931] ntfs: (device loop2): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[  243.694160][ T6931] ntfs: (device loop2): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[  243.750826][ T6931] ntfs: volume version 3.1.
[  244.074158][ T4196] ntfs: (device loop2): ntfs_put_super(): Volume has errors.  Leaving volume marked dirty.  Run chkdsk.
[  244.393285][ T6954] loop2: detected capacity change from 0 to 64
[  244.896740][ T6971] device vlan2 entered promiscuous mode
[  244.910683][ T6971] device geneve1 entered promiscuous mode
[  245.510183][ T6983] loop0: detected capacity change from 0 to 4096
[  245.566084][ T6983] ntfs: (device loop0): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel.
[  245.662099][ T6983] ntfs: (device loop0): ntfs_read_locked_inode(): Corrupt standard information attribute in inode.
[  245.692949][ T6983] ntfs: (device loop0): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[  245.749982][ T6983] ntfs: (device loop0): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[  245.783630][ T6983] ntfs: volume version 3.1.
[  246.471168][ T6993] netdevsim netdevsim3 netdevsim0: set [1, 1] type 2 family 0 port 19999 - 0
[  246.553515][ T6993] netdevsim netdevsim3 netdevsim1: set [1, 1] type 2 family 0 port 19999 - 0
[  246.593748][ T6993] netdevsim netdevsim3 netdevsim2: set [1, 1] type 2 family 0 port 19999 - 0
[  246.603626][ T6993] netdevsim netdevsim3 netdevsim3: set [1, 1] type 2 family 0 port 19999 - 0
[  246.642171][ T6993] device geneve2 entered promiscuous mode
[  246.745233][ T5600] Bluetooth: hci1: command 0x2016 tx timeout
[  248.023471][ T6994] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  249.075214][ T6994] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 1] type 2 family 0 port 19999 - 0
[  249.776546][ T6994] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  249.812037][ T6994] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 1] type 2 family 0 port 19999 - 0
[  249.832529][ T7010] loop0: detected capacity change from 0 to 256
[  249.968743][ T6994] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  250.024991][ T6994] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 1] type 2 family 0 port 19999 - 0
[  250.140589][ T7016] Cannot find add_set index 0 as target
[  250.563735][ T6994] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  250.578635][ T6994] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 1] type 2 family 0 port 19999 - 0
[  250.979132][ T7027] loop0: detected capacity change from 0 to 4096
[  250.990177][ T7027] __ntfs_warning: 1 callbacks suppressed
[  250.990274][ T7027] ntfs: (device loop0): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel.
[  251.034782][ T7027] ntfs: (device loop0): ntfs_read_locked_inode(): Corrupt standard information attribute in inode.
[  251.046706][ T7027] ntfs: (device loop0): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[  251.062547][ T7027] ntfs: (device loop0): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[  251.083399][ T7027] ntfs: volume version 3.1.
[  252.018663][ T4183] ntfs: (device loop0): ntfs_put_super(): Volume has errors.  Leaving volume marked dirty.  Run chkdsk.
[  252.722944][ T7042] loop1: detected capacity change from 0 to 64
[  253.754513][ T7058] loop1: detected capacity change from 0 to 256
[  254.804962][ T7063] loop1: detected capacity change from 0 to 4096
[  254.866295][ T7063] ntfs: (device loop1): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel.
[  254.896513][ T7063] ntfs: (device loop1): ntfs_read_locked_inode(): Corrupt standard information attribute in inode.
[  254.907460][ T7063] ntfs: (device loop1): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[  254.921449][ T7063] ntfs: (device loop1): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[  254.934022][ T7063] ntfs: volume version 3.1.
[  255.468076][ T1422] ieee802154 phy0 wpan0: encryption failed: -22
[  255.474445][ T1422] ieee802154 phy1 wpan1: encryption failed: -22
[  255.676262][ T4182] ntfs: (device loop1): ntfs_put_super(): Volume has errors.  Leaving volume marked dirty.  Run chkdsk.
[  258.721051][ T6994] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 19999 - 0
[  258.729594][ T6994] netdevsim netdevsim3 eth0: set [1, 1] type 2 family 0 port 6081 - 0
[  258.743126][ T6994] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 19999 - 0
[  258.758017][ T6994] netdevsim netdevsim3 eth1: set [1, 1] type 2 family 0 port 6081 - 0
[  258.773205][ T6994] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 19999 - 0
[  258.781862][ T6994] netdevsim netdevsim3 eth2: set [1, 1] type 2 family 0 port 6081 - 0
[  258.795326][ T6994] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 19999 - 0
[  258.803705][ T6994] netdevsim netdevsim3 eth3: set [1, 1] type 2 family 0 port 6081 - 0
[  258.927386][ T7081] device veth1_macvtap left promiscuous mode
[  258.943761][ T7081] device macsec0 entered promiscuous mode
[  258.980313][ T7087] loop2: detected capacity change from 0 to 64
[  258.988129][ T7088] device veth1_macvtap entered promiscuous mode
[  259.070153][ T7092] loop0: detected capacity change from 0 to 256
[  259.110618][ T7088] device macsec0 left promiscuous mode
[  259.117179][ T7094] ip6t_REJECT: TCP_RESET illegal for non-tcp
[  259.126078][ T4387] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  259.147016][ T7094] Cannot find map_set index 0 as target
[  259.539573][ T7101] loop3: detected capacity change from 0 to 4096
[  259.566603][ T7101] ntfs: (device loop3): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel.
[  259.680551][ T7101] ntfs: (device loop3): ntfs_read_locked_inode(): Corrupt standard information attribute in inode.
[  259.700012][ T7106] loop1: detected capacity change from 0 to 8192
[  259.735535][ T7101] ntfs: (device loop3): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[  259.752527][ T7106] REISERFS (device loop1): found reiserfs format "3.6" with non-standard journal
[  259.775228][ T7106] REISERFS (device loop1): using ordered data mode
[  259.781768][ T7106] reiserfs: using flush barriers
[  259.802749][ T7101] ntfs: (device loop3): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[  259.828998][ T7106] REISERFS (device loop1): journal params: device loop1, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  259.875180][ T7101] ntfs: volume version 3.1.
[  259.899720][ T7106] REISERFS (device loop1): checking transaction log (loop1)
[  260.268189][ T7106] REISERFS (device loop1): Using tea hash to sort names
[  260.309242][ T7106] REISERFS warning (device loop1): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 4) not found (pos 2)
[  260.329539][ T4190] ntfs: (device loop3): ntfs_put_super(): Volume has errors.  Leaving volume marked dirty.  Run chkdsk.
[  260.369461][ T7106] REISERFS (device loop1): Created .reiserfs_priv - reserved for xattr storage.
[  260.528483][ T7119] netlink: 4 bytes leftover after parsing attributes in process `syz.0.844'.
[  260.566547][ T7119] batman_adv: batadv0: Removing interface: batadv_slave_0
[  260.584872][ T7119] batman_adv: batadv0: Removing interface: batadv_slave_1
[  260.628570][ T7102] loop4: detected capacity change from 0 to 40427
[  260.667982][ T7102] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[  260.682209][ T7102] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  260.700140][ T7102] F2FS-fs (loop4): invalid crc value
[  260.793388][ T7102] F2FS-fs (loop4): Found nat_bits in checkpoint
[  260.950222][ T7102] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  260.957837][ T7102] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  261.133195][ T7134] 0: reclassify loop, rule prio 0, protocol 800
[  261.313599][ T7136] netlink: 4 bytes leftover after parsing attributes in process `syz.1.850'.
[  261.544625][ T7133] loop0: detected capacity change from 0 to 32768
[  261.605349][ T7133] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop0 scanned by syz.0.858 (7133)
[  261.706121][ T7141] ip6t_REJECT: TCP_RESET illegal for non-tcp
[  261.712972][ T7141] Cannot find map_set index 0 as target
[  261.756536][ T7133] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm
[  261.824965][ T7133] BTRFS info (device loop0): enabling auto defrag
[  261.851226][ T7133] BTRFS info (device loop0): force clearing of disk cache
[  261.859554][ T7143] device syzkaller0 entered promiscuous mode
[  261.895438][ T7133] BTRFS info (device loop0): enabling disk space caching
[  261.921795][ T7133] BTRFS info (device loop0): max_inline at 0
[  261.924410][ T7145] netlink: 'syz.3.853': attribute type 10 has an invalid length.
[  261.935945][ T7133] BTRFS info (device loop0): disk space caching is enabled
[  261.957920][ T7133] BTRFS info (device loop0): has skinny extents
[  261.970510][ T7145] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  261.994704][ T7147] loop4: detected capacity change from 0 to 4096
[  262.076615][ T7147] ntfs: (device loop4): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel.
[  262.131790][ T7147] ntfs: (device loop4): ntfs_read_locked_inode(): Corrupt standard information attribute in inode.
[  262.207951][ T7147] ntfs: (device loop4): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[  262.274990][ T7147] ntfs: (device loop4): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[  262.309145][ T7147] ntfs: volume version 3.1.
[  262.321223][ T7133] BTRFS info (device loop0): enabling ssd optimizations
[  262.356091][ T7133] BTRFS info (device loop0): clearing free space tree
[  262.405553][ T7133] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  262.425916][ T7133] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  262.549285][ T7173] bridge0: port 2(bridge_slave_1) entered disabled state
[  262.556500][ T7173] bridge0: port 1(bridge_slave_0) entered disabled state
[  262.679676][ T7178] netlink: 4 bytes leftover after parsing attributes in process `syz.3.859'.
[  262.698397][ T7178] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  262.754202][   T26] audit: type=1804 audit(303.128:5): pid=7180 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.858" name="/newroot/171/file0/file1" dev="loop0" ino=260 res=1 errno=0
[  262.779010][ T7178] batman_adv: batadv0: Removing interface: batadv_slave_0
[  262.807448][ T7168] loop2: detected capacity change from 0 to 32768
[  262.828443][ T7168] BTRFS: device fsid c6b85f58-0c7e-41ca-a553-c8d9f94f6663 devid 1 transid 8 /dev/loop2 scanned by syz.2.855 (7168)
[  262.849013][ T7168] BTRFS info (device loop2): using blake2b (blake2b-256-generic) checksum algorithm
[  262.856762][ T7178] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  262.860035][ T7168] BTRFS info (device loop2): setting incompat feature flag for COMPRESS_LZO (0x8)
[  262.876530][ T7168] BTRFS info (device loop2): use lzo compression, level 0
[  262.884386][ T7168] BTRFS info (device loop2): using free space tree
[  262.892008][ T7178] batman_adv: batadv0: Removing interface: batadv_slave_1
[  262.944904][ T7168] BTRFS info (device loop2): has skinny extents
[  263.178148][ T7168] BTRFS info (device loop2): enabling ssd optimizations
[  263.474733][ T7214] Cannot find map_set index 0 as target
[  263.668325][ T7218] device syzkaller0 entered promiscuous mode
[  264.076166][ T7227] netlink: 4 bytes leftover after parsing attributes in process `syz.0.868'.
[  264.259697][ T7231] loop4: detected capacity change from 0 to 4096
[  264.282379][ T7229] netlink: 'syz.1.870': attribute type 10 has an invalid length.
[  264.302948][ T7231] ntfs: volume version 3.1.
[  264.310167][ T7229] device wlan1 entered promiscuous mode
[  264.325793][ T7229] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  264.546049][ T7236] device bond1 entered promiscuous mode
[  264.563611][ T7238] bridge0: port 3(syz_tun) entered blocking state
[  264.570361][ T7238] bridge0: port 3(syz_tun) entered disabled state
[  264.578299][ T7238] device syz_tun entered promiscuous mode
[  264.587847][ T7236] netlink: 'syz.0.872': attribute type 10 has an invalid length.
