last executing test programs:

1.301467888s ago: executing program 1 (id=1127):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x14, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = socket$kcm(0x10, 0x2, 0x0)
write$cgroup_subtree(r0, &(0x7f0000000000)=ANY=[@ANYBLOB='V?\x00\x00-\x00Y'], 0xfe33)

1.240911342s ago: executing program 0 (id=1129):
r0 = socket$kcm(0x1e, 0x5, 0x0)
setsockopt$sock_attach_bpf(r0, 0x10f, 0x87, &(0x7f00000008c0), 0x43)
r1 = socket$kcm(0x1e, 0x2, 0x0)
setsockopt$sock_attach_bpf(r1, 0x10f, 0x87, &(0x7f00000008c0), 0x43)
sendmsg$kcm(r1, &(0x7f0000000100)={&(0x7f00000004c0)=@tipc=@name={0x1e, 0x2, 0x0, {{0x2}, 0x3}}, 0x80, 0x0}, 0x0)

1.178474393s ago: executing program 1 (id=1131):
r0 = socket$kcm(0x11, 0x3, 0x0)
sendmsg$kcm(r0, &(0x7f0000000040)={&(0x7f0000001340)=@hci={0x1f, 0x0, 0x3}, 0x80, 0x0}, 0x0)

1.178195804s ago: executing program 0 (id=1133):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001d80)=@base={0x9, 0x4, 0x6, 0xb}, 0x50)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000800)={0x0, 0x0, 0x0, 0x0, 0x0, r0}, 0x38)

1.116465266s ago: executing program 1 (id=1134):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000780)="5c00000012006bab9a3fe3d86e17aa0a046b876c1d0048007ea60864160af36504001a0038001de21831a0e69ee517d34460bc06002d98ef750dfe9e8fd44d17a9a2e3a1fd0000a705251e6182949a36fa886ca9b032a4178017253b", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x4048000)
recvmsg$kcm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000e00)=[{&(0x7f0000000240)=""/216, 0xd8}, {&(0x7f0000000400)=""/253, 0xfd}, {&(0x7f00000010c0)=""/4069, 0xfe5}, {&(0x7f0000000a00)=""/196, 0xc4}, {&(0x7f0000000b00)=""/94, 0x5e}, {&(0x7f0000000540)=""/225, 0xe1}, {&(0x7f0000000ec0)=""/192, 0xc0}, {&(0x7f0000000340)=""/168, 0xa8}], 0x8}, 0x40002002)
recvmsg$kcm(r0, &(0x7f0000000900)={0x0, 0x0, 0x0, 0x0, 0x0, 0x18}, 0x0)

1.116105806s ago: executing program 0 (id=1135):
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r0, 0x89a3, &(0x7f0000000900)={'bridge0\x00', @broadcast})
r1 = socket$kcm(0x15, 0x5, 0x0)
sendmsg$kcm(r1, &(0x7f0000000ac0)={0x0, 0x0, 0x0}, 0x0)
r2 = socket$kcm(0x11, 0x2, 0x0)
setsockopt$sock_attach_bpf(r2, 0x107, 0x14, &(0x7f0000000000), 0x4)
r3 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xf1, 0x0, 0x0, 0x0, 0x0, 0xb, 0x83549, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x1, @perf_config_ext={0x65f8, 0x5}, 0x231c, 0x4, 0x0, 0x0, 0x2, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0xb)
socket$kcm(0x10, 0x2, 0x4)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x10f, 0x87, 0x0, 0x0)
sendmsg(0xffffffffffffffff, 0x0, 0x4)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080))
r4 = perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x52, 0x1, 0x0, 0x0, 0x0, 0x4, 0x82, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7d, 0x0, @perf_config_ext={0x3, 0x8001}, 0x0, 0x2e, 0xfffffbff, 0x4, 0x2, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r4, 0x40042408, r5)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0xe}, 0x0, 0x2, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000380)=[{}, {&(0x7f0000000500)}, {&(0x7f0000000440)="7137fc2cffcd6318d3b03cdd90ef215e91c9d611a61aca930c33ceca52691a4690185bc0c114bcfc1bc3de10acad7f98f1888ffaf61a63140c323e4c43fbf3e682fe95a32e4260e7c762961b5daa0157989788b463f6dd323f51bb8bb68ed0a251c3573d64c3b7f4835afbff053589b4515308dabcf1ffe6ed2b2f8b9de82cf028c775d8582a9ab39a5ff3cf1e887c20e145e5dd4e4633a2855cf4e49cd6a5255dc2ff223ab682e3b612b03b04c4b4d83d6a41e22e8b2e0885c2844a4280", 0xbe}, {&(0x7f0000000580)}], 0x4}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0xf5ff)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r6 = socket$kcm(0x2, 0x3, 0x84)
sendmsg$inet(r6, &(0x7f0000000700)={&(0x7f0000000000)={0x2, 0x0, @private=0xa010101}, 0x10, &(0x7f0000000540)=[{&(0x7f00000001c0)="97cafebcb71250cb5d687d010e088fee0f13fd7ddde44c52cc8a5ee41e78cb0a3605521895df02a9c30ff52a2101328f8732eb4680875283fd16a6d00000000000000000635988ffffdb99a5ba5625f9c1ca0937ab32e0f075568b0000000000000000c6ece05d746534ec4a866371ccc5bcc1bdd797d985661769f7c42b5db6746eaf4301f7210fec0e5915c5b894207f73894db7d996610e14d7e4512e22814fc91974b6a95cd5b24a75aef2104dc415a2ee4eaa13fd2e2843c7ca7a86a7c2c6ab59611ed7981df623eee2ae51c716c5834fe56adca7ba7e153ef389b044bc9d5ae5cf9db9825d5f596ae76a83bfdc36d7f7d0791c1124e560904f2114a21174268073ae24e5283c68d82829d99e5be9f972a2fb0000000000000100000099653fa970ea29738db9fa0ef90a37c8cee3654fd4d0d5636e4b013d990501dca77d03008d6be1df1ca68f03c45a34f8a715c8a632", 0x154}, {&(0x7f0000000740)="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", 0x437}], 0x2, &(0x7f0000000040)=ANY=[@ANYBLOB="280000000000000000000000070000000717a87f000001ac141400e0000001ac1e0001ac1414bb011c000000000000000000000008000000", @ANYRES64=r6], 0x48}, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r3, 0x40042408, 0xffffffffffffffff)
r7 = socket$kcm(0x10, 0x400000002, 0x0)
setsockopt$sock_attach_bpf(r7, 0x10e, 0xb, &(0x7f00000001c0), 0x4)
r8 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="1400000038000b63d25a8064c15494f90324fc60", 0x14}], 0x1}, 0x0)
write$cgroup_subtree(r7, 0x0, 0xfe33)
sendmsg$kcm(r2, &(0x7f0000000240)={&(0x7f0000000280)=@x25={0x9, @remote={'\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc', 0x3}}, 0x80, 0x0}, 0x4000)

1.115671692s ago: executing program 2 (id=1137):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="0e00000004000000080000000b"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002300000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='contention_end\x00', r1, 0xe4}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1802"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r2)
r3 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETOFFLOAD(r3, 0xc004743e, 0x110e22fff6)
ioctl$TUNGETVNETLE(r2, 0x4010744d, &(0x7f0000000180))

1.114137956s ago: executing program 1 (id=1138):
socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x8913, &(0x7f0000000cc0)='lo:\x96o8\x14d\xa1\xba\xda\xd1\xa0J\x12tQ\xb16\xe3\xd7\\b\x8b\x1f\xa1Y\xad4\x90\x9d`\xd2\x98\x00\x00l \'Y\x17]\x15c\xcaR\xdd\x98OC\x89\xff\xe6\x84\xe2\x05\x80w\xd2|D\x8dK\x14Bx\xcbuH\xc2\xeec\xbf<>Y\x1a\xfc\x1f9OB\x81\x89\xb7l\xed}\xe5\x186\xc5q@n\xb4\xb6s\xb0\x00\x00\x00\x00\x02\b\x00\x00\xda\xef\xecE\xec\xd5I\xb2\x9b\xfe\x8d\x90?\x00\xe9\xe4~g:\xc1\xb2ak\x96\xbb\xa7\xe2\xc0\xdc\xf9Q\b\xeb\x01\x00\x00\x00\xd3\r7\x8e\xabd\x0ftp\x82\xae\xd2\x15\x8e+c\xf6\xbf\xe14>\xa6-\xa5c\xde\xd7\xab\xea\x1f\xd5s2\x9cVF\xd5\x18\xfe\x0f\x8f \x01\x00\x00\xb1\x88\xebW_\xa5\xe1\xf6\x8aj\xca\xf8m\xab\xe8\x99\xeb\xe1\xde\x8at\x1c\x80\xfc\xb0\x95\xa2\xa7\xd7,Y]E8\x83X\xf5F\xdc\x88-\xf5\xb0\xb5^\xdb\x1a\xb6\xaa\x14\xe2\rh^J-\xd1\xfc\xfa 6(%\x1c\xb5\xbf\xb6\x90\xb4\xc2\x7f]/\xb3\xe7\xc9\'\x94\xcfIo\xdf\x04\x95\xb5\x06\x84\x1fH>\xda\xc5\x04 \x94\x88\xeb\'\xd4;6\x7f\xd9\x99-\x1b|G\x8d\xd4\xb9%\xaaQ\xa0K\x10\x1f\x9c,\x113\x7f\x03\x93\xe1\xcc\xe7f\r\xf3\xff0\f\x82%_\x92\x8b\xc4\xb9\xd9\xe7\xf2\xe4\xc1i\x03\x9d\xdd\x1bj\xdf\xacg\xe3\xa0S\xd3\x8a\xe1n\x97\xea\xf5\xa0\'\v\xe9\xa0\xf1 f\xaan\xcf\xb5i\xb6d\xbc\x92\v\xd58\x16\b\xb3_:\xa4!\ny\xc4&\nWMM\xa8\xc4\v\x9f\x01o\xf4\xab&\xb6\x17\x02!\xed\xff\xee$\xc89\x8cB0\xd1\xa8\xd4\xe6K0\xe1\xa3TS\x18\xe6x\x1f%P\x9fU)\x83E\n\x90M\r.\x85gn_\xb2\xe9\x8a\x1c\xe3\x93\xd8\xbc\xb6N\xc3\xe1\xafh\xa0iF\xdcq\xf9\x17\xd9i\x844E\x1a\x13\x9a\xe6\xd3\xab:PM\xfbe\xfe9\xd9\x94\x1dx\xd6\x03b\xf7\x10N\xd1\x93\rU\x7fy\x18tE\xf1*\x9a0Z\x9f\xdc{\x13\xf6\xb7\xf7\xe6=\x9cD\x108\x8eS\xa0\xd0\xa7\tn\xd9\xae\xc0\x18~x[\x85Y\xb2\x82w\x150\x97\xba\xe6\xca\xb1\xa3\x02\x14^\xbdZ\xae\xf5/\xcf\xb8\xea8Uw\x92`\"2\x81j\xbb\x87+\x89\xc5<J\x1f\xba\xfc\x90(\x985\x93\xa8\xd4\xf0\xbdTy\x18\xc8\xa0\xbb\x99\x8c\xe0Q\xffCl\xbdX~3\xa1\xa2\xf4\xd9\xf7\xc7\xfb\xce\x959x\xfeW\r\xf0{\xcaT\xecp)=\x9d\xdfG8\xa1\xe3=\xa6\x00\x98\xc1\xb3\x91-\xab\'W\x8al?d<JN\xcb\xd4H\xb0_jO\xf3\x90\xe8/l\xdfg)\x8d#\xfdo\xa9L\xdeA*\xec\xa1\x14,\xe8\x8d^\xb9r=\xc0\x18\xd4\x11dU[Ry\xed\xd6\x97\x8a\xe8\xca\x99\x10\x8e\xc8P\xa3\xae/\xdaof\x06\x7f\xf7\x80$f\b\x92\xae\xeb\xdd\"\x89\xb8\xf0\xc3\b\x00\x00\x00\x00\a\xf6\xfc\x1d\xd4\x893\xeb)\xc1\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00O!\xd2q\xda}\xe2\xa2\xfe\xfd)\\\xdf\x9aN\\\xaeyc\xe4g\xc0\x8a\n\v{\xa9H\\\xd1\x9d')

