last executing test programs:

24m2.514911602s ago: executing program 1 (id=123):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f00000003c0)={r0, 0x0, 0x0}, 0x20)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, 0x0)
openat$comedi(0xffffffffffffff9c, &(0x7f0000000300)='/dev/comedi1\x00', 0x402502, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
write$FUSE_NOTIFY_INVAL_ENTRY(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB], 0x42)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x1, &(0x7f0000000200)=0x6)
syz_emit_ethernet(0x87a2f, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000000040))
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0xc, &(0x7f0000000340)=ANY=[@ANYBLOB="180200000000000000000000000000008500000030000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000140)={r4, 0x0, 0x0, 0x0, &(0x7f00000005c0), 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)
bind$alg(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x19, 0x0, 0x0)
r5 = memfd_create(&(0x7f0000000680)='\x103q}2\x9a\xce\xaf^\xd5\xfd\xa9\r\xac7A\x94\xa0\x00\x00\x00\x90+\xd6\x05\r\x84\x87\x1c\b\xdb\xe2\x00\x00A\x90m\xb6&\xd0\x9d\x00\x00\xc5\xb8,\f\xd4s\xb2\x99\x18\xc0\x9a\xf2O\xdb\x00\x00\x00\x00\x00\x00\r\x1b\xd3\xff<\x83z\x80\x8fQ|\xf5d\x10\x10\xd7\x01M\x7fML\x18\'\x1a<\xfee7{l\x16}\xa0I\x7f\xb5)l\xbb\x02\xfa\xb7\xb6\xa0]\xda8\xe0~\x1c \x91\t\x8b\xbd\x1f\xb3834d1i\x9b\x94\xa6\\\x0e\xe2\xfa\xe5!\xd3\xcf\xfc\xce\xba\xe2\x9f\x05xgL5\x14Y+\xb3\x1axi)<\xf7\x98\xc1\xba\xf4|\xe7|\xc4\xd7\x03\x00\x00\x00\x04D\x15E^7%8\x94y\x98\xf0l\xa0\'Q%\xd4\xda\xee\x81}\xcc\xfd\xa2\xe3M~x\x96\xe3]\xd70\xa2\x17\xca\xde\x1b\xaa\xe0l\xfc\x85\x8fc\x1c{|e\x8bs\xb0\x85E\xce;p)\xf8\xa6\xaa&QC4V\x81\x04\xcf\xd2\x81\xdc\xdf\xd7<\x9f\x93\x8bX\xd4\xea\xb2\xff\b\x92\xc7\x00\xef\xff\x00\x93\x1f\x92\xa7dcY\x9c\x9e9O-\xfcF\xbb\xbd{:IR\xea\xd8$\xe2\xa0\xc2\x8b\x1a\xead\xb8\xe1:6\x15M\x1f\xdak\x8c\x909\xd8\xb3\x02\xe0\x04\x9c\xc2\x06|\xf0\x0f\xa6Y&r\x9b\xc7\x1d\xe7jDf\x87@\x8fg\tRJwe\xe2\xdcunu\xff`\xa40\xce\xffB%\xe4k\xff\x8d\x06\x0e\x89\xd99C\x9fF\x9c[M=\xa0^\xa8\xed)\xe8Z\xe8\x9b&\x87\x04\xa4\t\xaa\xd8\xd6\xd5pG\xcb\xc4\x8b\xf7\xb8#\xc9\xd8|\xa5\xa6S\x8b\x8cv\xb7)\x02k\xf3L\x03\xbb\xfa\xe1\\\xf1\x8cUj\xd5\xa5\x88GL\xe7_\xfd\x17C=G\x0f\xe9u\x1d\xfeg\xfex\xcd\xaa\xad\x906\xd0sy\xc6T\x93\xae\xd5r\xcd&\xd4\xf4\x8eum\x04\x00~\xfa\x05\xd7\xe7X\xc7/\xae5\x93wwT\x13\xbd,\xd6\x16\x84\xcd\xd1\xd8\xe1P_\xbf0\xd8\x8d%Yh\xb5\xb4\"\xf5\x93\xdeh\xce\xa5\xe8\xc8ZmH\x98\xaeb\xa5B5)\x80m\xff\xec\x88\x89\xf07{\x95\xc9\xd0\xee\xe1\x1d\x80\xcc]-\xc2\xa1\x02ELhI\xd9\xf5\xcfk\x8a&i\xc1\xff9T\x8e\xe2rY\xa3\xd2H9\xfe\x0e\x1e\xac\x0f\xc3\xbd{\xd9\xcc\xbe\xa9\x93\xe0\xa4W\x1cn>\xc1\xf1\x9e\"\x93\x19\x19\x1a\xcc\x7fy\xd2~\x05\x99\xe6\x00o\xca\xe0\xc6\xd4\xf5\xa0\xc8P\xd6\x05\xf3\xc6~E\xacI\xd4\xe9\xa1|>\x91.K\x81\xa9+\xcf\xff\xcb\xfa\x0f\xe7n\x83H\x12\xac\x80\x16\xf8\x87Q\x97Az\n`\xb6\xe13A\xec\x8d(\\D\xec\xa6\t1\xa0h\xfc\x1f\xdd1@-4\xb4:\xf8\xd5wP \x84m\xe2\xd9\xfcb\xa0\xc3\xc9\xe7W\x86\xd7$\xa4ml\xee\x97O\xb7\xfa\x19\x06U)j!\x91\'\x98\xd2kFN\xfa\x80)O\xb9(!n\x9d\x13\x15\xf1\x1a\xb8y\x14l\xd1', 0x7)
ioctl$FS_IOC_RESVSP(r5, 0x402c5828, &(0x7f00000000c0)={0x0, 0x0, 0x1, 0x762})
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000004c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c00000007000000050000000000000f05000000005115c13109"], 0x0, 0xfffffffffffffd11, 0x0, 0x9}, 0x28)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
r6 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r6, 0xc08c5332, &(0x7f00000001c0)={0x4000000, 0x1, 0x0, 'queue0\x00', 0x1c52})

23m59.855330093s ago: executing program 1 (id=125):
mount$fuse(0x0, 0x0, &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB, @ANYBLOB])
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000007c0), 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
quotactl$Q_SYNC(0xffffffff80000101, 0x0, 0x0, 0x0)
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0x16, 0x0, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
socket$inet6_icmp(0xa, 0x2, 0x3a)
syz_emit_ethernet(0x3e, 0x0, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r1, 0xd000943e, &(0x7f0000001040)={0x0, 0x0, "d607f8f9951e76c13f64323723e7ee3423eb3d259266ec9c37865c6c1a4640ce1b22bb3327ef4f001d34c09f39c3539e4f8d3ee0878ae95bc7f52363c468b257ff3e24852548deb01efd54f11ed2c41d078b9cf1fc17ea6b16b694bb4a6e4606c3fb19d1d2bd3c8c4e97da2213f9d5c3b90400000000000000c279f03558083906666827d61dcc3a633bffff250b5a293e3877adc1660edbc9a0307a257214170e7f5670e419dc44febf7ddc73fd4a5a0b6c28665f7f46c7084e17c809268103a2584ab40a68e528329d97afc3612e325c1eb4a3ab2e156a974448000000000000000000000000000000000600", "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"})
r2 = add_key$keyring(&(0x7f0000000500), &(0x7f0000000540)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$get_persistent(0x9, 0x0, r2)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r2, &(0x7f00000001c0)='asymmetric\x00', &(0x7f0000000240)=@keyring={'key_or_keyring:', 0x0, 0x30})
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = ioctl$TUNGETDEVNETNS(r0, 0x54e3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001200)=@newlink={0x28, 0x10, 0xffffffffffffffff, 0x70bd25, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, 0x43973, 0x823}, [@IFLA_NET_NS_FD={0x8, 0x1c, r4}]}, 0x28}, 0x1, 0x0, 0x0, 0x4000080}, 0xc010)
ioctl$SNDRV_TIMER_IOCTL_SELECT(0xffffffffffffffff, 0x40345410, &(0x7f0000000340)={{0x1, 0x1, 0x10000}})
ioctl$SNDRV_TIMER_IOCTL_START(0xffffffffffffffff, 0x54a0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)={0x1c, 0x1, 0x1, 0x301, 0x0, 0x0, {0x5, 0x0, 0x3}, [@CTA_STATUS_MASK={0x8, 0x1a, 0x1, 0x0, 0x8}]}, 0x1c}}, 0x0)

23m58.203927985s ago: executing program 1 (id=128):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='blkio.bfq.io_service_bytes_recursive\x00', 0x0, 0x0)
ioctl$TIOCSIG(0xffffffffffffffff, 0x40045436, 0x14)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet6(0xa, 0x800000000000002, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
unshare(0x2e020080)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r4 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
write$cgroup_freezer_state(0xffffffffffffffff, 0x0, 0x0)
wait4(r4, 0x0, 0x40000000, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
getrandom(&(0x7f0000000240)=""/286, 0xffffff9a, 0x0)
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1000, 0x0)
mkdir(0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000340)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000000280)={[], [{@smackfsdef={'smackfsdef', 0x3d, '}'}}, {@smackfsdef={'smackfsdef', 0x3d, '#{@'}}]})
r5 = syz_create_resource$binfmt(&(0x7f0000000100)='./file1\x00')
r6 = openat$binfmt(0xffffffffffffff9c, r5, 0x42, 0x1ff)
sendmsg$netlink(r2, &(0x7f0000000e80)={&(0x7f00000000c0)=@kern={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000b00)=[{&(0x7f0000000380)={0x378, 0x27, 0x20, 0x70bd2d, 0x25dfdbfd, "", [@generic="233de1d72cad222d5119b06857345452418796b8046906f9611e3a24819d3208b64cc85d5950aeee6a87b76beae95c5594287bf4ad1b30a34dda8ebf9ad9b04c421a64f105c6fd9f4c8a4f3fa3577ec1a41566db8b8cc155e5ceaba18e47c46595321e24f0d864a60d8666a4762455aa4be8bb0c1b2ee492f779769bcf", @generic="ecba1845b76dd5d5baa4982c00e47023e109ea7bc62bf25191b74a7bcf5d23a9492ca0f3e5760d157eafd2a5329b348e296cac36dd04748ed0c7b41f49db43aae1b07231c47e4b5cb54b176636814490b08e3e02f0dbda6c79d46a02b3c98a5ab058eb2311cfbf010b771ca0f6", @typed={0x4, 0x35}, @nested={0xac, 0x150, 0x0, 0x1, [@typed={0x8, 0x4a, 0x0, 0x0, @uid}, @nested={0x4, 0xc1}, @generic="f575c1b8bff29c661f89e517556f8a2dfe7950daef35720af9f5b1dc90b8574427cdb8479eaca6d94feb9f5e125570d0d42fdd3fedc224ea10712e819d7f4594a350bb22f5182a98789b70f95de4420ce5ca9d043d285ea25367cc15449478d8cdc7ef93a915839192c629d7e07c1297890a88901d059ecd0544e3fb1e3d1cb96b773a399538f51e91633e95", @typed={0x8, 0x139, 0x0, 0x0, @uid}, @nested={0x4, 0x15a}, @nested={0x4, 0x64}]}, @nested={0x1c0, 0x124, 0x0, 0x1, [@generic="fd7ffa333b4ef8891d16b02312a93196717d85f0d93ffc3d427aaad35b36256476f95f5c7e9f469005b8cab50690bd72f6090f89b34b61499d9b4be39c0dd50918b2a38feca0bf9471a29680ada3df804001e793f49e78045a13eb011155894ddd1a80a4f8fc55c7ba7356cafc3fcd26695858349bdd558e5e4bbc413759f6e1e56a2013fade2838c426bf38013bc0ce89e003e0c9b41ff8383578b6d2dc3d3e63fa0eb89aeee838a04c907b56a06742d5f2449d3833825ffcbd5997eda4c1265732527e4ca6cbf44b07d6c203427e46ea0c61495d5750d81a314c5e759795", @generic="7b96a3c6e5f75a7df3ea80da3f72c4706b62bac6015e75c66d94736c18c8f303456cb33c3845f7ef836c7b7fe8ba908cbefc2317296403f281b3d7db348c46c969a902a9fffe49ba964aca3387395745cee2c9b99c2ea14688ab9ea4956828b5271726b8a9b04b92de05dfc45ef44c54dae65dc37d9876ce3385d5bcc711d0f9e2c193b392c4b71ccaf1980ce43abb2ae61cffd5a2a9ce256e9d17423a08edae525cf034bc19d23f0aae91c44e6ca29e2a12b060feb11edc7b2fc32e3a3a1e64cf3952d4ae14aa15c6300e17030af6ab99bb5f733ed4d7fe5fe5ec2675"]}, @typed={0xc, 0xf7, 0x0, 0x0, @u64=0xff}]}, 0x378}, {&(0x7f0000000700)={0xb4, 0x2a, 0x8, 0x70bd2c, 0x25dfdbfd, "", [@typed={0x8, 0xa4, 0x0, 0x0, @ipv4=@local}, @nested={0xc, 0xa3, 0x0, 0x1, [@typed={0x8, 0x42, 0x0, 0x0, @u32=0xe65b}]}, @generic="e698bb25e372e567e988b981e385cd1f8e08d655aece8cf88322906f995e9be816711981bdb6e83b63a4e5040ff94d1c51d7dcaa08a35c7346871535564d9baf27f1462f0752388f55eabb0090f1d53f61f02628bd715a331b8765bc4565a76299db742ed4b531", @nested={0x10, 0x94, 0x0, 0x1, [@generic, @nested={0x4, 0x59}, @typed={0x8, 0x1b, 0x0, 0x0, @fd}]}, @typed={0xc, 0x9d, 0x0, 0x0, @u64=0xfba9}, @typed={0x8, 0xbd, 0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}, @typed={0x4, 0x2}]}, 0xb4}, {&(0x7f00000007c0)={0x2c0, 0x2a, 0x300, 0x70bd26, 0x25dfdbfe, "", [@nested={0x6d, 0x124, 0x0, 0x1, [@generic="abe4242dc619a35a4ff524f9e573f892a78142aa82bbd3b4440e52ba9952c2e3802c8067dbdf4a137989b0942092fd64e6dc5671f8d46156abe4869a85a9eb80cf58213d54f03ca0bd525c92c333e83242aa2d5ebb", @typed={0x14, 0x46, 0x0, 0x0, @ipv6=@dev={0xfe, 0x80, '\x00', 0x24}}]}, @generic="fd", @nested={0x10, 0xdb, 0x0, 0x1, [@typed={0x4, 0x113}, @nested={0x4, 0xe7}, @nested={0x4, 0xb2}]}, @typed={0x8, 0x141, 0x0, 0x0, @fd}, @nested={0xd7, 0x145, 0x0, 0x1, [@generic="3ab0a03184e24af85057823f06cba7153d8348833cbf0953429531fffd16f92122e8ecdca3f8b34ff460c01e8273ef6f8c95bed745f7579699da86fb794e1d46b4eae97775455f75e553978435a9eac054ca42932a5f091654054c43c963431c4e81ec6128ea49951b5bb7173ec649749a61d812fc11a78375a115de1be78bd5e66422b7394645015b115e2a89d583fe312aefd9d87d2e8238f1e47ef4910c1c9c54ce01233625eb00ac9448fb828ab280d0eacdaec999ac0168273cef4cc2926dea7df35c1d5e04c637cfac79418b1e196eb8"]}, @nested={0xbb, 0xe8, 0x0, 0x1, [@generic="932fce693937d444d55fd9c71c6940cff11519b06c55c5053c93704f94cd02c0a2f92afbb45490d338c6487b8c2dfbe5a205f1b4b725e95e4cf8bec8ad78b7d8f01c3127e544ac3a020ebdf9edc1f504390f8cd58cc5a143f9c3812740d0b71f73bfb4bb532765eaf198992acc9c8bb7c003f2a8b8b7c40138360d0a26e825214edd6f0d19e4fe6cb132575b167ad04f46d191522ee7806df2f26bf49dced10badbe5b94d9fb4f1b5bd9527a6a4ce9bbd54e1752ce658e"]}, @typed={0x8, 0xc8, 0x0, 0x0, @ipv4=@rand_addr=0x64010102}, @generic="7b333ebb45e60bdf02b632e8abca17c142225c9689b93a53329ee8dfe25254b2c8438b60bd7897f911e33f57c3a9dabfd717cb60cd425f01a3ec3cc09d7859e76ef8f0cdcdd0d63dd44b3ec7aaa4d1a59ed0725f631e650639e48fa809d4efabe77343bff231760d4d2507cc8ef6e778c5075ccf123fa557798499f8b5e4f5602b4e17c29ac42158"]}, 0x2c0}], 0x3, &(0x7f0000000e00)=[@rights={{0x14, 0x1, 0x1, [r3]}}, @rights={{0x34, 0x1, 0x1, [r3, r2, 0xffffffffffffffff, r3, 0xffffffffffffffff, r6, r3, r0, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [r0]}}], 0x68, 0x20000005}, 0x841)
close(r6)

23m56.246317346s ago: executing program 1 (id=130):
r0 = syz_open_procfs$pagemap(0xffffffffffffffff, &(0x7f0000000600))
ioctl$SNDRV_TIMER_IOCTL_CREATE(0xffffffffffffffff, 0xc02054a5, &(0x7f0000000000)={0x1, <r1=>r0, 'id1\x00'})
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000700)={{r1}, &(0x7f0000000080), &(0x7f00000000c0)=r0}, 0x20)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r4=>0x0})
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000780)={0x28, r3, 0x1, 0x72bd27, 0x0, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_TX_RATES={0xc, 0x5a, 0x0, 0x1, [@NL80211_BAND_5GHZ={0x4}, @NL80211_BAND_2GHZ={0x15}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
r5 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f00000004c0)=ANY=[@ANYBLOB="1800000000000000000000004b000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000faffffff850000002d00000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x2, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x94)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f00000003c0)={'gretap0\x00', &(0x7f0000000380)={'erspan0\x00', <r6=>0x0, 0x8000, 0x8000, 0xfffffffc, 0xf372, {{0x8, 0x4, 0x0, 0x3c, 0x20, 0x65, 0x0, 0xb2, 0x4, 0x0, @loopback, @rand_addr=0x64010102, {[@lsrr={0x83, 0xb, 0xe4, [@empty, @empty]}, @noop]}}}}})
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000480)={{0x1, 0x1, 0x18, <r7=>r0, {0x8}}, './file0\x00'})
r8 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1bfeff200000000000000000ec08000000000000", @ANYRES32=0x1, @ANYBLOB="0300"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000500"/28], 0x50)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r9, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB="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"], 0x378}}, 0x0)
r10 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000540)={0xffffffffffffffff, 0xfffffff4}, 0xc)
r11 = bpf$OBJ_GET_MAP(0x7, &(0x7f00000005c0)=@o_path={&(0x7f0000000580)='./file0\x00', 0x0, 0x10, r0}, 0x18)
r12 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000640)={0xffffffffffffffff, 0x2, 0x8}, 0xc)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001740)={0x11, 0x5, &(0x7f0000000280)=@framed={{0x18, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x5}, [@initr0={0x18, 0x0, 0x0, 0x0, 0x29, 0x0, 0x0, 0x0, 0x7b}]}, &(0x7f0000000240)='syzkaller\x00', 0x7f, 0xd0, &(0x7f0000001800)=""/208, 0x41100, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000400)={0x8, 0x1}, 0x8, 0x10, &(0x7f0000000440)={0x1, 0x2, 0x4, 0x9}, 0x10, 0x0, 0x0, 0x4, &(0x7f0000000680)=[r7, 0x1, r8, r10, r11, r12], &(0x7f00000006c0)=[{0x3, 0x5, 0x8, 0x4}, {0x5, 0x2, 0xb, 0x7}, {0x200003, 0x1, 0xb, 0x7}, {0x1, 0x2, 0x8, 0xb}], 0x10, 0x2}, 0x94)
readv(r0, &(0x7f0000001c00)=[{&(0x7f0000000740)=""/4096, 0x1000}], 0x1)

23m55.116069644s ago: executing program 1 (id=132):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x3}, 0x6)
write$bt_hci(r0, &(0x7f0000000040)=ANY=[], 0x6)

23m54.769234898s ago: executing program 1 (id=134):
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="12000000080000000400000002"], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{r1}, &(0x7f0000000040), &(0x7f0000000140)=r0}, 0x20)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000001080)={r1, &(0x7f0000001340)}, 0x20)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
r2 = syz_clone(0x640c7000, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_open_procfs(r2, &(0x7f0000000000)='clear_refs\x00')
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
connect$bt_l2cap(r3, &(0x7f0000000080)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0xe)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_RTOINFO(r4, 0x84, 0x0, &(0x7f0000000180)={0x0, 0x8, 0xa, 0x800}, 0x10)
madvise(&(0x7f0000553000/0x3000)=nil, 0x3000, 0x9)
ppoll(&(0x7f0000000040)=[{r4, 0xc4f599455eae7dfc}], 0x1, &(0x7f0000000080)={0x77359400}, &(0x7f00000000c0)={[0x3]}, 0x8)

23m38.0307983s ago: executing program 32 (id=134):
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="12000000080000000400000002"], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{r1}, &(0x7f0000000040), &(0x7f0000000140)=r0}, 0x20)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000001080)={r1, &(0x7f0000001340)}, 0x20)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
r2 = syz_clone(0x640c7000, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_open_procfs(r2, &(0x7f0000000000)='clear_refs\x00')
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
connect$bt_l2cap(r3, &(0x7f0000000080)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0xe)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_RTOINFO(r4, 0x84, 0x0, &(0x7f0000000180)={0x0, 0x8, 0xa, 0x800}, 0x10)
madvise(&(0x7f0000553000/0x3000)=nil, 0x3000, 0x9)
ppoll(&(0x7f0000000040)=[{r4, 0xc4f599455eae7dfc}], 0x1, &(0x7f0000000080)={0x77359400}, &(0x7f00000000c0)={[0x3]}, 0x8)

16m17.645699149s ago: executing program 0 (id=1084):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0x5, &(0x7f0000000540)=ANY=[@ANYBLOB="180000006b00ed000000000000400000850000000e000000850000002a"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
mq_open(&(0x7f0000000040)='GPL\x00', 0x40, 0x7f, &(0x7f0000000140)={0x4, 0x80000000000008, 0x29a5db5f, 0x4})
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r0}, './file0\x00'})
r4 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000140)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x28, 0x28, 0x2, [@int={0xc, 0x0, 0x0, 0x1, 0x5, 0x8}, @union={0x80000, 0x1, 0x0, 0x5, 0x0, 0x3, [{}]}]}}, 0x0, 0x42}, 0x28)
clock_adjtime(0x0, &(0x7f0000000340)={0x37db, 0x80000000002f423f, 0xfffffffffffffffc, 0x6, 0x0, 0x5, 0x8, 0x4, 0x80000000, 0x80000, 0x2, 0x1, 0x100, 0xfffffffffffffffc, 0x0, 0x2000000000000, 0x3, 0x3, 0x1, 0x4000000000200, 0x0, 0x0, 0x816, 0x80000001, 0x37, 0x6})
close_range(r0, 0xffffffffffffffff, 0x0)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000040)={0x0, r4}, 0x8)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000080)={&(0x7f0000000780)=ANY=[@ANYBLOB="9feb0100180000000000000018000000180000000200000000000000"], 0x0, 0x32, 0x0, 0x1, 0x85e}, 0x28)
r5 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_TX_RING(r5, 0x11b, 0x6, &(0x7f0000000000)=0x40000000, 0x4)

16m7.039663017s ago: executing program 0 (id=1111):
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB, @ANYBLOB])
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000007c0), 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
quotactl$Q_SYNC(0xffffffff80000101, 0x0, 0x0, 0x0)
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0x16, 0x0, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
socket$inet6_icmp(0xa, 0x2, 0x3a)
syz_emit_ethernet(0x3e, 0x0, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r2, 0xd000943e, &(0x7f0000001040)={0x0, 0x0, "d607f8f9951e76c13f64323723e7ee3423eb3d259266ec9c37865c6c1a4640ce1b22bb3327ef4f001d34c09f39c3539e4f8d3ee0878ae95bc7f52363c468b257ff3e24852548deb01efd54f11ed2c41d078b9cf1fc17ea6b16b694bb4a6e4606c3fb19d1d2bd3c8c4e97da2213f9d5c3b90400000000000000c279f03558083906666827d61dcc3a633bffff250b5a293e3877adc1660edbc9a0307a257214170e7f5670e419dc44febf7ddc73fd4a5a0b6c28665f7f46c7084e17c809268103a2584ab40a68e528329d97afc3612e325c1eb4a3ab2e156a974448000000000000000000000000000000000600", "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"})
r3 = add_key$keyring(&(0x7f0000000500), &(0x7f0000000540)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$get_persistent(0x9, 0x0, r3)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r3, &(0x7f00000001c0)='asymmetric\x00', &(0x7f0000000240)=@keyring={'key_or_keyring:', 0x0, 0x30})
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$TUNGETDEVNETNS(r1, 0x54e3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001200)=@newlink={0x20, 0x10, 0xffffffffffffffff, 0x70bd25, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, 0x43973, 0x823}}, 0x20}, 0x1, 0x0, 0x0, 0x4000080}, 0xc010)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, 0x0)
ioctl$SNDRV_TIMER_IOCTL_START(r0, 0x54a0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)={0x1c, 0x1, 0x1, 0x301, 0x0, 0x0, {0x5, 0x0, 0x3}, [@CTA_STATUS_MASK={0x8, 0x1a, 0x1, 0x0, 0x8}]}, 0x1c}}, 0x0)

16m5.562779121s ago: executing program 0 (id=1113):
socket$inet_tcp(0x2, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x2000800001000088}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
r4 = socket$inet(0x2, 0x3, 0x2)
setsockopt$inet_mreqsrc(r4, 0x0, 0x27, &(0x7f0000000040)={@multicast2, @local}, 0xc)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r5, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)
connect$inet(r5, &(0x7f0000000480)={0x2, 0x4e23, @multicast2}, 0x10)
sendmmsg(r5, &(0x7f0000007fc0), 0x800001d, 0x1c)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
getpgid(r2)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, 0x0, 0x0)
sendmsg$NFT_BATCH(r6, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000002100)=ANY=[], 0x84}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
r7 = socket$packet(0x11, 0x3, 0x300)
syz_emit_ethernet(0x4f, 0x0, 0x0)
ioctl$VIDIOC_S_INPUT(0xffffffffffffffff, 0xc0045627, &(0x7f00000000c0)=0x5)
syz_open_dev$media(0x0, 0x7fdffffe, 0x0)
fsetxattr$trusted_overlay_upper(r7, &(0x7f0000000100), &(0x7f0000000200)={0x0, 0xfb, 0x67, 0x1, 0x4, "acf59b6e676516c3af08c5e4581279ef", "82736ce79457a429039c064e2c1d5d0aa16bee3b1b140721e654b3a8ac263e47339266b0481abc350c4a782f5bbd2979f967429bb73e7c433fef7325d419b0ad8c0f1d65395b0df202903a3c3c42a5efd656"}, 0x67, 0x2)

16m2.964280578s ago: executing program 0 (id=1115):
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xa, 0x31, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x101100, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_kvm_setup_syzos_vm$x86(r1, &(0x7f0000000000/0x400000)=nil)
syz_kvm_add_vcpu$x86(r2, &(0x7f0000000440)={0x0, &(0x7f0000000280)=[@nested_amd_vmload={0x182, 0x18, 0x1}], 0x18})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r4, 0x400448cb, 0x0)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB="040e04141a0c"], 0x7)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000005c0)={0x0, 0x0, 0x54000, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000016000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x4e, 0x0, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaa0f7f"], 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, 0x7, 0x6, 0x5, 0x0, 0x0, {0x1, 0x0, 0x2}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20004080}, 0x48810)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080))
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000040)=0x3, 0xac5)
syz_clone3(&(0x7f0000000900)={0x23800000, &(0x7f0000000040)=<r6=>0xffffffffffffffff, 0x0, 0x0, {0x27}, 0x0, 0x0, 0x0, 0x0}, 0x58)
io_setup(0x1, &(0x7f0000000600)=<r7=>0x0)
io_submit(r7, 0x1, &(0x7f00000008c0)=[&(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x7fff, r6, &(0x7f0000000140)="b7", 0x1, 0x0, 0x0, 0x2}])
ioctl$KVM_RUN(r3, 0xae80, 0x0)
r8 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_DIRTY_TLB(r8, 0x4010aeaa, &(0x7f0000000180)={0x5, 0x1a})
ioprio_set$pid(0x1, 0x0, 0x4007)
ioprio_set$pid(0x1, 0x0, 0x2004)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
r9 = openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r9, &(0x7f0000000200)={0x0, 0x18, 0xfa00, {0x1, 0x0, 0x106, 0x2}}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000440)={0xd, 0x12, &(0x7f0000000340)=ANY=[@ANYBLOB="180000005531512f000000000480080085000000000000000009f20000850000006c00000000299c0009000000186300000000000000000000bced0000180000000700000000000000600d001239cb124cc3047100852000000500000018000000ff7f00000000000039070000183e00000400000000000000000000009500"/144], &(0x7f0000000300)='GPL\x00', 0x2, 0x5, &(0x7f0000000000)=""/5, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc}, 0x94)
write$RDMA_USER_CM_CMD_BIND(r9, &(0x7f0000000500)={0x14, 0x88, 0xfa00, {0xffffffffffffffff, 0x10, 0x0, @in={0x2, 0x4e21, @empty}}}, 0x90)