[  264.602804][ T7236] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  264.611880][ T7238] netlink: 'syz.2.866': attribute type 10 has an invalid length.
[  264.623686][ T7238] bridge0: port 3(syz_tun) entered blocking state
[  264.630532][ T7238] bridge0: port 3(syz_tun) entered listening state
[  264.637254][ T7238] bridge0: port 2(bridge_slave_1) entered blocking state
[  264.644361][ T7238] bridge0: port 2(bridge_slave_1) entered listening state
[  264.651691][ T7238] bridge0: port 1(bridge_slave_0) entered blocking state
[  264.653151][ T7241] rdma_rxe: rxe_register_device failed with error -23
[  264.658815][ T7238] bridge0: port 1(bridge_slave_0) entered listening state
[  264.664120][ T7238] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  264.702191][ T7241] rdma_rxe: failed to add syz_tun
[  265.021992][ T7243] loop1: detected capacity change from 0 to 32768
[  265.086328][ T4189] __ntfs_warning: 7 callbacks suppressed
[  265.086343][ T4189] ntfs: (device loop4): ntfs_put_super(): Volume has errors.  Leaving volume marked dirty.  Run chkdsk.
[  265.131423][ T7243] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop1 scanned by syz.1.873 (7243)
[  265.185824][ T7243] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm
[  265.205408][ T7243] BTRFS info (device loop1): enabling auto defrag
[  265.247979][ T7243] BTRFS info (device loop1): force clearing of disk cache
[  265.268582][ T7243] BTRFS info (device loop1): enabling disk space caching
[  265.287776][ T7243] BTRFS info (device loop1): max_inline at 0
[  265.310000][ T7243] BTRFS info (device loop1): disk space caching is enabled
[  265.350811][ T7243] BTRFS info (device loop1): has skinny extents
[  265.887344][ T7243] BTRFS info (device loop1): enabling ssd optimizations
[  265.967382][ T7243] BTRFS info (device loop1): clearing free space tree
[  265.974234][ T7243] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  266.057592][ T7243] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  266.073441][ T7254] loop0: detected capacity change from 0 to 32768
[  266.101643][ T7254] BTRFS: device fsid c6b85f58-0c7e-41ca-a553-c8d9f94f6663 devid 1 transid 8 /dev/loop0 scanned by syz.0.877 (7254)
[  266.178254][ T7254] BTRFS info (device loop0): using blake2b (blake2b-256-generic) checksum algorithm
[  266.209283][ T7254] BTRFS info (device loop0): setting incompat feature flag for COMPRESS_LZO (0x8)
[  266.238919][   T26] audit: type=1804 audit(306.618:8): pid=7243 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.873" name="/newroot/192/file0/file1" dev="loop1" ino=260 res=1 errno=0
[  266.259975][ T7254] BTRFS info (device loop0): use lzo compression, level 0
[  266.290356][ T7254] BTRFS info (device loop0): using free space tree
[  266.320993][ T7254] BTRFS info (device loop0): has skinny extents
[  266.465334][ T7266] loop2: detected capacity change from 0 to 32768
[  266.565350][ T7266] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 scanned by syz.2.882 (7266)
[  266.633673][ T7266] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm
[  266.659853][ T7254] BTRFS info (device loop0): enabling ssd optimizations
[  266.677626][ T7266] BTRFS info (device loop2): force clearing of disk cache
[  266.738214][ T7266] BTRFS info (device loop2): enabling auto defrag
[  266.746854][ T7266] BTRFS info (device loop2): max_inline at 0
[  266.767497][ T7266] BTRFS info (device loop2): enabling disk space caching
[  266.785856][   T26] audit: type=1804 audit(307.168:9): pid=7254 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.877" name="/newroot/177/file0/file1" dev="loop0" ino=260 res=1 errno=0
[  266.807861][ T7266] BTRFS info (device loop2): disk space caching is enabled
[  266.816019][ T7266] BTRFS info (device loop2): has skinny extents
[  266.922393][ T7321] loop1: detected capacity change from 0 to 256
[  267.122259][ T7322] device bond1 entered promiscuous mode
[  267.162336][ T7266] BTRFS info (device loop2): enabling ssd optimizations
[  267.203641][ T7266] BTRFS info (device loop2): clearing free space tree
[  267.282145][ T7266] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  267.293852][ T7325] device bond_slave_0 entered promiscuous mode
[  267.300110][ T7325] device bond_slave_1 entered promiscuous mode
[  267.306351][ T7325] device wlan1 entered promiscuous mode
[  267.327932][ T7266] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  267.338766][ T7325] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  267.352590][ T7325] bond1: (slave macvlan2): making interface the new active one
[  267.363198][ T7325] device macvlan2 entered promiscuous mode
[  267.369571][ T7325] device bond0 entered promiscuous mode
[  267.436936][ T7325] bond1: (slave macvlan2): Enslaving as an active interface with an up link
[  267.501302][ T7342] Cannot find add_set index 0 as target
[  267.981308][ T4343] BTRFS info (device loop2): qgroup scan completed (inconsistency flag cleared)
[  268.373773][ T7347] loop3: detected capacity change from 0 to 32768
[  268.497340][ T7347] XFS (loop3): DAX enabled. Warning: EXPERIMENTAL, use at your own risk
[  268.531088][ T7347] XFS (loop3): DAX unsupported by block device. Turning off DAX.
[  268.547306][ T7347] XFS (loop3): DAX and reflink cannot be used together!
[  268.677523][ T7361] device bond1 entered promiscuous mode
[  268.699216][ T7361] device macvlan2 entered promiscuous mode
[  268.722931][ T7361] device bond0 entered promiscuous mode
[  268.806636][ T7362] bridge0: port 3(syz_tun) entered blocking state
[  268.824911][ T7369] loop0: detected capacity change from 0 to 4096
[  268.865760][ T7362] bridge0: port 3(syz_tun) entered disabled state
[  268.896143][ T7369] ntfs: (device loop0): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel.
[  268.923345][ T7362] device syz_tun entered promiscuous mode
[  268.959264][ T7366] netlink: 'syz.1.888': attribute type 10 has an invalid length.
[  268.970076][ T7369] ntfs: (device loop0): ntfs_read_locked_inode(): Corrupt standard information attribute in inode.
[  268.990556][ T7369] ntfs: (device loop0): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[  269.035259][ T7369] ntfs: (device loop0): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[  269.047930][ T7369] ntfs: volume version 3.1.
[  269.344035][ T7389] netlink: 'syz.2.897': attribute type 9 has an invalid length.
[  269.358375][ T7389] netlink: 32 bytes leftover after parsing attributes in process `syz.2.897'.
[  269.435646][ T7394] loop3: detected capacity change from 0 to 64
[  269.743156][ T4183] ntfs: (device loop0): ntfs_put_super(): Volume has errors.  Leaving volume marked dirty.  Run chkdsk.
[  269.942536][ T7403] Cannot find add_set index 0 as target
[  270.009287][ T7397] loop1: detected capacity change from 0 to 4096
[  270.076167][ T7397] ntfs: (device loop1): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel.
[  270.159257][ T7397] ntfs: (device loop1): ntfs_read_locked_inode(): Corrupt standard information attribute in inode.
[  270.199141][ T7397] ntfs: (device loop1): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[  270.245549][ T7397] ntfs: (device loop1): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[  270.285739][ T7397] ntfs: volume version 3.1.
[  270.320119][ T7391] loop4: detected capacity change from 0 to 32768
[  270.398339][ T7401] device veth1_macvtap left promiscuous mode
[  270.404666][ T7401] device macsec0 entered promiscuous mode
[  270.445242][ T7391] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 scanned by syz.4.899 (7391)
[  270.470908][ T7404] device veth1_macvtap entered promiscuous mode
[  270.490827][ T7404] device macsec0 left promiscuous mode
[  270.579993][ T7391] BTRFS info (device loop4): using sha256 (sha256-avx2) checksum algorithm
[  270.609757][ T7391] BTRFS info (device loop4): force clearing of disk cache
[  270.631964][ T7391] BTRFS info (device loop4): enabling auto defrag
[  270.740334][ T7391] BTRFS info (device loop4): max_inline at 0
[  270.746694][ T7391] BTRFS info (device loop4): enabling disk space caching
[  270.756970][ T7391] BTRFS info (device loop4): disk space caching is enabled
[  270.764219][ T7391] BTRFS info (device loop4): has skinny extents
[  270.776496][ T4182] ntfs: (device loop1): ntfs_put_super(): Volume has errors.  Leaving volume marked dirty.  Run chkdsk.
[  271.153312][ T7391] BTRFS info (device loop4): enabling ssd optimizations
[  271.170902][ T7391] BTRFS info (device loop4): clearing free space tree
[  271.197181][ T7391] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  271.253751][ T7391] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  271.510097][ T4266] BTRFS info (device loop4): qgroup scan completed (inconsistency flag cleared)
[  271.815601][ T7463] loop1: detected capacity change from 0 to 4096
[  271.833701][ T7463] ntfs: (device loop1): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel.
[  271.871653][ T7463] ntfs: (device loop1): ntfs_read_locked_inode(): Corrupt standard information attribute in inode.
[  271.883071][ T7463] ntfs: (device loop1): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[  271.896865][ T7463] ntfs: (device loop1): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[  271.910971][ T7463] ntfs: volume version 3.1.
[  272.186386][ T7475] device veth1_macvtap left promiscuous mode
[  272.192406][ T7475] device macsec0 entered promiscuous mode
[  272.261707][ T7475] device veth1_macvtap entered promiscuous mode
[  272.286691][ T7475] device macsec0 left promiscuous mode
[  272.314266][ T4266] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  272.452794][ T7490] loop4: detected capacity change from 0 to 256
[  272.618725][ T4182] ntfs: (device loop1): ntfs_put_super(): Volume has errors.  Leaving volume marked dirty.  Run chkdsk.
[  272.747855][ T4387] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  272.762186][ T4266] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  272.781985][ T7306] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  273.385732][ T7505] netlink: 'syz.1.935': attribute type 10 has an invalid length.
[  273.550310][ T5192] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  273.694207][ T7507] netlink: 4 bytes leftover after parsing attributes in process `syz.2.939'.
[  273.754533][ T7507] bridge0: port 3(syz_tun) entered disabled state
[  273.779752][ T7507] device syz_tun left promiscuous mode
[  273.786045][ T7507] bridge0: port 3(syz_tun) entered disabled state
[  273.962046][ T7519] device macsec0 entered promiscuous mode
[  274.008629][ T7519] device macsec0 left promiscuous mode
[  274.667080][ T4548] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  274.682831][ T4234] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  275.110568][ T7537] netlink: 'syz.2.948': attribute type 10 has an invalid length.
[  275.136721][ T7536] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  275.166863][ T5194] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  275.195100][ T4234] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  275.203226][ T7536] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  275.241678][ T7537] bridge0: port 2(bridge_slave_1) entered disabled state
[  275.248909][ T7537] bridge0: port 1(bridge_slave_0) entered disabled state
[  275.283046][ T7533] loop4: detected capacity change from 0 to 4096
[  275.336229][ T7533] ntfs: (device loop4): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel.
[  275.445944][ T7533] ntfs: (device loop4): ntfs_read_locked_inode(): Corrupt standard information attribute in inode.
[  275.505975][ T7533] ntfs: (device loop4): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[  275.536209][ T7554] loop2: detected capacity change from 0 to 256
[  275.569228][ T7533] ntfs: (device loop4): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[  275.614691][ T7533] ntfs: volume version 3.1.