1.010648952s ago: executing program 1 (id=1139):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000100)="1c0000001a006b00103fe3dc6e080000810000001000b25700000864", 0x1c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)

248.021528ms ago: executing program 1 (id=1140):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x12, 0xb, 0x8, 0x2}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r1}, &(0x7f0000000040), &(0x7f0000000280)=r0}, 0x20)
r2 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r2, &(0x7f0000001740)={0x0, 0x0, 0x0}, 0x0)
setsockopt$sock_attach_bpf(r2, 0x110, 0x2, 0x0, 0x0)
r3 = perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x52, 0x1, 0x0, 0x0, 0x0, 0x7ff0, 0x82, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7d, 0x1, @perf_config_ext={0x407fff, 0xaea}, 0x14105, 0x2e, 0xfffffbff, 0x3, 0x2, 0x0, 0x6, 0x0, 0x0, 0x0, 0xa9e6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000700)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
recvmsg$unix(r4, &(0x7f0000000400)={0x0, 0x0, 0x0}, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000f80)={0x5, 0x5, &(0x7f00000005c0)=ANY=[@ANYBLOB="1808000000000000000000000000000018000000e5020000000000000000000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r3, 0x40042408, r6)
setsockopt$sock_attach_bpf(r5, 0x1, 0x32, 0x0, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x8, 0x830d}, 0x0, 0x2, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x20000000)
ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4020940d, 0x0)
getpid()
socket$kcm(0x10, 0x2, 0x0)
socketpair$tipc(0x1e, 0x1, 0x0, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x48, &(0x7f0000000000), 0x4)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r7 = syz_open_procfs$namespace(0x0, &(0x7f0000000180)='ns/pid\x00')
ioctl$SIOCSIFHWADDR(r7, 0x4030582b, &(0x7f0000000240)={'lo\x00', @local})
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xb, 0x6, &(0x7f0000000000)=ANY=[@ANYBLOB="060000000020000069110a00000000008510000002000000850000000500000095000000000000009500a50500000000"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70)
close(0xffffffffffffffff)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000180), 0x0)
r8 = perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x7}, 0x5f21df7aec8d40fb, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x53, 0x0, 0x0, 0x0, 0x0, 0x0, 0x18083, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7a, 0x1, @perf_bp={&(0x7f0000000200), 0x2}, 0x730d, 0x2e, 0xfffffbff, 0x5, 0x4, 0x3, 0x2, 0x0, 0x0, 0x0, 0xa9e8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
close(r8)

245.725822ms ago: executing program 2 (id=1141):
r0 = socket$kcm(0x29, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x89e2, &(0x7f0000000000)={r0})
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x89e2, &(0x7f0000000b80)={<r1=>0xffffffffffffffff})
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x89e2, &(0x7f0000000080))
close(r1)
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x89e2, &(0x7f0000001000))

191.043752ms ago: executing program 2 (id=1142):
perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x50, 0x1, 0x0, 0x0, 0x0, 0x7fef, 0x82, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7d, 0x1, @perf_bp={0x0, 0xb}, 0x14301, 0x2e, 0xfffffbff, 0x3, 0x2, 0x0, 0x4, 0x0, 0x0, 0x0, 0xa9e6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f00000000c0)=ANY=[@ANYBLOB="9feb0100180000000000000014000000140000000a00000000000000010000060400000006000000000000000000000000005f"], 0x0, 0x36}, 0x28)

110.65223ms ago: executing program 0 (id=1143):
r0 = socket$kcm(0x2, 0x3, 0x84)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="00000000000000000200"/20, @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000094"], 0x50)
ioctl$sock_kcm_SIOCKCMATTACH(r0, 0x890b, &(0x7f0000000100))

109.465461ms ago: executing program 0 (id=1144):
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x7, 0xffffffffffffffff}, 0x828, 0x0, 0x0, 0x0, 0x9, 0x800000, 0x0, 0x0, 0x0, 0x0, 0x40}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=@base={0xb, 0x4f, 0x200cc, 0x6, 0x5}, 0x50)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x2, r0}, 0x38)

50.761568ms ago: executing program 2 (id=1145):
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="b7000000ff000000bfa30000000000000703000018feffff720aa9fff8ffffff71a400fe0000000072030200000000131d400500000000004704000001ed00006b030000000000001d440000000000007a0a00fe00ffffffc303000041000000b5000000000000009500000000000000023bc065b58111c6dfa041b63af4a3912435f1a864a710e4d58db6a693002e7f3be361917adef6ee1c8a2a4f8ef1e50becb19bc461e91a7109000000000190f32050e436fe275daf51efd601b6bf01c8e8b1b526375ec4dd6fcd82e4fee5bef7af9aa0d7d600c095199fe3ff3128e599b0eaebbdbd732c9cc00eec363e4a8f6456e2cc21557c0afc646cb7798b3e6440c2fbdb00c37dfca3e35208b0bb0d2cd829e654400e2438ec649dc74a28610643a98d9ec21ead2ed51b104d4d91af25b845d8a7925c3109b151b8b9f75dd08d123deda88c658d42ecbf28bf7076c15b463bebba2c598b4fc72f526d8e8afcb913466aaa7f6df70252e79166d858fcd0e06dd31af9612f2460d0b11008e59a5923906f88b53987ad1714e72ba7a54f0c33d39000d06a59ff616236fd9aa58f2477184b6a89adaf17b0a6041bdef728d236619074d6ebdfd1f5089048ddff6da40f9411fe722631cb467600ade70063e5291569b33d21dae356e1c51f03a801be8189679a16da18ec0ae564162a27afea62d84f3a1074649c6bc6ea9f2bca4464f56e24e6d2105bd901204a1deeed4155617572652d950ad31928b0b0c0dc2869f478341d02d0f5ad94b081fcd507acb4b9c65fee9d5a17f48a7382f13d000000225d85ae49cee383dc5049076b989b40000000000000da60d2ae20cfb91d6acdf538f9ce2bdb1ab062cd54e67011d355d84ce97bb0c6b4a595e487efbb2d71cde2c140952f9a0f0bc6980fe78683ac5c0c31032599ddd71063be9261b2e1aab1675b34a22048ef8c126aeef5f510a8f1aded94a129e4aec6f8d9ab06faffc3a15d96c2ea3e2e04cfe031b2875353193f82ade69d0540059fe6c7fe7cd8697502c7596566d674e425da5e87e50002a9f6590521d31d3804b3e0a1053abdc31282dfb15eb6841bb64a1b304502dda787343ce3c953992e4a982f3c48153baae244e7bf37548c7f1a4cad2422ee965a38f7defbd2160242b104e20dc2d9b0c35608d402ccdd9069bd50b994fda7a9de5c028d6112a0c2d21b2dc98814106dec28eaeb883418f562ae00003ea96d10f172c0374d6eed826416050000000bfe9b4a9c5a90ff59d54d1f92ecc4e95dd2d18383117c039862198899b212c53218294270a1ad10c80fef7c24d47afce829ba0f85da6d888f18ea40ab959f6074ab2a40d85d15017ab513cdc6c0e57fb1c1ca571380d7b4ead35a385e0b4a26b702396df7e0c1e02b6e4114f244a9bf93f04bf072f0861f7580e69db384ac7eeedcf2ba1a9508f9d6aba582a896a9f1ffa968eacea75caf822a7a63ba34015ea5aacb118888876b617398d00a7526103ad2a3b1832371fe5bc621426d1ed0a4a99702cc1b6912a1e717d29135753208165b9cdbae2ed9dc7358f0ebadde0b727f27feeb744ddcc536cbae315c7d1fe1399562ba6824840bd2951680f6f2f9a6a8346962a350845ffa0d829e4f79adc287906943408e6df3c3bfd03aac93df8866fb010aec0e92bed1fe39af169d2a466f0db6f3d9436a7d55fc30511d00000000c95265b2bd83d64a532869d701723fed000000007baa5b6a686b50f0937f778af083e08b7ab6cd9c65ba55f6138a757ebd0ed93517a6b244f9acf41ac5d73a008364e0606a594817031fc2f52c8785fe0721719b3d654026c6ea08b83b123145ab5703dad844ceb201ddc42efc54fa84323afc4c10eff462c8843187f1dd48ef3fa293d364b9effa9a9406ac2683e231d4774d582956ff0f40b10ca94f6feeb2893c17888e1cdba94a6ea80c33ead5722c3293a493f1479517dd88261458f40d31fe8df15efaaeea831555877f9538d6ee6ba65893ff1f908ba7554ba583fef3ec7932f5954f31a878e2fae6691d1aee1da02ba516467df3e7d1daac43738012e4fee18a79e59e1712c8c546768e5722da19fcdb4c2890cda1f96b952511e3a49d694d625e0b2f808890205f3a6da2819d2f9e77c7c64affa54fec0136cbafa5f62e96753b639a924599c1f69219927ea5301fff0a6063d427f0688430754c02180d61542c25000000000000000005a7b57f03ca91a01ba2e30ca99e8ebc15ecb4d91675767987d146aef7799738b292fd640dfef6b04d086f737a159d7e0c6e4d81ad64a8bbca485683252b15f36b788bce5ccdbaf75c94cb93499f6947a967a7bce14c6de4e7c0660d80010f5c653d22d49030a8c2a4ab595bf4238f18ca428dafc7ac96d404607a0000000051a2104f22e6db5a62b5089c1b45282d38864daa3ae81d6b0968d1d2867b91b7d120617d12d91db2633d6864da40b54783a17aaeb6737c32040098e354cc98dcfe23ad01bd1c61563e69ffe1c2c73e1661261173f359e93d2c5e424c17998809ec8f0232b3955e052a4cecd89008f70314a0bdd491ec86a4555d89fe0120f64c62e8e3ed8bcb45202c3d4bbec8d722824c0ebca8db1ea4a0032f37ff559be78537756ab5bbe4fe9af5d785d0128171c90d9900ce2532b0f9d01c4b45294fbba468df3e1be62e754598e47df6bd06431c94bc5d047899fd219f448bf9189c65c9d91eda6b52a373803a9efe44f86909bc90addb7b9aee813df534aac4b3093c91b8068cd849904568916694d461b76a58d88cf0f520310a1e9fdc18cde98d662eee07751532d5e7d0a8811922929e085392ab3d1311b8243266d87047f601fa88a0da36b9f302e8262395174328f2482d14008de83070f66b2b388f0f744f143fdec90ba5a82668d5fac114c13955ad6dca5db2231d8ba14c54c47ed04a4b4ace17e357e1d6432399f87a7a14245bbd796a09313b247b95d37ff40a404bdad74bd20000000000000000000099fef7cd7af3ce64a92f95d89d125b1e641240d7e5e2fa3d1f7684448c3e3822d617e205061298b939a191be4b48e169bde2cae3accc5bd40a2968b59c93d35f8e42366fdef907000000f01ce68abff28861aac8302d268569dd42e194e330c7aaa54ebbcefd23f21ce8153b9926e12e015cb56119df72c7533a48d028a3a981463f25c068d4410dad0c74e2a9478fa3be18a1a27bc46dd12305a1ae9dd19e8d525206c0a728cfd42193abe8130b51d6c9b94c5513df2d85e8c01a2d69841f3d7799ac04bdc590bb1c89b9c695f163e57343c9bfb59909433c9001c5f8b23e38534a538fc933cac6c2a92d038df638a0f226df9fb857bd414c2cd69985e8053e3dfa41614d7c74d04d8c2471041d17c730fad28395f8d4688898cd58b9d600c851626529bb581012fd7a8139166fd5e59c84f4ab07001b99c028db4cb9680c8035f967db18de738844da7e260a830c1ffa49f5af3c15423a0e315acb82a3e89218cb314e68fda4d94aa1d815babc13b9fd336d205c5913ef670000000000000000ba470bfe62fe293308b2a146f12a4c205235924cee765d94b1cc06641247c773ab8d1abbeb03ea68"], &(0x7f0000000080)='GPL\x00', 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xffffffffffffff11, 0x0, 0xffffffffffffffff, 0xfffffffffffffea5}, 0x48)