15m48.044786698s ago: executing program 0 (id=1143):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
syz_open_dev$evdev(&(0x7f0000000100), 0x2, 0x862b01)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xe, 0x4, &(0x7f0000000840)=ANY=[@ANYBLOB="660a0000feffffff61114c0000000000850000005500000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x94)

15m46.0030079s ago: executing program 0 (id=1146):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0x5, &(0x7f0000000540)=ANY=[@ANYBLOB="180000006b00ed000000000000400000850000000e000000850000002a"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
mq_open(&(0x7f0000000040)='GPL\x00', 0x40, 0x7f, &(0x7f0000000140)={0x4, 0x80000000000008, 0x29a5db5f, 0x4})
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r0}, './file0\x00'})
r4 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000140)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x28, 0x28, 0x2, [@int={0xc, 0x0, 0x0, 0x1, 0x5, 0x8}, @union={0x80000, 0x1, 0x0, 0x5, 0x0, 0x3, [{}]}]}}, 0x0, 0x42}, 0x28)
clock_adjtime(0x0, &(0x7f0000000340)={0x37db, 0x80000000002f423f, 0xfffffffffffffffc, 0x6, 0x0, 0x5, 0x8, 0x4, 0x80000000, 0x80000, 0x2, 0x1, 0x100, 0xfffffffffffffffc, 0x0, 0x2000000000000, 0x3, 0x3, 0x1, 0x4000000000200, 0x0, 0x0, 0x816, 0x80000001, 0x37, 0x6})
close_range(r0, 0xffffffffffffffff, 0x0)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000040)={0x0, r4}, 0x8)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000080)={&(0x7f0000000780)=ANY=[@ANYBLOB="9feb01001800000000000000180000001800000002000000000000000000000300"], 0x0, 0x32, 0x0, 0x1, 0x85e}, 0x28)
r5 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_TX_RING(r5, 0x11b, 0x6, &(0x7f0000000000)=0x40000000, 0x4)

15m29.604104512s ago: executing program 33 (id=1146):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0x5, &(0x7f0000000540)=ANY=[@ANYBLOB="180000006b00ed000000000000400000850000000e000000850000002a"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
mq_open(&(0x7f0000000040)='GPL\x00', 0x40, 0x7f, &(0x7f0000000140)={0x4, 0x80000000000008, 0x29a5db5f, 0x4})
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r0}, './file0\x00'})
r4 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000140)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x28, 0x28, 0x2, [@int={0xc, 0x0, 0x0, 0x1, 0x5, 0x8}, @union={0x80000, 0x1, 0x0, 0x5, 0x0, 0x3, [{}]}]}}, 0x0, 0x42}, 0x28)
clock_adjtime(0x0, &(0x7f0000000340)={0x37db, 0x80000000002f423f, 0xfffffffffffffffc, 0x6, 0x0, 0x5, 0x8, 0x4, 0x80000000, 0x80000, 0x2, 0x1, 0x100, 0xfffffffffffffffc, 0x0, 0x2000000000000, 0x3, 0x3, 0x1, 0x4000000000200, 0x0, 0x0, 0x816, 0x80000001, 0x37, 0x6})
close_range(r0, 0xffffffffffffffff, 0x0)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000040)={0x0, r4}, 0x8)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000080)={&(0x7f0000000780)=ANY=[@ANYBLOB="9feb01001800000000000000180000001800000002000000000000000000000300"], 0x0, 0x32, 0x0, 0x1, 0x85e}, 0x28)
r5 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_TX_RING(r5, 0x11b, 0x6, &(0x7f0000000000)=0x40000000, 0x4)

9m34.892817559s ago: executing program 4 (id=1668):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000004000)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
signalfd4(r0, 0x0, 0x0, 0x800)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0x1c, 0x0, &(0x7f0000000640)="b9ff03076844268cb89e14f088a847e0ffff200000000021000aac14", 0x0, 0x11, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000}, 0x50)

9m33.111868217s ago: executing program 4 (id=1670):
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xa, 0x31, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x101100, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_kvm_setup_syzos_vm$x86(r1, &(0x7f0000000000/0x400000)=nil)
syz_kvm_add_vcpu$x86(r2, &(0x7f0000000440)={0x0, &(0x7f0000000280)=[@nested_load_syzos={0x136, 0x1a6, {0x0, 0x1, [@nested_amd_set_intercept={0x181, 0x30, {0x0, 0x0, 0x4, 0x1}}, @enable_nested={0x12c, 0x18}, @wr_drn={0x68, 0x20, {0x3, 0x633c6ea}}, @nested_load_code={0x12e, 0x5f, {0x2, "2e0f18103e0f79a900000080f340ab420f01c9470f9faf49780000460f23cfb9800000c00f3235001000000f30420f0137b9800000c00f3235001000000f30430ffc8a00980000"}}, @nested_load_code={0x12e, 0x8f, {0x2, "36470fc72cce66baf80cb824bda385ef66bafc0cb800500000efc7442400f4530000c7442402f86f0000c7442406000000000f011c24440f01f166b83d010f00d067470f01cf400f0748b86ce57d1444f40a610f23d80f21f835400000d00f23f866baf80cb8b046ab89ef66bafc0cb8bdce0000eff26d"}}, @nested_amd_set_intercept={0x181, 0x30, {0x0, 0x9, 0x9, 0x1}}]}}, @nested_amd_vmload={0x182, 0x18, 0x1}], 0x1be})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r4, 0x400448cb, 0x0)
syz_emit_vhci(0x0, 0x7)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000005c0)={0x0, 0x0, 0x54000, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000016000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x4e, 0x0, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaa0f7f"], 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, 0x7, 0x6, 0x5, 0x0, 0x0, {0x1, 0x0, 0x2}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20004080}, 0x48810)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080))
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000040)=0x3, 0xac5)
syz_clone3(&(0x7f0000000900)={0x23800000, &(0x7f0000000040)=<r6=>0xffffffffffffffff, 0x0, 0x0, {0x27}, 0x0, 0x0, 0x0, 0x0}, 0x58)
io_setup(0x1, &(0x7f0000000600)=<r7=>0x0)
io_submit(r7, 0x1, &(0x7f00000008c0)=[&(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x7fff, r6, &(0x7f0000000140)="b7", 0x1, 0x0, 0x0, 0x2}])
ioctl$KVM_RUN(r3, 0xae80, 0x0)
r8 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_DIRTY_TLB(r8, 0x4010aeaa, &(0x7f0000000180)={0x5, 0x1a})
ioprio_set$pid(0x1, 0x0, 0x4007)
ioprio_set$pid(0x1, 0x0, 0x2004)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
r9 = openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r9, &(0x7f0000000200)={0x0, 0x18, 0xfa00, {0x1, 0x0, 0x106, 0x2}}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000440)={0xd, 0x12, &(0x7f0000000340)=ANY=[@ANYBLOB="180000005531512f000000000480080085000000000000000009f20000850000006c00000000299c0009000000186300000000000000000000bced0000180000000700000000000000600d001239cb124cc3047100852000000500000018000000ff7f00000000000039070000183e00000400000000000000000000009500"/144], &(0x7f0000000300)='GPL\x00', 0x2, 0x5, &(0x7f0000000000)=""/5, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc}, 0x94)
write$RDMA_USER_CM_CMD_BIND(r9, &(0x7f0000000500)={0x14, 0x88, 0xfa00, {0xffffffffffffffff, 0x10, 0x0, @in={0x2, 0x4e21, @empty}}}, 0x90)

9m26.176755546s ago: executing program 4 (id=1674):
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000), 0x400, 0x0)
r1 = fcntl$getown(0xffffffffffffffff, 0x9)
fcntl$lock(r0, 0x25, &(0x7f0000000040)={0x0, 0x4, 0x71ee, 0x20, r1})
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_GET_BYNAME(r2, &(0x7f0000000180)={&(0x7f0000000080), 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x6c, 0xe, 0x6, 0x801, 0x0, 0x0, {0x2}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4010}, 0x4)
setsockopt$inet_sctp_SCTP_FRAGMENT_INTERLEAVE(r0, 0x84, 0x12, &(0x7f00000001c0)=0x4, 0x4)
sched_setattr(r1, &(0x7f0000000200)={0x38, 0x0, 0x42, 0x4, 0x2, 0xc76e, 0xc, 0x8, 0x1, 0x1}, 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, 0x0, &(0x7f0000000280)='syz0\x00', 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f00000012c0)={&(0x7f0000000000/0x400000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f00000f1000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f00002fd000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000070000/0x3000)=nil, &(0x7f000021f000/0x1000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f000030d000/0x2000)=nil, &(0x7f0000149000/0x2000)=nil, &(0x7f00000002c0)="f24eb162830587cf992a5380ac2085fc0b44e0d0e51fd8f19d0d36a13b6fa83056eae3e5e4f12745b99e1f3c19a4525ba3d959c03bc3653df003cc6f9f03ed4293f8ad08a091dfa59133e901976717b5c4d8af5b8a4728164cafa8a6068eb612da703ec100435bd6a37e2a4c291d1517125ad8022e9c185bf38cbd5519959f3e1b5db23a3d1c9910501783635db9a5c2e1d7631a1f7cbc6f137f87d29ab07fe2ef83a0963129c9b07aefbcafe7423fdc54a925bac30b97ce5a6fefd22423d91d7dcd4862a2622d983a3e6d4f5bcf2bdfe45eeec0f0c065025eafbecb5fcc6fbfe617b8deb256ff5015108f2bf8faeabf95c41b2a3f4d2ee91ba704f4f84f0d05dea5deabfc8fcc3fa5d1c5621ec9858ddb90e2d9db73eb8c030896461348d770167bd7640607f36ba4bc9e79699833d6d8cbf8c533eb86502c43940d0d4c601f842b132712130b73b7f3a87d4d8344bd7dd31ea8de116ba88e9b787ebcbd21255360c7e74989d26dcd2a3fa111879a60d2934c38687393c1c7f00edc50b5b12df3ca6d36cd896af7adcb23cbc7399031499c75209dd58596eefc1751166f86d042cf792fd9b894d94fe88c0241ee7fe1eaf608f52f4ba9c021762763d5a31a5bbd43388f5b95825cbbff0b9c63ae37c6c431a0e9a70f8a3674a00da2e3dfb0c573a9bccfa7372e4b7f7b47d027f01518d7baebd63fef4d905fefb4056d748580fa2928746caa88384cad1c3e65d6f3b04cdf2f4314f18e8ebf972dd294322985144575a580da175369a634c53796dd487d48f6d944312612f11637c5f385ee5b49b08bf2f6c1d3195a4d2acfabce16adda51d93b346eccf0fa20ba13fdc2c3360c2e36a1ae65e004d3e11b259e41b92d693330ad06227b707a03cc7a10bab8f04bb67831298fb84d5fe72c2780a31155074d8ba8f933c65bfb7a3ac2cfb47c2429f7a515b17c7b16c9d8fdafb82e254aa9f12a047602cee189f88f9290f801595228b708398b214c3e4bc25081eaba2cb59545662c73f175e87954243203ec5324776bde064020db4ef8046a5c88a2919dd6c4dc4b64a641cb074de280a7d3059b77511d0009a0c8801b9f9b47ac51da291fe3ec800379e2a73c7f41613ff4717e9542d2a6428ac9cc2de788a1bf120de403056566e6dd760227729392a655c4603626a93043813b2281422fc0dd44842065dbcb3f24abefc05e41231fb9d4f453b8fdd5ca01ad72c2c083d8dd82509fc7ee08121499f2e40c6a282f6e76b2cfa8419837b4fa8d1f2d197c3613449091bc437bab1cb0e0e590f4f53a73e0c395801b749ebc05a67d4ea3f888461372f9f847a083271c2509b24256b96cd95378aa71d8748d49709b0bc899a1192a58d3ec9e601f7ccd4ce93d4d2813063318aef723cc13ef976b9f400c441c5ec33436ef999709b38bd70ed765491bdae259e46117059e94e03df62a57098fd0ff88befba46d8068aac9c13fa87f743f62070f1d61af3e82025f34e1b3d9e3ef9906b9a21e7fe9e23178fe69d9cfca67518585b7a1d3ad9d94325cf24af89984a8be2d7e4c0c66997ed4e12bd786afa4455e3fad49da4875c85cf89cdd9ca7f9126a21d483fc11c7588f6d09ef92180a060865e53d9489ec2cec5c8b412f5fc54cbf2f179f1adc69da0c7f3664de70bb019fda424736716df0ca3a32bbc4a1088a8e9de75a56a90c88f5a19e08b7f54b094a7f282fe94ee90820f8ebcd67f5fb2507bdabdb1edf9609b9eb9fd743aa5bd21ba48a65cf8aaf351aacd16974a9b618881ffb82cbc646b6f2661a7bce14d1dae75e2e94af48862fa2a1e6d4140149ff2c02d68c1b7ca162c1c7eeb9e99987d159dae6b2ada70b8af7070c01f8005ffa8fbda563c8dcb1737848ad36d80be6dcec2a300efc852a020cc6f76e442b5309e3235b7b7d1e1144d5fd633f2c794157ad5aa5d0690d6f394654fdca73ce5cf520875f90355a4cefaa04341c1efee7ed84e8b61656a25351225c9af07833d71c14ed68eba2fa70c9a3ef83fed4c2061b101f663e494b20eb162f0078939e4e0085c03f1d12769619df8b9974dee35add7fe256e42f20aabafab86121e094779ba9126d3041fee8dced2d6213fdd56baef5b0fe4313d2d92328e7041b0d56eeec63d7e70510ec3b8f1aaba0c7a3e88a79ae093b6f2088cbed33400a1203142744d4dfa6ce18d765ab3854e33c8e80db9d77d773ae00a9c611fecd8f885b03c4e0a5467947d22a74587434543415ff3377a886e07177b7731c13b854f25237ce1b12dcc4c717b0110211e42b408a1e0eacee443a611a11ff4f3aff546dcffc79c915a9ff1250d2b738fa85fc7c3fb23063043de90eceb85cab248cb80d000d97eda72607350039d4cc508b366abae0855da1cb8e3b98408ea226953a7c97596ac4488f6b73a4e2c9f4cc4107872837e4ac3f33091966883ef3117b68351bd7f6c4fe546553f6f779392803a7f339eb9b80018e4f01ba2e2ad538786e9273c3212ade0d5019207cade6a25f4be38cc9588dc6a61f1e777edc05ca4d666468ac731817956391182d10c18ed149c1074e1e71c3fc0e8f1d02df85a323224b328aa5e35a23b3928e97b37ffc9da4d332b7d6e0842fab48d2815f8f04469dc9decb17bb97a309ac38bd6d65832d3423062412b67a417174109ddfb3a4f7b84041d31e3bafc4d056ddbb74c01629b93e0756ced2a4fc5bacba5c5dae400787f57c9eacc021a9a1b1ea802bd4f4d2c39019e7ea8418d73504bb2b3be09247fa7a960eea6981fd470b5aa984649f8ad566f5d9b0181fee5fd580141b0f49c90c7a55842d04349ec33f74b277e9f84698863303c57aadb46bbbf549489b96c2f420271107af6d6a7af1fc2af7cdc4bc76435479df324a444c99644067c316a3d8df81dac9de4d05c432940e97bb9163c14448c389f3fa6e7a92b2c3e80a79eff32a567feac883312d4f8d05decdb3063720219d389b935867c66467bbdc6601b9b22921a33ab86c35bb350d117a3aa50d41b26845c5c4d2132a3404aba1a68d4037382e68e695200f8a4b75491807873446c01d7095122373d100a3cc738da6b11541cb3673181d442ed62eb4d2e2953c9cf5b0165546021b18685e9d3f8d49c416c7e802fc60dc9f4cb5cc2e4dc4be878499a4bad8adbb5f621d59f8be64f4f7a4636ea2c6c11e00b0a7384c169546454c2d86e832421dad92f7d15e9b75b0549894cbf16da1b4ea6cf4c9169927cc2daf00ac6fa97bfba512318acc1e63fe380e9cbe3e27c1b5b7f17c2d3534051d2b001666870811571f2abbd201a837f999dd1c3e88874760c1708a2bfd100e21e32d15f2ffeb57d333e77db8da16452198aae343c816a8e4718743124d5e3bb2e4467c82ae69e0d78aac3a1113dbc7a00976ee25805d5b28632b5745c53973f04f478657a02be3a4af2d8c2bfbec3b2ad366d16600cab9c5b50169b323c9113279e4cc18acbba2c46616b036beb918805e1a680d6cadf84faf54d5d6c4206cc16ccb3ada9e7c3ed250afea9580d2447dfec958b7df6a9c7e123c1d921a0fe71d32fefa314146c31dcbbb0c05e68c1d1c3cc2ebda4609dce3cf971223a6526d39416e7f7e4f0945d6b9a69830aaa8e02246c3bdea15f0a7c30700bcb5ee6ca838652ee74cd65d16218b3805983d7ffd11978184446abca6d59693dc32bcf9efcf7fcde0e2b8353cb31cb6bad3c793d302410a3f1da26c55d1c42f1175869fd2bc64ed23c275125bf47ed5c8abd66302149166214561fc6fa4091ebad1cca43f89e4513977197bcbd6bb15ef3f503f29661aa6c7711f245c10f43d326bf8aef2724af40409019423208c1a68248f8acbcbe5a3056f526427d8809b24c2b0f85e26c21182aed2317f0b7ae35881776baeacf9a4f9a2c0349c4d5c9c2533ad885a79c4bfe7c84df28d0f5012e0ea05a7b5993274ca31a45a64074ba1e9c1d7c92159b93173012f8d0cf7fb38f6b062339b324f0956827bb0e6e4226e72c67d6f6668a6e06878c2c3ac0625245ab47453609fdcc89d8a13977c17d1327051aed2c5435ec5086c76adda53678e643ace32aa43681498d14f59ea271f1080d06cee5f00b142b7afc71d68fbe4f6bade94e99e0bcb00ac62ea37c713e5fa03fedfdb812d14a8cca84d72548ecec4f1bc7a049ed8660190c1ff60db8c464541ec4f5e610d943098c65c76f790f871f50d813ed08b1d2e38cc20aa7894a7cf2cb683cb3cb0116125b4d9323bb184baac389e7898689cb037020b2e59e337d1291ebbea5bfef47ffb99cea3d84c7be9c72120e9b22de09525e79306b84311bac604b417da2e7eff8d76ec471eca1efcd8a87bf04a8073223edfae27ddbb4cd10ebad0cef508fe89e3f4ffb98237940d03f299c2ec6532fe9747e25f42be4342b674c45c70939ed7f9ded1d6b547d2de3857decbef0205499f4e765290a9eb7ab10a8d3c6bebb1e892e7db942fa3cdb8412b794d10a5c36f2ccd9f6ee16ffca0aca94a3c210339b34d82c00058524bea93407ddced18ae99ec3765f448eb21abf7adb569d31ea647e349f73b14f7430118087f2361a317d44d3b33b248bcbf09e77cad54fa347841f0adde7b9ef66a707b021a85dfce1632a686b148d645d03f8b79dddd017dbad527507ed60414f92611795ee45176a4bbf01bbe2bb4cc89ad54bfd0135cfc22e49f277cb627445d79de568f7fe2bfd1846edfda141f9e6543be89a0d9160c91f5d011102e33579fa45286267e7befadf72ca4289c07dfd3ba41b17bf33cb12419c7e53a706f93d1242dbc1c79f6a30868089d3935de00e9bc9f0f200025a833794acedc824a8ce2e22a133e286fbaf5086b0d97c1795212407ebf9be0b6b7862ce7ef904c750694565521fcabdcfecbd63d611a3c172985bb3c4213431f4bddb70663e43f48af7986e5c6df60ad3c323e1933a3e1633408c4d284f7de2313e5cf8315589bae2cb379e87b654b60c63524a3dbe4a68e83f16d6e5ade9bb3f476e3dbf4f905d6a50ac1fb057d7bb6677f4a9727b15a634b593a1261d8bff2e6a73d824d92b5bbac3e7fbbd6fda09e792b5ab1bfd2f44bcf148a306121cb2ff320f738471115c5a458127b5c013942b3bdc8f8dc3f69116a29c8c30d71827c706ea991fa4701e882c99adb629a2d211c464a015aecf2b3804d9729e1d3f6a874a295def5e557fffcfdc1641b006b8098cb7258f9f6b93e965df19dfbe233316d44d8fd6ac71af90d60153318828845e8b51d74c94fd30bb9494bcb197e6c3e7ad5c5b50e37d084e907be131a0d024525947c057db575e9342a2b9072034a4b5f25c426f4c8d38530ec4aef4cd20884e782129c23843a0baacd602233b8874f997983a764dc3cf9da6e84aeec36cbb4628e631a40e841f0f850026fb16e51995caf63938e62c552a64c7242928439630abaf478b600db717bb625fc682bf8d517ba1c08903b70ebb63f8f8d4be701994626c77eea90e85b96e3e38b583a03b7fc88e41977b2437e0a913a4221f2c2f8212c5fc44f25fbcd72301d5aab75f62a4401e6727d11133611fa2cedb860b5b57af81174b80a04f6653fbb4a04f41777128e9b8369272910dd3bb077c37a5e22de65707c2607cefaccc7a2c6ae0cbf396a027c03ae39be67dcdd7608e792741047e3de63ee4316d06da6a7ce331a33ab799fdf4be100ff01cb16553ece9b7305416790d2beb6412697716b098b2c88bf0a136a022d6ff940a00122811fde94851b70b6e4c2a0f4657f96aac6c1305616921994c6ff8031f16a", 0x1000, r2}, 0x68)
ioctl$USBDEVFS_SUBMITURB(r0, 0x8038550a, &(0x7f0000001500)=@urb_type_interrupt={0x1, {0xe, 0x1}, 0x49d, 0x0, &(0x7f0000001340)="62b38bbe0a3b5df7ec36caf4dc24aee96be69af5102901bb77ef678e6557dfe909d4f06a36461f0ccad1168fd845a49c1ae1e5a89f5eaead5704e1a70bf2ebf4584b146f559fb3a544715ce24b9b2a8e0f8390a9d571315986ced0a84e77bb184c3e37ca34db8677c3d3399339a5febee845f6ce9188f66bc427ef51c367a20460db2edc80b403d7efa0ed3eb4", 0x8d, 0x80000001, 0x800, 0x0, 0x3, 0x10000, &(0x7f0000001400)})
syz_open_dev$video4linux(&(0x7f0000001540), 0x3, 0x10100)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET_DYING(r3, &(0x7f0000001640)={&(0x7f0000001580)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000001600)={&(0x7f00000015c0)={0x14, 0x6, 0x1, 0x201, 0x0, 0x0, {0x7, 0x0, 0x9}, ["", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x800}, 0x20008000)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, 0x0, &(0x7f00000016c0)='D^!\x00', 0x0)
r4 = epoll_create1(0x80000)
r5 = syz_genetlink_get_family_id$mptcp(&(0x7f0000001740), r0)
sendmsg$MPTCP_PM_CMD_REMOVE(r0, &(0x7f0000001800)={&(0x7f0000001700)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000017c0)={&(0x7f0000001780)={0x28, r5, 0x400, 0x70bd27, 0x25dfdbfe, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x6}, @MPTCP_PM_ATTR_ADDR={0xc, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x800}, 0x6008880)
sendmsg$RDMA_NLDEV_CMD_SYS_SET(r0, &(0x7f0000001900)={&(0x7f0000001840)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000018c0)={&(0x7f0000001880)={0x18, 0x1407, 0xb00, 0x70bd2d, 0x25dfdbfb, "", [@RDMA_NLDEV_ATTR_DEV_INDEX={0x8}]}, 0x18}, 0x1, 0x0, 0x0, 0x40880}, 0x44010)
r6 = signalfd4(r4, &(0x7f0000001940)={[0xa]}, 0x8, 0x80800)
ioctl$RNDZAPENTCNT(r6, 0x5204, &(0x7f0000001980)=0xfc)
r7 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000019c0)='./binderfs2/binder1\x00', 0x2, 0x0)
ioctl$BINDER_THREAD_EXIT(r7, 0x40046208, 0x0)
sendmmsg$sock(r3, &(0x7f0000002c40)=[{{&(0x7f0000001a00)=@phonet={0x23, 0xb, 0x5, 0xb}, 0x80, &(0x7f0000002c00)=[{&(0x7f0000001a80)="fdafffef9ccaa8a08e1b132c6f2382670b059c5771e83e022db314b50e2069ce2c3a0bcf47b94b483dbdab4f0d9a096be4caf80c8aa14413fc20ecb1dcf684fc74675690d4c55521944ef2fd727411ff31564585b7734d0e4cd5c1cec63243c1f46ababaf0cdb9d4ed21505809fdc2d9e482601f0a06162f0847711482be2422f416422202657edeb539867e235aa8ef7fc9fbd949a88082b71ba7543b78a507a72b35310534b8f8b21fae5986fd2f56116124bf3f15922eecd897f498", 0xbd}, {&(0x7f0000001b40)="8dbf922a2df94b746307476be2e527a68c7506bd66a44ed141652ba004dfad60648746e7366a545fdcbe0ba4ccd7ddda01795f30f10541d0bcc09b1a2a10f9c1b404c8300f8396353c302f63b738b4cd013d4e9dd2e02e27142e4aa094c0d268ff5d079bf9ac46e1d3b5ff12100526a07d1baa2965362bf1ab064d5b8a1bc29e365c182522a2db87d5d2ca3790f127999ee9509078b7f6663fc9d870", 0x9c}, {&(0x7f0000001c00)="d4a6f9f7d24e5812f5c5a90f5d20c20594c99e79e62277364e4e99cb8a8fd9c15636f5888f1edb5e7d3a594500d2edda310b38d16e9c758a3dadf6d0b007ed6aaaf0151dd950f34724ce2983a8a9a84dbfa136f29143964024ecf805d1f3e96ca1995a9c8de553336a769bcd2315a75d02e97b6fdeb40d837da89d052d2db1b345634dc3bdf0a3caa983331fc284be0d828f23ae1378ae336f36370c2871632fac6b0bd7af71a613cd2b0906cddbb9e7d33d30d8af0c23e733d18c410456e6f9aaae135e3756191f2b7f381c01daa1950d620a217fc4231af68520f1d5fc37382c644a1a752720eab92933ac4a496eefbff77750116257cc9040020d91177eae25489dd8ec5a2057848153f54793a8d5c2d9425069bb8d5b40a9da5f1e7d899032cfd46ec19f6ec0740cf9e9d9249945a5212e02123162ee5b9d260a22f756ea4f9961c8a634f1961f8c9ff4422419ec9b01359bd54d9e0194fa8ff749daed6a41295cf1e35efd6a2e453c500eceb5c35123fa79a793fb823cb2e8af50e139ca52192b9d714333eb39b72e1b2987d5a1330e5e260c66712682c42a885b3a2ac5b5aec454b44731a7e68fe4909225a0ba410e90ca16c504d4ffa5c3fe9f8817567493d05a05a957974a3a19f823ea7d8d851fb5d0c5dca4ea6191abd921e18801fa94a8f158e91882f6b491c5bdadd9123aa6c37b0b7a69f1a779c54dd75a422fa3c4c0a85f95f98c08c16f66c4c9cc4cb063973babcd88486cb2ccf48a086511d520e0de4a16026e2ff6a8ec7024a42a0e4d79fdd3f7ca5f6c7a595573f5e7387b01395424b50ceac42d675e9b131ff08838e9f1405d2a58d6e9650f1ab0dbed9295f908e92e6094c73e0aed170be08233e0a342145a944bb9c711c6e0e88f0bf946ac899882f178bd96f8e8823ebc6bd58aea9a3ae7cd71982f87de2217f28091492c387700ae96f4ab48d2320387e967eca055984a885593de95b5837c9141549baa1db069f86f4b9a73e61346e51a3ff002ae0f122dd440e7404625d59ec3f0d3e372c169a74e6d95b06d5edfee0a911d43bc69061d88b92ec1b93621dd867e467d73edb18d361cb07f92289142166cd49c70b4837c2c5d950274bcabc376fac4c2cf91c4ecb4c8a4cfcdcf2b9d7273df4160a26d30f8f44fe77ee9a75dd08e5867ef25f4e184899f27a39ee1e5a72ff3514bb77b819d2bc73af97519c244392511d64c61b5aed929deaca2c2869dc6d5e562c47789a03da19d286aa19c1251084e64e2821b0957b3b0ebeb7a2e352c2848bfbafb714c16e4a01ae0d9280c04365390ce2c7dedfe3823ca033b038e82c7e401851501439084a391ac206dc913c4dd83b495b5b69bd02fa383393fe2654f1451b0acec3521334ac3c84d1037336b8e74f142fe668c6f0269cefb77d1d14efaf0d9328f2913971d0ba789a5a4b85572f7039aae04179dbe53ded7dc1e940e119338f1868ddbe0ae1f1a40e7b7a93c2ea1190b1ac766768e265e3a384996af9488ab36ae4d45737ef0ae572d98071bd09949baf027ad8514a42bc2ba987752d473698ee588fd4fecfffee011896bef9bb1e0b0078a5e9b2dffc2426673a8d160bca4d4aa2161a51e69b507d35bbda7b33078c7e5b896e68e0d4d0fccaa60ca05225bade18783b10824e0d3b2aa37667d6c74c7e536797d423b2dffcab045ee2793eef88454d663473e7bde2996237bd0ce2fe5a9c9819a71bb9d8da2a1a9b707f1de49e16e7eac97108c1344392912d8acd4a225a9cb191ccc0184b8e5c21e05c85bbfb49796134d2580c17c081afd8771f087c884d55b6a500f2f730c9059ab0a428bf041e2ac5242d0701930b93f2cc2fd3160d2274fc6c265005b27a7abea3eb446e05aaea6bdb3fbfcfd281c792255f153841ce2f6e1ddd09d62beb54bd73aa06742a9556e3e4bc6094938def4c6c125f7c502397de2159040f77d5d085f4f345ddc6520600feaab85b960376ba0f181908972c63073ed94527a473bff07559ea9bfda087d6577b5aadf5b03c8b92b163d316b26aa55a605c57ae29d88b134e8f66411feb476b855ef4403d556c573f5a3a75d7eb510ea00017cef6b09de9545b986e76b1fc3dc5d39a0f3a9f81be973fa5239222e97838bba48716171d193a746ee3b8e6c33fca52a91bc1c15afd4f5d9acb2cfbadd5161844ffed0feff0c87f2ca590879ed16707df886d16ddd5fa0f7428b121250d67b10527f7fce91dc6eea66820572128e0f76378f933620dc81b3ad6ccab1108baf72cecf771669fb88817c98b40002886675411b142842dbd54e6b594714c21d23a227de47ef88feb2ac84a0e2e79cfd5677f7a0ba8caa795b4f2443dbae876e24e3cf4f0fcbf34b282fdecee644212145c2ea82620c98510f8ed16c5f1d22913a704257add73c23b9fcc62fba13aa5387174ee6d1383a92e4f081c3ac2bb439fabb63ecd5361369489fc508039c1ec5f1d45d3a961e39575c2b711ccdfa2d11eb29e400bdaf1a77975581d5ea2b5278573e657fd7dfde465b8d7d68b9d0a761fc6fdad6aa43a99dcc792d821517f858308a1a7279a1cd2ef230bb4cf47a358aa4121ea13dd85fbca98166c038aa23dceac0497c91587a667e9493319b223e1413c75cfaad99ff7b9b354a438017d6914c2b7be8ccfe885a83510552f41e5112b8d982d174bf328467c6904e069a56928d3cd2e11d73b1862f137eacf0a9a902fdb19f9f4ca5ca5ec03baad3e99862836b210cebc93221e49ead4cc1c5c721f1bfa781a0cd3a4739b9523826db9e68e89a84a9214c7398611a7fffffac9c283a947f94abef31886ff0c155a124bc155fbfb31c9a58752895f9d1128b397689b3186c1b99399e74d7001b05799a3271e2bbcb85e7c977da31b5c9c0a8803fd2583ed12002088813c73cc09f7b1d3088fd504073b02c70b79e4173d6ab372501f85aac79867b573613e77817276bb75692c34406c89a59c1d3b6fbba89efd02eae973231abed62ec22ac6dd0229dcf1fe43fa484780f5c6df45547e71afd5e6938159c2a4ce7cb0b0f4c4eaa0ecbe135c18fb060533f521fd37ca951a2615671d2a2e0bc52afae5020709695841e0338b979354032d56c814b126da87485fa2412f639f08402332eaa651b4500c2c750886700c295c810161d8724ac803a9dbb8c8bc162f010d5724b0d9f20e2e749997eb28c1f4f3799abe3bf14043050ab2b3a438e032c664bc150c4d8a0f8cf5b98ce7503ee7ea5d2f08466d1886496bcc3ac53fe2232be059b942d7bf87bbb2a93596f8db8f23b431bf8b7be834ca6d26983b9b42d48e740d9003d067cda4855ebf3ccb8e610a5b4af923e5995e52198c842bca745c377b4d1592838d1a5b4414885ecfdb2088acca947af29d689f345301b53197a2fbcb8fa396d83cafd31f5b699c2300ea4edb4fafe40089a9e88006cd9d4ae529e2b9e0ec854e36a8a4d84335b92ec5c4daa2a14cfb404c830a65c184c80d52feecbd5e81c805db1288c5b8b713d7121bd838a8db2fb6b6e3a1e13d90862ead13755fb957de31773b21a913048c95ea27f64c25ba25e8b4b108b904b972f512c6cf402f76b1f69e8eec9b32e965c5079cc5e872f60fd119a65c0f14d5776f6a3bcb9ec0ba9d69ff86403ffa55d30fc1f6ea65767b5132c7aa517e36528d90438a724c4b20bba0c60a708bc312937d54e85be0fd5d3d14f91b650d109035fe85120af198cafae43d32f17927b840d418f0e3b52e58622e9e052e5869a87570dffbb919e93e6084ea4f4b97c43815cc7caa79f73563bad442f012333ee11453cb78afc24c7e277582f0556df93301dda76ecf8ed72c5c40f6c595a7b33cb8ec3974ab0974cc13c84266600c54057f1054e3f4b39c93d636877ae86f594a10d68be09898e99da00a6793a1b53d469b9c23d118975cf112734bad4088b63d32885b0522eb4e2cc39f40f6a13c449c5cc708402d9754d0ad9c7de6de8eec524cf4dd47b008d32957c43115c2d117ab457388c6ccccf0a93ce821f3301be8c301f92ed304418a37455330f61efb16217b4f8537041cfa87120be3db05334f675b73a02b4d07f609aac72486111e8a07e064e66f6f39f9ef28137a86aecdb3fce8330744e14d6e713011b649b7c79e00a140fff3bfeac964ba48b9a4bc623fffd358910b1e879749441291e77570e26bbc92c4c5c3eabb6063b0c3d509e1f214fd8639eeea1c9479bfd95b5209aa30120c841cc211659dffceb130e19ac30e194716b340af7457236c02e66a9a33d8e56d21b0cacbe838ddae29b45023a882ca8170b6169b0983e23f491bf07593be7f6bf84d25b7c438397d00124b6c72b10ca9afc5e50d7c191ce678af06ac9735f0396f10a57068d3f2d01ea7d2f6f061adc9f296fe168614dedaa413439c53107558fc21251f29fbb0200a1449bf23b499169e0654773383ac7db08ad076481ca52c53107603c00df5eac46d709525e3f1675aa0a1fe3ff4974927a9bab6a913870cba29f1aa67b8cfb407cc17c7fe2a1b90e4db723ffb1b750570433a308f74c36d3830ecec1be4c46e4d3df6f49601285a31a4dfc76cb5a64490e3c55e319a42e916771d940864f6a84dde79ba6352a582dc8fc5dbfaa3fe74b9007c895efb13d5c3b13d37e4e811f7bef2f89dc924fd39289a608d08666043211a19be1ceb84a838ef85957225d023360ea19838c0675b956cf82f2c905c01cf767257c088201cfe83baa89a0fff537df38775f5d156c6b54fa94e6a0673fd47a249982446fd39edc3af9563773742264153dc5290430da3f144106d56bf4f6100b575f3c001602eee33ebdc143148fb97695f529a59aa099ad07ed6e965ba1bda2041acc13974f0116d7efed9217f7b1ae9c6af6c25702b8d3e33349f0e12e4fdeb02ee1fa56b262bdf8f3a723d80f95b586d7ff6d0471d538df4d2159f8b82d34f158e9df18d40a11409c14bedc9bf278283022e8275e05b586b0289a5086e9796414863f3f682d03fb0956f5e473e6dccdeb95ede7c66cedfc4cf2e3c3499a678798034d1800dfe6e4b3878ca11170613fbb031d90ad217c99229ebd5a98e98085bd84adcfb68578e5dcd2c5f0d32a1114555d9cf46d03f333effcd7c0239d88dcb5eeb4e7887801b818747a49da197c5f22afed87df0046eb91945b6806e16c6f79ac1fc4b4ac9b91848a6d3cf51bc7d28370079a12603ebaff4f8faa9e7f233f09552c3c8caaf1b3952c9c97461fec110b35a9b2c1bfe37f393cdb3d582ceb73ce714b5119150ac682ef4bf08272ead0eb7773633717aa31312e6ffee0bd9d1908a2523236783675e02d7f053e90368750980054c3df2af53fe5895057369de2ba6992b3cafd1f5b013c23dacc4766f947b53f4e8c205103acc1a74de8a78ae4c538ccc06bd53aaebb9938c7962909b0e7aa89f0334ddb5cb00eebd5b04ec645585f32aef71ffbbd2071084238808427bbe8dcda97b2e3388f1cb91181dbf2a604079bf92f81d77182711c53b05327656e04c246702e80d13e7e79ad5b7bb45e2ddafa7015d7599d0dee978fc9f1faf0fc7f21d81a842f8e5a8a4b8a335d4043db0571d6834e0ac85bfe44c789d6f7839d1ec19890863ed753fc6c70126ab96f567b09488ffcb839b7adb1fda26e69b19cd3a125912e56109ceee341018eca490deb8d75521a5567f27442feb856529243ae3df2cbe38024e4768921c2e0955154632f5056dab619e3d2fd800105d307d97cc0956b9de153a5f11e5229abf894da410bf1b14a1844", 0x1000}], 0x3}}], 0x1, 0xd2fdc099d51bca7a)
bind$alg(r6, &(0x7f0000002c80)={0x26, 'aead\x00', 0x0, 0x0, 'rfc4106-gcm-aesni\x00'}, 0x58)
ioctl$F2FS_IOC_GARBAGE_COLLECT(0xffffffffffffffff, 0x4004f506, &(0x7f0000002d00))
write$cgroup_int(r6, &(0x7f0000002d40)=0x8, 0x12)
r8 = syz_open_dev$sg(&(0x7f0000002d80), 0xbc2, 0x1)
ioctl$SG_GET_NUM_WAITING(r8, 0x227d, &(0x7f0000002dc0))
ioctl$VIDIOC_G_CTRL(r6, 0xc008561b, &(0x7f0000002e00)={0x80000000, 0x101})
connect$can_bcm(r6, &(0x7f0000002e40), 0x10)