[  276.397212][ T4189] ntfs: (device loop4): ntfs_put_super(): Volume has errors.  Leaving volume marked dirty.  Run chkdsk.
[  276.476971][ T7574] netlink: 'syz.3.963': attribute type 10 has an invalid length.
[  276.500447][ T7574] bridge0: port 2(bridge_slave_1) entered disabled state
[  276.507948][ T7574] bridge0: port 1(bridge_slave_0) entered disabled state
[  276.579761][ T7574] bridge0: port 2(bridge_slave_1) entered blocking state
[  276.586947][ T7574] bridge0: port 2(bridge_slave_1) entered forwarding state
[  276.594443][ T7574] bridge0: port 1(bridge_slave_0) entered blocking state
[  276.601566][ T7574] bridge0: port 1(bridge_slave_0) entered forwarding state
[  276.720341][ T7574] device bridge0 entered promiscuous mode
[  276.743145][ T7574] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  277.004174][ T7590] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  277.058583][ T7590] device syzkaller0 entered promiscuous mode
[  277.103582][ T7590] tipc: Resetting bearer <eth:syzkaller0>
[  277.142016][ T7589] tipc: Resetting bearer <eth:syzkaller0>
[  277.173872][ T7589] tipc: Disabling bearer <eth:syzkaller0>
[  278.240191][ T7608] loop3: detected capacity change from 0 to 4096
[  278.266692][   T13] net_ratelimit: 17 callbacks suppressed
[  278.266708][   T13] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  278.280723][ T5194] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  278.366600][ T7608] ntfs: (device loop3): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel.
[  278.477703][ T7618] netlink: 'syz.2.977': attribute type 10 has an invalid length.
[  278.488853][ T7622] loop4: detected capacity change from 0 to 256
[  278.506928][ T4916] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  278.516064][ T5194] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  278.529839][ T5194] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  278.547687][ T7608] ntfs: (device loop3): ntfs_read_locked_inode(): Corrupt standard information attribute in inode.
[  278.562909][ T7621] netlink: 4 bytes leftover after parsing attributes in process `syz.0.976'.
[  278.589642][ T7608] ntfs: (device loop3): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[  278.639720][ T7608] ntfs: (device loop3): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[  278.698050][ T7608] ntfs: volume version 3.1.
[  279.538716][ T4190] ntfs: (device loop3): ntfs_put_super(): Volume has errors.  Leaving volume marked dirty.  Run chkdsk.
[  279.556286][ T5196] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  279.625190][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  279.634234][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  280.283112][ T7656] netlink: 'syz.1.989': attribute type 10 has an invalid length.
[  280.435372][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  280.517425][ T7670] netlink: 4 bytes leftover after parsing attributes in process `syz.1.992'.
[  280.596532][ T7670] device syz_tun left promiscuous mode
[  280.602334][ T7670] bridge0: port 3(syz_tun) entered disabled state
[  280.613729][ T4233] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  280.722266][ T7683] netlink: 64 bytes leftover after parsing attributes in process `syz.3.996'.
[  280.832341][ T7684] loop4: detected capacity change from 0 to 4096
[  280.916385][ T7684] ntfs: (device loop4): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel.
[  281.021186][ T7684] ntfs: (device loop4): ntfs_read_locked_inode(): Corrupt standard information attribute in inode.
[  281.029033][ T7692] bridge0: port 3(syz_tun) entered blocking state
[  281.058233][ T7692] bridge0: port 3(syz_tun) entered disabled state
[  281.067902][ T7684] ntfs: (device loop4): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[  281.075448][ T7692] device syz_tun entered promiscuous mode
[  281.132120][ T7684] ntfs: (device loop4): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[  281.137264][ T7692] bridge0: port 3(syz_tun) entered blocking state
[  281.149735][ T7692] bridge0: port 3(syz_tun) entered forwarding state
[  281.169397][ T7701] loop2: detected capacity change from 0 to 256
[  281.186431][ T7684] ntfs: volume version 3.1.
[  281.203581][ T7698] netlink: 'syz.0.1005': attribute type 29 has an invalid length.
[  281.215264][ T7699] netlink: 'syz.3.1003': attribute type 10 has an invalid length.
[  281.259649][ T7699] bridge0: port 3(syz_tun) entered disabled state
[  281.266306][ T7699] bridge0: port 2(bridge_slave_1) entered disabled state
[  281.273488][ T7699] bridge0: port 1(bridge_slave_0) entered disabled state
[  281.297896][ T7698] netlink: 'syz.0.1005': attribute type 29 has an invalid length.
[  281.365264][ T7702] netlink: 'syz.0.1005': attribute type 29 has an invalid length.
[  282.028965][ T4189] ntfs: (device loop4): ntfs_put_super(): Volume has errors.  Leaving volume marked dirty.  Run chkdsk.
[  282.080226][ T7714] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  282.376302][ T7714] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1011'.
[  282.728639][ T7733] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1020'.
[  283.020104][ T7753] loop4: detected capacity change from 0 to 256
[  283.343097][ T7765] rdma_rxe: rxe_register_device failed with error -23
[  283.369528][ T7765] rdma_rxe: failed to add syz_tun
[  283.509119][ T7774] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  283.590508][ T7774] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  283.655379][ T7774] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  283.705206][    C0] net_ratelimit: 8 callbacks suppressed
[  283.705222][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  283.719321][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  283.924602][ T7782] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1035'.
[  283.948470][ T4234] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  283.992295][ T4234] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  284.213705][ T4290] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  284.275527][ T4916] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  284.300217][ T4234] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  284.388715][ T4234] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  284.397451][ T4290] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  284.419712][ T7306] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  284.784106][ T7821] loop4: detected capacity change from 0 to 256
[  284.796094][ T7823] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1051'.
[  284.992575][ T7831] netlink: 'syz.3.1056': attribute type 10 has an invalid length.
[  285.016698][ T7831] rdma_rxe: rxe_register_device failed with error -23
[  285.055441][ T7831] rdma_rxe: failed to add syz_tun
[  285.081050][ T7834] device pim6reg1 entered promiscuous mode
[  285.177594][ T7839] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1059'.
[  285.366625][ T7845] netlink: 104 bytes leftover after parsing attributes in process `syz.0.1061'.
[  285.401643][   T26] audit: type=1800 audit(325.778:10): pid=7835 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1057" name="regulatory.db" dev="sda1" ino=448 res=0 errno=0
[  285.426424][ T7835] platform regulatory.0: loading /lib/firmware/regulatory.db failed with error -4
[  285.471158][ T7835] platform regulatory.0: Direct firmware load for regulatory.db failed with error -4
[  285.491325][ T7835] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  285.520405][ T7835] syz.2.1057 (7835) used greatest stack depth: 18632 bytes left
[  286.198694][ T7863] netlink: 'syz.3.1069': attribute type 10 has an invalid length.
[  286.236347][ T7863] rdma_rxe: rxe_register_device failed with error -23
[  286.252344][ T7863] rdma_rxe: failed to add syz_tun
[  286.649369][ T7895] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1080'.
[  286.751552][ T7898] netlink: 'syz.4.1085': attribute type 10 has an invalid length.
[  286.794801][ T7898] bridge0: port 3(syz_tun) entered disabled state
[  286.801535][ T7898] bridge0: port 2(bridge_slave_1) entered disabled state
[  286.808831][ T7898] bridge0: port 1(bridge_slave_0) entered disabled state
[  286.857031][ T7905] rdma_rxe: already configured on syz_tun
[  287.036288][ T7912] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1089'.
[  287.158287][ T7918] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1090'.
[  287.764059][ T7941] netlink: 'syz.2.1100': attribute type 10 has an invalid length.
[  288.455431][ T7957] infiniband syz1: set active
[  288.656832][ T7957] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  288.726933][ T7957] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  288.734700][ T7957] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  288.945426][ T7957] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1104'.
[  289.119000][ T7982] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1108'.
[  289.158022][ T7988] bridge: RTM_DELNEIGH with unconfigured vlan 2 on bridge_slave_1
[  289.232563][ T7992] bridge0: port 2(bridge_slave_1) entered blocking state
[  289.239732][ T7992] bridge0: port 2(bridge_slave_1) entered listening state
[  289.247213][ T7992] bridge0: port 1(bridge_slave_0) entered blocking state
[  289.254388][ T7992] bridge0: port 1(bridge_slave_0) entered listening state
[  290.221246][ T5194] net_ratelimit: 12 callbacks suppressed
[  290.221266][ T5194] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  290.536434][ T4234] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  290.693321][ T8036] ax25_connect(): syz.0.1126 uses autobind, please contact jreuter@yaina.de
[  290.758024][ T8038] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1127'.
[  291.017123][ T8054] netlink: 'syz.4.1132': attribute type 10 has an invalid length.
[  291.042329][ T8054] rdma_rxe: already configured on syz_tun
[  291.945348][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  291.953821][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  291.975554][ T5192] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  292.017697][ T8073] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1137'.
[  292.028234][ T8073] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1137'.
[  292.121971][ T8078] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1139'.
[  292.397136][ T8091] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1144'.
[  293.061070][ T5192] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  293.175234][ T8088] bridge: RTM_DELNEIGH with unconfigured vlan 2 on bridge_slave_1
[  293.233723][ T8096] netlink: 'syz.4.1145': attribute type 10 has an invalid length.
[  293.327794][ T8102] rdma_rxe: already configured on syz_tun
[  293.481993][ T8103] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1147'.
[  293.512426][ T8109] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1146'.
[  293.555276][ T5408] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  293.597793][ T8105] loop2: detected capacity change from 0 to 4096
[  293.902864][ T8105] ntfs: (device loop2): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel.
[  294.205489][ T4290] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  294.355304][ T8105] ntfs: (device loop2): ntfs_read_locked_inode(): Corrupt standard information attribute in inode.
[  294.408507][ T8105] ntfs: (device loop2): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[  294.435548][ T8105] ntfs: (device loop2): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[  294.526670][ T8105] ntfs: volume version 3.1.
[  294.653215][ T8128] infiniband syz1: set active
[  294.686090][ T8128] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  294.767073][ T8128] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  294.813488][ T8128] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  295.321180][ T4290] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  295.331108][ T4196] ntfs: (device loop2): ntfs_put_super(): Volume has errors.  Leaving volume marked dirty.  Run chkdsk.
[  295.770236][ T8140] netlink: 'syz.3.1159': attribute type 10 has an invalid length.
[  296.147299][ T8140] rdma_rxe: rxe_register_device failed with error -23
[  296.320983][ T8140] rdma_rxe: failed to add syz_tun
[  296.338423][ T8148] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1156'.
[  296.354761][ T5192] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  296.435955][ T4234] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  296.586601][   T13] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  296.713399][ T8162] infiniband !yz!: set active
[  296.719172][ T8162] infiniband !yz!: added team_slave_0
[  296.762563][ T8162] RDS/IB: !yz!: added
[  296.766760][ T8162] smc: adding ib device !yz! with port count 1
[  296.772946][ T8162] smc:    ib device !yz! port 1 has pnetid 
[  297.019958][ T8177] IPVS: set_ctl: invalid protocol: 0 0.0.0.0:0
[  297.337229][ T8183] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1172'.
[  297.393280][ T4233] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  297.529469][ T8189] netlink: 'syz.1.1173': attribute type 4 has an invalid length.
[  297.623045][ T8189] netlink: 17 bytes leftover after parsing attributes in process `syz.1.1173'.
[  298.496181][ T4233] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  298.896892][ T8203] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1188'.