774.379µs ago: executing program 2 (id=1146):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000f40)={0xe, 0x3, &(0x7f0000000000)=ANY=[@ANYBLOB="720ac4ff000000007110b7000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff}, 0x94)

191.72µs ago: executing program 0 (id=1147):
r0 = socket$kcm(0x2, 0x200000000000001, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12}, 0x48)
r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000180)=ANY=[], &(0x7f0000000000)='GPL\x00'}, 0x94)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000580)=ANY=[@ANYRES32=r2, @ANYRES32=r3, @ANYBLOB="0500"], 0x10)
r4 = perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x52, 0x1, 0x0, 0x0, 0x0, 0x7ff0, 0x82, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7d, 0x1, @perf_config_ext={0x407fff, 0xaea}, 0x14105, 0x2e, 0xfffffbff, 0x3, 0x2, 0x0, 0x6, 0x0, 0x0, 0x0, 0xa9e6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000700)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
socket$kcm(0xa, 0x922000000003, 0x11)
recvmsg$unix(r5, &(0x7f0000000400)={0x0, 0x0, 0x0}, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000f80)={0x5, 0x5, &(0x7f00000005c0)=ANY=[@ANYBLOB="1808000000000000000000000000000018000000e5020000000000000000000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000100)='virtio_transport_recv_pkt\x00'}, 0x10)
ioctl$PERF_EVENT_IOC_SET_BPF(r4, 0x40042408, r7)
setsockopt$sock_attach_bpf(r6, 0x1, 0x32, 0x0, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x8, 0x830d}, 0x0, 0x2, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x20000000)
ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4020940d, 0x0)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f00000001c0)={<r8=>0xffffffffffffffff})
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="0200000004020000040000000800000014100000", @ANYRES32, @ANYBLOB='\x00'/15, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r10 = socket$kcm(0x10, 0x2, 0x0)
r11 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x1, 0x3, &(0x7f0000000340)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$sock_attach_bpf(r10, 0x1, 0x32, &(0x7f00000001c0)=r11, 0x4)
sendmsg$kcm(r10, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000000)="d8000000300009116144f782db44b904021d08000500142603600e120900210000000401a8001600a400014006000000036010fab94dcf4f0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a98516277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e012dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5d00040000d6e4edef3d93452a92954b43370e970100"/216, 0xd8}], 0x1}, 0x0)
r12 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="0d00000004000000040000001400000000000000", @ANYRES32=r9], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000500)=@base={0xd, 0xc, 0x4, 0x2, 0x0, r12}, 0x50)
setsockopt$sock_attach_bpf(r8, 0x1, 0x48, &(0x7f0000000000), 0x4)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, 0x0, &(0x7f0000003ff6)='GPL\x00', 0x2, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xb, 0x6, 0x0, &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000740)={{r2}, &(0x7f00000006c0), &(0x7f0000000700)=r1}, 0x20)
sendmsg$inet(r0, &(0x7f0000000080)={&(0x7f0000000140)={0x2, 0x4001, @dev}, 0x10, 0x0}, 0x20008000)
recvmsg(r0, &(0x7f0000000e80)={0x0, 0x0, 0x0}, 0x112)

0s ago: executing program 2 (id=1148):
socketpair(0x1e, 0x1, 0x0, &(0x7f0000000040)={<r0=>0x0, 0x0})
ioctl$sock_kcm_SIOCKCMUNATTACH(r0, 0x89e1, &(0x7f00000000c0))

kernel console output (not intermixed with test programs):