9m25.030012971s ago: executing program 4 (id=1676):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
syz_init_net_socket$x25(0x9, 0x5, 0x0)
getsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000040)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0xb20a000, 0x0, 0x3, 0x1, 0x0, 0x89d3}, 0x0)
r2 = fsopen(&(0x7f0000000000)='cifs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, 0x0, &(0x7f0000005fc0)='//\xf2/\x06\b/\xdf/o\xdc\xea\x95\x9a\x82\x10\x97W\x8f7\x98\x9b\\/\\\xf9\rmD\x94)U\xdb\x15X.I\n}\xf3\x9d\xe4_\x05\x9cqf4I^#b?9\xde\xafu\'\x83L\xe0\x97\xe1n_\xa4%\xb1\x97\x93\xafv\xce/\\\xb4L\xf2_\xa7\xfb\xf4\x84\x1fA\xeas^\xef\xa2\x85\xa3!\xfb\x93\xd7R\xab2\x1eW\xe9h\x9b\xf7ul\xf9D\xd4\x82X5\x13\xaa\x87\xf9\xba\xa9m\x14\x14R_\x9a\\>4\xce\x8e_#\xf8D\xb1\xdep\x01\xcc:\xa6\xc5n\xeb\xab\xf70\x99\xef\x8b<M\n\xc0`[\x82\xf6$\xa4\xbe\x1e\xd3\xe4\xd9L\x14\xed\xcf\xcb\x92\xf1\x83\x1a1\xa6\xf3e\xc2F\xc3\x00\xaa\xd5\xfc\x1bR\xa9\x8c\xb4&\x9f\xa2$\x06\x1a\xb0W#\xf4\xde6\x04c\xc0\xeec\xa0l\xd5d\xe5\xcd\xb2\xc10\x97w\x87\xe5\x06\x91W\rr\xf5\x97%\xe8pO\xeb]\xc2\x98C\xffK\xa0\xb3\\\x99{\xcdR\x92\x94\xf7\x1d\x01Q\x1a\xbd\x15b\x15h\xe2!\x00\xb9z)\x19\x00\xee\xd2)[p`\xb3\x03\xa7p\'X\xec\xcdoX\x05\xff\xff/o\xb2\xad\xb8\x89i@\f\xffS&\x8a\xc9\xfez\xc2\x90\xe7F\xa6\xdb\r\x03j,N\xe1lw\n\xad\xe8\xf0\xbd\xa1\x98\xce\xf9\x1eR\x9cc\xc5ke_\xa7\x11\"\x04\xd8.\xa0\x15\x83\xf1\x92\xdby\xe9\xdc@.\xc1g\xc6\fc\xa26\xd8\xdf\xef\xf7\x9c\x1a\xcc\x8am\x8b7\xcf\xc5\xa6\xf4\f\xabj%Y\xa9\xdd\x0e9e\xb5\xec\x99@\xd2\t\n\xb1o', 0x0)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000080)='source', &(0x7f0000000400)='//\xf2/\x06\b\xa30\\\x00\x00\xea\x95\x9a\x82\x10\x97W\x8f7\x98\x9b\\/\\\xf9\rmD\x94)U\xdb\x15X.I\n}\xf3\x9d\xe4_\x05\x9cqf4I^#b?9\xde\xafu\'\x83L\xe0\x97\xe1n_\xa4%\xb1\x97\x93\xafv\xce/\\\xb4L\xf2_\xa7\xfb\xf4\x84\x1fA\xeas\x9d\x14\xe3\v\xa3!\xfb\x93\xd7R\xab2\x1eW\xe9h\x9b\xf7Gl\xf9D\xd4\x82X5\x13\xaa\x87\xf9\xba\xa9m\x14\x14R_\x9a\\>4\xce\x8e_#\xf8D\xb1\xdep\x01\xcc:\xa6\xc5n\xeb\xab\xf70\x99\n\x8c<M\n\xc0`[\x82\xf6$\xa4\xbe\x1e\xd3\xe4\xd9L\x14\xed\xcfK\xcc\xeb,\x1a1\xa6\xf3e\xc2F\xc3\x00\xaa\xd5\xfc\x1bR\xa9\x8c\xb4&\x9f\xa2$\x06\x1a\xb0W#\xf4\xde6\x04c\xc0\xeec\xa0l\xd5d\xe5\xcd\xb2\xc10\x97w\x87\xe5\x06\x91W\rr\xf5\x97%\xe8pO\xeb]\xc2\x98C\xffK\xa0\xb3\\\x99{\xcdR\x92\x94\xf7\x1d\x01Q\x1a\xbd\x15b\x15h\xe2!\x00\xb9z)\x19\x00\xee\xd2)[p`\xb3\x03\xa7p\'X\xec\xcdoX\x05\xff\xff/\xd15)\xeatn\xa3\x88\x13i\xb6\x7ft\x95\xd7\x01o\xb2\xad\xb8\x89i@\f\xffS&\x8a\xc9\xfez\xc2\x90\xe7F\xa6\xdb\r\x03j,N\xe1lw\n\xad\xe8\xf0\xbd\xa1\x98\xce\xf9\x1eR\x9cc\xc5ke_\xa7\x11\"\x04\xd8.\xa0\x15\x83\xf1\x94\x00\x00\x00\x00\x00\x00\x00g\xc6\fc\xa26\xd8\xdf\xef\xf7\x9c\x1a\xef\x8am\x8b7\xcf\xc5\xa6\xf4\f\xabj%Y\xa9\xdd\x0e9e\xba\xec\x99@\xd2\t\n\xb1o', 0x0)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000100)={0x1, &(0x7f0000000140)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r4 = add_key(0x0, &(0x7f0000000280)={'syz', 0x1}, &(0x7f00000002c0)="1d", 0x1, 0xfffffffffffffffe)
keyctl$update(0x2, r4, &(0x7f0000000140), 0x0)
syz_open_dev$swradio(&(0x7f0000002440), 0x0, 0x2)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b400000000000000791048000000000061043c000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48)
write$UHID_SET_REPORT_REPLY(r0, 0x0, 0xffe0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f00000044c0)=[{{&(0x7f0000000000)={0xa, 0x4e26, 0x5, @private2={0xfc, 0x2, '\x00', 0x1}, 0x6}, 0x1c, &(0x7f0000000800)=[{&(0x7f0000000180)="931cd5e7e4efc2aa0d1fa3bed0548d7f87a2116abc83e01df1ae2a1bfe258d27e1738dd7c6ac4f8712b68306824e67aca2a75126cdafc9bf84b7ded97eeca4b812bd713c8e997ead9ce38912c782035d508fafb9f629b6122aaf858384288ee6", 0x60}, {&(0x7f00000005c0)="b77b2fe463ba35f913cfd6d4d0d245b1470e8078000b3cfff71a850bae316335a81a102806d59b411f433af2d063012245f0eba752075bcd42275fb692e490b76df4ac2debf1dbde5991ac37893f8ec756082e6baecfad0b72af9d58619396071ea49284ec281e445b749986955927785599cca1f48903a910c2c0d56094f4259c11120230622562ee05dc595df0ba2e0ffcf06b7908154d873f5333fe011747989a5152a0025cc6f9a852bcaeb49643d282ed1fee6ff3239ed0379871d4a5c8e2f73dd1de0147b686a4f7e2a279d2854205162a831b27f8853b07c8d3cec8dbc8611d817f20b9abf29b62befc", 0xed}, {&(0x7f00000006c0)="8492d80c99bf7ffdb3d50d43b951c9d04cadd49e749ef2859e1871a3e7d914e2f0a80852756a53074c8983501e1dbe266fa99323a0176cf62c8c10a9658dbe98789fae04e99449d78dc6c07dcf8d7ea6eb07d6c4db669c2bc5fb07d0", 0x5c}, {&(0x7f0000000740)="9211208366481dd84e6a8ec6eb01498db7f4f2c77dd8dd3b60e602b3be113aabd0396b6afc5954c12eef061a56bd2ecf40f755ebf6845b39ebeeb1bd6c8907609cabcdd84ecb163144140c7ead3e81e089045b5464ba5b1c1c15b35eeb7a0fc61560bc5c5972b77ffc8b4dea38fb6b0ca8fd628ca85aefa47ed1cf5c213b2a347016e52da6f32d395064110c2077fa810f10425681fd072da08cb27d00f9bc3486f0cfe6691d872b7b1ac9f4c3511888bc4074558319b8633d", 0xb9}], 0x4}}], 0x1, 0x20004804)
read$FUSE(0xffffffffffffffff, &(0x7f0000002d40)={0x2020, 0x0, 0x0, <r5=>0x0}, 0xfffffffffffffc88)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80021}, 0xc, &(0x7f0000000380)={&(0x7f0000000a40)=ANY=[@ANYBLOB="741000002100100027bd7000fddbdf2500000000000000000000ffffac1e0001fe800000000000000000", @ANYRES32=r5, @ANYBLOB="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"], 0x1074}, 0x1, 0x0, 0x0, 0x20000000}, 0x28880)
quotactl_fd$Q_GETNEXTQUOTA(r3, 0xffffffff80000901, r5, &(0x7f0000000300))

9m18.298775965s ago: executing program 4 (id=1681):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x300000a, 0x12, r0, 0x852ac000)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
connect$bt_l2cap(r1, &(0x7f0000000080)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x7ff}, 0xe)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r2 = getpgrp(0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x2, 0x0)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r4 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r4, 0x1, 0x0)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, 0x0, 0x0)
writev(r1, &(0x7f0000000280)=[{&(0x7f0000001300)="945d", 0x2}], 0x1)

9m15.560734625s ago: executing program 4 (id=1683):
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xa, 0x31, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x101100, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_kvm_setup_syzos_vm$x86(r1, &(0x7f0000000000/0x400000)=nil)
syz_kvm_add_vcpu$x86(r2, &(0x7f0000000440)={0x0, &(0x7f0000000280)=[@nested_load_syzos={0x136, 0x1a6, {0x0, 0x1, [@nested_amd_set_intercept={0x181, 0x30, {0x0, 0x0, 0x4, 0x1}}, @enable_nested={0x12c, 0x18}, @wr_drn={0x68, 0x20, {0x3, 0x633c6ea}}, @nested_load_code={0x12e, 0x5f, {0x2, "2e0f18103e0f79a900000080f340ab420f01c9470f9faf49780000460f23cfb9800000c00f3235001000000f30420f0137b9800000c00f3235001000000f30430ffc8a00980000"}}, @nested_load_code={0x12e, 0x8f, {0x2, "36470fc72cce66baf80cb824bda385ef66bafc0cb800500000efc7442400f4530000c7442402f86f0000c7442406000000000f011c24440f01f166b83d010f00d067470f01cf400f0748b86ce57d1444f40a610f23d80f21f835400000d00f23f866baf80cb8b046ab89ef66bafc0cb8bdce0000eff26d"}}, @nested_amd_set_intercept={0x181, 0x30, {0x0, 0x9, 0x9, 0x1}}]}}, @nested_amd_vmload={0x182, 0x18, 0x1}], 0x1be})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r4, 0x400448cb, 0x0)
syz_emit_vhci(0x0, 0x7)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000005c0)={0x0, 0x0, 0x54000, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000016000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x4e, 0x0, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaa0f7f"], 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, 0x7, 0x6, 0x5, 0x0, 0x0, {0x1, 0x0, 0x2}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20004080}, 0x48810)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080))
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000040)=0x3, 0xac5)
syz_clone3(&(0x7f0000000900)={0x23800000, &(0x7f0000000040)=<r6=>0xffffffffffffffff, 0x0, 0x0, {0x27}, 0x0, 0x0, 0x0, 0x0}, 0x58)
io_setup(0x1, &(0x7f0000000600)=<r7=>0x0)
io_submit(r7, 0x1, &(0x7f00000008c0)=[&(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x7fff, r6, &(0x7f0000000140)="b7", 0x1, 0x0, 0x0, 0x2}])
ioctl$KVM_RUN(r3, 0xae80, 0x0)
r8 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_DIRTY_TLB(r8, 0x4010aeaa, &(0x7f0000000180)={0x5, 0x1a})
ioprio_set$pid(0x1, 0x0, 0x4007)
ioprio_set$pid(0x1, 0x0, 0x2004)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
r9 = openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r9, &(0x7f0000000200)={0x0, 0x18, 0xfa00, {0x1, 0x0, 0x106, 0x2}}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000440)={0xd, 0x12, &(0x7f0000000340)=ANY=[@ANYBLOB="180000005531512f000000000480080085000000000000000009f20000850000006c00000000299c0009000000186300000000000000000000bced0000180000000700000000000000600d001239cb124cc3047100852000000500000018000000ff7f00000000000039070000183e00000400000000000000000000009500"/144], &(0x7f0000000300)='GPL\x00', 0x2, 0x5, &(0x7f0000000000)=""/5, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc}, 0x94)
write$RDMA_USER_CM_CMD_BIND(r9, &(0x7f0000000500)={0x14, 0x88, 0xfa00, {0xffffffffffffffff, 0x10, 0x0, @in={0x2, 0x4e21, @empty}}}, 0x90)

8m58.521743599s ago: executing program 34 (id=1683):
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xa, 0x31, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x101100, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_kvm_setup_syzos_vm$x86(r1, &(0x7f0000000000/0x400000)=nil)
syz_kvm_add_vcpu$x86(r2, &(0x7f0000000440)={0x0, &(0x7f0000000280)=[@nested_load_syzos={0x136, 0x1a6, {0x0, 0x1, [@nested_amd_set_intercept={0x181, 0x30, {0x0, 0x0, 0x4, 0x1}}, @enable_nested={0x12c, 0x18}, @wr_drn={0x68, 0x20, {0x3, 0x633c6ea}}, @nested_load_code={0x12e, 0x5f, {0x2, "2e0f18103e0f79a900000080f340ab420f01c9470f9faf49780000460f23cfb9800000c00f3235001000000f30420f0137b9800000c00f3235001000000f30430ffc8a00980000"}}, @nested_load_code={0x12e, 0x8f, {0x2, "36470fc72cce66baf80cb824bda385ef66bafc0cb800500000efc7442400f4530000c7442402f86f0000c7442406000000000f011c24440f01f166b83d010f00d067470f01cf400f0748b86ce57d1444f40a610f23d80f21f835400000d00f23f866baf80cb8b046ab89ef66bafc0cb8bdce0000eff26d"}}, @nested_amd_set_intercept={0x181, 0x30, {0x0, 0x9, 0x9, 0x1}}]}}, @nested_amd_vmload={0x182, 0x18, 0x1}], 0x1be})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r4, 0x400448cb, 0x0)
syz_emit_vhci(0x0, 0x7)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000005c0)={0x0, 0x0, 0x54000, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000016000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x4e, 0x0, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaa0f7f"], 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, 0x7, 0x6, 0x5, 0x0, 0x0, {0x1, 0x0, 0x2}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20004080}, 0x48810)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080))
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000040)=0x3, 0xac5)
syz_clone3(&(0x7f0000000900)={0x23800000, &(0x7f0000000040)=<r6=>0xffffffffffffffff, 0x0, 0x0, {0x27}, 0x0, 0x0, 0x0, 0x0}, 0x58)
io_setup(0x1, &(0x7f0000000600)=<r7=>0x0)
io_submit(r7, 0x1, &(0x7f00000008c0)=[&(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x7fff, r6, &(0x7f0000000140)="b7", 0x1, 0x0, 0x0, 0x2}])
ioctl$KVM_RUN(r3, 0xae80, 0x0)
r8 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_DIRTY_TLB(r8, 0x4010aeaa, &(0x7f0000000180)={0x5, 0x1a})
ioprio_set$pid(0x1, 0x0, 0x4007)
ioprio_set$pid(0x1, 0x0, 0x2004)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
r9 = openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r9, &(0x7f0000000200)={0x0, 0x18, 0xfa00, {0x1, 0x0, 0x106, 0x2}}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000440)={0xd, 0x12, &(0x7f0000000340)=ANY=[@ANYBLOB="180000005531512f000000000480080085000000000000000009f20000850000006c00000000299c0009000000186300000000000000000000bced0000180000000700000000000000600d001239cb124cc3047100852000000500000018000000ff7f00000000000039070000183e00000400000000000000000000009500"/144], &(0x7f0000000300)='GPL\x00', 0x2, 0x5, &(0x7f0000000000)=""/5, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc}, 0x94)
write$RDMA_USER_CM_CMD_BIND(r9, &(0x7f0000000500)={0x14, 0x88, 0xfa00, {0xffffffffffffffff, 0x10, 0x0, @in={0x2, 0x4e21, @empty}}}, 0x90)

19.556226605s ago: executing program 3 (id=2359):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'md5\x00'}, 0x58)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100208e}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000100)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
r4 = socket$netlink(0x10, 0x3, 0x6)
bind$netlink(r4, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r5 = socket$inet6(0xa, 0x3, 0x3)
setsockopt$inet6_IPV6_XFRM_POLICY(r5, 0x29, 0x23, &(0x7f0000000680)={{{@in=@remote, @in=@local, 0x1000, 0x0, 0x4e20, 0x0, 0x2}, {0x0, 0x4, 0x1, 0x0, 0x52b, 0xb}, {0x40000000000001ff, 0xffffffffe, 0x4053e5, 0x23}, 0x9, 0x80001, 0x1, 0x0, 0x1, 0x1}, {{@in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x4d4, 0x3c}, 0xa, @in=@remote, 0x3502, 0x1, 0x0, 0x0, 0x6, 0xfffffffd}}, 0xe8)
connect$inet6(r5, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}, 0x9df}, 0x1c)