[  299.254619][ T8211] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1179'.
[  299.337312][ T8215] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1180'.
[  299.545312][ T5192] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  299.635742][   T13] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  300.838712][ T5196] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  300.954530][ T8243] netlink: 'syz.1.1194': attribute type 10 has an invalid length.
[  301.255657][ T8263] netlink: 'syz.4.1202': attribute type 5 has an invalid length.
[  301.327564][ T8260] netlink: 45 bytes leftover after parsing attributes in process `syz.3.1201'.
[  301.515764][ T8284] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  301.530221][ T8284] Cannot find set identified by id 1 to match
[  301.548876][ T4234] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  301.565579][   T13] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  301.669782][ T8288] netlink: 'syz.1.1208': attribute type 10 has an invalid length.
[  301.867211][ T5194] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  302.639994][ T8300] xt_CONNSECMARK: invalid mode: 0
[  302.686134][ T8302] netlink: 'syz.1.1215': attribute type 5 has an invalid length.
[  302.795471][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  302.825258][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  302.852940][ T8309] device syz_tun left promiscuous mode
[  302.864014][ T8309] bridge0: port 3(syz_tun) entered disabled state
[  302.890115][ T8309] bond0: (slave bridge0): Releasing backup interface
[  302.903220][ T8309] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  302.910977][ T5194] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  302.918580][ T8309] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  302.929419][ T8309] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  302.941191][ T8309] device bridge_slave_0 left promiscuous mode
[  302.950787][ T8309] bridge0: port 1(bridge_slave_0) entered disabled state
[  302.968022][ T8309] device bridge_slave_1 left promiscuous mode
[  302.974420][ T8309] bridge0: port 2(bridge_slave_1) entered disabled state
[  302.985561][ T8309] bond0: (slave bond_slave_0): Releasing backup interface
[  302.993684][ T8309] device bond_slave_0 left promiscuous mode
[  303.018120][ T8309] bond0: (slave bond_slave_1): Releasing backup interface
[  303.030775][ T8309] device bond_slave_1 left promiscuous mode
[  303.048744][ T8309] rdma_rxe: ignoring netdev event = 27 for team_slave_0
[  303.060837][ T8309] rdma_rxe: ignoring netdev event = 26 for team_slave_0
[  303.073652][ T8309] rdma_rxe: ignoring netdev event = 21 for team_slave_0
[  303.085838][ T8309] rdma_rxe: ignoring netdev event = 10 for team_slave_0
[  303.128189][ T8309] infiniband !yz!: set down
[  303.136092][ T8309] rdma_rxe: ignoring netdev event = 27 for team_slave_0
[  303.143281][ T8309] rdma_rxe: ignoring netdev event = 9 for team_slave_0
[  303.150652][ T8309] rdma_rxe: ignoring netdev event = 8 for team_slave_0
[  303.158698][ T8309] team0: Port device team_slave_0 removed
[  303.182600][ T8309] team0: Port device team_slave_1 removed
[  303.202963][ T8309] bond0: (slave wlan1): Releasing backup interface
[  303.211428][ T8309] device wlan1 left promiscuous mode
[  303.233576][ T8309] bond1: (slave macvlan2): Releasing active interface
[  303.241528][ T5408] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  303.250141][ T8309] device macvlan2 left promiscuous mode
[  303.260477][ T5408] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  303.269178][ T8309] device bond0 left promiscuous mode
[  303.285246][ T8311] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1217'.
[  303.322926][ T8312] team0: Mode changed to "activebackup"
[  303.365329][ T7306] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  303.472908][ T8314] netlink: 'syz.1.1219': attribute type 10 has an invalid length.
[  304.028276][ T8323] delete_channel: no stack
[  304.035383][ T8330] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1225'.
[  304.055843][ T8330] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1225'.
[  304.287614][ T8341] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1230'.
[  304.469445][ T8345] bridge0: port 1(syz_tun) entered blocking state
[  304.497474][ T8345] bridge0: port 1(syz_tun) entered disabled state
[  304.518931][ T8345] device syz_tun entered promiscuous mode
[  304.554854][ T8351] netlink: 'syz.3.1231': attribute type 10 has an invalid length.
[  304.587709][ T8351] bridge0: port 1(syz_tun) entered blocking state
[  304.594207][ T8351] bridge0: port 1(syz_tun) entered forwarding state
[  304.616019][ T8352] IPVS: Scheduler module ip_vs_ not found
[  304.643192][ T8351] device bridge0 left promiscuous mode
[  304.669532][ T8351] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  304.740850][ T8355] team0: Device ipvlan0 failed to register rx_handler
[  304.927404][ T8356] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1232'.
[  305.415871][ T8375] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1242'.
[  305.449539][ T8375] device vlan0 entered promiscuous mode
[  305.464408][ T8375] device batadv0 entered promiscuous mode
[  305.601287][ T8379] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1243'.
[  305.787940][ T8389] netlink: 'syz.2.1246': attribute type 10 has an invalid length.
[  305.825982][ T8389] bridge0: port 2(bridge_slave_1) entered disabled state
[  305.833258][ T8389] bridge0: port 1(bridge_slave_0) entered disabled state
[  305.918825][ T8386] delete_channel: no stack
[  306.028786][ T5192] net_ratelimit: 4 callbacks suppressed
[  306.028801][ T5192] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  306.150852][ T8413] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  306.160296][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  306.352166][ T8422] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1259'.
[  306.422340][ T8422] 8021q: VLANs not supported on hsr0
[  306.539873][ T8428] netlink: 'syz.1.1261': attribute type 1 has an invalid length.
[  306.573732][ T8428] netlink: 140 bytes leftover after parsing attributes in process `syz.1.1261'.
[  306.699594][ T8435] tipc: Failed to remove unknown binding: 66,1,1/0:1145969849/1145969851
[  306.726329][ T8437] netlink: 224 bytes leftover after parsing attributes in process `syz.4.1265'.
[  306.767523][ T8435] tipc: Failed to remove unknown binding: 66,1,1/0:1145969849/1145969851
[  306.767558][ T8441] netlink: 'syz.3.1266': attribute type 10 has an invalid length.
[  306.802591][ T8441] bridge0: port 1(syz_tun) entered disabled state
[  306.847653][ T8435] tipc: Failed to remove unknown binding: 66,1,1/0:1145969849/1145969851
[  306.884011][ T8446] netlink: 'syz.4.1269': attribute type 32 has an invalid length.
[  307.086351][ T5202] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  307.145247][ T4548] af_packet: tpacket_rcv: packet too big, clamped from 60 to 4294967272. macoff=96
[  307.621160][ T8483] netlink: 'syz.2.1282': attribute type 10 has an invalid length.
[  307.631607][   T13] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  308.106593][ T5202] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  308.115901][ T8505] bond0: (slave bridge0): Releasing backup interface
[  308.138714][ T8505] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  308.180388][ T8505] device bridge_slave_0 left promiscuous mode
[  308.201484][ T8505] bridge0: port 1(bridge_slave_0) entered disabled state
[  308.223523][ T8505] device bridge_slave_1 left promiscuous mode
[  308.242620][ T8505] bridge0: port 2(bridge_slave_1) entered disabled state
[  308.330968][ T8505] bond0: (slave bond_slave_0): Releasing backup interface
[  308.375963][ T8505] bond0: (slave bond_slave_1): Releasing backup interface
[  308.464289][ T8505] team0: Port device team_slave_0 removed
[  308.535669][ T8505] team0: Port device team_slave_1 removed
[  308.542040][ T8505] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  308.550799][ T8505] batman_adv: batadv0: Removing interface: batadv_slave_0
[  308.566875][ T8505] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  308.574286][ T8505] batman_adv: batadv0: Removing interface: batadv_slave_1
[  308.585171][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  308.594651][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  308.613465][ T8508] team0: Mode changed to "activebackup"
[  308.651561][ T8512] netlink: 'syz.1.1291': attribute type 10 has an invalid length.
[  308.703147][ T8512] 8021q: adding VLAN 0 to HW filter on device team0
[  308.721438][ T8512] device team0 entered promiscuous mode
[  308.732632][ T8512] device team_slave_0 entered promiscuous mode
[  308.739386][ T8512] device team_slave_1 entered promiscuous mode
[  308.749357][ T8512] bond0: (slave team0): Enslaving as an active interface with an up link
[  309.151334][ T5202] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  309.165859][ T8549] device bond1 left promiscuous mode
[  309.202169][ T8560] tipc: Failed to remove unknown binding: 66,1,1/0:2796989981/2796989983
[  309.225240][ T8559] netlink: 'syz.4.1307': attribute type 10 has an invalid length.
[  309.272707][ T8560] tipc: Failed to remove unknown binding: 66,1,1/0:2796989981/2796989983
[  309.295865][ T8559] 8021q: adding VLAN 0 to HW filter on device team0
[  309.311837][ T8560] tipc: Failed to remove unknown binding: 66,1,1/0:2796989981/2796989983
[  309.321478][ T4343] __ib_cache_gid_add: unable to add gid fe80:0000:0000:0000:a8aa:aaff:feaa:aa17 error=-28
[  309.332043][ T8559] device team0 entered promiscuous mode
[  309.338202][ T8559] device team_slave_0 entered promiscuous mode
[  309.385100][ T8559] device team_slave_1 entered promiscuous mode
[  309.403332][ T8559] bond0: (slave team0): Enslaving as an active interface with an up link
[  309.435705][ T8567] bond0: (slave bridge0): Releasing backup interface
[  309.467452][ T8567] device bridge_slave_0 left promiscuous mode
[  309.485483][ T8567] bridge0: port 1(bridge_slave_0) entered disabled state
[  309.550299][ T8567] device bridge_slave_1 left promiscuous mode
[  309.568487][ T8567] bridge0: port 2(bridge_slave_1) entered disabled state
[  309.601445][ T8567] bond0: (slave bond_slave_0): Releasing backup interface
[  309.614878][ T8567] bond0: (slave bond_slave_1): Releasing backup interface
[  309.653314][ T8567] team0: Port device team_slave_0 removed
[  309.676116][ T8567] team0: Port device team_slave_1 removed
[  309.690180][ T8572] team0: Unable to change to the same mode the team is in
[  309.798110][ T8582] __nla_validate_parse: 2 callbacks suppressed
[  309.798124][ T8582] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1313'.
[  310.185529][ T5202] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  310.398633][ T8605] netlink: 'syz.0.1322': attribute type 10 has an invalid length.
[  310.454349][ T8605] 8021q: adding VLAN 0 to HW filter on device team0
[  310.498487][ T8605] bond0: (slave team0): Enslaving as an active interface with an up link
[  310.686005][ T8611] team0: Mode changed to "activebackup"
[  311.025530][ T8621] device bond1 entered promiscuous mode
[  311.047303][ T8621] netlink: 'syz.0.1328': attribute type 10 has an invalid length.
[  311.070279][ T8621] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  311.152867][ T7306] net_ratelimit: 1 callbacks suppressed
[  311.152883][ T7306] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  311.165690][ T8624] ieee802154 phy0 wpan0: encryption failed: -22
[  311.225321][ T5202] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  311.569156][ T8639] netlink: 'syz.4.1333': attribute type 4 has an invalid length.
[  311.787949][ T5202] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  311.960348][ T8644] netlink: 'syz.2.1335': attribute type 10 has an invalid length.
[  312.004914][ T8644] 8021q: adding VLAN 0 to HW filter on device team0
[  312.028435][ T8644] bond0: (slave team0): Enslaving as an active interface with an up link
[  312.265921][ T4290] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  312.435529][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  312.663019][ T8675] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1346'.