Warning: Permanently added '[localhost]:6942' (ED25519) to the list of known hosts.
syzkaller login: [   48.158554][ T5809] cgroup: Unknown subsys name 'net'
[   48.270827][ T5809] cgroup: Unknown subsys name 'cpuset'
[   48.274839][ T5809] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   49.837492][ T5809] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   53.629424][   T54] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   53.635135][   T54] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   53.639206][   T54] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   53.642044][   T54] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   53.645111][   T54] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   53.651076][   T54] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   53.654575][   T54] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   53.659616][   T54] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   53.665068][ T5835] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   53.667707][ T5835] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   53.726945][ T5835] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   53.732256][ T5835] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   53.736620][ T5835] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   53.741104][ T5835] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   53.744869][ T5835] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   53.894818][ T5833] chnl_net:caif_netlink_parms(): no params data found
[   53.911321][ T5828] chnl_net:caif_netlink_parms(): no params data found
[   54.010349][ T5833] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.012845][ T5833] bridge0: port 1(bridge_slave_0) entered disabled state
[   54.016047][ T5833] bridge_slave_0: entered allmulticast mode
[   54.019276][ T5833] bridge_slave_0: entered promiscuous mode
[   54.026670][ T5833] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.030547][ T5833] bridge0: port 2(bridge_slave_1) entered disabled state
[   54.032950][ T5833] bridge_slave_1: entered allmulticast mode
[   54.035988][ T5833] bridge_slave_1: entered promiscuous mode
[   54.079301][ T5828] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.081786][ T5828] bridge0: port 1(bridge_slave_0) entered disabled state
[   54.084264][ T5828] bridge_slave_0: entered allmulticast mode
[   54.087002][ T5828] bridge_slave_0: entered promiscuous mode
[   54.102616][ T5833] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   54.106233][ T5828] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.108990][ T5828] bridge0: port 2(bridge_slave_1) entered disabled state
[   54.111480][ T5828] bridge_slave_1: entered allmulticast mode
[   54.114275][ T5828] bridge_slave_1: entered promiscuous mode
[   54.126553][ T5833] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   54.180868][ T5828] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   54.193329][ T5828] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   54.201519][ T5833] team0: Port device team_slave_0 added
[   54.204447][ T5837] chnl_net:caif_netlink_parms(): no params data found
[   54.226016][ T5833] team0: Port device team_slave_1 added
[   54.264075][ T5828] team0: Port device team_slave_0 added
[   54.266955][ T5833] batman_adv: batadv0: Adding interface: batadv_slave_0
[   54.270779][ T5833] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   54.280440][ T5833] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   54.294104][ T5828] team0: Port device team_slave_1 added
[   54.296793][ T5833] batman_adv: batadv0: Adding interface: batadv_slave_1
[   54.300641][ T5833] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   54.311403][ T5833] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   54.366299][ T5828] batman_adv: batadv0: Adding interface: batadv_slave_0
[   54.369097][ T5828] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   54.379540][ T5828] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   54.392189][ T5828] batman_adv: batadv0: Adding interface: batadv_slave_1
[   54.394602][ T5828] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   54.404383][ T5828] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   54.452083][ T5837] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.455195][ T5837] bridge0: port 1(bridge_slave_0) entered disabled state
[   54.458943][ T5837] bridge_slave_0: entered allmulticast mode
[   54.462760][ T5837] bridge_slave_0: entered promiscuous mode
[   54.484909][ T5833] hsr_slave_0: entered promiscuous mode
[   54.488808][ T5833] hsr_slave_1: entered promiscuous mode
[   54.492406][ T5837] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.495388][ T5837] bridge0: port 2(bridge_slave_1) entered disabled state
[   54.499992][ T5837] bridge_slave_1: entered allmulticast mode
[   54.503708][ T5837] bridge_slave_1: entered promiscuous mode
[   54.550080][ T5837] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   54.579354][ T5837] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   54.587247][ T5828] hsr_slave_0: entered promiscuous mode
[   54.590597][ T5828] hsr_slave_1: entered promiscuous mode
[   54.593565][ T5828] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   54.596758][ T5828] Cannot create hsr debugfs directory
[   54.653443][ T5837] team0: Port device team_slave_0 added
[   54.675861][ T5837] team0: Port device team_slave_1 added
[   54.704950][ T5837] batman_adv: batadv0: Adding interface: batadv_slave_0
[   54.707373][ T5837] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   54.716964][ T5837] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   54.735883][ T5837] batman_adv: batadv0: Adding interface: batadv_slave_1
[   54.738687][ T5837] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   54.747150][ T5837] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   54.783913][ T5837] hsr_slave_0: entered promiscuous mode
[   54.786321][ T5837] hsr_slave_1: entered promiscuous mode
[   54.788732][ T5837] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   54.791247][ T5837] Cannot create hsr debugfs directory
[   54.977280][ T5833] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   54.986970][ T5833] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   54.998323][ T5833] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   55.011347][ T5833] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   55.037990][ T5828] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   55.051581][ T5828] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   55.057063][ T5828] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   55.072294][ T5828] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   55.122725][ T5837] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   55.135416][ T5837] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   55.150145][ T5837] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   55.159071][ T5837] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   55.202290][ T5828] 8021q: adding VLAN 0 to HW filter on device bond0
[   55.221481][ T5833] 8021q: adding VLAN 0 to HW filter on device bond0
[   55.232084][ T5828] 8021q: adding VLAN 0 to HW filter on device team0
[   55.244994][ T5833] 8021q: adding VLAN 0 to HW filter on device team0
[   55.253602][ T4168] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.256237][ T4168] bridge0: port 1(bridge_slave_0) entered forwarding state
[   55.282202][ T4168] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.284697][ T4168] bridge0: port 2(bridge_slave_1) entered forwarding state
[   55.290348][ T4168] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.293455][ T4168] bridge0: port 1(bridge_slave_0) entered forwarding state
[   55.299360][ T4168] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.302470][ T4168] bridge0: port 2(bridge_slave_1) entered forwarding state
[   55.317000][ T5828] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   55.321655][ T5828] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   55.358686][ T5837] 8021q: adding VLAN 0 to HW filter on device bond0
[   55.401431][ T5837] 8021q: adding VLAN 0 to HW filter on device team0
[   55.431458][  T146] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.433883][  T146] bridge0: port 1(bridge_slave_0) entered forwarding state
[   55.445879][  T146] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.448276][  T146] bridge0: port 2(bridge_slave_1) entered forwarding state
[   55.484686][ T5837] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   55.494967][ T5837] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   55.512789][ T5828] 8021q: adding VLAN 0 to HW filter on device batadv0
[   55.543672][ T5828] veth0_vlan: entered promiscuous mode
[   55.550798][ T5828] veth1_vlan: entered promiscuous mode
[   55.569559][ T5828] veth0_macvtap: entered promiscuous mode
[   55.581525][ T5828] veth1_macvtap: entered promiscuous mode
[   55.593590][ T5833] 8021q: adding VLAN 0 to HW filter on device batadv0
[   55.607709][ T5828] batman_adv: batadv0: Interface activated: batadv_slave_0
[   55.615621][ T5828] batman_adv: batadv0: Interface activated: batadv_slave_1
[   55.620799][ T5828] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   55.623762][ T5828] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   55.626680][ T5828] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   55.632257][ T5828] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   55.670028][ T5837] 8021q: adding VLAN 0 to HW filter on device batadv0
[   55.694575][ T5833] veth0_vlan: entered promiscuous mode
[   55.715756][ T1099] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   55.715817][ T5833] veth1_vlan: entered promiscuous mode
[   55.721637][ T1099] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   55.724084][ T5835] Bluetooth: hci0: command tx timeout
[   55.728972][ T5835] Bluetooth: hci1: command tx timeout
[   55.765732][ T1099] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   55.770382][ T1099] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   55.775222][ T5837] veth0_vlan: entered promiscuous mode
[   55.790821][ T5837] veth1_vlan: entered promiscuous mode