16.658871601s ago: executing program 3 (id=2363):
openat$nvram(0xffffffffffffff9c, 0x0, 0x404400, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000002c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x100)
r3 = socket(0x10, 0x2, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="4800000010003df60000", @ANYBLOB="4980020009d0000028f997df8991d211ea73d2857978d2505d0012a7d100010065000070616e"], 0x48}, 0x1, 0x0, 0x0, 0x40001}, 0x0)
memfd_create(&(0x7f0000000740)='\x103q}2\x9a\xce\xaf\x03\xdfy[\xd9\xffR8\xf4\x1c\bi\xe4^\xd5\xfd\xa9\r\xac7A\x94\xa0\x00\x00\x00\x90+\xd6\x05\r\x84\x87\x1c\b\xdb\xe2\x00\x00A\x90m\xb6&\xd0\x9d\x00\x00\xc5\xb8,\f\xd4s\xb2\x99/\xc0\x9a\xf2O\xdb\x00\x00\x00\x00\x00\x00\r\x1b\xd3\xff<\x83z\x80\x8fQ|\xf5d\x10\x10\xd7\x01M\x7fML\x18\'\x1a<\xfee7{l\x16}\xa0I\x7f\xb5)l\xbb\x02\xfa\xb7\xb6\xa0]\xda8\xe0~\x1c \x91\t\x8b\xbd\x1f\xb3834d1i\x9b\x94\xa6\\\x0e\xe2\xfa\xe5!\xd3\xcf\xfc\xce\xba\xe2\x9f\x05xgL5\x14Y+\xb3\x1axi)<\xf7\x98\xc1\xba\xf4|\xe7|\xc4\xd7\x03\x00\x00\x00\x04D\x15E^7%8\x94y\x98\xf0l\xa0\'Q%\xd4\xda\xee\x81}\xcc\xfd\xa2\xe3M~x\x96\xe3]\xd70\xa2\x17\xca\xde\x1b\xaa\xe0l\xfc\x85\x8fc\x1c{|d\x8bs\xb0\x85E\xce;p)\xf8\xa6\xaa&QC4V\x81\x04\xcf\xd2\x81\xdc\xdf\xd7<\x9f\x93\x8bX\xd4\xea\xb2\xff\b\x92\xc7\x00\xef\xff\x00\x93\x1f\x92\xa7dcY\x9c\x9e9O-\xfcF\xbb\xbd{:IR\xea\xd8$\xe2\xa0\xc2\x8b\x1a\xead\xb8\xe1:6\x15M\x1d\xdak\x8c\x909\xd8\xb3\x02\xe0\x04\x9c\xc2\x06|\xf0\x0f\xa6Y&r\x9b\xc7\x1d\xe7jDf\x87@\x8fg\x15RJwe\xe2\xdcunu\xff`\xa40\xce\xffB%\xe4k\xff\x8d\x06\x0e\x89\xd9DC\x9fF\x9c[M=\xe0^\xa8\xed)\xe8Z\xe8\x99&\x87\x04\xa4\t\xaa\xd8\xd6\xd5pG\xcb\xc4\x8b\xf7\xb8#\xcb\xd8|\xa5\xa6S\x8b\x8cv\xb7)\x02k\xf3L\x03\xbb\xfa\xe1\\\xf1\x8cUj\xd5\xa5\x88GL\xe7_\xfd\x17C=G\x0f\xe9u\x1d\xfeg\xfex\xcd\xaa\xad\x906\xd0sy\xc6T\x93\xae\xd5r\xc8G\xc5\xfdS\xff\x04:`\x1e\xe3;l\xcd&\xd4\xf4\x8eum\x04\x00~\xfa\x05\xd7\xe7X\xc7/\xae5\x93wwT\x13\xbd,\xd6\x16\x84\xcd\xd1\xd8\xe1P_\xbf0\xd8\x8d%Yh\xb5\xb4\"\xf5\x93\xdeh\xce\xa5\xe8\xc8\xec\x88\x89\xf07{\x95\xc9\xd0\xee\xe1\x1d\x80\xcc]-\xc2\xa1\x02Ep\x1a\x10\xe5\xf5\xcfk\x8a&i\xc1\xff9T\x8e\xe2rY\xa3\xd2H9\xfe\x0e\x1e\xac\x0f\xc3\xbd{\xd9\xcc\xbe\xa9\x93\xe0\xa4W\x1cn>\xc1\xf1\x9e\"\x93\x19\x19\x1a\xcc\x7fy\xd2~\x05\x99\xe6\x00o\xca\xe0\xc6\xd4\xf5\xa0\xc8P\xd6;\xf3\xc6~E\xacI\xd4\xe9\xa1|>\x91.K\x81\xa9+\xcf\xff\xcb\xfa\x0f\xe7n\x83H\x12\xac\x80\x16\xf8\x87Q\x97Az\n`\xb6\xe13A\xec\x8d(\\D\xec\xa6\t1\xa0h\xfc\x1f\xdd1@-4\xb4:\xf8\xd5wP \x84m\xe2\xd9\xfcb\xa0\xc3ml\xee\x97[\xb7\xfa\x1aX\x87\xf5\x1aP\x06\x9a\xa9\xa0\x98 )\xe3\xa1\xa2\xb1D\xe0\x15S\x89/m\xb71%\x80\x04Q\x1dN\xb0\x19\x81\x16@\xc0\xc4\"g\xd7Z\xb3\x17\xd1\xe7\x1b\xbd\xdck\x95\x16\x17\x95\xce\xa6\x92_\xe4\x9a\xaeA-\x02\x161\x8c\xe7\xa6.)\xadpM\x19\x1c\xcd\xf6S\x9a(:\x90\xb1\x8ft\xeb#\x82\x17\x8d\x00\xcaY\xe9\xf7\xee\x91\bx\x80\xa4\xa0\x16\b\x8b,\xdb\x88\x1e\xc1m\x91\xf0S\xc4\xc9\xefEBT\x8e\xff6\xff\xbb\xd4\xbe&\xf5St\v\xe1\x98;q\\\x1c\xe9\xcc\xfeV\xc3M5\xa9\xec\xc9\x8a\xee7\xbb\xa4\x1f\xc8\xfb\xaar15\xdf\\\xf4d\xc0\xc7\xf3\x88\x13\x94^01\xfc_\x91B\xacp\x8f\xfdx\xa5\xa9_t\x86\xe3%\xf1q\x00\x89c\x05H\x92\xa6\x93je\xfa\xd148\xd0N7\x00\x00\x00\x00\x00\x00\x00', 0x0)
r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000500)='status\x00')
setgroups(0x400000000000026f, &(0x7f0000000080)=[0x0, 0xee00])
read$FUSE(r4, &(0x7f0000000b00)={0x2020}, 0x2020)
r5 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(0xffffffffffffffff, 0x3b81, &(0x7f00000003c0)={0x3b})
r6 = socket(0x10, 0x2, 0x0)
getsockopt$sock_cred(r6, 0x1, 0x1c, &(0x7f0000000040)={<r7=>0x0}, &(0x7f0000cab000)=0x7)
syz_open_procfs$namespace(r7, 0x0)
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r5, 0x3ba0, 0x0)
ioctl$IOMMU_TEST_OP_ACCESS_PAGES$syz(r5, 0x3ba0, &(0x7f0000000640)={0x48, 0x7, 0xffffffffffffffff, 0x0, 0x10001, 0x0, 0x1, 0xd6fe2, 0x236af4, 0x3f})
setsockopt$llc_int(0xffffffffffffffff, 0x10c, 0x0, 0x0, 0x0)
close_range(r3, 0xffffffffffffffff, 0x0)
unshare(0x26020480)
r8 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r8, 0x107, 0xc, 0x0, 0x0)
openat$fb0(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)

14.035557986s ago: executing program 2 (id=2366):
r0 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000080)=0xa)
getsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000600)={{{@in=@local, @in6=@private0}}, {{@in6=@initdev}, 0x0, @in6=@loopback}}, &(0x7f0000000700)=0xe8)
connect$unix(0xffffffffffffffff, 0x0, 0x15)
syz_usb_connect$uac1(0x2, 0x9c, 0x0, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x6)
bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f000000e0c0)=""/102400, 0x19000)
r3 = getpid()
ioctl$IOCTL_VMCI_SET_NOTIFY(0xffffffffffffffff, 0x7cb, &(0x7f0000000340)={0x400000000000000, 0x0, 0xe})
socket$inet_sctp(0x2, 0x1, 0x84)
r4 = socket(0x2, 0x805, 0x0)
getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(r4, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000280)=[@in6={0xa, 0x4e21, 0x8, @empty, 0x8}]}, &(0x7f00000007c0)=0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r4, 0x84, 0x1d, &(0x7f0000000000)={0x1, [<r5=>0x0]}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp6_SCTP_MAXSEG(r4, 0x84, 0xd, &(0x7f0000000140)=@assoc_value={r5, 0x5f33}, 0x8)
ptrace$getregset(0x4204, r3, 0x3, &(0x7f0000000240)={&(0x7f00000003c0)=""/166, 0xa6})
ioctl$LOOP_CONFIGURE(0xffffffffffffffff, 0x4c0a, &(0x7f0000000080)={0xffffffffffffffff, 0x0, {0x0, 0x0, 0x0, 0x4000000000007, 0x4000000000000ffc, 0x0, 0x0, 0x1e, 0xc, "faf98317e5a1149989fc8dbe43ea6acc96e3a2503dc3bd3fe37d58128bbad0099cebdc25f5ab60c9e6d680f985881a7beda9d69098c8b534464c516bdd8a0f35", "72d8cc26f7061a74df2cfc06c89f3d9e234b30c50997d3bef409ff2176ff7bfe55cd4a5d83cdb71c78f1ffe70c7f7eed3052504d5734c50a1fcaed1e831fa79a", "67523760fd40f78d2cfc03d81a8ca55ba139c01802c4dae4162e43ac61b7ad33", [0x2, 0x400000009]}})
ioctl$LOOP_CHANGE_FD(0xffffffffffffffff, 0x4c06, 0xffffffffffffffff)

11.25855027s ago: executing program 5 (id=2369):
mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000440)={0x1, &(0x7f0000000000)=[{0x6, 0x8, 0x0, 0x7fff8000}]})
sched_rr_get_interval(0x0, &(0x7f0000000240))
open$dir(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r0 = open$dir(&(0x7f0000000140)='./file0\x00', 0x1, 0x27)
sendfile(r0, 0xffffffffffffffff, 0x0, 0x20000000000006)
r1 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000540)={0x114, 0x20, 0x1, 0x3, 0x25dfdbfb, "", [@nested={0x104, 0x117, 0x0, 0x1, [@typed={0xc, 0x3, 0x0, 0x0, @u64=0xfac08}, @typed={0x14, 0x1, 0x0, 0x0, @ipv6=@empty}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be31d750351dc076eb43d9621dc08c029d1608a46cf26fbe816b89f7cb81bff81a8b9482565856555ee923c65973deb0a99b962bc0fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875ec58e9a3ddb9ad02a078cf0d972df9e99f079767734f69ce475f00ac64337803f5eb4e5842f4d98fe3fa370d47eb640dc5061dc3", @typed={0xc, 0xeb, 0x0, 0x0, @u64=0xffffffff}]}]}, 0x114}], 0x1, 0x0, 0x0, 0x1}, 0x0)
vmsplice(0xffffffffffffffff, 0x0, 0x0, 0x5)

10.611888984s ago: executing program 5 (id=2370):
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, 0x0, 0x0)
ioctl$XFS_IOC_OPEN_BY_HANDLE(r0, 0xc038586b, &(0x7f0000000500)={r0, &(0x7f0000000180)='\x00', 0x100, &(0x7f0000000440)={@align=0xf, {0x4, 0x81, 0x7ff, 0x2e48}}, 0x7, &(0x7f0000000480)={@_ha_fsid}, &(0x7f00000004c0)=0x9})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f00000000c0)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee6, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
write$cgroup_pid(0xffffffffffffffff, 0x0, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000027c0)=@base={0x4, 0x4, 0x4, 0x10005}, 0x50)
syz_open_dev$dri(0x0, 0x1, 0x88300)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000180)={r4, 0x58, &(0x7f0000000340)}, 0x10)
bpf$BPF_MAP_GET_FD_BY_ID(0xe, 0x0, 0x0)
mount(&(0x7f0000000040)=@nullb, &(0x7f00000001c0)='.\x00', &(0x7f0000000000)='exfat\x00', 0x401, 0x0)

10.298504302s ago: executing program 2 (id=2371):
creat(&(0x7f0000000080)='./file0\x00', 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'md5\x00'}, 0x58)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100208e}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000100)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
bind$netlink(0xffffffffffffffff, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r4 = socket$inet6(0xa, 0x3, 0x3)
setsockopt$inet6_IPV6_XFRM_POLICY(r4, 0x29, 0x23, &(0x7f0000000680)={{{@in=@remote, @in=@local, 0x1000, 0x0, 0x4e20, 0x0, 0x2}, {0x0, 0x4, 0x1, 0x0, 0x52b, 0xb}, {0x40000000000001ff, 0xffffffffe, 0x4053e5, 0x23}, 0x9, 0x80001, 0x1, 0x0, 0x1, 0x1}, {{@in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x4d4, 0x3c}, 0xa, @in=@remote, 0x3502, 0x1, 0x0, 0x0, 0x6, 0xfffffffd}}, 0xe8)
connect$inet6(r4, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}, 0x9df}, 0x1c)

9.400328201s ago: executing program 5 (id=2372):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={<r0=>0xffffffffffffffff})
bpf$MAP_CREATE(0x0, &(0x7f00000023c0)=ANY=[@ANYBLOB="1200000026000000080000000b"], 0x48) (async)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000023c0)=ANY=[@ANYBLOB="1200000026000000080000000b"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r1, <r2=>0xffffffffffffffff}, &(0x7f0000000340), &(0x7f0000000380)=r0}, 0x20)
syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002) (async)
r3 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
r4 = fcntl$dupfd(r3, 0x0, r3)
write$tun(r4, &(0x7f00000003c0)={@void, @void, @mpls={[], @ipv6=@tipc_packet={0x3, 0x6, 'Z\vB', 0x20c, 0x6, 0x0, @empty, @mcast1, {[@srh={0x87, 0x0, 0x4, 0x0, 0x2, 0x50, 0x2}, @dstopts={0x33, 0x6, '\x00', [@ra={0x5, 0x2, 0x8}, @generic={0x6b}, @jumbo={0xc2, 0x4, 0x3}, @calipso={0x7, 0x28, {0x2, 0x8, 0x43, 0x668c, [0x8, 0xc, 0x6, 0x7]}}]}, @dstopts={0x2f, 0x2d, '\x00', [@pad1, @calipso={0x7, 0x8, {0x3, 0x0, 0x3, 0xa58b}}, @padn={0x1, 0x4, [0x0, 0x0, 0x0, 0x0]}, @calipso={0x7, 0x28, {0x1, 0x8, 0x4, 0x2, [0x3, 0x9, 0xc, 0x7f]}}, @calipso={0x7, 0x40, {0x0, 0xe, 0xfc, 0x7, [0x2, 0x6c2, 0x3, 0xfffffffffffffffe, 0x8, 0x3, 0x7fffffffffffffff]}}, @generic={0x0, 0xc0, "e99161b13e91aeb63977b8cd6a313fc005769ea2f8a0ce0d72c5f31bdc1c4d47ad317f27f7c050ce7f8d18ad09b01cfe44bd61455b71f320300e9da125280608e240b54d9fcb7bb4748ddd41f26d45915cc34cb01f776d887bac17d50dd8d037c35b9308d315964af59aa356356a6c95f602cd40b41d6fae719fcf50ce5e6355d806d2039e42e09478bceba079e47e0f1342ee3f52d0084cb0326101e39dad33a46e9a39c73074589b2cfd1f9111bf1159e69f806f5b5b3ae8d82c434e0a82a3"}, @padn={0x1, 0x1, [0x0]}, @hao={0xc9, 0x10, @mcast1}, @generic={0xe, 0x11, "10534761dee7d9e903ffbe1e9e868776ff"}]}, @srh={0x0, 0x2, 0x4, 0x1, 0x0, 0x50, 0x273, [@mcast1]}, @hopopts={0x3b}], @payload_mcast={{{{{{0x2c, 0x0, 0x1, 0x0, 0x0, 0xb, 0x0, 0x2, 0x5, 0x0, 0x57082eceb02ffff2, 0x4, 0x1, 0x1, 0x8, 0x4, 0xa, 0x4e22, 0x4e24}, 0x0, 0x2}, 0x1, 0x4}, 0x1}}}}}}}, 0x234)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000a80)={r2, &(0x7f0000000700), 0x0}, 0x20)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x9)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000a80)={0xffffffffffffffff, 0x0, 0x0}, 0x20) (async)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000a80)={0xffffffffffffffff, 0x0, 0x0}, 0x20)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000001540)={&(0x7f0000000040)=@qipcrtr={0x2a, 0x1, 0x40f0}, 0x80, 0x0}, 0x0)
r5 = socket$kcm(0x2a, 0x2, 0x0)
r6 = syz_open_dev$video4linux(&(0x7f0000000000), 0x0, 0x40)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xe, 0x4, &(0x7f0000000040)=@framed={{0x66, 0xa, 0x0, 0x0, 0x0, 0x61, 0x11, 0x50}, [@call={0x85, 0x0, 0x0, 0x9d}]}, &(0x7f0000000080)='syzkaller\x00'}, 0x94) (async)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xe, 0x4, &(0x7f0000000040)=@framed={{0x66, 0xa, 0x0, 0x0, 0x0, 0x61, 0x11, 0x50}, [@call={0x85, 0x0, 0x0, 0x9d}]}, &(0x7f0000000080)='syzkaller\x00'}, 0x94)
read$FUSE(r6, 0x0, 0x0)
sendmsg$kcm(r5, &(0x7f0000001f80)={&(0x7f0000001d00)=@qipcrtr={0x2a, 0xffffffffffffffff, 0xfffffffe}, 0x80, &(0x7f0000000000)=[{&(0x7f0000000040), 0x3f00}], 0x20}, 0x0) (async)
sendmsg$kcm(r5, &(0x7f0000001f80)={&(0x7f0000001d00)=@qipcrtr={0x2a, 0xffffffffffffffff, 0xfffffffe}, 0x80, &(0x7f0000000000)=[{&(0x7f0000000040), 0x3f00}], 0x20}, 0x0)

9.232201229s ago: executing program 3 (id=2373):
syz_80211_inject_frame(0x0, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080))
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
socket$alg(0x26, 0x5, 0x0)
socket$packet(0x11, 0xa, 0x300)
socket(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_xfrm(0x10, 0x3, 0x6)
r0 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r0, &(0x7f00000000c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r0, 0x0)
accept(r0, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080))
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_emit_vhci(&(0x7f0000000840)=ANY=[@ANYBLOB="04050400c900", @ANYRES16=r1], 0x7)

8.208124006s ago: executing program 2 (id=2374):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x6, 0xe, &(0x7f0000002300)=ANY=[@ANYBLOB="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"], &(0x7f0000000b80)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xc, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xc463f262, 0x10, &(0x7f0000000040)}, 0x48)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'syz_tun\x00'})
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f0000000040)={'batadv_slave_1\x00'})
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)={0x1c, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x410}, 0x0)

8.168703816s ago: executing program 5 (id=2375):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x10000005)
prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x2, 0x0)
r1 = getpid()
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)=[{0x0}], 0x1}, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
setns(0xffffffffffffffff, 0x24020000)
mount_setattr(0xffffffffffffff9c, &(0x7f0000000100)='.\x00', 0x9100, &(0x7f0000000140)={0x6, 0x8a, 0x40000}, 0x37)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000000b00)=@raw={'raw\x00', 0x21, 0x3, 0x458, 0x120, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x388, 0xffffffff, 0xffffffff, 0x388, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private2, @private2, [], [], 'veth0\x00', 'syzkaller1\x00'}, 0x0, 0xf8, 0x120, 0x0, {}, [@common=@ipv6header={{0x28}, {0x12, 0x40, 0x1}}, @inet=@rpfilter={{0x28}}]}, @common=@unspec=@NFQUEUE1={0x28, 'NFQUEUE\x00', 0x3, {0x0, 0x4}}}, {{@uncond, 0x0, 0x200, 0x268, 0x0, {}, [@common=@inet=@policy={{0x158}, {[{@ipv6=@private1, [], @ipv4=@remote, [], 0x0, 0x0, 0x0, 0x0, 0x4, 0x13}, {@ipv6=@dev, [0xffffffff], @ipv6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, [], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {@ipv4=@multicast2, [0x0, 0x0, 0xff000000], @ipv4=@multicast1, [0x0, 0xff], 0x4d6, 0x0, 0x0, 0x0, 0x9}, {@ipv6=@rand_addr=' \x01\x00', [0x0, 0xffffff00], @ipv4=@broadcast, [0x0, 0x0, 0xffffff00]}]}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, 'snmp_trap\x00', 'syz0\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x4b8)
syslog(0x3, &(0x7f0000000900), 0x0)

7.860703995s ago: executing program 2 (id=2376):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xe6955000)
r0 = syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000032680)=""/102400, 0x19000)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$SNDRV_TIMER_IOCTL_PVERSION(0xffffffffffffffff, 0x5422, 0x0)
ioctl$TIOCL_PASTESEL(r2, 0x541c, &(0x7f0000000140))

7.396151469s ago: executing program 3 (id=2377):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
pipe(&(0x7f0000000140)={<r2=>0xffffffffffffffff})
r3 = socket$kcm(0x2d, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r3, 0x89e2, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(0xffffffffffffffff, 0x89e3, 0x0)
socket(0x3, 0x0, 0x327d)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0))
write(r1, &(0x7f0000000340), 0x0)
r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x84042, 0x0)
r5 = syz_open_dev$loop(&(0x7f0000000080), 0x200000af, 0x84281)
ioctl$LOOP_CONFIGURE(r5, 0x4c0a, &(0x7f0000001100)={r4, 0x0, {0x0, 0x0, 0x0, 0x80000001, 0x7, 0x0, 0x0, 0xfffffffc, 0x1c, "339f020bbe82b39800000000ef0c0ec0ceb4e9b1c4369d03740250ceaac594b1b3d741dd17c1c50d3805000000f1e83323691c58d66500", "a9103939c787a16c1ca43f80026d1a8554fe581b59ded130e04d528539f3d3289737f0374c72a964a02447a75df8a69ea917deb748a43b3e7763fd29f35239d2", "244333791f045158d97405000000000000040000000100", [0x5373, 0xd3]}})
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)

6.140176055s ago: executing program 2 (id=2378):
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
getsockopt$bt_hci(r0, 0x0, 0x1, 0x0, 0x0) (async)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000240)=ANY=[@ANYBLOB="700000001000030528bd70000000000000000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000500012800b000100697036677265000040000280060003009e000000080005000000600006000f00040000000800040002"], 0x70}}, 0x0)

4.084382805s ago: executing program 3 (id=2379):
r0 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000080)=0xa)
getsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000600)={{{@in=@local, @in6=@private0}}, {{@in6=@initdev}, 0x0, @in6=@loopback}}, &(0x7f0000000700)=0xe8)
connect$unix(0xffffffffffffffff, 0x0, 0x15)
syz_usb_connect$uac1(0x2, 0x9c, 0x0, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x6)
bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f000000e0c0)=""/102400, 0x19000)
r3 = getpid()
ioctl$IOCTL_VMCI_SET_NOTIFY(0xffffffffffffffff, 0x7cb, &(0x7f0000000340)={0x400000000000000, 0x0, 0xe})
socket$inet_sctp(0x2, 0x1, 0x84)
r4 = socket(0x2, 0x805, 0x0)
getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(r4, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000280)=[@in6={0xa, 0x4e21, 0x8, @empty, 0x8}]}, &(0x7f00000007c0)=0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r4, 0x84, 0x1d, &(0x7f0000000000)={0x1, [<r5=>0x0]}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp6_SCTP_MAXSEG(r4, 0x84, 0xd, &(0x7f0000000140)=@assoc_value={r5, 0x5f33}, 0x8)
ptrace$getregset(0x4204, r3, 0x3, &(0x7f0000000240)={&(0x7f00000003c0)=""/166, 0xa6})
ioctl$LOOP_CONFIGURE(0xffffffffffffffff, 0x4c0a, &(0x7f0000000080)={0xffffffffffffffff, 0x0, {0x0, 0x0, 0x0, 0x4000000000007, 0x4000000000000ffc, 0x0, 0x0, 0x1e, 0xc, "faf98317e5a1149989fc8dbe43ea6acc96e3a2503dc3bd3fe37d58128bbad0099cebdc25f5ab60c9e6d680f985881a7beda9d69098c8b534464c516bdd8a0f35", "72d8cc26f7061a74df2cfc06c89f3d9e234b30c50997d3bef409ff2176ff7bfe55cd4a5d83cdb71c78f1ffe70c7f7eed3052504d5734c50a1fcaed1e831fa79a", "67523760fd40f78d2cfc03d81a8ca55ba139c01802c4dae4162e43ac61b7ad33", [0x2, 0x400000009]}})
ioctl$LOOP_CHANGE_FD(0xffffffffffffffff, 0x4c06, 0xffffffffffffffff)