[  313.033485][ T8680] ieee802154 phy0 wpan0: encryption failed: -22
[  313.273474][ T8688] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  313.282656][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  313.305406][ T5202] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  313.329455][ T8689] tipc: Failed to remove unknown binding: 66,1,1/0:956323775/956323777
[  313.352600][ T8688] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  313.361201][ T4343] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  313.399344][ T8689] tipc: Failed to remove unknown binding: 66,1,1/0:956323775/956323777
[  313.428595][ T8689] tipc: Failed to remove unknown binding: 66,1,1/0:956323775/956323777
[  313.516509][ T8695] bond0: (slave bridge0): Releasing backup interface
[  313.564861][ T8695] bond0: (slave team0): Releasing backup interface
[  313.775997][ T8699] IPVS: Scheduler module ip_vs_sip not found
[  314.005207][ T8709] netlink: 'syz.0.1359': attribute type 10 has an invalid length.
[  314.033802][ T8709] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  314.268892][ T8716] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1362'.
[  314.773984][ T8740] ieee802154 phy0 wpan0: encryption failed: -22
[  315.755959][ T8769] delete_channel: no stack
[  316.043009][ T8790] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  316.059149][ T8790] device syzkaller0 entered promiscuous mode
[  316.088940][ T8790] tipc: Resetting bearer <eth:syzkaller0>
[  316.129829][ T8787] tipc: Resetting bearer <eth:syzkaller0>
[  316.154805][ T8787] tipc: Disabling bearer <eth:syzkaller0>
[  316.592456][ T4290] net_ratelimit: 6 callbacks suppressed
[  316.592471][ T4290] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  316.686631][ T8803] delete_channel: no stack
[  316.906054][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  316.919218][ T1422] ieee802154 phy0 wpan0: encryption failed: -22
[  316.925750][ T1422] ieee802154 phy1 wpan1: encryption failed: -22
[  317.434365][ T8828] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1403'.
[  317.620060][ T8836] bond0: (slave bridge0): Releasing backup interface
[  317.633086][ T5202] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  317.653893][ T8836] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  317.685921][ T8836] bond0: (slave team0): Releasing backup interface
[  317.704097][ T8836] device team0 left promiscuous mode
[  317.720830][ T8836] device team_slave_0 left promiscuous mode
[  317.727438][ T8836] device team_slave_1 left promiscuous mode
[  317.772211][ T8836] device bridge_slave_0 left promiscuous mode
[  317.788703][ T8836] bridge0: port 1(bridge_slave_0) entered disabled state
[  317.816642][ T8836] device bridge_slave_1 left promiscuous mode
[  317.825438][ T8836] bridge0: port 2(bridge_slave_1) entered disabled state
[  317.844411][ T8836] bond0: (slave bond_slave_0): Releasing backup interface
[  317.853271][ T8836] device bond_slave_0 left promiscuous mode
[  317.865875][   T13] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  317.891996][ T8836] bond0: (slave bond_slave_1): Releasing backup interface
[  317.928174][ T8836] team0: Port device team_slave_0 removed
[  317.952835][ T8836] team0: Port device team_slave_1 removed
[  317.969862][ T8836] bond0: (slave wlan1): Releasing backup interface
[  317.978480][ T8836] device wlan1 left promiscuous mode
[  317.994287][ T8836] bond1: (slave macvlan2): Removing an active aggregator
[  318.004823][ T8836] bond1: (slave macvlan2): Releasing backup interface
[  318.012908][ T8836] device macvlan2 left promiscuous mode
[  318.018889][ T8836] device bond0 left promiscuous mode
[  318.074422][ T8841] netlink: 'syz.3.1408': attribute type 10 has an invalid length.
[  318.371111][ T8855] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1413'.
[  318.526149][ T8866] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1417'.
[  318.536780][ T8867] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  318.545142][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  318.674537][ T4290] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  318.702424][ T8867] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  318.711605][ T4301] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  318.805141][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  318.807573][ T8875] tipc: Can't bind to reserved service type 2
[  318.868758][ T8878] netlink: 'syz.0.1423': attribute type 10 has an invalid length.
[  319.555793][ T8894] device syzkaller0 entered promiscuous mode
[  319.990397][ T8906] netlink: 136 bytes leftover after parsing attributes in process `syz.0.1434'.
[  320.077206][ T8908] netlink: 'syz.4.1435': attribute type 10 has an invalid length.
[  320.910361][ T8936] netlink: 'syz.4.1448': attribute type 10 has an invalid length.
[  321.040380][ T8943] netlink: 'syz.3.1446': attribute type 12 has an invalid length.
[  321.673426][ T8965] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1456'.
[  321.785450][ T5202] net_ratelimit: 373 callbacks suppressed
[  321.785465][ T5202] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  322.716754][ T8982] smc: ib device syz2 ibport 2 applied user defined pnetid SYZ1
[  322.833067][ T5202] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  323.716523][ T9027] netlink: 'syz.3.1481': attribute type 1 has an invalid length.
[  323.817167][ T9035] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1483'.
[  323.873118][ T4290] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  323.947813][ T4234] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  324.346367][ T9054] netlink: 'syz.4.1490': attribute type 8 has an invalid length.
[  324.442623][ T9055] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1490'.
[  324.757703][ T9065] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1494'.
[  324.847768][ T9069] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1496'.
[  324.905575][ T5202] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  325.118058][ T9082] (unnamed net_device) (uninitialized): option downdelay: invalid value (18446744073709551615)
[  325.138529][ T9082] (unnamed net_device) (uninitialized): option downdelay: allowed values 0 - 2147483647
[  325.544607][ T9092] netlink: 'syz.0.1505': attribute type 10 has an invalid length.
[  325.965510][ T4290] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  326.008966][ T9078] delete_channel: no stack
[  326.158770][ T9099] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1507'.
[  326.287722][ T9104] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1509'.
[  326.517858][ T9116] (unnamed net_device) (uninitialized): option downdelay: invalid value (18446744073709551615)
[  326.569392][ T9116] (unnamed net_device) (uninitialized): option downdelay: allowed values 0 - 2147483647
[  326.759426][ T9127] netlink: 'syz.3.1520': attribute type 15 has an invalid length.
[  326.770326][ T9129] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1521'.
[  326.787693][ T9127] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1520'.
[  326.858807][ T9127] netdevsim netdevsim3 eth0: set [0, 0] type 1 family 0 port 2816 - 0
[  326.867758][ T9127] netdevsim netdevsim3 eth1: set [0, 0] type 1 family 0 port 2816 - 0
[  326.876086][ T9127] netdevsim netdevsim3 eth2: set [0, 0] type 1 family 0 port 2816 - 0
[  326.884322][ T9127] netdevsim netdevsim3 eth3: set [0, 0] type 1 family 0 port 2816 - 0
[  326.926391][ T9135] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1524'.
[  326.986598][ T7306] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  326.994756][ T7306] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  327.000785][ T9124] delete_channel: no stack
[  327.054350][ T9127] netlink: 'syz.3.1520': attribute type 15 has an invalid length.
[  327.078347][ T9127] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1520'.
[  327.268295][ T9153] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  327.277539][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  327.341009][ T9151] ªªªªªª¤ujŽ?ZjÃ: renamed from lo
[  328.039978][   T23] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  328.295572][ T9173] delete_channel: no stack
[  328.423944][ T9178] netlink: 'syz.4.1542': attribute type 10 has an invalid length.
[  329.073969][ T5202] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  329.256376][ T9203] delete_channel: no stack
[  329.514580][ T9221] __nla_validate_parse: 5 callbacks suppressed
[  329.514596][ T9221] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1559'.
[  329.791082][ T9233] netlink: 'syz.2.1565': attribute type 17 has an invalid length.
[  329.977856][ T9234] delete_channel: no stack
[  330.113673][ T5202] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  330.146808][ T5412] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  330.497460][ T9258] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1575'.
[  331.066602][ T9270] delete_channel: no stack
[  331.148249][ T5202] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  331.458397][ T9292] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1587'.
[  331.622664][ T9298] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1589'.
[  331.788033][ T9303] netlink: 'syz.2.1592': attribute type 10 has an invalid length.
[  331.838154][ T9303] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  331.981938][ T9309] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1594'.
[  332.022867][ T9309] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1594'.
[  332.055652][ T9307] delete_channel: no stack
[  332.193354][ T5202] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  332.603000][ T4343] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  332.627315][ T4343] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  332.674333][ T4916] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  332.684112][ T9336] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1606'.
[  332.716149][ T9331] delete_channel: no stack
[  332.876236][ T9339] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1607'.
[  332.881619][ T9346] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  332.923650][ T9339] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1607'.
[  333.408205][ T5193] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  333.417720][ T7306] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  333.536979][ T9363] netlink: 'syz.2.1617': attribute type 10 has an invalid length.
[  334.147747][ T9379] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1622'.
[  334.420073][ T9394] netlink: 'syz.3.1629': attribute type 10 has an invalid length.
[  334.428784][ T5193] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  334.638406][ T9406] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  334.647037][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  335.072393][ T9420] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1633'.
[  335.216915][ T9420] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1633'.
[  335.465650][   T23] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  335.886584][ T9437] netlink: 'syz.0.1641': attribute type 10 has an invalid length.
[  336.427750][ T5411] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  336.505465][   T23] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  336.612060][ T9479] sctp: [Deprecated]: syz.0.1651 (pid 9479) Use of int in max_burst socket option.
[  336.612060][ T9479] Use struct sctp_assoc_value instead
[  336.657754][ T9481] netlink: 'syz.3.1653': attribute type 1 has an invalid length.
[  336.735902][ T9484] netlink: 'syz.1.1654': attribute type 10 has an invalid length.
[  336.758361][ T9484] device bridge0 left promiscuous mode
[  336.780951][ T9484] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  336.822402][ T9486] bond2: (slave vxcan3): The slave device specified does not support setting the MAC address
[  336.856087][ T9486] bond2: (slave vxcan3): Error -22 calling dev_set_mtu
[  336.902787][ T9481] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1653'.
[  336.985477][ T9481] 8021q: adding VLAN 0 to HW filter on device bond2
[  337.030961][ T9488] bond2: (slave bridge1): Enslaving as an active interface with a down link
[  337.544423][ T9512] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1662'.
[  337.573099][   T23] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  337.604419][ T9518] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1664'.
[  337.845856][ T9531] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1670'.
[  338.585711][ T5193] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  338.971935][ T9557] netlink: 'syz.2.1678': attribute type 10 has an invalid length.
[  339.000966][    C1] vcan0: j1939_tp_rxtimer: 0xffff888061942000: rx timeout, send abort
[  339.322103][ T9579] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1686'.
[  339.501026][    C1] vcan0: j1939_tp_rxtimer: 0xffff888061942400: rx timeout, send abort
[  339.599482][    C1] vcan0: j1939_tp_rxtimer: 0xffff888061942000: abort rx timeout. Force session deactivation
[  340.009329][    C1] vcan0: j1939_tp_rxtimer: 0xffff888061942400: abort rx timeout. Force session deactivation
[  340.208942][ T5408] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  340.217102][ T5408] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  340.303743][ T9594] netlink: 'syz.4.1691': attribute type 10 has an invalid length.
[  340.444106][ T9601] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1692'.
[  340.935980][ T9623] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  341.085719][ T9637] netlink: 'syz.0.1702': attribute type 10 has an invalid length.
[  341.192062][ T9641] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1706'.
[  341.226824][ T5202] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  341.342009][ T9651] netlink: 'syz.2.1711': attribute type 1 has an invalid length.