[   55.798384][ T5835] Bluetooth: hci2: command tx timeout
[   55.802872][ T5833] veth0_macvtap: entered promiscuous mode
[   55.814452][ T5833] veth1_macvtap: entered promiscuous mode
[   55.830632][ T5837] veth0_macvtap: entered promiscuous mode
[   55.836440][ T5828] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   55.844502][ T5837] veth1_macvtap: entered promiscuous mode
[   55.857033][ T5833] batman_adv: batadv0: Interface activated: batadv_slave_0
[   55.864642][ T5833] batman_adv: batadv0: Interface activated: batadv_slave_1
[   55.874059][ T5833] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   55.877039][ T5833] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   55.893255][ T5833] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   55.896167][ T5833] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   55.921287][ T5837] batman_adv: batadv0: Interface activated: batadv_slave_0
[   55.936515][ T5837] batman_adv: batadv0: Interface activated: batadv_slave_1
[   55.959144][ T5837] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   55.962075][ T5837] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   55.964987][ T5837] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   55.970568][ T5837] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   55.994685][   T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   55.997503][   T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   56.066553][ T4168] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   56.070102][ T4168] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   56.083632][ T4168] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   56.086252][ T4168] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   56.123182][   T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   56.126466][   T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   56.813520][ T5934] syz.1.20 (5934) used greatest stack depth: 20160 bytes left
[   57.103153][ T5943] netlink: 'syz.1.24': attribute type 10 has an invalid length.
[   57.142660][ T5945] netlink: 'syz.1.25': attribute type 29 has an invalid length.
[   57.330576][ T5955] Zero length message leads to an empty skb
[   57.798179][ T5835] Bluetooth: hci1: command tx timeout
[   57.799147][ T5222] Bluetooth: hci0: command tx timeout
[   57.879971][ T5222] Bluetooth: hci2: command tx timeout
[   57.980223][ T5990] netlink: 65047 bytes leftover after parsing attributes in process `syz.2.44'.
[   58.663637][ T6002] netlink: 132 bytes leftover after parsing attributes in process `syz.1.48'.
[   58.943755][ T6013] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   58.954389][ T6013] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[   59.298250][ T6030] netlink: 22 bytes leftover after parsing attributes in process `syz.0.62'.
[   59.557343][ T6051] netlink: 'syz.0.72': attribute type 10 has an invalid length.
[   59.564441][ T6051] netlink: 40 bytes leftover after parsing attributes in process `syz.0.72'.
[   59.569955][ T6051] batman_adv: batadv0: Adding interface: hsr_slave_1
[   59.572298][ T6051] batman_adv: batadv0: The MTU of interface hsr_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   59.583305][ T6051] batman_adv: batadv0: Interface activated: hsr_slave_1
[   59.586393][ T6052] : renamed from hsr0 (while UP)
[   59.878194][ T5222] Bluetooth: hci0: command tx timeout
[   59.879971][ T5222] Bluetooth: hci1: command tx timeout
[   59.968816][ T5835] Bluetooth: hci2: command tx timeout
[   60.114443][ T5835] Bluetooth: hci0: unexpected event 0x33 length: 15 > 10
[   60.410199][ T6111] netlink: 830 bytes leftover after parsing attributes in process `syz.2.102'.
[   60.495215][ T6125] netlink: 'syz.0.107': attribute type 25 has an invalid length.
[   61.427771][    C0] hrtimer: interrupt took 41057 ns
[   61.464444][ T6131] netlink: 'syz.2.111': attribute type 10 has an invalid length.
[   61.542357][ T6131] team0: Port device geneve1 added
[   61.679914][ T6143] netlink: 56 bytes leftover after parsing attributes in process `syz.1.115'.
[   61.968249][ T5835] Bluetooth: hci1: command tx timeout
[   61.969228][ T5222] Bluetooth: hci0: command tx timeout
[   62.037868][ T5222] Bluetooth: hci2: command tx timeout
[   62.083504][ T6165] netlink: 40 bytes leftover after parsing attributes in process `syz.2.126'.
[   62.118746][ T6167] netlink: 'syz.0.127': attribute type 10 has an invalid length.
[   62.121330][ T6167] team0: Device ip6_vti0 is of different type
[   62.151918][ T6169] netlink: 'syz.2.128': attribute type 21 has an invalid length.
[   62.154510][ T6169] netlink: 168 bytes leftover after parsing attributes in process `syz.2.128'.
[   62.463206][ T6184] macsec0: entered promiscuous mode
[   62.465031][ T6184] macsec0: entered allmulticast mode
[   62.466807][ T6184] veth1_macvtap: entered allmulticast mode
[   63.311361][ T6193] netlink: 5 bytes leftover after parsing attributes in process `syz.2.138'.
[   65.178645][ T6259] netlink: 60 bytes leftover after parsing attributes in process `syz.0.160'.
[   65.181847][ T6252] netlink: 60 bytes leftover after parsing attributes in process `syz.0.160'.
[   65.265591][ T6265] netlink: 149044 bytes leftover after parsing attributes in process `syz.1.166'.
[   65.305185][ T6269] syzkaller1: tun_chr_ioctl cmd 1074025673
[   65.720565][ T6284] netlink: 'syz.0.174': attribute type 21 has an invalid length.
[   65.723317][ T6284] netlink: 176 bytes leftover after parsing attributes in process `syz.0.174'.
[   66.092346][ T6300] Illegal XDP return value 2981066272 on prog  (id 86) dev N/A, expect packet loss!
[   66.974661][ T6317] netlink: 'syz.2.188': attribute type 10 has an invalid length.
[   66.977410][ T6317] bridge0: port 3(team0) entered blocking state
[   66.980885][ T6317] bridge0: port 3(team0) entered disabled state
[   66.983543][ T6317] team0: entered allmulticast mode
[   66.985344][ T6317] team_slave_0: entered allmulticast mode
[   66.992857][ T6317] team_slave_1: entered allmulticast mode
[   66.994892][ T6317] geneve1: entered allmulticast mode
[   66.998837][ T6317] team0: entered promiscuous mode
[   67.000764][ T6317] team_slave_0: entered promiscuous mode
[   67.002991][ T6317] team_slave_1: entered promiscuous mode
[   67.005050][ T6317] geneve1: entered promiscuous mode
[   67.011455][ T6317] bridge0: port 3(team0) entered blocking state
[   67.014012][ T6317] bridge0: port 3(team0) entered forwarding state
[   67.026054][ T6315] pim6reg1: entered allmulticast mode
[   67.432790][ T6335] netlink: 'syz.1.197': attribute type 2 has an invalid length.
[   67.436196][ T6335] netlink: 'syz.1.197': attribute type 1 has an invalid length.
[   67.439751][ T6335] netlink: 193500 bytes leftover after parsing attributes in process `syz.1.197'.
[   67.443057][ T6335] nbd: couldn't find device at index 65542
[   67.773748][ T6349] netlink: 176 bytes leftover after parsing attributes in process `syz.1.204'.
[   70.924770][ T1363] ieee802154 phy0 wpan0: encryption failed: -22
[   70.927048][ T1363] ieee802154 phy1 wpan1: encryption failed: -22
[   70.998435][ T6359] netlink: 60 bytes leftover after parsing attributes in process `syz.1.207'.
[   71.003070][ T6358] netlink: 60 bytes leftover after parsing attributes in process `syz.1.207'.
[   71.011876][ T6359] netlink: 60 bytes leftover after parsing attributes in process `syz.1.207'.
[   71.239353][ T6380] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[   71.241612][ T6380] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[   71.480611][ T6404] netlink: 763 bytes leftover after parsing attributes in process `syz.0.228'.
[   71.743577][ T5222] Bluetooth: hci1: unexpected event 0x08 length: 15 > 4
[   72.059205][ T6461] netlink: 44 bytes leftover after parsing attributes in process `syz.2.257'.
[   72.065798][ T6461] netlink: 'syz.2.257': attribute type 3 has an invalid length.
[   72.098902][ T6467] warning: `syz.2.260' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   72.252354][ T6477] netlink: 'syz.2.265': attribute type 37 has an invalid length.
[   72.716709][ T6495] syz.1.272 uses obsolete (PF_INET,SOCK_PACKET)
[   72.913086][ T6510] netlink: 16255 bytes leftover after parsing attributes in process `syz.0.278'.
[   73.408718][ T2203] cfg80211: failed to load regulatory.db
[   73.415066][ T6525] netlink: 'syz.1.285': attribute type 10 has an invalid length.
[   75.254345][ T6593] netlink: 'syz.0.316': attribute type 10 has an invalid length.
[   75.257008][ T6593] netlink: 40 bytes leftover after parsing attributes in process `syz.0.316'.
[   75.260853][ T6593] ipvlan1: entered promiscuous mode
[   75.262781][ T6593] ipvlan1: entered allmulticast mode
[   75.264735][ T6593] veth0_vlan: entered allmulticast mode
[   75.270183][ T6593] bridge0: port 3(ipvlan1) entered blocking state
[   75.272994][ T6593] bridge0: port 3(ipvlan1) entered disabled state
[   75.280318][ T6593] A link change request failed with some changes committed already. Interface ipvlan1 may have been left with an inconsistent configuration, please check.
[   76.324610][ T6625] netlink: 'syz.2.331': attribute type 1 has an invalid length.
[   76.327679][ T6625] netlink: 168864 bytes leftover after parsing attributes in process `syz.2.331'.
[   76.474290][ T5222] Bluetooth: hci2: Malformed LE Event: 0x0d
[   76.861027][ T6665] netlink: 144 bytes leftover after parsing attributes in process `syz.0.350'.
[   76.947095][ T6670] netlink: 'syz.0.352': attribute type 10 has an invalid length.
[   77.719469][ T6680] netlink: 144 bytes leftover after parsing attributes in process `syz.2.356'.
[   77.762292][ T6670] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[   77.949038][ T6691] netlink: 40 bytes leftover after parsing attributes in process `syz.0.361'.
[   78.001828][ T6693] netlink: 'syz.2.363': attribute type 1 has an invalid length.
[   78.076959][ T6702] netlink: 60 bytes leftover after parsing attributes in process `syz.2.364'.
[   78.080871][ T6697] netlink: 60 bytes leftover after parsing attributes in process `syz.2.364'.
[   78.091315][ T6702] netlink: 60 bytes leftover after parsing attributes in process `syz.2.364'.
[   78.295565][ T6717] wg2: entered promiscuous mode
[   78.297263][ T6717] wg2: entered allmulticast mode