3.959983454s ago: executing program 5 (id=2380):
r0 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$inet_int(r0, 0x0, 0x5, &(0x7f0000000180)=0x2, 0x4)
sendmmsg$alg(0xffffffffffffffff, &(0x7f0000001600)=[{0x0, 0x0, &(0x7f0000000880)=[{&(0x7f00000001c0)="e0da2aa400ba3bc7edaf17b4df3b4dc4cd01f08e99c1ca5b602e4d45c683b24fdcbfc1bdc5ba72d7d9ad615dabb74ed9700a39a41936a420d104c4c3028abf6eb96b271775fa420105a5bd10530774eea3317b1773375611f0e1b9abd4de412a1fb9db2fe0c21b5ea4032bc0f285725e8883be451178646a389a9e8782aaa097da2a0712ac45c365e271d0540bf99feb356d9e2b57425d68e47d555d8316128d70025804769dc2e3959811731ff36ade02a9367ec17673cdd6dd33ef598f106c24d1e661b0586a8cd0f13def680fff05f6d2cdc2a19c667a87fa3d0286adc130aa24324c022819cc0a2f", 0xea}, {&(0x7f0000000300)="d8cbf48a60a7854984b7c94ae74b44d8378623d180e230531bdf09993da4e360f19da93614ee4fb4928495b1d3a6df6b5d17d2040436b62c4748915c40fb61117310dbcc4d3fb511c122bdd78cd30b52642bb8390fd560fe22efaacae0741562aaea3a7f72f0bafad4fa7bf491394c0d43da7d23da049fd737363289aba887eac6bb5a620b1abf87d805d2807cce8b5e5fe5f12a586e661204b27b69b3d3014e5229c1587489190e69800ec90ef5126013d1813e20e8a4882bd85e4bde6a5c385da02fb99fb101b5a32c23684b734218399526", 0xd3}, {&(0x7f00000005c0)="a10dbb7d23de116c38496365730dc38fc519cb63a24c9f0c1ce5bdd900dcfe7b9c06000137b9259d3042a27258dcd35bb7ecabc996e16210060c822cefdd9ad871dccd03b05d7a2a8d3607eb0e5ca83fb1530fffc8dc8a92b3cca3bdddb6d53300dc0de13f4ae007ee10509558822ccc51d95688e1dc80b1067d8c36c30e0e0b1301d394751c53142813a38fe1c6b9617178", 0x92}, {&(0x7f0000000680)="a32f31a95a5d95cb15a917f074359be72b0b4518875b08a77e13699d60a2939660d6f16f0a9d15971924c8df7afaafdf80e1da7a42ac3855fc63fc889cb725847f2d77d58c0dc0e32d7f8bfe14516a85b3871f4919d50274b2ba375bdbdf3cc94005893f3b", 0x65}, {&(0x7f0000000700)="e894cf92c3d002d126930b65c78a981ea96e2fa3197125b6bd7c98efe3e9fa409d15d63c0add3045141cf4171585a90f6e7b2ad3df6468e5b40f832047542fe25a35d7d255ae8f5e2ff3d630f976612f98131999e8509ada8e906a841c467310df4209ef09be9ccfba1979fbc2cca9b3b08398d59c4387693988e38e9cd181407db478ce7af3229311f61485de4880c023b6945497b89dde5d6897ec609ac66061a9eab48c57c512a34813919bf806cce004f9cb83f9ca4dbad1eab0759e2d", 0xbf}, {&(0x7f00000007c0)="c995e4a833efd75c3702e31b78e2e558d9daa19db7876b53ec2cde6e657164d2c3fbaa8b61f064f342d98077483f551e3985d30ecd5e16ecd32c8cf353254fb6590e931111c575e88c7405f6d5eaca0354566ac9a3824df51e69c4ac7cc27718d441a7ccec8e6a907ee7410cab52b4262ee5a58bebfa540a2f552be707e82f571fb3feb8c2b4c31f6bbc7de784e9810c368c7582d1f7aaa235ee698f9c11192ab42654667379ecfac8b3e782b981d36f0823ba6d60", 0xb5}], 0x6, &(0x7f0000000900)=[@assoc={0x18, 0x117, 0x4, 0x7}, @iv={0x40, 0x117, 0x2, 0x2b, "1f9fd59d7a408fd6b825300e2a5d14d86c647a438a03f521fc20070a385d5bfb2770229b69fa5988f6cef4"}, @op={0x18}, @assoc={0x18, 0x117, 0x4, 0x10000}, @iv={0xf8, 0x117, 0x2, 0xdf, "3558d6bca21304d6d86438152dc2c0fb010bf7b0397807a3eb6d8a0f6f8862b58e19de87f1f06bdaae3512d4da7f7c00d06e4f2b2bc5433bb724f00520969d9d3615425de96d0eaebb6ff5f8695c055a87949bd239b854b9b026a8729c665896111b8eee0f93e3ce501aa82463276f6116fd02782674a070f9cd516cbce2660af401f0d9d14025423610109f817353492a2d5cb9a266b3fb923b8103b94c5ea73705a76d7d509ffa5d7753f88ab508fd7902ae467f48cece977a1c30f584eaab9de2c25696aaab1200ebb2740562de4ce562ab3b01dcfefe033e832f5012f7"}], 0x180, 0x4800}, {0x0, 0x0, &(0x7f0000001040)=[{&(0x7f0000000a80)="cb51f697683ad07074940fc0bc75f88ac40c1214685d8965139063fb605adabb1730bdabde0b86403ae9a0195fce719e10505ccd824c7465b14681970e009c06840d41fe0fda013d854403934b14703c726cdd9a97ceb1d5157ad0937c37934d332738953de12362e23892a886bcb0ca540c7bf8b5a14787034e3962e41580cfd4693bb18afd7347e86d846c07a2137850544ed07b6e674ae96f4bfc5abeb660febbe7813d4146f70bc6f951046f278b559fe03c7d53ac70fc75460ca401f6eb45c1649e0cf07170d2a70ac301f9a0eea91fcda9f5c5255e538a759b840987c1746c2bb84934777dc58f519dece6077f35b80933ec4a", 0xf6}, {&(0x7f0000000b80)="8ffdb6c6f2464ebbce74e7fe497191c9782044e4004c5c2cbabb85347953fb25", 0x20}, {&(0x7f0000000bc0)="343561f35377f495cee930f86d364bd05c4ac9a0f177ea597865bdb160d9be3e94a05d485636806af7df604dd116c0c52112f6bd03a5154b366c36fc65f6669efc456ef93241602a43bad8522f523e5cb31ed4c948135c906bfa843666b810f7e09be9728b4f0d86ef66dabf8fa639a6edf485083289", 0x76}, {&(0x7f0000000c40)="11ee63b3c31bba7fdb7d93f45025bd1fa79a2d8e25266fed60de4cfd9bf2fcc49a2ab306ba816846fdd98391af2774d8508c64c4b6266db5169d5d44dcd27f2cfaff0453a1f7256c265dc85e0b35caac6deb99ffc48343ecf1c669287f612ca82206b7a308c662ae8c687ad27ee23790a6ed41461c223838c9ab93ad63067a8e6cc6c231c3d69797dd8b02652933be34", 0x90}, {&(0x7f0000000d00)="c9f4326492652be6ddfe15d6582580daa480373783d14f2c7e3d5d4c04b46699b05fdcfcc1c3f06f3f55b1e05a7c724bf79429c967db09c20ff93c7d8607ddab9175b72314f5d032064555c887cc20ebe2924e9fb78dd9ecfa06be3b9bf13abe1f07d270c55139fac3e71c8fd364cb8c06113e48a789fa09167387072f914f74a8b65666cfef18f0ffd2eabc8bd07cafa75fb9a3a681ad1173353030", 0x9c}, {&(0x7f0000000dc0)="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", 0xfc}, {&(0x7f0000000ec0)="23ab02e6bb6cc17b4af624d0c69c2a631e63c6fc8f43a30e6a527d9d939842f1df6636eca405fe083e17fbbfd41e6e6b03f5ab8d938cda451292fd426afa58d34047fa2fbaae3fdfef4f60180cc53999a120cdff05a0c7aa59a96c412793b017a1dc9f", 0x63}, {&(0x7f0000000f40)="dcd68cf9ce27922d0d6904303a6160f3feef002a4057fc7f976ff3d810ab827da934844e1fb3355f811187464e3058ccb085042203c7bf01f184218ea34ce64e6c9a9cc00f442eca1cf08f3fff9bb070ec55b69d5eb088b3ebf076ccf879de7e51855cc522bfd133493392690d5a65e67b39adad08c13164ec07f354fa75db072a0192d9e5e224ac90e17fa931cc903e3b646055f7ebaa45c552111f2a233368497c70ee90872983fa974f053e508572fa9b6845fde30c618e65213e6a986c5494dd082d3a992d66fc0e7ee57874354c8ef912558a82c703afbee0acab02", 0xde}], 0x8, &(0x7f00000010c0)=ANY=[@ANYBLOB="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"], 0x128, 0x10}, {0x0, 0x0, &(0x7f0000001580)=[{&(0x7f0000001200)="1cb0fe7d772f6d39718cad9d9aaeab21ac4ed490ead5f7c18149403c693d734cbb0056a0a0643e67726116765aee8185ce612095dc7ae316334b2d734ecb996d894873aa3702e1558749ad603092efde417ebde78552d943134d7af37bd044fd049cd43b6e852f9b5f42166209d4963f2cde7fc9640f4a58c26ae68b3cf0bcf105e848c2d3fc71af5ffd51d861dfe40db515abeff70a1b5a19653e6302cf29c45adb797131a9e2cb30ccb1717b009c4d488e06da801dc64463", 0xb9}, {&(0x7f00000012c0)="ee8a32c72db7f82f0876eec158f57afd4c65c23269e95e8465adfdbd15bcedaf3e09df1cde727ac7b1a910f88ea92a479195944ed1789460113bf7c2daba9ff50fce2933cb9a8877a9a0d66e8e5ac207b4ad86fb2ef7b7297f0909531b95393e7e1958ddee3d8c0ff54a2beead2c8f068e7a5d9d6fee699f1c1053cfef9ce4110ea9f4bfd654d41b3144bfe1f93fadbbd9700a0305f69c0887402f1ceeb5b0a9", 0xa0}, {&(0x7f0000001380)="675377ca4ce098a864c6da512ab15b7deffff8fe502ea49894835e38e2378cbc3df3ff3faeb65572d0e90a5593c1e37e74220c12e051ace527c47d3b05610933bec59d92bfb23f5d94b79d740cb35446320cbb04ed0ecec6bae6390245c1bffcc01ed21226d579c62465b5a6883c1390166e27e09bf74b94", 0x78}, {&(0x7f0000001400)="3fb806ba3dddfe7c09dca6f19ed0cf6c54b8a8c8025aa252b3227f3c82e02a68b5370cce339fd702c42dd837ebc59cf997a2e188cb885f4a1dfa4368310be79a22063b42ca890b47c2c8662dda9776aee3b2dd9b5d1ae7ca987f838f284b640acdaecee4d2f6b47e7b48d0bc2b3c3b9b7820d1331b2961d1c4c7449711e83e14", 0x80}, {&(0x7f0000001480)="da2926b404741337f579a0a89c524a581ad025b62707b521d7592aae0716ba6824a738ef55989fb56d0c0af59ad592d0b8118b9e14951c28996ba51b177ea45f5a5007bc95b74ae233016d7071dd6b9750e7753d838418118b8370e13290efddf7514acee1f672723e6926fcfc9b0b1958fe289e9d9b763620d2888f4b41e378f80595feb7eab49769faf4c1d159a198ebc7f3f2a96c00e6c24cb7350ed05787d18c5d361cc4e4cb6207b3acdcda3137a91b7c2edddc454a9e7b4ec9d59a862d144ff83f57792670322a8a0062986f6cfe7534726acc277564eaef53635d22bbbcb73c8c61914a299487b6f58e", 0xed}], 0x5, 0x0, 0x0, 0x20040805}], 0x3, 0x8000)
r1 = socket$rds(0x15, 0x5, 0x0)
setsockopt$RDS_CONG_MONITOR(r1, 0x114, 0x6, &(0x7f0000000080)=0x1, 0x4)
r2 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(r2, 0x84, 0x7, &(0x7f0000000040), &(0x7f0000000100)=0x4)
setsockopt$RDS_CONG_MONITOR(r1, 0x114, 0x6, &(0x7f00000000c0)=0x1, 0x4)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2)
ioctl$KVM_PRE_FAULT_MEMORY(r5, 0xc040aed5, &(0x7f0000000000)={0x100000, 0x11a000})
setsockopt$MRT_INIT(r0, 0x0, 0xc8, &(0x7f0000000000), 0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x8, &(0x7f00000002c0)=@framed={{0x18, 0x8, 0x0, 0x0, 0x700}, [@func={0x85, 0x0, 0x1, 0x0, 0x3}, @initr0={0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, @exit, @alu={0x5, 0x1, 0xd, 0xa, 0xa}]}, &(0x7f0000000000)='GPL\x00', 0x4, 0xec, &(0x7f00000004c0)=""/236, 0x40f00}, 0x94)

3.274290296s ago: executing program 3 (id=2381):
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x400000, 0x0, 0xfffffeb6, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = syz_open_procfs(0x0, &(0x7f0000019100)='net/fib_trie\x00')
ioctl$UI_ABS_SETUP(r4, 0x401c5504, 0x0)
pread64(r4, &(0x7f0000000080)=""/102356, 0x18fd4, 0x1c)

2.882344451s ago: executing program 5 (id=2382):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xe6955000)
r0 = syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000032680)=""/102400, 0x19000)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$SNDRV_TIMER_IOCTL_PVERSION(0xffffffffffffffff, 0x5422, 0x0)
ioctl$TIOCL_PASTESEL(r2, 0x541c, &(0x7f0000000140))

0s ago: executing program 2 (id=2383):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000680)=@raw={'raw\x00', 0x3c1, 0x3, 0x2e8, 0x0, 0x268, 0x311, 0x130, 0x268, 0x268, 0x460, 0x460, 0x268, 0x460, 0x9, 0x0, {[{{@uncond, 0x160, 0xe0, 0x108, 0x0, {0x9401}, [@common=@unspec=@time={{0x38}, {0x0, 0xffffffff, 0x40000, 0xfffffffc}}]}, @common=@unspec=@NFQUEUE2={0x28}}, {{@ipv6={@mcast1, @mcast2, [0x0, 0xff, 0xffffff, 0xff], [0xff, 0xffffff00, 0xff000000], 'wg0\x00', 'veth1_to_batadv\x00', {}, {0xff}, 0x2e, 0x2, 0x7, 0x8}, 0x0, 0xa8, 0x110, 0xe4030000}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, 'netbios-ns\x00', 'syz1\x00', {0x3}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x348)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r1 = getpgrp(0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000040)=0x10000005)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x2, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r3 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r3, 0x1, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x2042, 0x0)
r5 = syz_open_dev$sndpcmp(&(0x7f0000000300), 0x1, 0x203)
ioctl$SNDRV_PCM_IOCTL_HW_REFINE_OLD(r5, 0xc1004110, &(0x7f0000000000)={0x0, [0x2, 0xffff133a, 0xa], [{0x0, 0xffffffff}, {0x7, 0xffffffff}, {0x0, 0x1}, {0x0, 0x1}, {0x24}, {}, {}, {0x5, 0x7f}, {0x0, 0x2}, {0x0, 0x1}, {0x0, 0xffffffff}], 0x10, 0x0, 0x0, 0x8000000})
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000001c0)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
close_range(r6, 0xffffffffffffffff, 0x0)

kernel console output (not intermixed with test programs):