[  341.436447][ T9651] 8021q: adding VLAN 0 to HW filter on device bond2
[  341.641176][ T9670] netlink: 'syz.4.1718': attribute type 10 has an invalid length.
[  341.666094][ T9674] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1720'.
[  342.069798][ T9707] IPVS: sync thread started: state = BACKUP, mcast_ifn = macvlan1, syncid = 3, id = 0
[  342.104018][ T9686] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  342.169756][ T9711] netlink: 'syz.3.1734': attribute type 10 has an invalid length.
[  342.191548][ T9715] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1736'.
[  342.265517][ T5202] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  342.756903][ T9739] netlink: 'syz.2.1746': attribute type 10 has an invalid length.
[  342.782644][ T9739] netlink: 156 bytes leftover after parsing attributes in process `syz.2.1746'.
[  342.882271][ T9747] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  342.916569][ T9747] syzkaller0: MTU too low for tipc bearer
[  342.947389][ T9747] tipc: Disabling bearer <eth:syzkaller0>
[  342.978756][ T9749] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1748'.
[  343.107672][ T9751] netlink: 'syz.2.1749': attribute type 10 has an invalid length.
[  343.238482][ T5408] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  343.305595][ T5193] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  343.378940][ T9764] netlink: 'syz.1.1756': attribute type 29 has an invalid length.
[  343.408091][ T9764] netlink: 'syz.1.1756': attribute type 29 has an invalid length.
[  343.439003][ T9764] netlink: 'syz.1.1756': attribute type 29 has an invalid length.
[  343.491862][ T9764] netlink: 'syz.1.1756': attribute type 29 has an invalid length.
[  344.128642][ T9791] tipc: Started in network mode
[  344.147253][ T9791] tipc: Node identity aae14c75715c, cluster identity 4711
[  344.179895][ T9791] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  344.248151][ T9784] tipc: Resetting bearer <eth:syzkaller0>
[  344.329529][ T9784] tipc: Disabling bearer <eth:syzkaller0>
[  344.351518][ T5193] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  344.484278][ T9810] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1773'.
[  345.385526][   T23] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  345.427226][ T9844] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1787'.
[  345.639638][ T9854] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1792'.
[  346.173189][ T9880] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1803'.
[  346.275677][ T5408] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  346.362576][ T9888] netlink: 104 bytes leftover after parsing attributes in process `syz.2.1787'.
[  346.427715][ T5202] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  346.692213][ T9901] validate_nla: 21 callbacks suppressed
[  346.692230][ T9901] netlink: 'syz.3.1810': attribute type 1 has an invalid length.
[  346.764974][ T9901] 8021q: adding VLAN 0 to HW filter on device bond3
[  346.869933][ T9907] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1812'.
[  346.923569][ T9911] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1815'.
[  347.505172][ T5202] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  348.070239][ T9929] rdma_rxe: ignoring netdev event = 10 for syz_tun
[  348.130868][ T9929] infiniband syz: set down
[  348.587776][ T5192] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  348.913169][ T9929] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  348.987669][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  349.125196][ T9929] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  349.134192][ T9929] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  349.146381][ T9929] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  349.157204][ T9929] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  349.197734][ T9929] device bond0 left promiscuous mode
[  349.205112][ T9929] device bond_slave_0 left promiscuous mode
[  349.255590][ T9929] device wlan1 left promiscuous mode
[  349.263563][ T9929] device team0 left promiscuous mode
[  349.269688][ T9929] device team_slave_0 left promiscuous mode
[  349.277600][ T9929] device team_slave_1 left promiscuous mode
[  349.342533][ T5415] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  349.359304][ T9951] netlink: 'syz.2.1828': attribute type 10 has an invalid length.
[  349.441018][ T9960] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1833'.
[  349.488124][ T9960] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1833'.
[  349.508652][ T9968] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1837'.
[  349.521943][ T9963] device ipvlan0 entered promiscuous mode
[  349.751328][ T4290] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  349.767968][ T9975] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1849'.
[  349.876030][ T9980] netlink: 'syz.4.1840': attribute type 1 has an invalid length.
[  350.059344][ T9988] bond2: (slave gretap1): making interface the new active one
[  350.076269][ T9988] bond2: (slave gretap1): Enslaving as an active interface with an up link
[  350.096935][ T9980] bond2: (slave vlan0): the slave hw address is in use by the bond; couldn't find a slave with a free hw address to give it (this should not have happened)
[  350.338820][ T9995] sch_tbf: burst 127 is lower than device syzkaller0 mtu (1514) !
[  350.453996][T10003] netlink: 'syz.4.1847': attribute type 10 has an invalid length.
[  350.496067][T10004] syzkaller0: default qdisc (pfifo_fast) fail, fallback to noqueue
[  350.542135][T10004] device syzkaller0 entered promiscuous mode
[  350.562030][T10008] netlink: 68 bytes leftover after parsing attributes in process `syz.1.1851'.
[  350.768513][T10019] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1854'.
[  350.800970][T10023] netlink: 'syz.2.1857': attribute type 1 has an invalid length.
[  350.825347][   T23] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  351.652628][T10025] bond3: (slave gretap1): making interface the new active one
[  351.706156][T10025] bond3: (slave gretap1): Enslaving as an active interface with an up link
[  351.865677][ T5202] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  351.972855][T10044] sch_tbf: burst 127 is lower than device syzkaller0 mtu (1514) !
[  352.122563][T10052] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1867'.
[  352.233256][T10056] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1867'.
[  352.345205][ T1325] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  352.905327][ T5202] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  353.036784][T10069] netlink: 'syz.3.1873': attribute type 1 has an invalid length.
[  353.345618][T10071] bond4: (slave gretap1): making interface the new active one
[  353.353940][T10071] bond4: (slave gretap1): Enslaving as an active interface with an up link
[  353.440359][T10072] bond4: (slave vlan2): the slave hw address is in use by the bond; couldn't find a slave with a free hw address to give it (this should not have happened)
[  353.902098][T10087] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1879'.
[  353.947364][   T23] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  353.968319][T10089] sch_tbf: burst 127 is lower than device syzkaller0 mtu (1514) !
[  354.302740][T10098] No such timeout policy "syz1"
[  354.331774][T10100] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1885'.
[  354.610165][T10108] netlink: 'syz.0.1888': attribute type 1 has an invalid length.
[  354.681837][T10112] bond2: (slave gretap1): making interface the new active one
[  354.718950][T10112] bond2: (slave gretap1): Enslaving as an active interface with an up link
[  354.787487][T10108] bond2: (slave vlan2): the slave hw address is in use by the bond; couldn't find a slave with a free hw address to give it (this should not have happened)
[  355.049708][ T4232] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  355.255892][T10135] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1897'.
[  355.386535][T10145] netlink: 'syz.3.1902': attribute type 10 has an invalid length.
[  355.388738][ T4239] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  355.403091][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  356.105292][ T5191] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  357.182113][ T5191] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  357.471237][T10156] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  357.480241][T10156] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  357.489550][T10156] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  357.498891][T10156] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  357.723655][T10206] A link change request failed with some changes committed already. Interface dummy0 may have been left with an inconsistent configuration, please check.
[  357.966166][T10218] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1919'.
[  357.990671][T10220] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1921'.
[  358.188794][ T4232] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  358.435346][ T5415] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  358.446262][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  359.060929][T10291] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1932'.
[  359.102654][T10294] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1933'.
[  359.225223][ T4232] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  359.319436][T10302] netlink: 'syz.0.1937': attribute type 1 has an invalid length.
[  359.398090][T10303] device syzkaller1 entered promiscuous mode
[  359.483504][T10311] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1939'.
[  359.598076][T10314] netlink: 'syz.0.1940': attribute type 10 has an invalid length.
[  359.673675][T10322] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1944'.
[  359.932096][T10341] netlink: 'syz.4.1950': attribute type 1 has an invalid length.
[  359.970935][T10342] bond0: option arp_validate: invalid value (55553)
[  359.971039][ T4916] bond0: (slave bridge0): interface is now down
[  360.010506][ T4916] bond0: now running without any active interface!
[  360.265346][ T5191] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  360.534604][T10360] netlink: 'syz.3.1957': attribute type 10 has an invalid length.
[  360.657525][T10362] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1958'.
[  360.829699][T10365] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1959'.
[  360.915966][T10369] bridge0: port 1(syz_tun) entered blocking state
[  360.922516][T10369] bridge0: port 1(syz_tun) entered forwarding state
[  360.962849][T10369] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  360.980905][T10369] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  361.009275][T10369] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  361.177587][T10371] device syzkaller0 entered promiscuous mode
[  361.195373][T10371] IPv6: ADDRCONF(NETDEV_CHANGE): syzkaller0: link becomes ready
[  361.305290][ T5191] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  361.315430][ T4239] Bluetooth: hci4: command 0x0405 tx timeout
[  361.475524][ T4239] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  361.483925][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  361.527340][T10386] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1963'.
[  362.357453][   T23] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  362.678467][T10397] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1969'.
[  362.748088][T10401] bridge0: port 2(veth1_virt_wifi) entered blocking state
[  362.801950][T10401] bridge0: port 2(veth1_virt_wifi) entered disabled state
[  362.906490][T10409] netlink: 'syz.2.1974': attribute type 1 has an invalid length.
[  363.008505][T10413] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1975'.
[  363.945565][ T4232] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  364.248604][T10430] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1981'.
[  364.285935][T10430] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1981'.
[  364.505314][ T5415] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  364.513660][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  365.165993][T10456] device veth0_to_team entered promiscuous mode
[  365.797873][   T23] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  365.876786][T10461] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1991'.
[  365.981886][T10468] netlink: 'syz.4.1993': attribute type 12 has an invalid length.
[  366.019482][T10468] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1993'.
[  366.049936][T10468] bond0: option primary_reselect: invalid value (8)
[  366.232515][T10470] netlink: 'syz.4.1994': attribute type 10 has an invalid length.
[  366.429187][T10472] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  366.447951][T10472] device syzkaller0 entered promiscuous mode
[  366.497668][T10472] tipc: Resetting bearer <eth:syzkaller0>
[  366.519696][T10471] tipc: Resetting bearer <eth:syzkaller0>
[  366.544182][T10471] tipc: Disabling bearer <eth:syzkaller0>
[  366.826092][   T23] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  366.834253][   T23] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  366.919295][T10486] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2000'.
[  366.942066][T10486] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2000'.
[  367.161257][T10493] netlink: 'syz.2.2002': attribute type 29 has an invalid length.
[  367.199092][T10493] netlink: 'syz.2.2002': attribute type 29 has an invalid length.
[  367.236338][T10493] netlink: 'syz.2.2002': attribute type 29 has an invalid length.
[  367.299490][T10493] netlink: 'syz.2.2002': attribute type 29 has an invalid length.
[  367.314355][T10500] netlink: 'syz.4.2005': attribute type 10 has an invalid length.
[  367.323931][T10493] netlink: 'syz.2.2002': attribute type 29 has an invalid length.
[  367.865697][ T4232] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  367.890894][T10493] netlink: 'syz.2.2002': attribute type 29 has an invalid length.
[  368.119820][ T5406] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  368.128427][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  368.139771][T10493] netlink: 'syz.2.2002': attribute type 29 has an invalid length.
[  368.624276][T10525] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2012'.
[  368.708350][T10525] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2012'.
[  368.858645][T10529] netlink: 91 bytes leftover after parsing attributes in process `syz.2.2013'.