[   78.553252][ T6728] netlink: 199836 bytes leftover after parsing attributes in process `syz.1.378'.
[   78.582977][ T6728] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   78.586000][ T6728] batman_adv: batadv0: Removing interface: batadv_slave_0
[   78.595540][ T6728] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   78.600038][ T6728] batman_adv: batadv0: Removing interface: batadv_slave_1
[   78.993649][ T6740] netlink: 'syz.2.382': attribute type 4 has an invalid length.
[   79.073557][ T6728] syz.1.378 (6728) used greatest stack depth: 19704 bytes left
[   79.135479][ T6742] IPv6: NLM_F_REPLACE set, but no existing node found!
[   79.294679][ T6754] netlink: 809 bytes leftover after parsing attributes in process `syz.2.388'.
[   79.304468][ T6754] netlink: 130160 bytes leftover after parsing attributes in process `syz.2.388'.
[   79.502630][ T5222] Bluetooth: hci2: unexpected subevent 0x0a length: 150 > 30
[   79.506306][ T5222] Bluetooth: hci2: Invalid handle: 0x85b0 > 0x0eff
[   81.405610][ T6833] netlink: 'syz.0.423': attribute type 21 has an invalid length.
[   81.410115][ T6833] netlink: 'syz.0.423': attribute type 10 has an invalid length.
[   81.413482][ T6833] netlink: 55 bytes leftover after parsing attributes in process `syz.0.423'.
[   81.832952][ T6850] netdevsim netdevsim1: Direct firmware load for  failed with error -2
[   81.838135][ T6850] netdevsim netdevsim1: Falling back to sysfs fallback for: 
[   82.102660][ T6865] netlink: 763 bytes leftover after parsing attributes in process `syz.0.438'.
[   82.113484][ T6865] netlink: 'syz.0.438': attribute type 10 has an invalid length.
[   82.116737][ T6865] netlink: 40 bytes leftover after parsing attributes in process `syz.0.438'.
[   82.121631][ T6865] team0: entered promiscuous mode
[   82.125822][ T6865] team_slave_0: entered promiscuous mode
[   82.133298][ T6865] team_slave_1: entered promiscuous mode
[   83.911120][ T6865] team0: entered allmulticast mode
[   83.913267][ T6865] team_slave_0: entered allmulticast mode
[   83.915645][ T6865] team_slave_1: entered allmulticast mode
[   83.918610][ T6865] bridge0: port 3(team0) entered blocking state
[   83.921253][ T6865] bridge0: port 3(team0) entered disabled state
[   83.925140][ T6865] bridge0: port 3(team0) entered blocking state
[   83.928228][ T6865] bridge0: port 3(team0) entered forwarding state
[   84.285192][ T6889] netlink: 'syz.0.449': attribute type 5 has an invalid length.
[   84.749421][ T6905] netlink: 60 bytes leftover after parsing attributes in process `syz.1.456'.
[   84.761071][ T6904] netlink: 60 bytes leftover after parsing attributes in process `syz.1.456'.
[   84.767437][ T6905] netlink: 60 bytes leftover after parsing attributes in process `syz.1.456'.
[   86.033346][ T6970] tap0: tun_chr_ioctl cmd 1074025677
[   86.035617][ T6970] tap0: linktype set to 768
[   86.164693][ T6984] netlink: 'syz.1.493': attribute type 10 has an invalid length.
[   86.167300][ T6984] netlink: 40 bytes leftover after parsing attributes in process `syz.1.493'.
[   86.171969][ T6984] dummy0: entered promiscuous mode
[   86.174081][ T6984] bridge0: port 3(dummy0) entered blocking state
[   86.177239][ T6984] bridge0: port 3(dummy0) entered disabled state
[   86.179956][ T6984] dummy0: entered allmulticast mode
[   86.183930][ T6984] bridge0: port 3(dummy0) entered blocking state
[   86.186139][ T6984] bridge0: port 3(dummy0) entered forwarding state
[   87.054635][ T6997] netlink: 'syz.2.498': attribute type 3 has an invalid length.
[   87.057172][ T6997] netlink: 'syz.2.498': attribute type 4 has an invalid length.
[   87.067594][ T6997] netlink: 'syz.2.498': attribute type 5 has an invalid length.
[   87.071463][ T6997] netlink: 'syz.2.498': attribute type 6 has an invalid length.
[   87.074021][ T6997] netlink: 'syz.2.498': attribute type 7 has an invalid length.
[   87.076550][ T6997] netlink: 'syz.2.498': attribute type 7 has an invalid length.
[   87.079967][ T6997] netlink: 12902 bytes leftover after parsing attributes in process `syz.2.498'.
[   88.169609][ T7037] netlink: 'syz.0.514': attribute type 39 has an invalid length.
[   88.209914][ T7038] netlink: 'syz.2.515': attribute type 10 has an invalid length.
[   88.291502][ T7038] 8021q: adding VLAN 0 to HW filter on device bond0
[   88.299414][ T7038] bond0: entered promiscuous mode
[   88.301704][ T7038] bond_slave_0: entered promiscuous mode
[   88.304366][ T7038] bond_slave_1: entered promiscuous mode
[   88.307204][ T7038] bond0: entered allmulticast mode
[   88.311797][ T7038] bond_slave_0: entered allmulticast mode
[   88.313892][ T7038] bond_slave_1: entered allmulticast mode
[   88.317129][ T7038] team0: Port device bond0 added
[   89.642771][ T7113] netlink: 132 bytes leftover after parsing attributes in process `syz.0.551'.
[   89.684328][ T7111] netlink: 24032 bytes leftover after parsing attributes in process `syz.2.550'.
[   89.687487][ T7111] netlink: 104088 bytes leftover after parsing attributes in process `syz.2.550'.
[   89.696782][ T7111] netlink: 24032 bytes leftover after parsing attributes in process `syz.2.550'.
[   89.963833][ T7137] validate_nla: 1 callbacks suppressed
[   89.963846][ T7137] netlink: 'syz.1.562': attribute type 8 has an invalid length.
[   89.970481][ T7137] netlink: 'syz.1.562': attribute type 3 has an invalid length.
[   89.973703][ T7137] netlink: 153952 bytes leftover after parsing attributes in process `syz.1.562'.
[   90.130724][ T7149] netlink: 'syz.2.568': attribute type 13 has an invalid length.
[   90.133678][ T7149] netlink: 'syz.2.568': attribute type 58 has an invalid length.
[   90.136750][ T7149] netlink: 152 bytes leftover after parsing attributes in process `syz.2.568'.
[   90.252797][ T7163] netlink: 9275 bytes leftover after parsing attributes in process `syz.2.575'.
[   90.443213][ T7176] netlink: 6955 bytes leftover after parsing attributes in process `syz.0.580'.
[   90.449296][ T7176] netlink: 127868 bytes leftover after parsing attributes in process `syz.0.580'.
[   91.019481][ T7201] netlink: 'syz.1.591': attribute type 21 has an invalid length.
[   91.449644][ T7214] netlink: 'syz.0.594': attribute type 10 has an invalid length.
[   91.586685][ T7214] geneve1: entered promiscuous mode
[   91.684539][ T7214] geneve1: entered allmulticast mode
[   91.689437][ T7214] team0: Port device geneve1 added
[   91.751510][ T7223] netlink: 'syz.1.601': attribute type 21 has an invalid length.
[   91.879758][ T5222] Bluetooth: hci1: command 0x206a tx timeout
[   91.882179][ T5835] Bluetooth: hci1: Opcode 0x206a failed: -110
[   91.979330][ T7234] netlink: zone id is out of range
[   91.981055][ T7234] netlink: zone id is out of range
[   91.982763][ T7234] netlink: zone id is out of range
[   91.984556][ T7234] netlink: zone id is out of range
[   91.986345][ T7234] netlink: zone id is out of range
[   91.989154][ T7234] netlink: zone id is out of range
[   91.990886][ T7234] netlink: zone id is out of range
[   91.992598][ T7234] netlink: zone id is out of range
[   91.994363][ T7234] netlink: zone id is out of range
[   91.996192][ T7234] netlink: zone id is out of range
[   92.048679][ T7240] sit0: entered allmulticast mode
[   92.053624][ T7240] sit0: entered promiscuous mode
[   93.662454][ T7271] __nla_validate_parse: 1 callbacks suppressed
[   93.662465][ T7271] netlink: 4595 bytes leftover after parsing attributes in process `syz.2.623'.
[   93.670317][ T7271] netlink: 4595 bytes leftover after parsing attributes in process `syz.2.623'.
[   93.737220][ T7277] netlink: 12 bytes leftover after parsing attributes in process `syz.2.627'.
[   93.788119][ T5835] Bluetooth: hci2: unknown advertising packet type: 0x0c
[   93.896413][ T7293] netlink: 208080 bytes leftover after parsing attributes in process `syz.1.634'.
[   93.907241][ T7293] netlink: 'syz.1.634': attribute type 1 has an invalid length.
[   93.920603][ T7299] C: renamed from team_slave_0 (while UP)
[   93.923695][ T7299] netlink: 'syz.0.637': attribute type 8 has an invalid length.
[   93.966611][ T7303] netlink: 180 bytes leftover after parsing attributes in process `syz.2.640'.
[   94.506217][ T5835] Bluetooth: hci0: unexpected subevent 0x0a length: 150 > 30
[   94.509972][ T5835] Bluetooth: hci0: Invalid handle: 0x85b0 > 0x0eff
[   95.080973][ T7353] netlink: 55631 bytes leftover after parsing attributes in process `syz.1.660'.
[   95.130238][ T7319] syz.0.647 (7319) used greatest stack depth: 18280 bytes left
[   95.360297][ T7370] netlink: 199836 bytes leftover after parsing attributes in process `syz.0.668'.
[   96.996431][ T7450] syz.0.702 (7450) used greatest stack depth: 17728 bytes left
[   97.117465][ T7467] netlink: 'syz.1.710': attribute type 10 has an invalid length.
[   97.610940][ T7489] netlink: 9286 bytes leftover after parsing attributes in process `syz.1.719'.
[   97.665305][ T7491] netlink: 60 bytes leftover after parsing attributes in process `syz.2.720'.
[   97.669724][ T7491] caif0: entered promiscuous mode
[   97.671816][ T7491] caif0: entered allmulticast mode
[   97.674851][ T7491] netlink: 10 bytes leftover after parsing attributes in process `syz.2.720'.
[   98.805931][ T7528] netlink: 'syz.1.737': attribute type 29 has an invalid length.
[   98.815564][ T7528] netlink: 'syz.1.737': attribute type 29 has an invalid length.
[   98.857178][ T7532] __nla_validate_parse: 1 callbacks suppressed
[   98.857193][ T7532] netlink: 193500 bytes leftover after parsing attributes in process `syz.1.739'.
[   98.865028][ T7532] netlink: 'syz.1.739': attribute type 1 has an invalid length.
[   99.179993][ T7552] netlink: 144 bytes leftover after parsing attributes in process `syz.0.748'.
[   99.290043][ T7560] netlink: 'syz.0.752': attribute type 2 has an invalid length.
[   99.297364][ T7558] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[   99.302008][ T7558] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[   99.592508][ T5222] Bluetooth: hci1: unexpected event 0x04 length: 15 > 10
[   99.820849][ T7578] netlink: 'syz.2.761': attribute type 16 has an invalid length.
[   99.826085][ T7578] netlink: 156 bytes leftover after parsing attributes in process `syz.2.761'.
[   99.923495][ T7586] netlink: 56429 bytes leftover after parsing attributes in process `syz.2.765'.