slave_1: entered allmulticast mode
[  904.669605][T11598] bridge_slave_1: entered promiscuous mode
[  905.300097][   T66] bridge_slave_1: left allmulticast mode
[  905.300134][   T66] bridge_slave_1: left promiscuous mode
[  905.300407][   T66] bridge0: port 2(bridge_slave_1) entered disabled state
[  905.796309][   T66] bridge_slave_0: left allmulticast mode
[  906.004151][   T66] bridge_slave_0: left promiscuous mode
[  906.090356][   T66] bridge0: port 1(bridge_slave_0) entered disabled state
[  912.222425][T11791] binfmt_misc: register: failed to install interpreter file ./file0
[  912.223164][T11791] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1510'.
[  915.512948][   T66] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  915.625837][   T66] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  915.681073][   T66] bond0 (unregistering): Released all slaves
[  918.922218][ T5258] 8021q: adding VLAN 0 to HW filter on device eth9
[  918.951233][T11598] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  920.612820][T11598] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  920.752017][T11813] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  920.924346][T11598] team0: Port device team_slave_0 added
[  921.124922][   T66] hsr_slave_0: left promiscuous mode
[  921.166547][   T66] hsr_slave_1: left promiscuous mode
[  921.167741][   T66] batman_adv: batadv0: Removing interface: batadv_slave_0
[  921.228988][   T66] batman_adv: batadv0: Removing interface: batadv_slave_1
[  922.507096][   T66] team0 (unregistering): Port device team_slave_1 removed
[  922.606971][   T66] team0 (unregistering): Port device team_slave_0 removed
[  924.870395][T11598] team0: Port device team_slave_1 added
[  924.870507][T11826] warning: `syz.3.1521' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  924.989514][ T5258] 8021q: adding VLAN 0 to HW filter on device eth10
[  926.893915][T11598] batman_adv: batadv0: Adding interface: batadv_slave_0
[  926.893929][T11598] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  926.893950][T11598] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  926.896102][T11598] batman_adv: batadv0: Adding interface: batadv_slave_1
[  926.896115][T11598] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  926.896135][T11598] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  929.173648][T11598] hsr_slave_0: entered promiscuous mode
[  929.176883][T11598] hsr_slave_1: entered promiscuous mode
[  929.177908][T11598] debugfs: 'hsr0' already exists in 'hsr'
[  929.177933][T11598] Cannot create hsr debugfs directory
[  929.712782][   T36] audit: type=1326 audit(1783211606.919:357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11880 comm="syz.5.1534" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9d94dcdd9 code=0x7ffc0000
[  929.712837][   T36] audit: type=1326 audit(1783211606.919:358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11880 comm="syz.5.1534" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9d94dcdd9 code=0x7ffc0000
[  929.712881][   T36] audit: type=1326 audit(1783211606.919:359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11880 comm="syz.5.1534" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9d94dcdd9 code=0x7ffc0000
[  929.712923][   T36] audit: type=1326 audit(1783211606.929:360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11880 comm="syz.5.1534" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9d94dcdd9 code=0x7ffc0000
[  929.712966][   T36] audit: type=1326 audit(1783211606.929:361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11880 comm="syz.5.1534" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7fa9d94dcdd9 code=0x7ffc0000
[  929.713009][   T36] audit: type=1326 audit(1783211606.929:362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11880 comm="syz.5.1534" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9d94dcdd9 code=0x7ffc0000
[  929.713051][   T36] audit: type=1326 audit(1783211606.929:363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11880 comm="syz.5.1534" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9d94dcdd9 code=0x7ffc0000
[  929.713092][   T36] audit: type=1326 audit(1783211606.929:364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11880 comm="syz.5.1534" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9d94dcdd9 code=0x7ffc0000
[  929.713134][   T36] audit: type=1326 audit(1783211606.929:365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11880 comm="syz.5.1534" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9d94dcdd9 code=0x7ffc0000
[  929.713177][   T36] audit: type=1326 audit(1783211606.929:366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11880 comm="syz.5.1534" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=0 arch=c000003e syscall=107 compat=0 ip=0x7fa9d94dcdd9 code=0x7ffc0000
[  935.928901][ T1336] ieee802154 phy0 wpan0: encryption failed: -22
[  935.928975][ T1336] ieee802154 phy1 wpan1: encryption failed: -22
[  939.326546][ T9597] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  939.383271][ T9597] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  939.403317][ T9597] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  939.431048][ T9597] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  939.474495][ T9597] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  941.505461][ T9597] Bluetooth: hci5: command tx timeout
[  941.630014][T11954] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1547'.
[  943.586491][ T9597] Bluetooth: hci5: command tx timeout
[  946.199808][T11960] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  946.201007][ T9597] Bluetooth: hci5: command tx timeout
[  946.712420][ T5609] usb 6-1: new high-speed USB device number 11 using dummy_hcd
[  946.858525][ T5609] usb 6-1: Using ep0 maxpacket: 16
[  946.862871][ T5609] usb 6-1: config 1 has an invalid descriptor of length 118, skipping remainder of the config
[  946.862898][ T5609] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3
[  946.874321][ T5609] usb 6-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  946.874353][ T5609] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  946.874374][ T5609] usb 6-1: Product: syz
[  946.874389][ T5609] usb 6-1: Manufacturer: syz
[  946.874404][ T5609] usb 6-1: SerialNumber: syz
[  946.964553][ T5609] usb 6-1: 0:2 : does not exist
[  946.964810][ T5609] usb 6-1: unit 9 not found!
[  947.083955][T10885] usb 3-1: new high-speed USB device number 34 using dummy_hcd
[  947.190867][ T5609] usb 6-1: 4:0: cannot get min/max values for control 1 (id 4)
[  947.248712][T10885] usb 3-1: Using ep0 maxpacket: 8
[  947.257705][T10885] usb 3-1: config 1 interface 0 altsetting 93 endpoint 0x81 has an invalid bInterval 148, changing to 11
[  947.257743][T10885] usb 3-1: config 1 interface 0 altsetting 93 bulk endpoint 0x82 has invalid maxpacket 1023
[  947.257770][T10885] usb 3-1: config 1 interface 0 altsetting 93 bulk endpoint 0x3 has invalid maxpacket 16
[  947.257794][T10885] usb 3-1: config 1 interface 0 altsetting 93 has 3 endpoint descriptors, different from the interface descriptor's value: 18
[  947.257925][T10885] usb 3-1: config 1 interface 0 has no altsetting 0
[  947.277000][T10885] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  947.277031][T10885] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  947.277052][T10885] usb 3-1: SerialNumber: syz
[  947.362333][ T5609] usb 6-1: 4:0: cannot get min/max values for control 3 (id 4)
[  947.420832][T11979] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  947.433854][T11979] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  947.692206][ T5609] usb 6-1: USB disconnect, device number 11
[  948.243212][ T9597] Bluetooth: hci5: command tx timeout
[  948.604675][T11723] udevd[11723]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  949.856192][T10885] cdc_ether 3-1:1.0: probe with driver cdc_ether failed with error -71
[  950.180616][T10885] usb 3-1: USB disconnect, device number 34
[  958.050978][T12046] Smack: duplicate mount options
[  958.310651][   T56] bridge_slave_1: left allmulticast mode
[  958.310685][   T56] bridge_slave_1: left promiscuous mode
[  958.310971][   T56] bridge0: port 2(bridge_slave_1) entered disabled state
[  958.559407][   T56] bridge_slave_0: left allmulticast mode
[  958.559441][   T56] bridge_slave_0: left promiscuous mode
[  958.604985][   T56] bridge0: port 1(bridge_slave_0) entered disabled state
[  959.126262][  T819] usb 3-1: new full-speed USB device number 35 using dummy_hcd
[  959.638867][  T819] usb 3-1: unable to get BOS descriptor or descriptor too short
[  959.640005][  T819] usb 3-1: not running at top speed; connect to a high speed hub
[  959.642440][  T819] usb 3-1: config index 0 descriptor too short (expected 863, got 95)
[  959.642465][  T819] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  959.642484][  T819] usb 3-1: config 0 has no interfaces?
[  959.702619][  T819] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  959.702640][  T819] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  959.702656][  T819] usb 3-1: Product: Ц
[  959.702668][  T819] usb 3-1: Manufacturer: 窷袭愒꺷ꚳ돊ꊜ鵆嗥ǁ眚燍䚸戨᲍噒ꗦ濓᳭ꄁ熇칡禺ጲ悿⮙뜝궓㒡Ꙏ陓Ჺ孂떞僸摲ᚴ
[  959.702687][  T819] usb 3-1: SerialNumber: syz
[  959.759189][  T819] usb 3-1: config 0 descriptor??
[  959.782408][   T56] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  961.602309][   T56] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  961.652667][ T8579] usb 3-1: USB disconnect, device number 35
[  961.678956][   T56] bond0 (unregistering): Released all slaves
[  966.166010][   T56] hsr_slave_0: left promiscuous mode
[  966.201357][   T56] hsr_slave_1: left promiscuous mode
[  966.458364][   T56] batman_adv: batadv0: Removing interface: batadv_slave_0
[  966.545191][   T56] batman_adv: batadv0: Removing interface: batadv_slave_1
[  966.621990][T12106] Smack: duplicate mount options
[  976.973598][   T56] team0 (unregistering): Port device team_slave_1 removed
[  977.073495][   T56] team0 (unregistering): Port device team_slave_0 removed
[  978.783898][T11922] bridge0: port 1(bridge_slave_0) entered blocking state
[  978.785617][T11922] bridge0: port 1(bridge_slave_0) entered disabled state
[  978.785860][T11922] bridge_slave_0: entered allmulticast mode
[  978.793317][T11922] bridge_slave_0: entered promiscuous mode
[  978.816281][T11922] bridge0: port 2(bridge_slave_1) entered blocking state
[  978.816406][T11922] bridge0: port 2(bridge_slave_1) entered disabled state
[  978.816595][T11922] bridge_slave_1: entered allmulticast mode
[  978.822620][T11922] bridge_slave_1: entered promiscuous mode
[  979.610636][T11922] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  979.637728][T11922] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  979.863022][T11922] team0: Port device team_slave_0 added
[  979.866420][T11922] team0: Port device team_slave_1 added
[  980.128443][T11922] batman_adv: batadv0: Adding interface: batadv_slave_0
[  980.128462][T11922] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  980.128492][T11922] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  980.131230][T11922] batman_adv: batadv0: Adding interface: batadv_slave_1
[  980.131245][T11922] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  980.131275][T11922] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  980.224976][T11922] hsr_slave_0: entered promiscuous mode
[  980.226636][T11922] hsr_slave_1: entered promiscuous mode
[  980.227703][T11922] debugfs: 'hsr0' already exists in 'hsr'
[  980.227729][T11922] Cannot create hsr debugfs directory
[  980.568516][T12172] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  986.561833][T11922] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  986.652280][T11922] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  986.655286][T11922] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  986.765139][T11922] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  986.766318][T11922] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  986.878186][T11922] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  986.879725][T11922] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  987.230828][T11922] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  987.307965][ T5708] usb 5-1: new full-speed USB device number 32 using dummy_hcd
[  987.331007][T12211] Smack: duplicate mount options
[  987.482031][ T5708] usb 5-1: unable to get BOS descriptor or descriptor too short
[  987.482671][ T5708] usb 5-1: not running at top speed; connect to a high speed hub
[  987.484120][ T5708] usb 5-1: config index 0 descriptor too short (expected 863, got 95)
[  987.484145][ T5708] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  987.484164][ T5708] usb 5-1: config 0 has no interfaces?
[  987.542174][ T5708] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  987.542204][ T5708] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  987.542223][ T5708] usb 5-1: Product: Ц
[  987.542236][ T5708] usb 5-1: Manufacturer: 窷袭愒꺷ꚳ돊ꊜ鵆嗥ǁ眚燍䚸戨᲍噒ꗦ濓᳭ꄁ熇칡禺ጲ悿⮙뜝궓㒡Ꙏ陓Ჺ孂떞僸摲ᚴ
[  987.542256][ T5708] usb 5-1: SerialNumber: syz
[  987.615915][ T5708] usb 5-1: config 0 descriptor??
[  988.115204][T11922] 8021q: adding VLAN 0 to HW filter on device bond0
[  988.151744][ T5708] usb 5-1: USB disconnect, device number 32
[  988.210193][T11922] 8021q: adding VLAN 0 to HW filter on device team0
[  988.234140][ T9245] bridge0: port 1(bridge_slave_0) entered blocking state
[  988.234651][ T9245] bridge0: port 1(bridge_slave_0) entered forwarding state
[  988.314255][ T1422] bridge0: port 2(bridge_slave_1) entered blocking state
[  988.314383][ T1422] bridge0: port 2(bridge_slave_1) entered forwarding state
[  991.714754][T12224] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  991.834698][T12241] exFAT-fs (nullb0): invalid boot record signature
[  991.834742][T12241] exFAT-fs (nullb0): failed to read boot sector
[  991.834787][T12241] exFAT-fs (nullb0): failed to recognize exfat type
[  996.148947][T12261] Smack: duplicate mount options
[  996.471979][ T9597] Bluetooth: hci3: connection err: -111
[  996.898523][ T1336] ieee802154 phy0 wpan0: encryption failed: -22
[  996.898596][ T1336] ieee802154 phy1 wpan1: encryption failed: -22
[  999.813795][ T4913] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  999.859491][ T4913] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  999.883419][ T4913] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  999.894034][ T4913] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  999.902540][ T4913] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1001.787465][T12297] exFAT-fs (nullb0): invalid boot record signature
[ 1001.787509][T12297] exFAT-fs (nullb0): failed to read boot sector
[ 1001.787546][T12297] exFAT-fs (nullb0): failed to recognize exfat type
[ 1002.370413][ T9597] Bluetooth: hci4: command tx timeout
[ 1004.493165][ T9597] Bluetooth: hci4: command tx timeout
[ 1006.497873][ T9597] Bluetooth: hci4: command tx timeout
[ 1007.016037][T12310] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1007.036093][T12318] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1626'.
[ 1008.578847][ T9597] Bluetooth: hci4: command tx timeout
[ 1010.284623][ T9597] Bluetooth: hci1: connection err: -111
[ 1011.090788][T12344] Smack: duplicate mount options
[ 1011.472716][T12343] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1632'.
[ 1011.472744][T12343] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1632'.
[ 1016.002207][T12367] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1636'.
[ 1020.728773][T12279] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1020.729028][T12279] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1020.729239][T12279] bridge_slave_0: entered allmulticast mode
[ 1020.761643][T12279] bridge_slave_0: entered promiscuous mode
[ 1020.780529][T12279] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1020.780760][T12279] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1020.780961][T12279] bridge_slave_1: entered allmulticast mode
[ 1020.783457][T12279] bridge_slave_1: entered promiscuous mode
[ 1021.044624][T12279] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1021.154447][T12279] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1022.667433][   T66] bridge_slave_1: left allmulticast mode
[ 1022.667471][   T66] bridge_slave_1: left promiscuous mode
[ 1022.667737][   T66] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1023.018615][   T66] bridge_slave_0: left allmulticast mode
[ 1023.018653][   T66] bridge_slave_0: left promiscuous mode
[ 1023.018925][   T66] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1023.128723][T12395] FAULT_INJECTION: forcing a failure.
[ 1023.128723][T12395] name failslab, interval 1, probability 0, space 0, times 0
[ 1023.128789][T12395] CPU: 0 UID: 0 PID: 12395 Comm: syz.3.1638 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1023.128821][T12395] Tainted: [L]=SOFTLOCKUP
[ 1023.128828][T12395] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1023.128842][T12395] Call Trace:
[ 1023.128851][T12395]  <TASK>
[ 1023.128860][T12395]  dump_stack_lvl+0xe8/0x150
[ 1023.128892][T12395]  should_fail_ex+0x46b/0x600
[ 1023.128935][T12395]  should_failslab+0xa8/0x100
[ 1023.128964][T12395]  kmem_cache_alloc_noprof+0x87/0x680
[ 1023.128990][T12395]  ? do_getname+0x2e/0x250
[ 1023.129025][T12395]  do_getname+0x2e/0x250
[ 1023.129053][T12395]  ? __se_sys_renameat2+0x28/0x2c0
[ 1023.129088][T12395]  __se_sys_renameat2+0x34/0x2c0
[ 1023.129121][T12395]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1023.129147][T12395]  do_syscall_64+0x15f/0xf80
[ 1023.129173][T12395]  ? clear_bhb_loop+0x40/0x90
[ 1023.129201][T12395]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1023.129223][T12395] RIP: 0033:0x7ff5f02fcdd9
[ 1023.129273][T12395] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1023.129294][T12395] RSP: 002b:00007ff5ee514028 EFLAGS: 00000246 ORIG_RAX: 000000000000013c
[ 1023.129319][T12395] RAX: ffffffffffffffda RBX: 00007ff5f0576180 RCX: 00007ff5f02fcdd9
[ 1023.129335][T12395] RDX: ffffffffffffff9c RSI: 0000200000000480 RDI: ffffffffffffff9c
[ 1023.129352][T12395] RBP: 00007ff5ee514090 R08: 0000000000000002 R09: 0000000000000000
[ 1023.129367][T12395] R10: 00002000000004c0 R11: 0000000000000246 R12: 0000000000000001
[ 1023.129382][T12395] R13: 00007ff5f0576218 R14: 00007ff5f0576180 R15: 00007ffff50f8018
[ 1023.129418][T12395]  </TASK>
[ 1026.298211][T12398] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1027.826751][ T5729] usb 3-1: new full-speed USB device number 36 using dummy_hcd
[ 1028.202052][ T5729] usb 3-1: unable to get BOS descriptor or descriptor too short
[ 1028.203038][ T5729] usb 3-1: not running at top speed; connect to a high speed hub
[ 1028.204905][ T5729] usb 3-1: config index 0 descriptor too short (expected 863, got 95)
[ 1028.204934][ T5729] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1028.204956][ T5729] usb 3-1: config 0 has no interfaces?
[ 1028.806250][T12426] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1647'.
[ 1029.107264][ T5729] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1029.107298][ T5729] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1029.107410][ T5729] usb 3-1: Product: Ц
[ 1029.107425][ T5729] usb 3-1: Manufacturer: 窷袭愒꺷ꚳ돊ꊜ鵆嗥ǁ眚燍䚸戨᲍噒ꗦ濓᳭ꄁ熇칡禺ጲ悿⮙뜝궓㒡Ꙏ陓Ჺ孂떞僸摲ᚴ
[ 1029.107448][ T5729] usb 3-1: SerialNumber: syz
[ 1029.185627][ T5729] usb 3-1: config 0 descriptor??
[ 1029.273421][T12433] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1648'.
[ 1029.512544][ T5708] usb 3-1: USB disconnect, device number 36
[ 1031.056557][   T66] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1031.441898][   T66] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1031.705103][T12444] Smack: duplicate mount options
[ 1033.787964][   T66] bond0 (unregistering): Released all slaves
[ 1036.039827][ T9597] Bluetooth: hci1: connection err: -111
[ 1036.139067][ T5258] 8021q: adding VLAN 0 to HW filter on device eth10
[ 1036.259907][T12279] team0: Port device team_slave_0 added
[ 1036.281800][T12279] team0: Port device team_slave_1 added
[ 1036.356382][T12279] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1036.356400][T12279] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1036.356436][T12279] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1036.361631][T12279] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1036.361648][T12279] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1036.361674][T12279] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1036.822799][   T66] hsr_slave_0: left promiscuous mode
[ 1036.879529][   T66] hsr_slave_1: left promiscuous mode
[ 1036.880682][   T66] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1036.904898][T12459] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1036.933993][   T66] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1038.633162][T12466] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[ 1039.053069][T12478] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1659'.
[ 1043.856565][T12497] overlayfs: conflicting lowerdir path
[ 1044.197056][   T66] team0 (unregistering): Port device team_slave_1 removed
[ 1045.120915][   T66] team0 (unregistering): Port device team_slave_0 removed
[ 1045.151853][ T9597] Bluetooth: hci1: connection err: -111
[ 1048.349869][T12279] hsr_slave_0: entered promiscuous mode
[ 1048.508302][T12279] hsr_slave_1: entered promiscuous mode
[ 1048.521621][T12279] debugfs: 'hsr0' already exists in 'hsr'
[ 1048.521651][T12279] Cannot create hsr debugfs directory
[ 1049.985351][ T9597] Bluetooth: hci4: link tx timeout
[ 1049.985763][ T9597] Bluetooth: hci4: killing stalled connection 11:aa:aa:aa:aa:aa
[ 1050.759751][T12519] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[ 1052.717041][ T9597] Bluetooth: hci4: command 0x0406 tx timeout
[ 1054.016903][T12543] netlink: 40 bytes leftover after parsing attributes in process `syz.5.1669'.
[ 1059.254717][ T1336] ieee802154 phy0 wpan0: encryption failed: -22
[ 1059.254794][ T1336] ieee802154 phy1 wpan1: encryption failed: -22
[ 1067.057539][ T5258] 8021q: adding VLAN 0 to HW filter on device eth9
[ 1067.217566][ T9597] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1067.290098][ T9597] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1067.319544][ T9597] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1067.335130][ T9597] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1067.335959][ T9597] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1069.674316][ T4913] Bluetooth: hci5: command tx timeout
[ 1071.730182][ T4913] Bluetooth: hci5: command tx timeout
[ 1072.007527][T12638] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1684'.
[ 1074.575102][ T4913] Bluetooth: hci5: command tx timeout
[ 1074.628963][T12641] syz_tun: refused to change device tx_queue_len
[ 1075.002348][ T1568] bridge_slave_1: left allmulticast mode
[ 1075.002387][ T1568] bridge_slave_1: left promiscuous mode
[ 1075.002659][ T1568] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1076.743509][ T4913] Bluetooth: hci5: command tx timeout
[ 1076.849975][ T1568] bridge_slave_0: left allmulticast mode
[ 1076.850011][ T1568] bridge_slave_0: left promiscuous mode
[ 1076.872941][ T1568] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1079.010047][ T1568] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1079.136989][ T1568] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1079.263860][ T1568] bond0 (unregistering): Released all slaves
[ 1080.147071][ T1568] hsr_slave_0: left promiscuous mode
[ 1080.202754][ T1568] hsr_slave_1: left promiscuous mode
[ 1080.203781][ T1568] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1080.245280][ T1568] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1082.034104][T12682] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[ 1082.450685][ T9597] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1082.456200][ T9597] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1082.473581][ T9597] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1082.523015][ T9597] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1082.523868][ T9597] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1084.427245][T12706] netlink: 40 bytes leftover after parsing attributes in process `syz.5.1700'.
[ 1084.616696][ T4913] Bluetooth: hci4: command tx timeout
[ 1084.638575][ T1568] team0 (unregistering): Port device team_slave_1 removed
[ 1086.701851][ T4913] Bluetooth: hci4: command tx timeout
[ 1086.783313][ T1568] team0 (unregistering): Port device team_slave_0 removed
[ 1088.992398][ T4913] Bluetooth: hci4: command tx timeout
[ 1091.020134][ T4913] Bluetooth: hci4: command tx timeout
[ 1092.484610][T12593] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1092.484806][T12593] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1092.485000][T12593] bridge_slave_0: entered allmulticast mode
[ 1092.499012][T12593] bridge_slave_0: entered promiscuous mode
[ 1092.525834][T12593] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1092.529467][T12593] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1092.529659][T12593] bridge_slave_1: entered allmulticast mode
[ 1092.553785][T12593] bridge_slave_1: entered promiscuous mode
[ 1092.663266][T12593] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1092.668397][T12593] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1092.735322][T12593] team0: Port device team_slave_0 added
[ 1092.746616][T12593] team0: Port device team_slave_1 added
[ 1092.839201][T12593] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1092.839216][T12593] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1092.839257][T12593] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1092.887237][T12593] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1092.887253][T12593] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1092.887275][T12593] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1093.051345][T12593] hsr_slave_0: entered promiscuous mode
[ 1093.052689][T12593] hsr_slave_1: entered promiscuous mode
[ 1093.053641][T12593] debugfs: 'hsr0' already exists in 'hsr'
[ 1093.053666][T12593] Cannot create hsr debugfs directory
[ 1099.838457][ T1568] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1107.581153][T12782] tmpfs: Unknown parameter 'mpatic'
[ 1107.622378][ T1568] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1107.987821][T12786] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1720'.
[ 1109.950295][ T1568] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1113.958353][ T1568] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1117.976296][T12593] netdevsim netdevsim6 netdevsim0: renamed from eth0
[ 1118.048030][T12593] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 1118.077552][T12593] netdevsim netdevsim6 netdevsim1: renamed from eth1
[ 1118.215380][T12593] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 1118.304439][T12593] netdevsim netdevsim6 netdevsim2: renamed from eth2
[ 1118.334782][T12593] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 1118.369401][T12593] netdevsim netdevsim6 netdevsim3: renamed from eth3
[ 1118.556305][T12593] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 1120.025301][ T1336] ieee802154 phy0 wpan0: encryption failed: -22
[ 1120.025375][ T1336] ieee802154 phy1 wpan1: encryption failed: -22
[ 1120.561940][T12593] kthread_run failed with err -4
[ 1120.622060][T12831] 9p: Bad value for 'rfdno'
[ 1121.950817][T12836] netlink: 40 bytes leftover after parsing attributes in process `syz.5.1729'.
[ 1125.448834][ T9597] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1125.507348][ T9597] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1125.510846][ T9597] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1125.512679][ T9597] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1125.544507][ T9597] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1127.918218][ T4913] Bluetooth: hci0: command tx timeout
[ 1130.008551][ T9597] Bluetooth: hci0: command tx timeout
[ 1132.096405][ T9597] Bluetooth: hci0: command tx timeout
[ 1135.519924][ T9597] Bluetooth: hci0: command tx timeout
[ 1137.455104][T12885] netlink: 40 bytes leftover after parsing attributes in process `syz.5.1741'.
[ 1137.627355][ T1568] bond0 (unregistering): Released all slaves
[ 1142.427564][T12695] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1142.429266][T12695] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1142.429470][T12695] bridge_slave_0: entered allmulticast mode
[ 1142.541178][T12695] bridge_slave_0: entered promiscuous mode
[ 1142.843494][T12909] /dev/nbd3: Can't lookup blockdev
[ 1143.404467][ T9597] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1143.477425][ T9597] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1143.483142][ T9597] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1143.507008][ T9597] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1143.515329][ T9597] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1143.541241][T12919] Smack: duplicate mount options
[ 1145.615244][ T4913] Bluetooth: hci5: command tx timeout
[ 1147.729550][ T4913] Bluetooth: hci5: command tx timeout
[ 1149.769075][ T4913] Bluetooth: hci5: command tx timeout
[ 1151.222104][ T5258] 8021q: adding VLAN 0 to HW filter on device eth9
[ 1151.850196][ T4913] Bluetooth: hci5: command tx timeout
[ 1152.806552][T12976] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1753'.
[ 1153.344880][ T1568] hsr_slave_0: left promiscuous mode
[ 1153.381012][ T1568] hsr_slave_1: left promiscuous mode
[ 1153.452924][ T1568] veth1_macvtap: left promiscuous mode
[ 1153.453046][ T1568] veth0_macvtap: left promiscuous mode
[ 1153.453589][ T1568] veth1_vlan: left promiscuous mode
[ 1153.453789][ T1568] veth0_vlan: left promiscuous mode
[ 1157.481743][T13006] Smack: duplicate mount options
[ 1159.245836][T13015] /dev/nbd3: Can't lookup blockdev
[ 1168.310804][T13051] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1767'.
[ 1169.910692][T13069] Smack: duplicate mount options
[ 1173.080253][T12851] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1173.092788][T12851] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1173.093026][T12851] bridge_slave_0: entered allmulticast mode
[ 1173.121702][T12851] bridge_slave_0: entered promiscuous mode
[ 1173.241289][T12851] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1173.241515][T12851] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1173.241740][T12851] bridge_slave_1: entered allmulticast mode
[ 1173.245229][T12851] bridge_slave_1: entered promiscuous mode
[ 1173.390403][T12851] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1173.425793][T12851] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1173.713882][ T5258] 8021q: adding VLAN 0 to HW filter on device eth10
[ 1173.821848][T12851] team0: Port device team_slave_0 added
[ 1174.592227][T13090] netlink: 160 bytes leftover after parsing attributes in process `syz.5.1779'.
[ 1175.410302][T12914] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1175.412101][T12914] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1175.412589][T12914] bridge_slave_0: entered allmulticast mode
[ 1175.462365][T12914] bridge_slave_0: entered promiscuous mode
[ 1175.525280][T12851] team0: Port device team_slave_1 added
[ 1175.526887][T12914] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1175.526994][T12914] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1175.527139][T12914] bridge_slave_1: entered allmulticast mode
[ 1175.568117][T12914] bridge_slave_1: entered promiscuous mode
[ 1177.696857][T13108] netlink: 40 bytes leftover after parsing attributes in process `syz.5.1782'.
[ 1177.899159][T12851] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1177.899172][T12851] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1177.899192][T12851] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1177.999579][T12914] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1178.029742][T12851] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1178.029769][T12851] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1178.030762][T12851] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1178.092388][T12914] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1178.466991][T13112] /dev/nbd3: Can't lookup blockdev
[ 1179.185935][T12914] team0: Port device team_slave_0 added
[ 1180.660147][T12914] team0: Port device team_slave_1 added
[ 1180.760888][T13125] Smack: duplicate mount options
[ 1181.308045][ T1336] ieee802154 phy0 wpan0: encryption failed: -22
[ 1181.308120][ T1336] ieee802154 phy1 wpan1: encryption failed: -22
[ 1182.343133][T12851] hsr_slave_0: entered promiscuous mode
[ 1182.357168][T12851] hsr_slave_1: entered promiscuous mode
[ 1182.371145][T12851] debugfs: 'hsr0' already exists in 'hsr'
[ 1182.371173][T12851] Cannot create hsr debugfs directory
[ 1182.682092][T12914] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1182.682112][T12914] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1182.682144][T12914] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1182.744823][T12914] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1182.744841][T12914] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1182.744873][T12914] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1183.156587][T12914] hsr_slave_0: entered promiscuous mode
[ 1183.174242][T12914] hsr_slave_1: entered promiscuous mode
[ 1183.183820][T12914] debugfs: 'hsr0' already exists in 'hsr'
[ 1183.183850][T12914] Cannot create hsr debugfs directory
[ 1184.563639][T11928] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1184.569324][T11928] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1184.598266][T11928] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1184.695003][T11928] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1184.700452][T11928] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1187.067855][ T4913] Bluetooth: hci4: command tx timeout
[ 1187.225027][ T5258] 8021q: adding VLAN 0 to HW filter on device eth11
[ 1189.148765][ T4913] Bluetooth: hci4: command tx timeout
[ 1189.667849][ T1568] bridge_slave_0: left allmulticast mode
[ 1189.667876][ T1568] bridge_slave_0: left promiscuous mode
[ 1189.668066][ T1568] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1191.229903][ T4913] Bluetooth: hci4: command tx timeout
[ 1191.346746][ T1568] bridge_slave_1: left allmulticast mode
[ 1191.346782][ T1568] bridge_slave_1: left promiscuous mode
[ 1191.347054][ T1568] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1191.450618][ T1568] bridge_slave_0: left allmulticast mode
[ 1191.450654][ T1568] bridge_slave_0: left promiscuous mode
[ 1191.450895][ T1568] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1192.053433][ T1568] bond0 (unregistering): Released all slaves
[ 1192.743841][ T1568] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1192.893723][ T1568] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1192.977432][ T1568] bond0 (unregistering): Released all slaves
[ 1193.106075][ T5258] 8021q: adding VLAN 0 to HW filter on device eth12
[ 1193.311132][ T4913] Bluetooth: hci4: command tx timeout
[ 1193.675454][T13210] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1801'.
[ 1195.410549][ T1568] hsr_slave_0: left promiscuous mode
[ 1195.479775][ T1568] hsr_slave_1: left promiscuous mode
[ 1195.481483][ T1568] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1195.506203][ T1568] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1198.133598][T13232] netlink: 160 bytes leftover after parsing attributes in process `syz.2.1807'.
[ 1199.905485][ T1568] team0 (unregistering): Port device team_slave_1 removed
[ 1199.958988][ T1568] team0 (unregistering): Port device team_slave_0 removed
[ 1200.127806][ T4913] Bluetooth: hci3: connection err: -111
[ 1205.265948][T11928] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1205.305129][T11928] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1205.326032][T11928] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1205.354992][T11928] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1205.361711][T11928] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1207.558071][T11928] Bluetooth: hci0: command tx timeout
[ 1208.196405][ T5258] 8021q: adding VLAN 0 to HW filter on device eth13
[ 1208.197592][T13151] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1208.197825][T13151] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1208.198101][T13151] bridge_slave_0: entered allmulticast mode
[ 1208.238135][T13151] bridge_slave_0: entered promiscuous mode
[ 1208.395205][T13151] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1208.395331][T13151] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1208.395562][T13151] bridge_slave_1: entered allmulticast mode
[ 1208.420124][T13151] bridge_slave_1: entered promiscuous mode
[ 1208.634386][T13151] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1208.741757][T13151] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1208.801572][T13151] team0: Port device team_slave_0 added
[ 1208.804994][T13151] team0: Port device team_slave_1 added
[ 1208.871333][T13151] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1208.871352][T13151] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1208.871381][T13151] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1208.873763][T13151] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1208.873778][T13151] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1208.873807][T13151] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1211.054754][T11928] Bluetooth: hci0: command tx timeout
[ 1211.348097][T13151] hsr_slave_0: entered promiscuous mode
[ 1211.360418][T13151] hsr_slave_1: entered promiscuous mode
[ 1211.363310][T13151] debugfs: 'hsr0' already exists in 'hsr'
[ 1211.363338][T13151] Cannot create hsr debugfs directory
[ 1213.691511][T11928] Bluetooth: hci0: command tx timeout
[ 1214.709475][ T5258] 8021q: adding VLAN 0 to HW filter on device eth14
[ 1215.729045][T11928] Bluetooth: hci0: command tx timeout
[ 1217.313647][T13338] exFAT-fs (nullb0): invalid boot record signature
[ 1217.313667][T13338] exFAT-fs (nullb0): failed to read boot sector
[ 1217.313677][T13338] exFAT-fs (nullb0): failed to recognize exfat type
[ 1225.714607][T13394] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1827'.
[ 1225.714645][T13394] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1827'.
[ 1227.727686][T13266] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1227.727819][T13266] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1227.728322][T13266] bridge_slave_0: entered allmulticast mode
[ 1227.759592][T13266] bridge_slave_0: entered promiscuous mode
[ 1227.790805][T13266] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1227.790985][T13266] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1227.791208][T13266] bridge_slave_1: entered allmulticast mode
[ 1227.793973][T13266] bridge_slave_1: entered promiscuous mode
[ 1227.893938][T13266] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1227.910734][T13266] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1228.088441][ T1568] bridge_slave_1: left allmulticast mode
[ 1228.088473][ T1568] bridge_slave_1: left promiscuous mode