[  368.905273][   T23] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  369.945699][ T4260] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  370.988763][ T4260] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  371.165474][ T5406] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  371.173882][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  371.288709][T10541] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  371.298303][T10541] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  371.307343][T10541] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  371.316393][T10541] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  371.452599][T10546] (unnamed net_device) (uninitialized): option arp_all_targets: invalid value (18446744073567808554)
[  371.474763][T10573] validate_nla: 24 callbacks suppressed
[  371.474781][T10573] netlink: 'syz.4.2022': attribute type 29 has an invalid length.
[  371.671945][T10579] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  372.027578][ T4755] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  372.324674][T10606] netlink: 'syz.3.2033': attribute type 1 has an invalid length.
[  372.595655][ T4386] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  372.761627][T10623] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  372.771985][T10623] IPv6: NLM_F_CREATE should be set when creating new route
[  372.779361][T10623] IPv6: NLM_F_CREATE should be set when creating new route
[  372.834222][T10623] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  373.042289][T10631] netlink: 'syz.2.2041': attribute type 10 has an invalid length.
[  373.065357][ T4260] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  373.197266][T10638] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2046'.
[  373.434877][T10650] netlink: 'syz.1.2050': attribute type 1 has an invalid length.
[  373.534353][T10659] bond2: (slave gretap1): making interface the new active one
[  373.562446][T10659] bond2: (slave gretap1): Enslaving as an active interface with an up link
[  373.623185][T10650] bond2: (slave vlan0): the slave hw address is in use by the bond; couldn't find a slave with a free hw address to give it (this should not have happened)
[  373.745986][T10665] netlink: 'syz.3.2056': attribute type 10 has an invalid length.
[  373.767928][T10665] bridge0: port 1(syz_tun) entered disabled state
[  374.105338][ T5196] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  374.188519][ T1325] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  374.418235][T10709] netlink: 'syz.1.2074': attribute type 1 has an invalid length.
[  374.577151][T10716] netlink: 'syz.0.2076': attribute type 10 has an invalid length.
[  374.709356][T10722] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2080'.
[  375.038324][T10743] Cannot find set identified by id 2 to match
[  375.145261][ T4260] net_ratelimit: 1 callbacks suppressed
[  375.145277][ T4260] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  375.325833][T10750] netlink: 'syz.1.2091': attribute type 10 has an invalid length.
[  375.555257][T10764] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  375.562527][T10764] IPv6: NLM_F_CREATE should be set when creating new route
[  375.569823][T10764] IPv6: NLM_F_CREATE should be set when creating new route
[  375.658595][T10764] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  376.171325][T10785] netlink: 'syz.3.2102': attribute type 10 has an invalid length.
[  376.185639][ T4260] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  376.225513][T10789] netlink: 'syz.1.2105': attribute type 1 has an invalid length.
[  376.244916][T10791] Cannot find set identified by id 2 to match
[  376.350008][T10796] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2110'.
[  376.514414][T10801] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2109'.
[  376.737771][T10818] netlink: 'syz.1.2118': attribute type 10 has an invalid length.
[  376.859562][T10826] netlink: 'syz.0.2130': attribute type 10 has an invalid length.
[  376.933278][T10831] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  376.940620][T10831] IPv6: NLM_F_CREATE should be set when creating new route
[  376.947946][T10831] IPv6: NLM_F_CREATE should be set when creating new route
[  377.025325][T10831] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  377.225256][ T4260] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  377.233417][ T1325] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  377.241753][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  377.279768][T10845] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2126'.
[  377.425724][T10850] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  377.462458][T10850] device syzkaller0 entered promiscuous mode
[  377.526050][T10850] tipc: Resetting bearer <eth:syzkaller0>
[  377.550585][T10849] tipc: Resetting bearer <eth:syzkaller0>
[  377.593705][T10849] tipc: Disabling bearer <eth:syzkaller0>
[  377.633313][T10860] netlink: 'syz.1.2134': attribute type 10 has an invalid length.
[  377.814513][T10875] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  377.823020][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  377.833252][T10876] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2139'.
[  377.884771][T10875] Cannot find set identified by id 2 to match
[  378.352248][ T4386] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  378.406371][ T1422] ieee802154 phy0 wpan0: encryption failed: -22
[  378.414088][ T1422] ieee802154 phy1 wpan1: encryption failed: -22
[  378.612180][ T4260] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  378.903769][T10895] netlink: 'syz.1.2147': attribute type 10 has an invalid length.
[  379.761725][ T4260] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  380.017499][T10934] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2157'.
[  380.052879][T10938] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2160'.
[  380.078028][T10939] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2157'.
[  380.097700][T10938] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2160'.
[  380.120356][T10938] device dummy0 entered promiscuous mode
[  380.145919][T10938] device team0 entered promiscuous mode
[  380.168224][T10938] hsr1: Slave B (team0) is not up; please bring it up to get a fully working HSR network
[  380.202673][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): hsr1: link becomes ready
[  380.267951][ T5406] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  380.276440][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  380.314596][T10950] netlink: 'syz.0.2165': attribute type 10 has an invalid length.
[  380.512729][T10957] tipc: Started in network mode
[  380.555510][T10957] tipc: Node identity 72b6d96e762d, cluster identity 4711
[  380.568303][T10957] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  380.575877][T10965] device syzkaller0 entered promiscuous mode
[  380.635600][T10957] tipc: Resetting bearer <eth:syzkaller0>
[  380.666606][T10955] tipc: Resetting bearer <eth:syzkaller0>
[  380.691950][T10955] tipc: Disabling bearer <eth:syzkaller0>
[  380.722919][T10978] netlink: 'syz.4.2178': attribute type 10 has an invalid length.
[  380.832686][ T4755] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  381.174511][T11009] netlink: 'syz.3.2191': attribute type 10 has an invalid length.
[  381.212929][T11007] device macvtap1 entered promiscuous mode
[  381.237880][T11007] device dummy0 entered promiscuous mode
[  381.264648][T11007] team0: Device macvtap1 failed to register rx_handler
[  381.275600][T11007] device dummy0 left promiscuous mode
[  381.323605][T11011] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  381.331364][T11011] device syzkaller0 entered promiscuous mode
[  381.367712][T11011] tipc: Resetting bearer <eth:syzkaller0>
[  381.385541][T11010] tipc: Resetting bearer <eth:syzkaller0>
[  381.410150][T11010] tipc: Disabling bearer <eth:syzkaller0>
[  381.537875][T11026] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2198'.
[  381.760220][T11039] netlink: 'syz.1.2204': attribute type 10 has an invalid length.
[  381.874096][ T5196] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  381.978985][T11055] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  381.996755][T11055] device syzkaller0 entered promiscuous mode
[  382.018937][T11055] tipc: Resetting bearer <eth:syzkaller0>
[  382.026869][T11053] tipc: Resetting bearer <eth:syzkaller0>
[  382.045191][T11053] tipc: Disabling bearer <eth:syzkaller0>
[  382.791446][T11083] device syz_tun left promiscuous mode
[  382.801743][T11083] bridge0: port 1(syz_tun) entered disabled state
[  382.817408][T11083] bond0: (slave bridge0): Releasing backup interface
[  382.843412][T11083] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  382.857992][T11083] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  382.866255][T11083] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  382.890796][T11083] bond2: (slave bridge1): Releasing active interface
[  382.922066][ T4260] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  382.946398][T11083] bond4: (slave gretap1): Releasing active interface
[  383.091870][T11090] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2219'.
[  383.160556][T11106] smc: ib device syz ibport 2 erased user defined pnetid SYZ1
[  383.219593][T11108] netlink: 60 bytes leftover after parsing attributes in process `syz.4.2222'.
[  383.233058][T11108] unsupported nlmsg_type 40
[  383.315272][ T1325] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  383.323563][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  383.524174][T11124] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  383.559798][T11121] device syzkaller0 entered promiscuous mode
[  383.588326][T11121] tipc: Resetting bearer <eth:syzkaller0>
[  383.597693][T11120] tipc: Resetting bearer <eth:syzkaller0>
[  383.620083][T11120] tipc: Disabling bearer <eth:syzkaller0>
[  384.115650][ T4266] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  384.231949][ T4755] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  384.598099][T11170] bridge0: port 1(syz_tun) entered blocking state
[  384.625261][T11170] bridge0: port 1(syz_tun) entered disabled state
[  384.649834][T11170] device syz_tun entered promiscuous mode
[  384.823637][T11177] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2249'.
[  385.032844][T11163] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  385.312725][ T4260] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  385.336211][T11206] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  385.376006][T11206] device syzkaller0 entered promiscuous mode
[  385.423820][T11206] tipc: Resetting bearer <eth:syzkaller0>
[  385.450612][T11204] tipc: Resetting bearer <eth:syzkaller0>
[  385.496244][T11204] tipc: Disabling bearer <eth:syzkaller0>
[  385.762956][T11222] netlink: 60 bytes leftover after parsing attributes in process `syz.0.2262'.
[  385.925837][T11227] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2264'.
[  386.190773][T11240] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  386.199930][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  386.347921][ T5406] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  386.356158][ T4260] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  386.364275][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  386.546216][T11259] netlink: 'syz.4.2272': attribute type 1 has an invalid length.
[  386.638844][T11263] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  386.646819][T11263] device syzkaller0 entered promiscuous mode
[  386.667298][T11263] tipc: Resetting bearer <eth:syzkaller0>
[  386.732072][T11262] tipc: Resetting bearer <eth:syzkaller0>
[  386.762659][T11262] tipc: Disabling bearer <eth:syzkaller0>
[  386.770833][T11267] netlink: 36 bytes leftover after parsing attributes in process `syz.4.2275'.
[  386.899675][T11267] bridge2: trying to set multicast startup query interval above maximum, setting to 8640000 (86400000ms)
[  386.971856][T11273] netlink: set zone limit has 8 unknown bytes
[  387.341755][T11295] netlink: 'syz.3.2285': attribute type 1 has an invalid length.
[  387.393775][ T4260] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  387.425394][T11299] tipc: Enabling of bearer <eth:ipvlan1> rejected, failed to enable media
[  387.580287][T11303] netlink: 'syz.2.2288': attribute type 4 has an invalid length.
[  388.427967][ T4260] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  389.433313][ T1325] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  389.510460][T11354] netlink: 'syz.0.2297': attribute type 1 has an invalid length.
[  389.891207][T11376] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2304'.