[  100.434487][ T7610] net_ratelimit: 75 callbacks suppressed
[  100.434498][ T7610] openvswitch: netlink: Flow actions attr not present in new flow.
[  101.132042][ T7628] netlink: 'syz.1.785': attribute type 29 has an invalid length.
[  101.136181][ T7628] netlink: 'syz.1.785': attribute type 29 has an invalid length.
[  101.140336][ T7628] netlink: 'syz.1.785': attribute type 29 has an invalid length.
[  101.143834][ T7628] netlink: 'syz.1.785': attribute type 29 has an invalid length.
[  101.234850][ T7639] dvmrp1: tun_chr_ioctl cmd 35108
[  101.434448][ T7661] geneve0: entered promiscuous mode
[  101.470810][ T7661] bond0: (slave geneve0): Enslaving as an active interface with an up link
[  101.486886][ T7667] bridge0: port 4(ip6gretap0) entered blocking state
[  101.492511][ T7667] bridge0: port 4(ip6gretap0) entered disabled state
[  101.495030][ T7667] ip6gretap0: entered allmulticast mode
[  101.499956][ T7667] ip6gretap0: entered promiscuous mode
[  101.503195][ T7667] bridge0: port 4(ip6gretap0) entered blocking state
[  101.506056][ T7667] bridge0: port 4(ip6gretap0) entered forwarding state
[  101.652896][ T5222] Bluetooth: hci1: command 0x206a tx timeout
[  101.869668][ T5222] Bluetooth: hci0: unexpected event 0x05 length: 15 > 4
[  101.956381][ T7693] team0: Device ipvlan1 failed to register rx_handler
[  102.105929][ T7707] netlink: 199820 bytes leftover after parsing attributes in process `syz.1.822'.
[  102.127372][ T7709] caif0: entered promiscuous mode
[  102.130495][ T7709] caif0: entered allmulticast mode
[  102.185588][ T7704] netlink: 65039 bytes leftover after parsing attributes in process `syz.2.821'.
[  102.282304][ T7724] validate_nla: 8 callbacks suppressed
[  102.282313][ T7724] netlink: 'syz.2.829': attribute type 4 has an invalid length.
[  102.287077][ T7724] netlink: 'syz.2.829': attribute type 6 has an invalid length.
[  102.492579][ T7732] netlink: 'syz.0.832': attribute type 10 has an invalid length.
[  103.156594][ T7748] sit0: entered allmulticast mode
[  103.183254][ T7748] sit0: entered promiscuous mode
[  104.405979][ T7786] netlink: 'syz.1.857': attribute type 39 has an invalid length.
[  104.469194][ T7791] netlink: 166 bytes leftover after parsing attributes in process `syz.0.859'.
[  105.026565][ T7818] netlink: 180 bytes leftover after parsing attributes in process `syz.1.873'.
[  105.049727][ T7819] netlink: 16178 bytes leftover after parsing attributes in process `syz.2.872'.
[  106.159069][ T7843] netlink: 'syz.1.888': attribute type 1 has an invalid length.
[  106.352241][ T7858] netlink: 'syz.1.891': attribute type 21 has an invalid length.
[  106.662010][ T7889] netlink: 731 bytes leftover after parsing attributes in process `syz.2.905'.
[  106.931965][ T7905] netlink: 199820 bytes leftover after parsing attributes in process `syz.1.912'.
[  106.985102][ T7909] syzkaller0: entered promiscuous mode
[  106.987026][ T7909] syzkaller0: entered allmulticast mode
[  107.364783][ T5222] Bluetooth: hci1: Malformed LE Event: 0x1b
[  108.286060][ T7941] netlink: 'syz.2.930': attribute type 10 has an invalid length.
[  108.289841][ T7941] netlink: 'syz.2.930': attribute type 19 has an invalid length.
[  108.292446][ T7941] netlink: 156 bytes leftover after parsing attributes in process `syz.2.930'.
[  108.472982][ T7959] netlink: 'syz.1.938': attribute type 5 has an invalid length.
[  108.475518][ T7959] netlink: 'syz.1.938': attribute type 7 has an invalid length.
[  108.480300][ T7959] netlink: 137592 bytes leftover after parsing attributes in process `syz.1.938'.
[  108.574823][ T7942] syzkaller0: entered promiscuous mode
[  108.577022][ T7942] syzkaller0: entered allmulticast mode
[  109.474424][ T7966] netlink: 16178 bytes leftover after parsing attributes in process `syz.2.941'.
[  109.577368][ T7978] netlink: 'syz.2.947': attribute type 7 has an invalid length.
[  109.843206][ T8005] netlink: 10 bytes leftover after parsing attributes in process `syz.2.961'.
[  109.884210][ T8008] netlink: 16178 bytes leftover after parsing attributes in process `syz.0.962'.
[  109.927928][ T8017] netlink: 'syz.0.966': attribute type 10 has an invalid length.
[  109.937213][ T8017] bridge0: port 3(team0) entered disabled state
[  109.941544][ T8017] team0: left allmulticast mode
[  109.943181][ T8017] C: left allmulticast mode
[  109.944636][ T8017] team_slave_1: left allmulticast mode
[  109.949261][ T8017] geneve1: left allmulticast mode
[  109.950987][ T8017] team0: left promiscuous mode
[  109.952691][ T8017] C: left promiscuous mode
[  109.954290][ T8017] team_slave_1: left promiscuous mode
[  109.957558][ T8017] geneve1: left promiscuous mode
[  109.962921][ T8017] bridge0: port 3(team0) entered disabled state
[  109.970877][ T8017] batman_adv: batadv0: Adding interface: team0
[  109.973420][ T8017] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  109.983800][ T8017] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[  110.015138][ T8024] netlink: 4083 bytes leftover after parsing attributes in process `syz.1.968'.
[  110.018815][ T8021] netlink: 4083 bytes leftover after parsing attributes in process `syz.1.968'.
[  110.028730][ T8024] netlink: 4083 bytes leftover after parsing attributes in process `syz.1.968'.
[  110.244723][ T8046] C: renamed from team_slave_0 (while UP)
[  110.250490][ T8046] netlink: 'syz.1.979': attribute type 3 has an invalid length.
[  110.253809][ T8046] netlink: 'syz.1.979': attribute type 1 has an invalid length.
[  110.257183][ T8046] netlink: 116 bytes leftover after parsing attributes in process `syz.1.979'.
[  110.476575][ T8058] raw_sendmsg: syz.0.984 forgot to set AF_INET. Fix it!
[  111.125590][ T8084] netlink: 'syz.2.996': attribute type 37 has an invalid length.
[  111.644104][ T8089] netlink: 'syz.1.998': attribute type 27 has an invalid length.
[  111.646999][ T8089] netlink: 2418 bytes leftover after parsing attributes in process `syz.1.998'.
[  112.191680][ T8127] netlink: 152 bytes leftover after parsing attributes in process `syz.2.1017'.
[  112.194675][ T8127] tc_dump_action: action bad kind
[  114.011643][ T8195] validate_nla: 2 callbacks suppressed
[  114.011653][ T8195] netlink: 'syz.2.1049': attribute type 33 has an invalid length.
[  114.051650][ T8202] netlink: 156 bytes leftover after parsing attributes in process `syz.0.1051'.
[  114.303066][ T8238] netlink: 'syz.2.1068': attribute type 10 has an invalid length.
[  114.313901][ T8238] team0: Device veth1_macvtap failed to register rx_handler
[  114.323119][ T8238] veth0_vlan: entered allmulticast mode
[  114.601199][ T5222] Bluetooth: hci1: unexpected event 0x1c length: 151 > 5
[  116.462051][ T8299] netlink: 'syz.0.1091': attribute type 17 has an invalid length.
[  116.465362][ T8299] netlink: 'syz.0.1091': attribute type 16 has an invalid length.
[  116.469917][ T8299] netlink: 152 bytes leftover after parsing attributes in process `syz.0.1091'.
[  117.141354][ T8330] netlink: 128124 bytes leftover after parsing attributes in process `syz.0.1106'.
[  117.299241][ T8340] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  117.302066][ T8340] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  117.484228][ T8357] netlink: 'syz.0.1118': attribute type 2 has an invalid length.
[  117.486855][ T8357] netlink: 'syz.0.1118': attribute type 8 has an invalid length.
[  117.492671][ T8357] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1118'.
[  117.698436][ T8364] netlink: 495 bytes leftover after parsing attributes in process `syz.0.1121'.
[  118.213946][ T5222] Bluetooth: hci2: unexpected event 0x34 length: 15 > 6
[  118.270009][ T8376] netlink: 16178 bytes leftover after parsing attributes in process `syz.1.1127'.
[  118.356937][ T8385] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  118.359322][ T8385] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  224.607836][    C1] rcu: INFO: rcu_preempt self-detected stall on CPU
[  224.610579][    C1] rcu: 	1-...!: (10499 ticks this GP) idle=caf4/1/0x4000000000000000 softirq=22741/22741 fqs=2
[  224.616525][    C1] rcu: 	(t=10500 jiffies g=15649 q=119 ncpus=2)
[  224.619288][    C1] rcu: rcu_preempt kthread starved for 10496 jiffies! g15649 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0
[  224.624065][    C1] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[  224.628337][    C1] rcu: RCU grace-period kthread stack dump:
[  224.630931][    C1] task:rcu_preempt     state:R  running task     stack:26728 pid:16    tgid:16    ppid:2      task_flags:0x208040 flags:0x00004000
[  224.636676][    C1] Call Trace:
[  224.638151][    C1]  <TASK>
[  224.639462][    C1]  __schedule+0x16f5/0x4d00
[  224.641468][    C1]  ? do_raw_spin_unlock+0x4d/0x240
[  224.643716][    C1]  ? schedule+0x165/0x360
[  224.645622][    C1]  ? __lock_acquire+0xab9/0xd20
[  224.647745][    C1]  ? __pfx___schedule+0x10/0x10
[  224.649882][    C1]  ? schedule+0x91/0x360
[  224.651778][    C1]  schedule+0x165/0x360
[  224.653632][    C1]  schedule_timeout+0x12b/0x270
[  224.655743][    C1]  ? __pfx_schedule_timeout+0x10/0x10
[  224.658047][    C1]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  224.660627][    C1]  ? __pfx_process_timeout+0x10/0x10
[  224.662924][    C1]  ? prepare_to_swait_event+0x341/0x380
[  224.665337][    C1]  rcu_gp_fqs_loop+0x301/0x1540
[  224.667479][    C1]  ? __pfx_rcu_watching_snap_recheck+0x10/0x10
[  224.670161][    C1]  ? __pfx_rcu_gp_fqs_loop+0x10/0x10
[  224.672464][    C1]  ? _raw_spin_unlock_irq+0x2e/0x50
[  224.674773][    C1]  ? finish_swait+0xcd/0x1f0
[  224.676807][    C1]  rcu_gp_kthread+0x99/0x390
[  224.678857][    C1]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  224.681136][    C1]  ? __kthread_parkme+0x7b/0x200
[  224.683311][    C1]  ? __kthread_parkme+0x1a1/0x200
[  224.685527][    C1]  kthread+0x711/0x8a0
[  224.687338][    C1]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  224.689611][    C1]  ? __pfx_kthread+0x10/0x10
[  224.691643][    C1]  ? _raw_spin_unlock_irq+0x23/0x50
[  224.693862][    C1]  ? lockdep_hardirqs_on+0x9c/0x150
[  224.696052][    C1]  ? __pfx_kthread+0x10/0x10
[  224.698000][    C1]  ret_from_fork+0x3fc/0x770
[  224.699959][    C1]  ? __pfx_ret_from_fork+0x10/0x10