[ 1228.092726][ T1568] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1228.165899][ T1568] bridge_slave_0: left allmulticast mode
[ 1228.165952][ T1568] bridge_slave_0: left promiscuous mode
[ 1228.170048][ T1568] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1228.368543][ T1568] bridge_slave_1: left allmulticast mode
[ 1228.368580][ T1568] bridge_slave_1: left promiscuous mode
[ 1228.368840][ T1568] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1228.481299][ T1568] bridge_slave_0: left allmulticast mode
[ 1228.481334][ T1568] bridge_slave_0: left promiscuous mode
[ 1228.481572][ T1568] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1228.653634][T13421] netlink: 160 bytes leftover after parsing attributes in process `syz.3.1830'.
[ 1229.570399][T13440] 9p: Bad value for 'rfdno'
[ 1230.475372][ T1568] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1230.616607][ T1568] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1230.830454][ T1568] bond0 (unregistering): Released all slaves
[ 1231.280896][ T1568] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1231.404109][ T1568] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1232.726171][ T1568] bond0 (unregistering): Released all slaves
[ 1232.824140][T13266] team0: Port device team_slave_0 added
[ 1233.124444][T13266] team0: Port device team_slave_1 added
[ 1233.541688][  T819] usb 6-1: new high-speed USB device number 12 using dummy_hcd
[ 1234.579080][  T819] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1234.579110][  T819] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 2
[ 1234.579131][  T819] usb 6-1: config 1 has no interface number 0
[ 1234.579184][  T819] usb 6-1: config 1 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1234.579217][  T819] usb 6-1: Duplicate descriptor for config 1 interface 1 altsetting 0, skipping
[ 1234.582687][  T819] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1234.582720][  T819] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1234.582742][  T819] usb 6-1: Product: syz
[ 1234.582757][  T819] usb 6-1: Manufacturer: syz
[ 1234.582773][  T819] usb 6-1: SerialNumber: syz
[ 1234.825294][T13457] netlink: 104 bytes leftover after parsing attributes in process `syz.5.1839'.
[ 1234.961142][T13468] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1841'.
[ 1234.961170][T13468] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1841'.
[ 1235.050060][T13266] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1235.050081][T13266] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1235.050113][T13266] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1235.504111][ T1568] hsr_slave_0: left promiscuous mode
[ 1235.564537][ T1568] hsr_slave_1: left promiscuous mode
[ 1235.565606][ T1568] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1235.606600][ T1568] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1235.692210][ T1568] hsr_slave_0: left promiscuous mode
[ 1235.733002][ T1568] hsr_slave_1: left promiscuous mode
[ 1235.734084][ T1568] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1235.774523][ T1568] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1236.420258][  T819] cdc_ncm 6-1:1.1: bind() failure
[ 1236.446196][  T819] usb 6-1: USB disconnect, device number 12
[ 1240.049036][ T1568] team0 (unregistering): Port device team_slave_1 removed
[ 1240.266587][ T1568] team0 (unregistering): Port device team_slave_0 removed
[ 1242.479094][ T1568] team0 (unregistering): Port device team_slave_1 removed
[ 1242.613638][ T1568] team0 (unregistering): Port device team_slave_0 removed
[ 1242.780854][ T1336] ieee802154 phy0 wpan0: encryption failed: -22
[ 1242.780928][ T1336] ieee802154 phy1 wpan1: encryption failed: -22
[ 1243.000755][T13266] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1243.000774][T13266] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1243.000805][T13266] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1243.651673][T13266] hsr_slave_0: entered promiscuous mode
[ 1243.663149][T13266] hsr_slave_1: entered promiscuous mode
[ 1243.663854][T13266] debugfs: 'hsr0' already exists in 'hsr'
[ 1243.663871][T13266] Cannot create hsr debugfs directory
[ 1246.897903][ T5794] usb 6-1: new high-speed USB device number 13 using dummy_hcd
[ 1247.020811][ T4913] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1247.064636][ T4913] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1247.148850][ T4913] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1247.151193][ T5794] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1247.151218][ T5794] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 2
[ 1247.151239][ T5794] usb 6-1: config 1 has no interface number 0
[ 1247.151284][ T5794] usb 6-1: config 1 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1247.151313][ T5794] usb 6-1: Duplicate descriptor for config 1 interface 1 altsetting 0, skipping
[ 1247.206101][ T4913] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1247.226639][ T4913] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1247.242127][ T5794] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1247.242160][ T5794] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1247.242182][ T5794] usb 6-1: Product: syz
[ 1247.242197][ T5794] usb 6-1: Manufacturer: syz
[ 1247.242212][ T5794] usb 6-1: SerialNumber: syz
[ 1247.625562][T13515] netlink: 104 bytes leftover after parsing attributes in process `syz.5.1851'.
[ 1249.223993][ T5794] cdc_ncm 6-1:1.1: bind() failure
[ 1249.277110][ T5794] usb 6-1: USB disconnect, device number 13
[ 1249.560389][T11928] Bluetooth: hci5: command tx timeout
[ 1250.426426][ T5258] 8021q: adding VLAN 0 to HW filter on device eth14
[ 1251.128782][T13570] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1855'.
[ 1251.128821][T13570] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1855'.
[ 1251.584029][T11928] Bluetooth: hci5: command tx timeout
[ 1253.527317][T13587] netlink: 104 bytes leftover after parsing attributes in process `syz.2.1862'.
[ 1253.663039][ T4913] Bluetooth: hci5: command tx timeout
[ 1255.442810][ T5794] usb 6-1: new high-speed USB device number 14 using dummy_hcd
[ 1255.597970][ T5794] usb 6-1: unable to get BOS descriptor or descriptor too short
[ 1255.599645][ T5794] usb 6-1: config 39 has an invalid interface number: 126 but max is 0
[ 1255.599673][ T5794] usb 6-1: config 39 has no interface number 0
[ 1255.599707][ T5794] usb 6-1: config 39 interface 126 has no altsetting 0
[ 1255.622581][ T5794] usb 6-1: New USB device found, idVendor=06cd, idProduct=011a, bcdDevice=49.93
[ 1255.622614][ T5794] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1255.622702][ T5794] usb 6-1: Product: syz
[ 1255.622720][ T5794] usb 6-1: Manufacturer: 䏹ᄎ쎔퐥㊉홄冢있茉龯䴧㕅骍ኆ钆傣闏敶왊﬍쮙粷⿚㽂땽ဆ䭜
[ 1255.622741][ T5794] usb 6-1: SerialNumber: syz
[ 1255.944039][ T5794] keyspan 6-1:39.126: Keyspan - (without firmware) converter detected
[ 1255.987413][ T5794] usb 6-1: USB disconnect, device number 14
[ 1256.004177][ T5794] keyspan 6-1:39.126: device disconnected
[ 1256.084631][T11928] Bluetooth: hci5: command tx timeout
[ 1258.053357][T13521] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1258.053499][T13521] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1258.055808][T13521] bridge_slave_0: entered allmulticast mode
[ 1258.061991][T13521] bridge_slave_0: entered promiscuous mode
[ 1258.099744][T13521] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1258.101517][T13521] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1258.101795][T13521] bridge_slave_1: entered allmulticast mode
[ 1258.173783][T13521] bridge_slave_1: entered promiscuous mode
[ 1262.432680][T13647] netlink: 104 bytes leftover after parsing attributes in process `syz.2.1875'.
[ 1262.594440][T13521] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1262.684796][T13652] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1871'.
[ 1262.684836][T13652] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1871'.
[ 1262.882170][T13521] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1262.978387][T13266] netdevsim netdevsim7 netdevsim0: renamed from eth0
[ 1263.150094][T13266] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 1263.284410][T13266] netdevsim netdevsim7 netdevsim1: renamed from eth1
[ 1263.448281][T13266] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 1263.480963][T13521] team0: Port device team_slave_0 added
[ 1263.535345][T13266] netdevsim netdevsim7 netdevsim2: renamed from eth2
[ 1263.699724][T13266] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 1263.704508][T13521] team0: Port device team_slave_1 added
[ 1263.808577][T13266] netdevsim netdevsim7 netdevsim3: renamed from eth3
[ 1263.885088][T13266] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 1264.030171][T13521] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1264.030190][T13521] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1264.030219][T13521] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1264.107309][T13521] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1264.107342][T13521] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1264.107366][T13521] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1267.051084][T13521] hsr_slave_0: entered promiscuous mode
[ 1267.052447][T13521] hsr_slave_1: entered promiscuous mode
[ 1267.053354][T13521] debugfs: 'hsr0' already exists in 'hsr'
[ 1267.053378][T13521] Cannot create hsr debugfs directory
[ 1267.773533][ T4913] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1267.800677][ T4913] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1267.815225][ T4913] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1267.822617][ T4913] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1267.826894][ T4913] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1270.003400][T11928] Bluetooth: hci4: command tx timeout
[ 1270.809725][T13714] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1878'.
[ 1270.809812][T13714] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1878'.
[ 1271.953479][ T1568] bridge_slave_1: left allmulticast mode
[ 1271.953513][ T1568] bridge_slave_1: left promiscuous mode
[ 1271.953768][ T1568] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1272.228468][T11928] Bluetooth: hci4: command tx timeout
[ 1272.238714][ T1568] bridge_slave_0: left allmulticast mode
[ 1272.238767][ T1568] bridge_slave_0: left promiscuous mode
[ 1272.239096][ T1568] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1274.518495][ T4913] Bluetooth: hci4: command tx timeout
[ 1274.881818][ T5794] usb 6-1: new high-speed USB device number 15 using dummy_hcd
[ 1275.043894][ T1568] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1275.044126][ T5794] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1275.044151][ T5794] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 2
[ 1275.044175][ T5794] usb 6-1: config 1 has no interface number 0
[ 1275.044245][ T5794] usb 6-1: config 1 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1275.044277][ T5794] usb 6-1: Duplicate descriptor for config 1 interface 1 altsetting 0, skipping
[ 1275.048345][ T5794] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1275.048375][ T5794] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1275.048395][ T5794] usb 6-1: Product: syz
[ 1275.048409][ T5794] usb 6-1: Manufacturer: syz
[ 1275.048424][ T5794] usb 6-1: SerialNumber: syz
[ 1275.243057][ T1568] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1276.438845][T13729] netlink: 104 bytes leftover after parsing attributes in process `syz.5.1887'.
[ 1276.617781][ T4913] Bluetooth: hci4: command tx timeout
[ 1276.678644][ T1568] bond0 (unregistering): Released all slaves
[ 1278.559264][ T5794] cdc_ncm 6-1:1.1: bind() failure
[ 1278.649023][ T5794] usb 6-1: USB disconnect, device number 15
[ 1280.569625][ T1568] hsr_slave_0: left promiscuous mode
[ 1280.615003][ T1568] hsr_slave_1: left promiscuous mode
[ 1280.647793][ T1568] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1280.675902][ T1568] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1284.058464][ T1568] team0 (unregistering): Port device team_slave_1 removed
[ 1285.429339][ T1568] team0 (unregistering): Port device team_slave_0 removed
[ 1288.475966][T13784] /dev/nbd3: Can't lookup blockdev
[ 1292.142858][ T5258] 8021q: adding VLAN 0 to HW filter on device eth13
[ 1293.574236][ T4913] Bluetooth: hci3: connection err: -111
[ 1304.314609][ T1336] ieee802154 phy0 wpan0: encryption failed: -22
[ 1304.314976][ T1336] ieee802154 phy1 wpan1: encryption failed: -22
[ 1306.768445][T13695] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1306.768588][T13695] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1306.776159][T13695] bridge_slave_0: entered allmulticast mode
[ 1306.803505][T13695] bridge_slave_0: entered promiscuous mode
[ 1306.820711][T13695] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1306.820892][T13695] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1306.821106][T13695] bridge_slave_1: entered allmulticast mode
[ 1306.848446][T13695] bridge_slave_1: entered promiscuous mode
[ 1306.974563][T13695] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1306.989045][T13695] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1307.047945][T13695] team0: Port device team_slave_0 added
[ 1307.051584][T13695] team0: Port device team_slave_1 added
[ 1307.104430][T13695] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1307.104450][T13695] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1307.104481][T13695] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1307.107357][T13695] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1307.107382][T13695] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1307.107413][T13695] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1308.081487][T11928] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1308.157663][T11928] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1308.168103][T11928] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1308.175276][T11928] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1308.177555][T11928] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1311.131585][T11928] Bluetooth: hci0: command tx timeout
[ 1311.578384][T13941] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1922'.
[ 1311.578424][T13941] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1922'.
[ 1312.424827][T13695] hsr_slave_0: entered promiscuous mode
[ 1312.439325][T13695] hsr_slave_1: entered promiscuous mode
[ 1312.446930][T13695] debugfs: 'hsr0' already exists in 'hsr'
[ 1312.446955][T13695] Cannot create hsr debugfs directory
[ 1313.213193][ T4913] Bluetooth: hci0: command tx timeout
[ 1315.292061][T11928] Bluetooth: hci0: command tx timeout
[ 1316.310418][T13978] /dev/nbd3: Can't lookup blockdev
[ 1316.454697][T13982] 9p: Bad value for 'rfdno'
[ 1317.662314][T11928] Bluetooth: hci0: command tx timeout
[ 1317.685369][ T1568] bridge_slave_1: left allmulticast mode
[ 1317.685403][ T1568] bridge_slave_1: left promiscuous mode
[ 1317.725664][ T1568] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1318.648568][ T1568] bridge_slave_0: left allmulticast mode
[ 1318.648606][ T1568] bridge_slave_0: left promiscuous mode
[ 1318.648868][ T1568] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1319.157418][ T1568] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1321.620999][ T1568] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1321.709079][ T1568] bond0 (unregistering): Released all slaves
[ 1322.347415][ T1568] hsr_slave_0: left promiscuous mode
[ 1322.395393][ T1568] hsr_slave_1: left promiscuous mode
[ 1322.396812][ T1568] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1322.440864][ T1568] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1323.559412][ T1568] team0 (unregistering): Port device team_slave_1 removed
[ 1323.808421][ T1568] team0 (unregistering): Port device team_slave_0 removed
[ 1326.841388][ T5258] 8021q: adding VLAN 0 to HW filter on device eth13
[ 1327.281926][ T4913] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1327.335381][ T4913] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1327.345898][ T4913] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1327.354395][ T4913] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1327.369355][ T4913] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1329.546469][ T4913] Bluetooth: hci5: command tx timeout
[ 1331.990297][ T4913] Bluetooth: hci5: command tx timeout
[ 1332.614037][T14072] 9p: Bad value for 'rfdno'
[ 1334.031229][T11928] Bluetooth: hci5: command tx timeout
[ 1334.272534][T11928] Bluetooth: hci2: connection err: -111
[ 1337.027628][ T4913] Bluetooth: hci5: command tx timeout
[ 1337.547407][T14105] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1338.193731][T13919] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1338.193899][T13919] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1338.194451][T13919] bridge_slave_0: entered allmulticast mode
[ 1338.224573][T13919] bridge_slave_0: entered promiscuous mode
[ 1338.380645][T13919] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1338.380777][T13919] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1338.381033][T13919] bridge_slave_1: entered allmulticast mode
[ 1338.414349][T13919] bridge_slave_1: entered promiscuous mode
[ 1339.683561][T13919] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1341.666139][T13919] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1341.884315][T13919] team0: Port device team_slave_0 added
[ 1341.941538][T13919] team0: Port device team_slave_1 added
[ 1342.351052][T14165] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1979'.
[ 1342.351137][T14165] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1979'.
[ 1344.801051][T14166] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1345.072030][T13919] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1345.072049][T13919] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1345.072076][T13919] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1345.159011][T13919] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1345.159029][T13919] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1345.159060][T13919] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1345.220887][T14178] 9p: Bad value for 'rfdno'
[ 1345.364364][T13919] hsr_slave_0: entered promiscuous mode
[ 1345.365576][T13919] hsr_slave_1: entered promiscuous mode
[ 1345.366430][T13919] debugfs: 'hsr0' already exists in 'hsr'
[ 1345.366448][T13919] Cannot create hsr debugfs directory
[ 1351.897588][T14049] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1351.908718][T14049] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1351.908981][T14049] bridge_slave_0: entered allmulticast mode
[ 1351.925461][T14049] bridge_slave_0: entered promiscuous mode
[ 1351.996136][T14049] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1351.996285][T14049] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1351.996531][T14049] bridge_slave_1: entered allmulticast mode
[ 1352.070394][T14049] bridge_slave_1: entered promiscuous mode
[ 1353.188829][T14049] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1353.223898][T14049] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1353.446567][T14049] team0: Port device team_slave_0 added
[ 1353.537104][T14049] team0: Port device team_slave_1 added
[ 1353.774128][T14218] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1355.028965][T14049] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1355.028981][T14049] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1355.029007][T14049] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1355.087903][T14049] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1355.087921][T14049] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1355.087951][T14049] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1355.385339][   T13] bridge_slave_1: left allmulticast mode
[ 1355.385376][   T13] bridge_slave_1: left promiscuous mode
[ 1355.385733][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1355.477593][   T13] bridge_slave_0: left allmulticast mode
[ 1355.477630][   T13] bridge_slave_0: left promiscuous mode
[ 1355.477932][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1355.868605][T14243] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1356.285302][   T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1356.405030][   T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1356.528555][   T13] bond0 (unregistering): Released all slaves
[ 1358.567113][T14292] 9p: Bad value for 'rfdno'
[ 1359.295339][   T13] hsr_slave_0: left promiscuous mode
[ 1359.353960][   T13] hsr_slave_1: left promiscuous mode
[ 1359.354900][   T13] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1359.416732][   T13] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1360.302347][T14325] /dev/nbd2: Can't lookup blockdev
[ 1361.413589][T14314] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1361.426908][   T13] team0 (unregistering): Port device team_slave_1 removed
[ 1361.448631][T14305] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1361.565692][   T13] team0 (unregistering): Port device team_slave_0 removed
[ 1361.772432][T14049] hsr_slave_0: entered promiscuous mode
[ 1361.773426][T14049] hsr_slave_1: entered promiscuous mode
[ 1361.774137][T14049] debugfs: 'hsr0' already exists in 'hsr'
[ 1361.774155][T14049] Cannot create hsr debugfs directory
[ 1362.250317][T14332] /dev/nbd2: Can't lookup blockdev
[ 1365.458152][   T13] bridge_slave_1: left allmulticast mode
[ 1365.458194][   T13] bridge_slave_1: left promiscuous mode
[ 1365.458382][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1365.568195][   T13] bridge_slave_0: left allmulticast mode
[ 1365.568223][   T13] bridge_slave_0: left promiscuous mode
[ 1365.568481][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1365.719393][ T1336] ieee802154 phy0 wpan0: encryption failed: -22
[ 1365.719485][ T1336] ieee802154 phy1 wpan1: encryption failed: -22
[ 1366.219634][   T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1366.400814][   T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1366.475924][   T13] bond0 (unregistering): Released all slaves
[ 1367.317851][   T13] hsr_slave_0: left promiscuous mode
[ 1367.358001][   T13] hsr_slave_1: left promiscuous mode
[ 1367.359272][   T13] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1367.408795][   T13] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1367.838742][   T13] team0 (unregistering): Port device team_slave_1 removed
[ 1367.891386][   T13] team0 (unregistering): Port device team_slave_0 removed
[ 1368.121058][T14363] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1368.282201][T14049] netdevsim netdevsim7 netdevsim0: renamed from eth0
[ 1368.389557][T14049] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 1368.462178][T14049] netdevsim netdevsim7 netdevsim1: renamed from eth1
[ 1368.606556][T14049] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 1368.625904][T14049] netdevsim netdevsim7 netdevsim2: renamed from eth2
[ 1368.840995][ T5708] usb 6-1: new full-speed USB device number 16 using dummy_hcd
[ 1368.842397][T14049] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 1368.995561][ T4913] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1369.031885][ T5708] usb 6-1: not running at top speed; connect to a high speed hub
[ 1369.033218][ T5708] usb 6-1: config index 0 descriptor too short (expected 863, got 95)
[ 1369.033242][ T5708] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1369.033260][ T5708] usb 6-1: config 0 has no interfaces?
[ 1369.035339][ T5708] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1369.035364][ T5708] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1369.035393][ T5708] usb 6-1: Product: syz
[ 1369.035406][ T5708] usb 6-1: Manufacturer: 窷袭愒꺷ꚳ돊ꊜ鵆嗥ǁ眚燍䚸戨᲍噒ꗦ濓᳭ꄁ熇칡禺ጲ悿⮙뜝궓㒡Ꙏ陓Ჺ孂떞僸摲ᚴ
[ 1369.035427][ T5708] usb 6-1: SerialNumber: syz
[ 1369.158771][ T4913] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1369.183471][ T4913] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1369.257339][ T4913] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1369.263456][ T4913] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1369.461257][ T5708] usb 6-1: config 0 descriptor??
[ 1369.487172][T14374] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1369.671784][ T8579] usb 6-1: USB disconnect, device number 16
[ 1369.843099][T14049] netdevsim netdevsim7 netdevsim3: renamed from eth3
[ 1369.886737][T14049] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 1371.046311][T14049] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1372.438917][ T4913] Bluetooth: hci4: command tx timeout
[ 1372.738677][T14049] 8021q: adding VLAN 0 to HW filter on device team0
[ 1372.840088][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1372.840363][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1373.018965][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1373.019305][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1374.290419][T14426] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1374.442080][ T4913] Bluetooth: hci4: command tx timeout
[ 1375.094074][T14432] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1376.528517][ T4913] Bluetooth: hci4: command tx timeout
[ 1377.715802][T14384] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1377.715991][T14384] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1377.716221][T14384] bridge_slave_0: entered allmulticast mode
[ 1377.758867][T14384] bridge_slave_0: entered promiscuous mode
[ 1377.785692][T14384] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1377.785784][T14384] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1377.785986][T14384] bridge_slave_1: entered allmulticast mode
[ 1377.814206][T14384] bridge_slave_1: entered promiscuous mode
[ 1378.348960][T14384] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1378.413808][T14384] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1378.606283][ T4913] Bluetooth: hci4: command tx timeout
[ 1378.661593][T14384] team0: Port device team_slave_0 added
[ 1378.677901][T14384] team0: Port device team_slave_1 added
[ 1378.861597][T14487] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2054'.
[ 1379.015043][   T56] bridge_slave_1: left allmulticast mode
[ 1379.015076][   T56] bridge_slave_1: left promiscuous mode
[ 1379.015269][   T56] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1379.115420][   T56] bridge_slave_0: left allmulticast mode
[ 1379.115454][   T56] bridge_slave_0: left promiscuous mode
[ 1379.115686][   T56] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1380.765722][T14477] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1381.546150][T14492] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1381.820385][   T56] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1383.809769][   T56] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1383.829316][T14512] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2063'.
[ 1383.898863][   T56] bond0 (unregistering): Released all slaves
[ 1383.958455][T14384] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1383.958475][T14384] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1383.958506][T14384] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1385.385908][T14384] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1385.385928][T14384] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1385.385960][T14384] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1385.485662][T14049] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1385.827126][   T56] hsr_slave_0: left promiscuous mode
[ 1385.918606][   T56] hsr_slave_1: left promiscuous mode
[ 1385.919637][   T56] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1386.198171][   T56] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1387.762764][   T56] team0 (unregistering): Port device team_slave_1 removed
[ 1387.842477][   T56] team0 (unregistering): Port device team_slave_0 removed
[ 1389.357182][T14545] Smack: duplicate mount options
[ 1391.712498][T14555] netlink: 40 bytes leftover after parsing attributes in process `syz.5.2074'.
[ 1392.373308][T11928] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1392.426821][T11928] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1392.428311][T11928] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1392.429506][T11928] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1392.442390][T11928] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1393.136172][T14384] hsr_slave_0: entered promiscuous mode
[ 1393.241202][T14384] hsr_slave_1: entered promiscuous mode
[ 1393.311165][T14384] debugfs: 'hsr0' already exists in 'hsr'
[ 1393.311196][T14384] Cannot create hsr debugfs directory
[ 1394.551682][ T4913] Bluetooth: hci0: command tx timeout
[ 1398.675831][ T4913] Bluetooth: hci0: command tx timeout
[ 1399.009216][T14600] netlink: 40 bytes leftover after parsing attributes in process `syz.5.2084'.
[ 1399.403464][T14599] overlay: Unknown parameter '/'
[ 1400.835204][ T4913] Bluetooth: hci0: command tx timeout
[ 1404.155666][ T4913] Bluetooth: hci0: command tx timeout
[ 1405.856110][ T5258] 8021q: adding VLAN 0 to HW filter on device eth13
[ 1406.444680][T14632] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1407.392234][T14640] netlink: 40 bytes leftover after parsing attributes in process `syz.5.2094'.
[ 1415.065680][T14662] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1416.425920][T14679] netlink: 40 bytes leftover after parsing attributes in process `syz.5.2104'.
[ 1423.142424][T14558] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1423.142610][T14558] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1423.142838][T14558] bridge_slave_0: entered allmulticast mode
[ 1423.186063][T14558] bridge_slave_0: entered promiscuous mode
[ 1423.257123][T14558] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1423.258957][T14558] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1423.259213][T14558] bridge_slave_1: entered allmulticast mode
[ 1423.263662][T14558] bridge_slave_1: entered promiscuous mode
[ 1423.478999][T14384] netdevsim netdevsim6 netdevsim0: renamed from eth0
[ 1423.511219][T14384] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 1423.550655][T14558] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1423.589727][T14384] netdevsim netdevsim6 netdevsim1: renamed from eth1
[ 1423.686925][T14384] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 1423.692771][T14558] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1423.962824][T14384] netdevsim netdevsim6 netdevsim2: renamed from eth2
[ 1424.169718][T14384] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 1424.214088][T14384] netdevsim netdevsim6 netdevsim3: renamed from eth3
[ 1424.259950][T14384] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 1424.436894][T13688] bridge_slave_1: left allmulticast mode
[ 1424.436931][T13688] bridge_slave_1: left promiscuous mode
[ 1424.437212][T13688] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1424.655424][T13688] bridge_slave_0: left allmulticast mode
[ 1424.655464][T13688] bridge_slave_0: left promiscuous mode
[ 1424.655727][T13688] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1427.192231][ T1336] ieee802154 phy0 wpan0: encryption failed: -22
[ 1427.192301][ T1336] ieee802154 phy1 wpan1: encryption failed: -22
[ 1427.647317][T14737] /dev/nbd3: Can't lookup blockdev
[ 1427.939694][T14740] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2113'.
[ 1430.781569][T13688] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1432.166481][T13688] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1432.223443][T13688] bond0 (unregistering): Released all slaves
[ 1432.403030][T14384] kthread_run failed with err -4
[ 1432.417575][T14558] team0: Port device team_slave_0 added
[ 1432.548961][ T5258] 8021q: adding VLAN 0 to HW filter on device eth13
[ 1434.921704][T14558] team0: Port device team_slave_1 added
[ 1435.005613][T14558] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1435.005633][T14558] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1435.005663][T14558] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1435.140455][T11928] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1435.205642][T11928] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1435.224039][T11928] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1435.250983][T11928] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1435.255967][T11928] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1435.378818][T13688] hsr_slave_0: left promiscuous mode
[ 1435.435741][T13688] hsr_slave_1: left promiscuous mode
[ 1435.436888][T13688] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1435.469520][T13688] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1437.227895][T14786] netlink: 40 bytes leftover after parsing attributes in process `syz.5.2123'.
[ 1437.432926][ T4913] Bluetooth: hci5: command tx timeout
[ 1438.020608][T13688] team0 (unregistering): Port device team_slave_1 removed
[ 1438.805907][T13688] team0 (unregistering): Port device team_slave_0 removed
[ 1439.378150][T14558] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1439.378164][T14558] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1439.378186][T14558] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1439.513989][ T4913] Bluetooth: hci5: command tx timeout
[ 1441.604556][ T4913] Bluetooth: hci5: command tx timeout
[ 1442.047284][T14558] hsr_slave_0: entered promiscuous mode
[ 1442.051735][T14558] hsr_slave_1: entered promiscuous mode
[ 1442.100230][T14558] debugfs: 'hsr0' already exists in 'hsr'
[ 1442.100316][T14558] Cannot create hsr debugfs directory
[ 1443.929974][ T4913] Bluetooth: hci5: command tx timeout
[ 1449.415284][ T5258] 8021q: adding VLAN 0 to HW filter on device eth14
[ 1451.996546][T11928] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1452.032599][T11928] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1452.037637][T11928] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1452.088060][T11928] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1452.118453][T11928] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1453.146539][T14858] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1455.040648][T11928] Bluetooth: hci4: command tx timeout
[ 1458.208965][T11928] Bluetooth: hci4: command tx timeout
[ 1461.348034][T11928] Bluetooth: hci4: command tx timeout
[ 1463.710152][T11928] Bluetooth: hci4: command tx timeout
[ 1465.620738][T14776] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1465.620920][T14776] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1465.621114][T14776] bridge_slave_0: entered allmulticast mode
[ 1465.626121][T14776] bridge_slave_0: entered promiscuous mode
[ 1465.684297][T14776] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1465.684380][T14776] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1465.684549][T14776] bridge_slave_1: entered allmulticast mode
[ 1465.687526][T14776] bridge_slave_1: entered promiscuous mode
[ 1466.058362][T14910] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1468.677284][T14776] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1468.854307][T14776] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1472.285573][T14776] team0: Port device team_slave_0 added
[ 1472.363866][T14776] team0: Port device team_slave_1 added
[ 1473.252864][T14776] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1473.252883][T14776] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1473.252913][T14776] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1473.353760][T14776] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1473.353774][T14776] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1473.353795][T14776] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1473.682557][T13688] bridge_slave_1: left allmulticast mode
[ 1473.682592][T13688] bridge_slave_1: left promiscuous mode
[ 1475.017681][T13688] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1475.129502][T13688] bridge_slave_0: left allmulticast mode
[ 1475.129530][T13688] bridge_slave_0: left promiscuous mode
[ 1475.129716][T13688] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1477.267933][T13688] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1477.384732][T13688] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1477.478330][T13688] bond0 (unregistering): Released all slaves
[ 1477.894187][T14776] hsr_slave_0: entered promiscuous mode
[ 1477.901267][T14776] hsr_slave_1: entered promiscuous mode
[ 1477.922058][T14776] debugfs: 'hsr0' already exists in 'hsr'
[ 1477.922087][T14776] Cannot create hsr debugfs directory
[ 1478.433347][T13688] hsr_slave_0: left promiscuous mode
[ 1478.474948][T13688] hsr_slave_1: left promiscuous mode
[ 1478.476993][T13688] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1479.788693][T13688] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1480.396563][T14980] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1480.575939][T13688] team0 (unregistering): Port device team_slave_1 removed
[ 1480.675217][T13688] team0 (unregistering): Port device team_slave_0 removed
[ 1481.533109][T14990] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2164'.
[ 1482.461084][T14986] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1484.547218][T14852] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1484.547345][T14852] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1484.547603][T14852] bridge_slave_0: entered allmulticast mode
[ 1484.559426][T14852] bridge_slave_0: entered promiscuous mode
[ 1486.367688][T14852] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1486.367773][T14852] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1486.367949][T14852] bridge_slave_1: entered allmulticast mode
[ 1486.373701][T14852] bridge_slave_1: entered promiscuous mode
[ 1488.099542][T14852] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1488.106077][T14852] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1488.139647][T15020] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2173'.
[ 1488.661899][ T1336] ieee802154 phy0 wpan0: encryption failed: -22
[ 1488.661968][ T1336] ieee802154 phy1 wpan1: encryption failed: -22
[ 1490.240616][T14852] team0: Port device team_slave_0 added
[ 1490.393367][T14852] team0: Port device team_slave_1 added
[ 1491.002720][T13688] bridge_slave_1: left allmulticast mode
[ 1491.004046][T13688] bridge_slave_1: left promiscuous mode
[ 1491.007355][T13688] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1491.516311][T13688] bridge_slave_0: left allmulticast mode
[ 1491.516349][T13688] bridge_slave_0: left promiscuous mode
[ 1491.523215][T13688] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1492.671316][T13688] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1492.799590][T13688] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1493.133532][ T4913] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1493.154546][ T4913] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1493.518521][T13688] bond0 (unregistering): Released all slaves