[  390.590536][ T4755] net_ratelimit: 3 callbacks suppressed
[  390.590553][ T4755] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  391.545592][ T1325] Bluetooth: hci4: command 0x0405 tx timeout
[  391.657564][ T4755] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  391.717481][T11431] ------------[ cut here ]------------
[  391.725100][T11431] wlan1: Failed check-sdata-in-driver check, flags: 0x4
[  391.745698][T11431] WARNING: CPU: 0 PID: 11431 at net/mac80211/driver-ops.h:172 ieee80211_bss_info_change_notify+0x37b/0x550
[  391.785969][T11431] Modules linked in:
[  391.791576][T11431] CPU: 0 PID: 11431 Comm: syz.0.2314 Not tainted syzkaller #0
[  391.805321][T11431] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  391.827219][T11431] RIP: 0010:ieee80211_bss_info_change_notify+0x37b/0x550
[  391.834686][T11431] Code: 98 8d f8 49 8b 84 24 00 06 00 00 49 81 c4 20 06 00 00 48 85 c0 4c 0f 45 e0 48 c7 c7 40 98 18 8b 4c 89 e6 89 ea e8 65 ee 6f 00 <0f> 0b e9 07 fd ff ff e8 f9 30 49 f8 0f 0b e9 b1 fe ff ff e8 ed 30
[  391.855358][T11431] RSP: 0018:ffffc90003b9f248 EFLAGS: 00010246
[  391.861466][T11431] RAX: 0be00e7178c80c00 RBX: 0000000000400000 RCX: 0000000000080000
[  391.869848][T11431] RDX: ffffc900054e1000 RSI: 0000000000004a12 RDI: 0000000000004a13
[  391.878767][T11431] RBP: 0000000000000004 R08: dffffc0000000000 R09: ffffed10172067b0
[  391.887227][T11431] R10: ffffed10172067b0 R11: 1ffff110172067af R12: ffff88807ebc4000
[  391.895280][T11431] R13: ffff88807ebc5290 R14: ffff888024958da0 R15: ffff88807ebc6298
[  391.903409][T11431] FS:  00007f89bd0226c0(0000) GS:ffff8880b9000000(0000) knlGS:0000000000000000
[  391.912542][T11431] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  391.928920][T11431] CR2: 00007f89bcfe0d58 CR3: 000000004b965000 CR4: 00000000003506f0
[  391.955118][T11431] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  391.971564][T11431] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  391.979848][T11431] Call Trace:
[  391.983156][T11431]  <TASK>
[  391.986155][T11431]  ? netif_carrier_on+0x61/0x120
[  391.991257][T11431]  ieee80211_ocb_leave+0x26f/0x320
[  391.996639][T11431]  __cfg80211_leave_ocb+0x219/0x3f0
[  392.002027][T11431]  cfg80211_leave_ocb+0x53/0x70
[  392.007041][T11431]  cfg80211_change_iface+0x4f1/0xeb0
[  392.012482][T11431]  nl80211_set_interface+0x598/0x7d0
[  392.017953][T11431]  ? nl80211_dump_interface+0x5c0/0x5c0
[  392.023644][T11431]  ? mutex_lock_nested+0x17/0x20
[  392.028705][T11431]  genl_rcv_msg+0xbc6/0xf40
[  392.033253][T11431]  ? genl_bind+0x370/0x370
[  392.037992][T11431]  ? verify_lock_unused+0x140/0x140
[  392.043231][T11431]  ? verify_lock_unused+0x140/0x140
[  392.048623][T11431]  ? nl80211_dump_interface+0x5c0/0x5c0
[  392.054227][T11431]  netlink_rcv_skb+0x1e0/0x430
[  392.059283][T11431]  ? genl_bind+0x370/0x370
[  392.063745][T11431]  ? netlink_ack+0xb60/0xb60
[  392.068497][T11431]  ? __lock_acquire+0x7c60/0x7c60
[  392.073586][T11431]  ? preempt_count_add+0x8d/0x190
[  392.078802][T11431]  ? down_read+0x1aa/0x2e0
[  392.083256][T11431]  genl_rcv+0x24/0x40
[  392.087353][T11431]  netlink_unicast+0x774/0x920
[  392.092152][T11431]  netlink_sendmsg+0x8ab/0xbc0
[  392.097078][T11431]  ? netlink_getsockopt+0x560/0x560
[  392.102296][T11431]  ? aa_sock_msg_perm+0x94/0x150
[  392.107398][T11431]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  392.112736][T11431]  ? security_socket_sendmsg+0x7c/0xa0
[  392.118374][T11431]  ? netlink_getsockopt+0x560/0x560
[  392.123625][T11431]  ____sys_sendmsg+0x5a2/0x8c0
[  392.128538][T11431]  ? memset+0x1e/0x40
[  392.132548][T11431]  ? __sys_sendmsg_sock+0x30/0x30
[  392.137815][T11431]  ? import_iovec+0x6f/0xa0
[  392.142350][T11431]  ___sys_sendmsg+0x1f0/0x260
[  392.147116][T11431]  ? __sys_sendmsg+0x250/0x250
[  392.151961][T11431]  ? sock_do_ioctl+0x27c/0x2f0
[  392.156957][T11431]  ? __fdget+0x18b/0x210
[  392.161429][T11431]  __se_sys_sendmsg+0x190/0x250
[  392.166620][T11431]  ? __x64_sys_sendmsg+0x80/0x80
[  392.171683][T11431]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[  392.177824][T11431]  ? lockdep_hardirqs_on+0x94/0x140
[  392.183053][T11431]  do_syscall_64+0x4c/0xa0
[  392.188003][T11431]  ? clear_bhb_loop+0x30/0x80
[  392.192712][T11431]  ? clear_bhb_loop+0x30/0x80
[  392.197583][T11431]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  392.203523][T11431] RIP: 0033:0x7f89bedbafc9
[  392.208034][T11431] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  392.227867][T11431] RSP: 002b:00007f89bd022038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  392.236438][T11431] RAX: ffffffffffffffda RBX: 00007f89bf011fa0 RCX: 00007f89bedbafc9
[  392.244430][T11431] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000000000000003
[  392.252584][T11431] RBP: 00007f89bee3df91 R08: 0000000000000000 R09: 0000000000000000
[  392.260602][T11431] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  392.268746][T11431] R13: 00007f89bf012038 R14: 00007f89bf011fa0 R15: 00007fffb1bc2c28
[  392.276810][T11431]  </TASK>
[  392.279868][T11431] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  392.287148][T11431] CPU: 0 PID: 11431 Comm: syz.0.2314 Not tainted syzkaller #0
[  392.294603][T11431] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  392.304758][T11431] Call Trace:
[  392.308044][T11431]  <TASK>
[  392.310977][T11431]  dump_stack_lvl+0x168/0x230
[  392.315663][T11431]  ? show_regs_print_info+0x20/0x20
[  392.320869][T11431]  ? load_image+0x3b0/0x3b0
[  392.325384][T11431]  panic+0x2c9/0x7f0
[  392.329290][T11431]  ? bpf_jit_dump+0xd0/0xd0
[  392.333837][T11431]  ? ieee80211_bss_info_change_notify+0x37b/0x550
[  392.340375][T11431]  __warn+0x248/0x2b0
[  392.344362][T11431]  ? ieee80211_bss_info_change_notify+0x37b/0x550
[  392.350782][T11431]  report_bug+0x1b7/0x2e0
[  392.355161][T11431]  handle_bug+0x3a/0x70
[  392.359317][T11431]  exc_invalid_op+0x16/0x40
[  392.363825][T11431]  asm_exc_invalid_op+0x16/0x20
[  392.368671][T11431] RIP: 0010:ieee80211_bss_info_change_notify+0x37b/0x550
[  392.375697][T11431] Code: 98 8d f8 49 8b 84 24 00 06 00 00 49 81 c4 20 06 00 00 48 85 c0 4c 0f 45 e0 48 c7 c7 40 98 18 8b 4c 89 e6 89 ea e8 65 ee 6f 00 <0f> 0b e9 07 fd ff ff e8 f9 30 49 f8 0f 0b e9 b1 fe ff ff e8 ed 30
[  392.395396][T11431] RSP: 0018:ffffc90003b9f248 EFLAGS: 00010246
[  392.401483][T11431] RAX: 0be00e7178c80c00 RBX: 0000000000400000 RCX: 0000000000080000
[  392.409506][T11431] RDX: ffffc900054e1000 RSI: 0000000000004a12 RDI: 0000000000004a13
[  392.417481][T11431] RBP: 0000000000000004 R08: dffffc0000000000 R09: ffffed10172067b0
[  392.425456][T11431] R10: ffffed10172067b0 R11: 1ffff110172067af R12: ffff88807ebc4000
[  392.433430][T11431] R13: ffff88807ebc5290 R14: ffff888024958da0 R15: ffff88807ebc6298
[  392.441424][T11431]  ? ieee80211_bss_info_change_notify+0x37b/0x550
[  392.447847][T11431]  ? netif_carrier_on+0x61/0x120
[  392.452789][T11431]  ieee80211_ocb_leave+0x26f/0x320
[  392.458029][T11431]  __cfg80211_leave_ocb+0x219/0x3f0
[  392.463259][T11431]  cfg80211_leave_ocb+0x53/0x70
[  392.468117][T11431]  cfg80211_change_iface+0x4f1/0xeb0
[  392.473403][T11431]  nl80211_set_interface+0x598/0x7d0
[  392.478718][T11431]  ? nl80211_dump_interface+0x5c0/0x5c0
[  392.484276][T11431]  ? mutex_lock_nested+0x17/0x20
[  392.489222][T11431]  genl_rcv_msg+0xbc6/0xf40
[  392.493750][T11431]  ? genl_bind+0x370/0x370
[  392.498173][T11431]  ? verify_lock_unused+0x140/0x140
[  392.503372][T11431]  ? verify_lock_unused+0x140/0x140
[  392.508578][T11431]  ? nl80211_dump_interface+0x5c0/0x5c0
[  392.514159][T11431]  netlink_rcv_skb+0x1e0/0x430
[  392.518922][T11431]  ? genl_bind+0x370/0x370
[  392.523335][T11431]  ? netlink_ack+0xb60/0xb60
[  392.527924][T11431]  ? __lock_acquire+0x7c60/0x7c60
[  392.532968][T11431]  ? preempt_count_add+0x8d/0x190
[  392.538000][T11431]  ? down_read+0x1aa/0x2e0
[  392.542421][T11431]  genl_rcv+0x24/0x40
[  392.546400][T11431]  netlink_unicast+0x774/0x920
[  392.551176][T11431]  netlink_sendmsg+0x8ab/0xbc0
[  392.555947][T11431]  ? netlink_getsockopt+0x560/0x560
[  392.561152][T11431]  ? aa_sock_msg_perm+0x94/0x150
[  392.566113][T11431]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  392.571400][T11431]  ? security_socket_sendmsg+0x7c/0xa0
[  392.576859][T11431]  ? netlink_getsockopt+0x560/0x560
[  392.582057][T11431]  ____sys_sendmsg+0x5a2/0x8c0
[  392.586831][T11431]  ? memset+0x1e/0x40
[  392.590830][T11431]  ? __sys_sendmsg_sock+0x30/0x30
[  392.595867][T11431]  ? import_iovec+0x6f/0xa0
[  392.600378][T11431]  ___sys_sendmsg+0x1f0/0x260
[  392.605064][T11431]  ? __sys_sendmsg+0x250/0x250
[  392.609840][T11431]  ? sock_do_ioctl+0x27c/0x2f0
[  392.614633][T11431]  ? __fdget+0x18b/0x210
[  392.618901][T11431]  __se_sys_sendmsg+0x190/0x250
[  392.623765][T11431]  ? __x64_sys_sendmsg+0x80/0x80
[  392.628717][T11431]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[  392.634703][T11431]  ? lockdep_hardirqs_on+0x94/0x140
[  392.639905][T11431]  do_syscall_64+0x4c/0xa0
[  392.644333][T11431]  ? clear_bhb_loop+0x30/0x80
[  392.649016][T11431]  ? clear_bhb_loop+0x30/0x80
[  392.653703][T11431]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  392.659594][T11431] RIP: 0033:0x7f89bedbafc9
[  392.664015][T11431] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  392.683636][T11431] RSP: 002b:00007f89bd022038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  392.692059][T11431] RAX: ffffffffffffffda RBX: 00007f89bf011fa0 RCX: 00007f89bedbafc9
[  392.696056][ T4755] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  392.700050][T11431] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000000000000003
[  392.716089][T11431] RBP: 00007f89bee3df91 R08: 0000000000000000 R09: 0000000000000000
[  392.724086][T11431] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  392.732058][T11431] R13: 00007f89bf012038 R14: 00007f89bf011fa0 R15: 00007fffb1bc2c28
[  392.740156][T11431]  </TASK>
[  392.743482][T11431] Kernel Offset: disabled
[  392.748154][T11431] Rebooting in 86400 seconds..