[ 1493.564741][ T4913] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1493.705873][ T4913] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1493.706903][ T4913] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1494.044743][T15054] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1494.213428][ T5258] 8021q: adding VLAN 0 to HW filter on device eth13
[ 1494.218572][T14852] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1494.218588][T14852] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1494.218617][T14852] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1494.485273][T15077] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2182'.
[ 1494.504044][T14852] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1494.504055][T14852] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1494.504074][T14852] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1495.391064][T13688] hsr_slave_0: left promiscuous mode
[ 1495.432258][T13688] hsr_slave_1: left promiscuous mode
[ 1495.433270][T13688] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1495.496885][T13688] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1496.761247][T11928] Bluetooth: hci0: command tx timeout
[ 1497.685378][T13688] team0 (unregistering): Port device team_slave_1 removed
[ 1497.761053][T13688] team0 (unregistering): Port device team_slave_0 removed
[ 1497.851901][T15098] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2187'.
[ 1497.851939][T15098] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2187'.
[ 1499.156748][T11928] Bluetooth: hci0: command tx timeout
[ 1499.709516][T15113] netlink: 40 bytes leftover after parsing attributes in process `syz.5.2192'.
[ 1500.318582][T15108] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1501.225526][T11928] Bluetooth: hci0: command tx timeout
[ 1501.263967][T14852] hsr_slave_0: entered promiscuous mode
[ 1501.307504][T14852] hsr_slave_1: entered promiscuous mode
[ 1501.313188][T14852] debugfs: 'hsr0' already exists in 'hsr'
[ 1501.313214][T14852] Cannot create hsr debugfs directory
[ 1503.311557][T11928] Bluetooth: hci0: command tx timeout
[ 1505.121189][T15144] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2201'.
[ 1507.695662][T15150] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1507.715588][T13688] bridge_slave_1: left allmulticast mode
[ 1507.715625][T13688] bridge_slave_1: left promiscuous mode
[ 1507.715894][T13688] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1507.811692][T13688] bridge_slave_0: left allmulticast mode
[ 1507.811724][T13688] bridge_slave_0: left promiscuous mode
[ 1507.813187][T13688] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1510.050666][T13688] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1510.163087][T13688] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1510.251681][T13688] bond0 (unregistering): Released all slaves
[ 1510.291868][T15183] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2210'.
[ 1510.919669][T13688] hsr_slave_0: left promiscuous mode
[ 1510.939788][T13688] hsr_slave_1: left promiscuous mode
[ 1510.940665][T13688] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1510.964167][T13688] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1512.674333][T15195] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2207'.
[ 1512.674371][T15195] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2207'.
[ 1512.906961][T13688] team0 (unregistering): Port device team_slave_1 removed
[ 1512.943126][T13688] team0 (unregistering): Port device team_slave_0 removed
[ 1513.416204][ T4913] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1513.459736][ T4913] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1513.505799][ T4913] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1513.512462][ T4913] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1513.534223][ T4913] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1515.552207][ T4913] Bluetooth: hci5: command tx timeout
[ 1516.375773][T15062] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1516.375863][T15062] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1516.376029][T15062] bridge_slave_0: entered allmulticast mode
[ 1516.379371][T15062] bridge_slave_0: entered promiscuous mode
[ 1516.455090][T15062] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1516.455220][T15062] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1516.455441][T15062] bridge_slave_1: entered allmulticast mode
[ 1516.489133][T15062] bridge_slave_1: entered promiscuous mode
[ 1517.633437][ T4913] Bluetooth: hci5: command tx timeout
[ 1517.919596][T15226] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2219'.
[ 1517.944730][T15062] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1517.972230][T15062] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1518.219132][T15062] team0: Port device team_slave_0 added
[ 1518.236057][T15231] /dev/nbd2: Can't lookup blockdev
[ 1519.980579][ T4913] Bluetooth: hci5: command tx timeout
[ 1520.045592][T15062] team0: Port device team_slave_1 added
[ 1520.056621][T15227] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1520.226939][T15236] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1520.575807][T15062] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1520.575842][T15062] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1520.575873][T15062] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1520.641790][T15062] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1520.641810][T15062] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1520.641837][T15062] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1520.915475][T15062] hsr_slave_0: entered promiscuous mode
[ 1520.916827][T15062] hsr_slave_1: entered promiscuous mode
[ 1520.917671][T15062] debugfs: 'hsr0' already exists in 'hsr'
[ 1520.917695][T15062] Cannot create hsr debugfs directory
[ 1521.560764][T15254] fuse: Bad value for 'fd'
[ 1521.717943][T15252] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1522.845546][T11928] Bluetooth: hci5: command tx timeout
[ 1526.432976][T15198] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1526.433096][T15198] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1526.433310][T15198] bridge_slave_0: entered allmulticast mode
[ 1526.458688][T15198] bridge_slave_0: entered promiscuous mode
[ 1526.492248][T15198] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1526.492383][T15198] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1526.492612][T15198] bridge_slave_1: entered allmulticast mode
[ 1526.535429][T15198] bridge_slave_1: entered promiscuous mode
[ 1526.824003][T15279] /dev/nbd2: Can't lookup blockdev
[ 1526.916483][T15282] /dev/nullb0: Can't lookup blockdev
[ 1529.514540][T15276] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1529.539626][T15198] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1529.565039][T15198] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1531.540076][T12479] bridge_slave_1: left allmulticast mode
[ 1531.540116][T12479] bridge_slave_1: left promiscuous mode
[ 1531.540394][T12479] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1531.621731][T12479] bridge_slave_0: left allmulticast mode
[ 1531.621768][T12479] bridge_slave_0: left promiscuous mode
[ 1531.622052][T12479] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1532.044926][T15304] /dev/nullb0: Can't lookup blockdev
[ 1536.023223][T12479] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1536.157761][T12479] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1536.241626][T12479] bond0 (unregistering): Released all slaves
[ 1536.406534][T15198] team0: Port device team_slave_0 added
[ 1536.410206][T15198] team0: Port device team_slave_1 added
[ 1536.562872][T15198] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1536.562890][T15198] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1536.562919][T15198] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1536.563465][T15062] netdevsim netdevsim6 netdevsim0: renamed from eth0
[ 1536.641688][T15062] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 1536.666571][T15198] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1536.666588][T15198] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1536.666618][T15198] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1536.667771][T15062] netdevsim netdevsim6 netdevsim1: renamed from eth1
[ 1536.800633][T15062] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 1536.848899][T15062] netdevsim netdevsim6 netdevsim2: renamed from eth2
[ 1536.885886][T15062] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 1536.888206][T15062] netdevsim netdevsim6 netdevsim3: renamed from eth3
[ 1536.916398][T15319] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1537.021232][T15062] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 1537.213207][T12479] hsr_slave_0: left promiscuous mode
[ 1537.309478][T12479] hsr_slave_1: left promiscuous mode
[ 1537.320717][T12479] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1537.375187][T12479] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1538.801533][T12479] team0 (unregistering): Port device team_slave_1 removed
[ 1538.911117][T15358] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2252'.
[ 1538.911146][T15358] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2252'.
[ 1538.962173][T12479] team0 (unregistering): Port device team_slave_0 removed
[ 1539.738746][ T5258] 8021q: adding VLAN 0 to HW filter on device eth13
[ 1540.008775][T15198] hsr_slave_0: entered promiscuous mode
[ 1540.011978][T15198] hsr_slave_1: entered promiscuous mode
[ 1540.029844][T15198] debugfs: 'hsr0' already exists in 'hsr'
[ 1540.054088][T15198] Cannot create hsr debugfs directory
[ 1542.535605][T15375] FAULT_INJECTION: forcing a failure.
[ 1542.535605][T15375] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1542.535633][T15375] CPU: 0 UID: 0 PID: 15375 Comm: syz.2.2257 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1542.535658][T15375] Tainted: [L]=SOFTLOCKUP
[ 1542.535663][T15375] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1542.535673][T15375] Call Trace:
[ 1542.535678][T15375]  <TASK>
[ 1542.535684][T15375]  dump_stack_lvl+0xe8/0x150
[ 1542.535706][T15375]  should_fail_ex+0x46b/0x600
[ 1542.535733][T15375]  _copy_to_user+0x31/0xb0
[ 1542.535752][T15375]  simple_read_from_buffer+0xe1/0x170
[ 1542.535778][T15375]  proc_fail_nth_read+0x1be/0x230
[ 1542.535803][T15375]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1542.535828][T15375]  ? rw_verify_area+0x2ac/0x4e0
[ 1542.535844][T15375]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1542.535868][T15375]  vfs_read+0x212/0xa80
[ 1542.535889][T15375]  ? __pfx_vfs_read+0x10/0x10
[ 1542.535906][T15375]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 1542.535923][T15375]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1542.535938][T15375]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 1542.535954][T15375]  ? mutex_lock_nested+0x152/0x1d0
[ 1542.535973][T15375]  ? fdget_pos+0x252/0x320
[ 1542.535992][T15375]  ksys_read+0x156/0x270
[ 1542.536009][T15375]  ? __pfx_ksys_read+0x10/0x10
[ 1542.536024][T15375]  ? __pfx_sock_ioctl+0x10/0x10
[ 1542.536050][T15375]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1542.536065][T15375]  do_syscall_64+0x15f/0xf80
[ 1542.536082][T15375]  ? clear_bhb_loop+0x40/0x90
[ 1542.536099][T15375]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1542.536113][T15375] RIP: 0033:0x7f194739d60e
[ 1542.536127][T15375] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 1542.536139][T15375] RSP: 002b:00007f1945635fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1542.536154][T15375] RAX: ffffffffffffffda RBX: 00007f19456366c0 RCX: 00007f194739d60e
[ 1542.536164][T15375] RDX: 000000000000000f RSI: 00007f19456360a0 RDI: 0000000000000004
[ 1542.536173][T15375] RBP: 00007f1945636090 R08: 0000000000000000 R09: 0000000000000000
[ 1542.536181][T15375] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1542.536190][T15375] R13: 00007f1947656038 R14: 00007f1947655fa0 R15: 00007ffff0a749e8
[ 1542.536212][T15375]  </TASK>
[ 1543.277087][T15385] netlink: 104 bytes leftover after parsing attributes in process `syz.2.2259'.
[ 1543.879826][T15394] /dev/nbd3: Can't lookup blockdev
[ 1545.089398][T15062] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1545.214037][ T5258] 8021q: adding VLAN 0 to HW filter on device eth14
[ 1545.239639][T15398] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1545.244664][T15062] 8021q: adding VLAN 0 to HW filter on device team0
[ 1545.321637][T12479] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1545.324096][T12479] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1545.862035][ T1168] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1545.862182][ T1168] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1546.269092][T15419] netlink: 104 bytes leftover after parsing attributes in process `syz.2.2265'.
[ 1549.842654][T15449] /dev/nbd2: Can't lookup blockdev
[ 1550.132828][ T1336] ieee802154 phy0 wpan0: encryption failed: -22
[ 1550.132881][ T1336] ieee802154 phy1 wpan1: encryption failed: -22
[ 1553.327394][T15462] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1554.310601][T15198] netdevsim netdevsim7 netdevsim0: renamed from eth0
[ 1554.385109][T15198] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 1554.386260][T15198] netdevsim netdevsim7 netdevsim1: renamed from eth1
[ 1554.437814][T15198] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 1554.439469][T15198] netdevsim netdevsim7 netdevsim2: renamed from eth2
[ 1554.562668][T15198] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 1554.567590][T15198] netdevsim netdevsim7 netdevsim3: renamed from eth3
[ 1554.837070][T15198] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 1555.425393][ T4913] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1555.584141][ T4913] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1555.601108][ T4913] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1555.620450][ T4913] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1555.636528][ T4913] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1556.136223][T15498] /dev/nbd3: Can't lookup blockdev
[ 1556.930350][T15513] exFAT-fs (nullb0): invalid boot record signature
[ 1556.930407][T15513] exFAT-fs (nullb0): failed to read boot sector
[ 1556.930446][T15513] exFAT-fs (nullb0): failed to recognize exfat type
[ 1557.814363][T11928] Bluetooth: hci0: command tx timeout
[ 1560.755104][T15541] FAULT_INJECTION: forcing a failure.
[ 1560.755104][T15541] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1560.755135][T15541] CPU: 1 UID: 0 PID: 15541 Comm: syz.2.2272 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1560.755157][T15541] Tainted: [L]=SOFTLOCKUP
[ 1560.755163][T15541] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1560.755173][T15541] Call Trace:
[ 1560.755188][T15541]  <TASK>
[ 1560.755194][T15541]  dump_stack_lvl+0xe8/0x150
[ 1560.755218][T15541]  should_fail_ex+0x46b/0x600
[ 1560.755248][T15541]  _copy_from_iter+0x1d3/0x1670
[ 1560.755270][T15541]  ? trace_kmem_cache_alloc+0x29/0xe0
[ 1560.755287][T15541]  ? __alloc_skb+0x27d/0x7d0
[ 1560.755304][T15541]  ? __pfx__copy_from_iter+0x10/0x10
[ 1560.755318][T15541]  ? kmem_cache_alloc_node_noprof+0x27c/0x6e0
[ 1560.755335][T15541]  ? __alloc_skb+0x27d/0x7d0
[ 1560.755356][T15541]  ? netlink_sendmsg+0x650/0xb40
[ 1560.755374][T15541]  ? skb_put+0x11b/0x210
[ 1560.755394][T15541]  netlink_sendmsg+0x6c0/0xb40
[ 1560.755420][T15541]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1560.755440][T15541]  ? unwind_get_return_address+0x4d/0x90
[ 1560.755464][T15541]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[ 1560.755483][T15541]  ____sys_sendmsg+0x94c/0x9c0
[ 1560.755507][T15541]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1560.755534][T15541]  ? import_iovec+0x73/0xa0
[ 1560.755553][T15541]  ___sys_sendmsg+0x2a5/0x360
[ 1560.755573][T15541]  ? __lock_acquire+0x6b5/0x2cf0
[ 1560.755597][T15541]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1560.755642][T15541]  ? __fget_files+0x2a/0x420
[ 1560.755656][T15541]  ? __fget_files+0x3a6/0x420
[ 1560.755677][T15541]  __x64_sys_sendmsg+0x1c3/0x2a0
[ 1560.755699][T15541]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[ 1560.755726][T15541]  ? __pfx_ksys_write+0x10/0x10
[ 1560.755750][T15541]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1560.755767][T15541]  do_syscall_64+0x15f/0xf80
[ 1560.755784][T15541]  ? trace_irq_disable+0x3b/0x140
[ 1560.755803][T15541]  ? clear_bhb_loop+0x40/0x90
[ 1560.755822][T15541]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1560.755838][T15541] RIP: 0033:0x7f19473dcdd9
[ 1560.755852][T15541] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1560.755866][T15541] RSP: 002b:00007f1945636028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1560.755883][T15541] RAX: ffffffffffffffda RBX: 00007f1947655fa0 RCX: 00007f19473dcdd9
[ 1560.755895][T15541] RDX: 0000000000000040 RSI: 0000200000009b40 RDI: 0000000000000004
[ 1560.755905][T15541] RBP: 00007f1945636090 R08: 0000000000000000 R09: 0000000000000000
[ 1560.755915][T15541] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1560.755924][T15541] R13: 00007f1947656038 R14: 00007f1947655fa0 R15: 00007ffff0a749e8
[ 1560.755948][T15541]  </TASK>
[ 1560.938145][T11928] Bluetooth: hci0: command tx timeout
[ 1563.592202][T11928] Bluetooth: hci0: command tx timeout
[ 1564.882053][T15198] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1564.961825][T15198] 8021q: adding VLAN 0 to HW filter on device team0
[ 1565.141825][T13688] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1565.142076][T13688] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1565.200042][ T5907] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1565.200134][ T5907] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1566.298403][T11928] Bluetooth: hci0: command tx timeout
[ 1569.579411][T15582] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1572.733698][ T1296] bridge_slave_1: left allmulticast mode
[ 1572.733737][ T1296] bridge_slave_1: left promiscuous mode
[ 1572.734014][ T1296] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1572.867135][ T1296] bridge_slave_0: left allmulticast mode
[ 1572.867182][ T1296] bridge_slave_0: left promiscuous mode
[ 1572.867453][ T1296] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1574.195194][   T36] kauditd_printk_skb: 24 callbacks suppressed
[ 1574.195215][   T36] audit: type=1326 audit(1783212271.099:391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15653 comm="syz.2.2304" exe="/root/ci-upstream-kasan-gce-smack-root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f19473dcdd9 code=0x0
[ 1574.275877][ T4913] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1574.331596][ T4913] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1574.332984][ T4913] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1574.334501][ T4913] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1574.335241][ T4913] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1575.586458][T15663] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1575.602910][ T1296] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1575.684745][ T1296] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1575.725090][ T1296] bond0 (unregistering): Released all slaves
[ 1576.179404][ T5258] 8021q: adding VLAN 0 to HW filter on device eth13
[ 1576.273527][T15684] FAULT_INJECTION: forcing a failure.
[ 1576.273527][T15684] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1576.273563][T15684] CPU: 1 UID: 0 PID: 15684 Comm: syz.3.2309 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1576.273591][T15684] Tainted: [L]=SOFTLOCKUP
[ 1576.273598][T15684] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1576.273610][T15684] Call Trace:
[ 1576.273617][T15684]  <TASK>
[ 1576.273625][T15684]  dump_stack_lvl+0xe8/0x150
[ 1576.273655][T15684]  should_fail_ex+0x46b/0x600
[ 1576.273693][T15684]  _copy_to_user+0x31/0xb0
[ 1576.273721][T15684]  simple_read_from_buffer+0xe1/0x170
[ 1576.273758][T15684]  proc_fail_nth_read+0x1be/0x230
[ 1576.273795][T15684]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1576.273831][T15684]  ? rw_verify_area+0x2ac/0x4e0
[ 1576.273855][T15684]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1576.273890][T15684]  vfs_read+0x212/0xa80
[ 1576.273928][T15684]  ? __pfx_vfs_read+0x10/0x10
[ 1576.273954][T15684]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 1576.273979][T15684]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1576.274002][T15684]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 1576.274025][T15684]  ? mutex_lock_nested+0x152/0x1d0
[ 1576.274052][T15684]  ? fdget_pos+0x252/0x320
[ 1576.274080][T15684]  ksys_read+0x156/0x270
[ 1576.274106][T15684]  ? __pfx_ksys_read+0x10/0x10
[ 1576.274138][T15684]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1576.274162][T15684]  do_syscall_64+0x15f/0xf80
[ 1576.274184][T15684]  ? trace_irq_disable+0x3b/0x140
[ 1576.274210][T15684]  ? clear_bhb_loop+0x40/0x90
[ 1576.274235][T15684]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1576.274256][T15684] RIP: 0033:0x7ff5f02bd60e
[ 1576.274275][T15684] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 1576.274294][T15684] RSP: 002b:00007ff5ee555fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1576.274315][T15684] RAX: ffffffffffffffda RBX: 00007ff5ee5566c0 RCX: 00007ff5f02bd60e
[ 1576.274335][T15684] RDX: 000000000000000f RSI: 00007ff5ee5560a0 RDI: 0000000000000005
[ 1576.274349][T15684] RBP: 00007ff5ee556090 R08: 0000000000000000 R09: 0000000000000000
[ 1576.274361][T15684] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1576.274374][T15684] R13: 00007ff5f0576038 R14: 00007ff5f0575fa0 R15: 00007ffff50f8018
[ 1576.274407][T15684]  </TASK>
[ 1576.571674][T15688] fuse: Bad value for 'fd'
[ 1576.632848][T11928] Bluetooth: hci4: command tx timeout
[ 1576.702701][ T1296] hsr_slave_0: left promiscuous mode
[ 1576.922739][ T1296] hsr_slave_1: left promiscuous mode
[ 1576.939786][ T1296] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1577.374406][ T1296] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1579.246268][T11928] Bluetooth: hci4: command tx timeout
[ 1579.257340][T15705] netlink: 60 bytes leftover after parsing attributes in process `syz.2.2315'.
[ 1579.946957][ T1296] team0 (unregistering): Port device team_slave_1 removed
[ 1580.005204][ T1296] team0 (unregistering): Port device team_slave_0 removed
[ 1580.327671][T15486] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1580.327890][T15486] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1580.328121][T15486] bridge_slave_0: entered allmulticast mode
[ 1580.333277][T15486] bridge_slave_0: entered promiscuous mode
[ 1580.362719][T15486] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1580.363466][T15486] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1580.364026][T15486] bridge_slave_1: entered allmulticast mode
[ 1580.373086][T15486] bridge_slave_1: entered promiscuous mode
[ 1580.736984][T15486] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1580.742688][T15486] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1580.826642][T15486] team0: Port device team_slave_0 added
[ 1580.830995][T15486] team0: Port device team_slave_1 added
[ 1580.890993][T15486] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1580.891013][T15486] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1580.891046][T15486] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1580.893628][T15486] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1580.893644][T15486] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1580.893674][T15486] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1581.061919][T15486] hsr_slave_0: entered promiscuous mode
[ 1581.063430][T15486] hsr_slave_1: entered promiscuous mode
[ 1581.076921][T15486] debugfs: 'hsr0' already exists in 'hsr'
[ 1581.076953][T15486] Cannot create hsr debugfs directory
[ 1581.265440][ T4913] Bluetooth: hci4: command tx timeout
[ 1581.316515][T15710] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1581.461750][T15723] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2321'.
[ 1581.461776][T15723] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2321'.
[ 1582.879881][T15723] kthread_run failed with err -4
[ 1583.045327][ T5258] 8021q: adding VLAN 0 to HW filter on device eth14
[ 1583.366069][ T4913] Bluetooth: hci4: command tx timeout
[ 1585.868398][ T8316] kernel read not supported for file [fscontext] (pid: 8316 comm: kworker/0:0)
[ 1586.395337][T15762] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1588.336111][ T8316] usb 6-1: new high-speed USB device number 17 using dummy_hcd
[ 1588.510999][ T8316] usb 6-1: unable to get BOS descriptor or descriptor too short
[ 1588.512339][ T8316] usb 6-1: config 39 has an invalid interface number: 126 but max is 0
[ 1588.512368][ T8316] usb 6-1: config 39 has no interface number 0
[ 1588.512404][ T8316] usb 6-1: config 39 interface 126 has no altsetting 0
[ 1588.515184][ T8316] usb 6-1: New USB device found, idVendor=06cd, idProduct=011a, bcdDevice=49.93
[ 1588.515215][ T8316] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1588.515238][ T8316] usb 6-1: Product: syz
[ 1588.515253][ T8316] usb 6-1: Manufacturer: 䏹ᄎ쎔퐥㊉홄冢있茉龯䴧㕅骍ኆ钆傣闏敶왊﬍쮙粷⿚㽂땽ဆ䭜ᒨ襌嚑
[ 1588.515275][ T8316] usb 6-1: SerialNumber: syz
[ 1588.844043][ T8316] keyspan 6-1:39.126: Keyspan - (without firmware) converter detected
[ 1588.878947][ T8316] usb 6-1: USB disconnect, device number 17
[ 1588.882893][ T8316] keyspan 6-1:39.126: device disconnected
[ 1589.839085][ T8316] usb 6-1: new full-speed USB device number 18 using dummy_hcd
[ 1590.005998][ T8316] usb 6-1: New USB device found, idVendor=0d49, idProduct=7010, bcdDevice= c.90
[ 1590.006033][ T8316] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1590.006067][ T8316] usb 6-1: Product: syz
[ 1590.006082][ T8316] usb 6-1: Manufacturer: syz
[ 1590.006097][ T8316] usb 6-1: SerialNumber: syz
[ 1590.029121][ T8316] usb 6-1: config 0 descriptor??
[ 1590.069358][ T8316] ums-onetouch 6-1:0.0: USB Mass Storage device detected
[ 1591.664606][ T5609] usb 6-1: USB disconnect, device number 18
[ 1591.987335][T15657] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1591.987537][T15657] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1591.987783][T15657] bridge_slave_0: entered allmulticast mode
[ 1592.026543][T15657] bridge_slave_0: entered promiscuous mode
[ 1592.778403][T15657] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1592.778502][T15657] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1592.778684][T15657] bridge_slave_1: entered allmulticast mode
[ 1592.785730][T15657] bridge_slave_1: entered promiscuous mode
[ 1593.146387][T15657] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1593.176130][T15657] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1595.552847][  T819] usb 6-1: new full-speed USB device number 19 using dummy_hcd
[ 1595.575366][T15657] team0: Port device team_slave_0 added
[ 1595.607438][T15657] team0: Port device team_slave_1 added
[ 1595.708340][  T819] usb 6-1: not running at top speed; connect to a high speed hub
[ 1595.710143][  T819] usb 6-1: config index 0 descriptor too short (expected 863, got 95)
[ 1595.710173][  T819] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1595.710195][  T819] usb 6-1: config 0 has no interfaces?
[ 1595.750875][  T819] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1595.750909][  T819] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1595.750932][  T819] usb 6-1: Product: Ц
[ 1595.750948][  T819] usb 6-1: Manufacturer: 窷袭愒꺷ꚳ돊ꊜ鵆嗥ǁ眚燍䚸戨᲍噒ꗦ濓᳭ꄁ‡
[ 1595.750969][  T819] usb 6-1: SerialNumber: syz
[ 1595.810146][  T819] usb 6-1: config 0 descriptor??
[ 1596.064081][ T8316] usb 6-1: USB disconnect, device number 19
[ 1596.419438][T15657] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1596.419463][T15657] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1596.429415][T15657] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1596.465840][T15657] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1596.465888][T15657] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1596.465990][T15657] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1596.574080][T15486] netdevsim netdevsim6 netdevsim0: renamed from eth0
[ 1596.666518][T15486] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 1598.715326][T15486] netdevsim netdevsim6 netdevsim1: renamed from eth1
[ 1598.835107][T15486] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 1598.863227][T15486] netdevsim netdevsim6 netdevsim2: renamed from eth2
[ 1599.186269][T15486] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 1599.221877][T15884] Smack: duplicate mount options
[ 1599.897495][T15486] netdevsim netdevsim6 netdevsim3: renamed from eth3
[ 1599.953420][T15486] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 1600.091026][T15657] hsr_slave_0: entered promiscuous mode
[ 1600.100314][T15657] hsr_slave_1: entered promiscuous mode
[ 1600.101036][T15657] debugfs: 'hsr0' already exists in 'hsr'
[ 1600.101056][T15657] Cannot create hsr debugfs directory
[ 1600.235240][ T1296] bridge_slave_1: left allmulticast mode
[ 1600.235281][ T1296] bridge_slave_1: left promiscuous mode
[ 1600.235565][ T1296] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1600.335930][ T1296] bridge_slave_0: left allmulticast mode
[ 1600.335967][ T1296] bridge_slave_0: left promiscuous mode
[ 1600.336696][ T1296] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1603.326059][T15926] netlink: 'syz.2.2361': attribute type 8 has an invalid length.
[ 1603.327473][T15927] netlink: 'syz.2.2361': attribute type 8 has an invalid length.
[ 1603.880288][ T1296] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1603.956853][ T1296] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1604.015298][ T1296] bond0 (unregistering): Released all slaves
[ 1606.326644][ T1296] hsr_slave_0: left promiscuous mode
[ 1606.373654][ T1296] hsr_slave_1: left promiscuous mode
[ 1606.375612][ T1296] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1606.448256][ T1296] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1607.397815][ T5609] usb 6-1: new full-speed USB device number 20 using dummy_hcd
[ 1607.559499][ T5609] usb 6-1: not running at top speed; connect to a high speed hub
[ 1607.563158][ T5609] usb 6-1: config index 0 descriptor too short (expected 863, got 95)
[ 1607.563189][ T5609] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1607.563204][ T5609] usb 6-1: config 0 has no interfaces?
[ 1607.600568][ T5609] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1607.600592][ T5609] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1607.600608][ T5609] usb 6-1: Product: Ц
[ 1607.600618][ T5609] usb 6-1: Manufacturer: 窷袭愒꺷ꚳ돊ꊜ鵆嗥ǁ眚燍䚸戨᲍噒ꗦ濓᳭ꄁ熇칡禺ጲ悿⮙뜝궓㒡Ꙏ陓ᲺB
[ 1607.600635][ T5609] usb 6-1: SerialNumber: syz
[ 1607.663929][ T5609] usb 6-1: config 0 descriptor??
[ 1607.905156][ T5609] usb 6-1: USB disconnect, device number 20
[ 1608.390538][ T1296] team0 (unregistering): Port device team_slave_1 removed
[ 1608.480182][ T1296] team0 (unregistering): Port device team_slave_0 removed
[ 1609.310378][T15970] netlink: 'syz.5.2369': attribute type 3 has an invalid length.
[ 1609.310404][T15970] netlink: 'syz.5.2369': attribute type 1 has an invalid length.
[ 1609.310420][T15970] netlink: 224 bytes leftover after parsing attributes in process `syz.5.2369'.
[ 1610.103652][T15978] exFAT-fs (nullb0): invalid boot record signature
[ 1610.103708][T15978] exFAT-fs (nullb0): failed to read boot sector
[ 1610.103745][T15978] exFAT-fs (nullb0): failed to recognize exfat type
[ 1611.481274][T15988] sg_write: data in/out 396254/522 bytes for SCSI command 0x0-- guessing data in;
[ 1611.481274][T15988]    program syz.5.2372 not setting count and/or reply_len properly
[ 1611.604347][ T1336] ieee802154 phy0 wpan0: encryption failed: -22
[ 1611.604401][ T1336] ieee802154 phy1 wpan1: encryption failed: -22
[ 1612.141623][T15981] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1616.644756][T11928] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1616.677698][T11928] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1616.701577][T11928] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1616.736892][T11928] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1616.747993][T11928] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1617.167649][T16032] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2378'.
[ 1619.420186][ T4913] Bluetooth: hci0: command tx timeout
[ 1621.681306][ T5729] ------------[ cut here ]------------
[ 1621.681318][ T5729] faux_driver vkms: [drm] vblank wait timed out on crtc 0
[ 1621.681336][ T5729] WARNING: drivers/gpu/drm/drm_vblank.c:1320 at drm_crtc_wait_one_vblank+0x357/0x500, CPU#1: kworker/1:5/5729
[ 1621.681399][ T5729] Modules linked in:
[ 1621.681426][ T5729] CPU: 1 UID: 0 PID: 5729 Comm: kworker/1:5 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1621.681448][ T5729] Tainted: [L]=SOFTLOCKUP
[ 1621.681454][ T5729] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1621.681465][ T5729] Workqueue: events drm_fb_helper_damage_work
[ 1621.681485][ T5729] RIP: 0010:drm_crtc_wait_one_vblank+0x4b6/0x500
[ 1621.681503][ T5729] Code: e8 03 48 b9 00 00 00 00 00 fc ff df 80 3c 08 00 74 08 4c 89 ef e8 2a af d0 fc 4d 8b 7d 00 48 89 df 4c 89 e6 4c 89 fa 44 89 f1 <67> 48 0f b9 3a 48 8b 3c 24 44 89 f6 e8 e9 f4 ff ff b8 92 ff ff ff
[ 1621.681517][ T5729] RSP: 0000:ffffc90004e078c0 EFLAGS: 00010246
[ 1621.681530][ T5729] RAX: 1ffff11004bc0e00 RBX: ffffffff8f93e460 RCX: 0000000000000000
[ 1621.681541][ T5729] RDX: ffffffff8bc048e0 RSI: ffffffff8bc21000 RDI: ffffffff8f93e460
[ 1621.681553][ T5729] RBP: ffffc90004e079a8 R08: 0000000000000000 R09: 0000000000000000
[ 1621.681564][ T5729] R10: dffffc0000000000 R11: fffffbfff1f11c3f R12: ffffffff8bc21000
[ 1621.681576][ T5729] R13: ffff888025e07000 R14: 0000000000000000 R15: ffffffff8bc048e0
[ 1621.681588][ T5729] FS:  0000000000000000(0000) GS:ffff888126279000(0000) knlGS:0000000000000000
[ 1621.681600][ T5729] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1621.681611][ T5729] CR2: 00007f47eff7c000 CR3: 000000000ddb6000 CR4: 00000000003526f0
[ 1621.681625][ T5729] Call Trace:
[ 1621.681632][ T5729]  <TASK>
[ 1621.681642][ T5729]  ? __pfx_drm_crtc_wait_one_vblank+0x10/0x10
[ 1621.681659][ T5729]  ? rt_spin_unlock+0x14f/0x200
[ 1621.681683][ T5729]  ? __pfx_autoremove_wake_function+0x10/0x10
[ 1621.681706][ T5729]  ? rt_spin_unlock+0x160/0x200
[ 1621.681731][ T5729]  ? drm_vblank_get+0x147/0x260
[ 1621.681749][ T5729]  drm_client_modeset_wait_for_vblank+0xc5/0xf0
[ 1621.681776][ T5729]  drm_fb_helper_damage_work+0x131/0x6f0
[ 1621.681796][ T5729]  ? process_scheduled_works+0xa70/0x1860
[ 1621.681817][ T5729]  ? __pfx_drm_fb_helper_damage_work+0x10/0x10
[ 1621.681839][ T5729]  ? process_scheduled_works+0xa70/0x1860
[ 1621.681855][ T5729]  ? process_scheduled_works+0xa70/0x1860
[ 1621.681873][ T5729]  process_scheduled_works+0xb5d/0x1860
[ 1621.681914][ T5729]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1621.681936][ T5729]  ? assign_work+0x3d5/0x5e0
[ 1621.681957][ T5729]  worker_thread+0xa53/0xfc0
[ 1621.681995][ T5729]  kthread+0x388/0x470
[ 1621.682017][ T5729]  ? __pfx_worker_thread+0x10/0x10
[ 1621.682033][ T5729]  ? __pfx_kthread+0x10/0x10
[ 1621.682056][ T5729]  ret_from_fork+0x514/0xb70
[ 1621.682077][ T5729]  ? __pfx_ret_from_fork+0x10/0x10
[ 1621.682094][ T5729]  ? __switch_to+0xc79/0x1410
[ 1621.682122][ T5729]  ? __pfx_kthread+0x10/0x10
[ 1621.682144][ T5729]  ret_from_fork_asm+0x1a/0x30
[ 1621.682177][ T5729]  </TASK>
[ 1621.682186][ T5729] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 1621.682198][ T5729] CPU: 1 UID: 0 PID: 5729 Comm: kworker/1:5 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1621.682220][ T5729] Tainted: [L]=SOFTLOCKUP
[ 1621.682225][ T5729] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1621.682235][ T5729] Workqueue: events drm_fb_helper_damage_work
[ 1621.682258][ T5729] Call Trace:
[ 1621.682265][ T5729]  <TASK>
[ 1621.682271][ T5729]  vpanic+0x56c/0xa60
[ 1621.682291][ T5729]  ? __pfx__printk+0x10/0x10
[ 1621.682314][ T5729]  ? __pfx_vpanic+0x10/0x10
[ 1621.682332][ T5729]  ? is_bpf_text_address+0x292/0x2b0
[ 1621.682353][ T5729]  ? is_bpf_text_address+0x26/0x2b0
[ 1621.682381][ T5729]  panic+0xc5/0xd0
[ 1621.682400][ T5729]  ? __pfx_panic+0x10/0x10
[ 1621.682426][ T5729]  ? ret_from_fork_asm+0x1a/0x30
[ 1621.682450][ T5729]  __warn+0x315/0x4c0
[ 1621.682480][ T5729]  ? drm_crtc_wait_one_vblank+0x357/0x500
[ 1621.682498][ T5729]  ? drm_crtc_wait_one_vblank+0x357/0x500
[ 1621.682515][ T5729]  __report_bug+0x29a/0x540
[ 1621.682535][ T5729]  ? drm_crtc_wait_one_vblank+0x357/0x500
[ 1621.682552][ T5729]  ? __pfx___report_bug+0x10/0x10
[ 1621.682581][ T5729]  report_bug_entry+0x19a/0x290
[ 1621.682597][ T5729]  ? drm_crtc_wait_one_vblank+0x4b6/0x500
[ 1621.682612][ T5729]  ? drm_crtc_wait_one_vblank+0x4bb/0x500
[ 1621.682628][ T5729]  handle_bug+0xce/0x200
[ 1621.682647][ T5729]  exc_invalid_op+0x1a/0x50
[ 1621.682666][ T5729]  asm_exc_invalid_op+0x1a/0x20
[ 1621.682698][ T5729] RIP: 0010:drm_crtc_wait_one_vblank+0x4b6/0x500
[ 1621.682716][ T5729] Code: e8 03 48 b9 00 00 00 00 00 fc ff df 80 3c 08 00 74 08 4c 89 ef e8 2a af d0 fc 4d 8b 7d 00 48 89 df 4c 89 e6 4c 89 fa 44 89 f1 <67> 48 0f b9 3a 48 8b 3c 24 44 89 f6 e8 e9 f4 ff ff b8 92 ff ff ff
[ 1621.682728][ T5729] RSP: 0000:ffffc90004e078c0 EFLAGS: 00010246
[ 1621.682741][ T5729] RAX: 1ffff11004bc0e00 RBX: ffffffff8f93e460 RCX: 0000000000000000
[ 1621.682753][ T5729] RDX: ffffffff8bc048e0 RSI: ffffffff8bc21000 RDI: ffffffff8f93e460
[ 1621.682765][ T5729] RBP: ffffc90004e079a8 R08: 0000000000000000 R09: 0000000000000000
[ 1621.682775][ T5729] R10: dffffc0000000000 R11: fffffbfff1f11c3f R12: ffffffff8bc21000
[ 1621.682787][ T5729] R13: ffff888025e07000 R14: 0000000000000000 R15: ffffffff8bc048e0
[ 1621.682818][ T5729]  ? __pfx_drm_crtc_wait_one_vblank+0x10/0x10
[ 1621.682835][ T5729]  ? rt_spin_unlock+0x14f/0x200
[ 1621.682858][ T5729]  ? __pfx_autoremove_wake_function+0x10/0x10
[ 1621.682879][ T5729]  ? rt_spin_unlock+0x160/0x200
[ 1621.682904][ T5729]  ? drm_vblank_get+0x147/0x260
[ 1621.682922][ T5729]  drm_client_modeset_wait_for_vblank+0xc5/0xf0
[ 1621.682949][ T5729]  drm_fb_helper_damage_work+0x131/0x6f0
[ 1621.682969][ T5729]  ? process_scheduled_works+0xa70/0x1860
[ 1621.682989][ T5729]  ? __pfx_drm_fb_helper_damage_work+0x10/0x10
[ 1621.683011][ T5729]  ? process_scheduled_works+0xa70/0x1860
[ 1621.683027][ T5729]  ? process_scheduled_works+0xa70/0x1860
[ 1621.683046][ T5729]  process_scheduled_works+0xb5d/0x1860
[ 1621.683086][ T5729]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1621.683108][ T5729]  ? assign_work+0x3d5/0x5e0
[ 1621.683129][ T5729]  worker_thread+0xa53/0xfc0
[ 1621.683167][ T5729]  kthread+0x388/0x470
[ 1621.683189][ T5729]  ? __pfx_worker_thread+0x10/0x10
[ 1621.683205][ T5729]  ? __pfx_kthread+0x10/0x10
[ 1621.683228][ T5729]  ret_from_fork+0x514/0xb70
[ 1621.683248][ T5729]  ? __pfx_ret_from_fork+0x10/0x10
[ 1621.683275][ T5729]  ? __switch_to+0xc79/0x1410
[ 1621.683301][ T5729]  ? __pfx_kthread+0x10/0x10
[ 1621.683324][ T5729]  ret_from_fork_asm+0x1a/0x30
[ 1621.683356][ T5729]  </TASK>
[ 1621.684075][ T5729] Kernel Offset: disabled