[  224.702096][    C1]  ? __switch_to_asm+0x39/0x70
[  224.704181][    C1]  ? __switch_to_asm+0x33/0x70
[  224.706262][    C1]  ? __pfx_kthread+0x10/0x10
[  224.708300][    C1]  ret_from_fork_asm+0x1a/0x30
[  224.710414][    C1]  </TASK>
[  224.711786][    C1] rcu: Stack dump where RCU GP kthread last ran:
[  224.714531][    C1] Sending NMI from CPU 1 to CPUs 0:
[  224.716809][    C0] NMI backtrace for cpu 0
[  224.716821][    C0] CPU: 0 UID: 0 PID: 8419 Comm: syz.0.1147 Not tainted 6.16.0-rc6-syzkaller-00434-gcd7c97f4584a-dirty #0 PREEMPT(full) 
[  224.716829][    C0] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  224.716833][    C0] RIP: 0010:native_queued_spin_lock_slowpath+0xaf/0x8e0
[  224.716846][    C0] Code: 00 00 00 c7 44 24 60 00 00 00 00 0f 1f 44 00 00 4c 8d 74 24 60 49 89 df 49 c1 ef 03 41 bd 01 00 00 00 eb 06 89 44 24 60 f3 90 <48> 89 df be 04 00 00 00 e8 c4 1d b2 f6 48 b8 00 00 00 00 00 fc ff
[  224.716852][    C0] RSP: 0018:ffffc90002d5f800 EFLAGS: 00000202
[  224.716859][    C0] RAX: 0000000000000001 RBX: ffff88801d2a5408 RCX: ffffffff8b71260c
[  224.716864][    C0] RDX: 0000000000000000 RSI: 0000000000000004 RDI: ffff88801d2a5408
[  224.716868][    C0] RBP: ffffc90002d5f8f8 R08: ffff88801d2a540b R09: 1ffff11003a54a81
[  224.716873][    C0] R10: dffffc0000000000 R11: ffffed1003a54a82 R12: 1ffff920005abf08
[  224.716877][    C0] R13: 0000000000000001 R14: ffffc90002d5f860 R15: 1ffff11003a54a81
[  224.716881][    C0] FS:  000055555a94f500(0000) GS:ffff8880b861f000(0000) knlGS:0000000000000000
[  224.716887][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  224.716891][    C0] CR2: 0000001b30518ff8 CR3: 0000000111c3e000 CR4: 00000000000006f0
[  224.716916][    C0] DR0: 0100000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  224.716922][    C0] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
[  224.716926][    C0] Call Trace:
[  224.716930][    C0]  <TASK>
[  224.716935][    C0]  ? __pfx_native_queued_spin_lock_slowpath+0x10/0x10
[  224.716947][    C0]  queued_spin_lock_slowpath+0x43/0x50
[  224.716957][    C0]  do_raw_spin_lock+0x21f/0x290
[  224.716965][    C0]  ? futex_unqueue+0xf6/0x240
[  224.716974][    C0]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  224.716983][    C0]  ? futex_unqueue+0x22/0x240
[  224.716991][    C0]  futex_unqueue+0xf6/0x240
[  224.716998][    C0]  ? __futex_wait+0x1d1/0x3e0
[  224.717004][    C0]  __futex_wait+0x223/0x3e0
[  224.717011][    C0]  ? __pfx___futex_wait+0x10/0x10
[  224.717017][    C0]  ? __pfx_futex_wake_mark+0x10/0x10
[  224.717027][    C0]  ? __hrtimer_setup+0x187/0x210
[  224.717034][    C0]  ? __pfx_hrtimer_wakeup+0x10/0x10
[  224.717042][    C0]  ? ktime_add_safe+0x38/0x70
[  224.717049][    C0]  futex_wait+0x104/0x360
[  224.717055][    C0]  ? __pfx_futex_wait+0x10/0x10
[  224.717061][    C0]  ? __pfx_hrtimer_wakeup+0x10/0x10
[  224.717069][    C0]  ? seqcount_lockdep_reader_access+0x123/0x1c0
[  224.717077][    C0]  ? lockdep_hardirqs_on+0x9c/0x150
[  224.717086][    C0]  do_futex+0x333/0x420
[  224.717100][    C0]  ? __pfx_do_futex+0x10/0x10
[  224.717109][    C0]  ? kvm_clock_get_cycles+0x47/0x60
[  224.717119][    C0]  __se_sys_futex+0x36f/0x400
[  224.717129][    C0]  ? __pfx___se_sys_futex+0x10/0x10
[  224.717137][    C0]  ? rcu_is_watching+0x15/0xb0
[  224.717145][    C0]  ? __x64_sys_futex+0x21/0xf0
[  224.717153][    C0]  do_syscall_64+0xfa/0x3b0
[  224.717162][    C0]  ? lockdep_hardirqs_on+0x9c/0x150
[  224.717169][    C0]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  224.717175][    C0]  ? exc_page_fault+0x9f/0xf0
[  224.717183][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  224.717190][    C0] RIP: 0033:0x7f47e9f8eb69
[  224.717197][    C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  224.717202][    C0] RSP: 002b:00007ffc31c37538 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  224.717209][    C0] RAX: ffffffffffffffda RBX: 000000000001d2b0 RCX: 00007f47e9f8eb69
[  224.717213][    C0] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f47ea1b608c
[  224.717217][    C0] RBP: 0000000000000032 R08: 7fffffffffffffff R09: 0000001131c3782f
[  224.717221][    C0] R10: 00007ffc31c37630 R11: 0000000000000246 R12: 00007f47ea1b608c
[  224.717226][    C0] R13: 00007ffc31c37630 R14: 000000000001d2e2 R15: 00007ffc31c37650
[  224.717233][    C0]  </TASK>
[  224.717802][    C1] CPU: 1 UID: 0 PID: 8423 Comm: syz.0.1147 Not tainted 6.16.0-rc6-syzkaller-00434-gcd7c97f4584a-dirty #0 PREEMPT(full) 
[  224.717817][    C1] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  224.717823][    C1] RIP: 0010:rcu_read_unlock_special+0x87/0x4c0
[  224.717841][    C1] Code: f1 f1 f1 00 f2 f2 f2 4a 89 04 2b 66 42 c7 44 2b 09 f3 f3 42 c6 44 2b 0b f3 65 44 8b 35 92 37 f8 10 41 f7 c6 00 00 f0 00 74 49 <48> c7 44 24 40 0e 36 e0 45 4a c7 04 2b 00 00 00 00 66 42 c7 44 2b
[  224.717851][    C1] RSP: 0018:ffffc900001e05a0 EFLAGS: 00000206
[  224.717860][    C1] RAX: 1df22e46b57bd700 RBX: 1ffff9200003c0bc RCX: 1df22e46b57bd700
[  224.717869][    C1] RDX: 0000000000000002 RSI: ffffffff8d998701 RDI: ffffffff8be29f80
[  224.717876][    C1] RBP: ffffc900001e0698 R08: ffffffff8fa1e8f7 R09: 1ffffffff1f43d1e
[  224.717884][    C1] R10: dffffc0000000000 R11: fffffbfff1f43d1f R12: ffffffff8e144400
[  224.717891][    C1] R13: dffffc0000000000 R14: 0000000000000246 R15: 0000000000000002
[  224.717898][    C1] FS:  00007f47eaea86c0(0000) GS:ffff8881a3c1f000(0000) knlGS:0000000000000000
[  224.717907][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  224.717916][    C1] CR2: 0000001b30315ff8 CR3: 0000000111c3e000 CR4: 00000000000006f0
[  224.717947][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  224.717956][    C1] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
[  224.717962][    C1] Call Trace:
[  224.717967][    C1]  <IRQ>
[  224.717971][    C1]  ? __lock_acquire+0xab9/0xd20
[  224.717989][    C1]  ? __pfx_rcu_read_unlock_special+0x10/0x10
[  224.718010][    C1]  ? unwind_next_frame+0xa5/0x2390
[  224.718030][    C1]  __rcu_read_unlock+0x84/0xe0
[  224.718047][    C1]  ? unwind_next_frame+0xa5/0x2390
[  224.718060][    C1]  unwind_next_frame+0x19ae/0x2390
[  224.718076][    C1]  ? unwind_next_frame+0xa5/0x2390
[  224.718090][    C1]  ? irq_exit_rcu+0x9/0x30
[  224.718112][    C1]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  224.718129][    C1]  arch_stack_walk+0x11c/0x150
[  224.718148][    C1]  ? sysvec_apic_timer_interrupt+0xa6/0xc0
[  224.718166][    C1]  stack_trace_save+0x9c/0xe0
[  224.718182][    C1]  ? __pfx_stack_trace_save+0x10/0x10
[  224.718200][    C1]  ? __irq_exit_rcu+0xd8/0x1f0
[  224.718212][    C1]  ? __pfx___irq_exit_rcu+0x10/0x10
[  224.718227][    C1]  kasan_save_track+0x3e/0x80
[  224.718244][    C1]  ? kasan_save_track+0x3e/0x80
[  224.718257][    C1]  ? kasan_save_free_info+0x46/0x50
[  224.718270][    C1]  ? __kasan_slab_free+0x62/0x70
[  224.718280][    C1]  ? kfree+0x18e/0x440
[  224.718288][    C1]  ? slab_free_after_rcu_debug+0x60/0x2a0
[  224.718303][    C1]  ? rcu_core+0xca8/0x1710
[  224.718312][    C1]  ? handle_softirqs+0x286/0x870
[  224.718323][    C1]  ? __irq_exit_rcu+0xca/0x1f0
[  224.718333][    C1]  ? irq_exit_rcu+0x9/0x30
[  224.718384][    C1]  kasan_save_free_info+0x46/0x50
[  224.718397][    C1]  __kasan_slab_free+0x62/0x70
[  224.718408][    C1]  ? slab_free_after_rcu_debug+0x60/0x2a0
[  224.718422][    C1]  kfree+0x18e/0x440
[  224.718434][    C1]  ? rcu_core+0xc34/0x1710
[  224.718446][    C1]  slab_free_after_rcu_debug+0x60/0x2a0
[  224.718461][    C1]  ? __pfx_slab_free_after_rcu_debug+0x10/0x10
[  224.718474][    C1]  ? rcu_core+0xc34/0x1710
[  224.718487][    C1]  rcu_core+0xca8/0x1710
[  224.718515][    C1]  ? __pfx_rcu_core+0x10/0x10
[  224.718527][    C1]  ? __irq_exit_rcu+0xd8/0x1f0
[  224.718541][    C1]  ? __pfx___irq_exit_rcu+0x10/0x10
[  224.718557][    C1]  ? irqentry_exit+0x74/0x90
[  224.718615][    C1]  ? __pfx_rcu_core_si+0x10/0x10
[  224.718638][    C1]  handle_softirqs+0x286/0x870
[  224.718656][    C1]  ? __irq_exit_rcu+0xca/0x1f0
[  224.718673][    C1]  ? __pfx_handle_softirqs+0x10/0x10
[  224.718691][    C1]  ? irqtime_account_irq+0xb6/0x1c0
[  224.718710][    C1]  __irq_exit_rcu+0xca/0x1f0
[  224.718722][    C1]  ? __pfx___irq_exit_rcu+0x10/0x10
[  224.718743][    C1]  irq_exit_rcu+0x9/0x30
[  224.718755][    C1]  sysvec_apic_timer_interrupt+0xa6/0xc0
[  224.718768][    C1]  </IRQ>
[  224.718773][    C1]  <TASK>
[  224.718778][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  224.718789][    C1] RIP: 0010:futex_wake+0x20e/0x500
[  224.718806][    C1] Code: e8 07 03 6f 00 4d 8b 3e 4d 39 f7 0f 84 44 02 00 00 c7 44 24 1c 00 00 00 00 4c 89 74 24 20 4c 89 f8 48 c1 e8 03 42 80 3c 20 00 <74> 08 4c 89 ff e8 d8 02 6f 00 4d 8b 2f 4c 89 fb 48 83 c3 30 0f 84
[  224.718813][    C1] RSP: 0018:ffffc90002fcfbe0 EFLAGS: 00000246
[  224.718824][    C1] RAX: 1ffff920005abf57 RBX: 0000000000000001 RCX: dffffc0000000000
[  224.718831][    C1] RDX: 0000000000000001 RSI: 0000000000000004 RDI: ffffc90002fcfb60
[  224.718837][    C1] RBP: ffffc90002fcfcf0 R08: 0000000000000003 R09: 0000000000000004
[  224.718844][    C1] R10: dffffc0000000000 R11: fffff520005f9f6c R12: dffffc0000000000
[  224.718853][    C1] R13: ffff88801d2a5448 R14: ffff88801d2a5448 R15: ffffc90002d5fab8
[  224.718880][    C1]  ? __pfx_futex_wake+0x10/0x10
[  224.718907][    C1]  ? perf_trace_run_bpf_submit+0x100/0x170
[  224.718925][    C1]  do_futex+0x395/0x420
[  224.718939][    C1]  ? perf_trace_preemptirq_template+0x280/0x340
[  224.718961][    C1]  ? __pfx_do_futex+0x10/0x10
[  224.718974][    C1]  ? kvm_sched_clock_read+0x11/0x20
[  224.718994][    C1]  __se_sys_futex+0x36f/0x400
[  224.719010][    C1]  ? irqentry_exit+0x74/0x90
[  224.719028][    C1]  ? __pfx___se_sys_futex+0x10/0x10
[  224.719051][    C1]  ? __x64_sys_futex+0x21/0xf0
[  224.719069][    C1]  do_syscall_64+0xfa/0x3b0
[  224.719085][    C1]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  224.719094][    C1]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  224.719116][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  224.719128][    C1] RIP: 0033:0x7f47e9f8eb69
[  224.719138][    C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  224.719146][    C1] RSP: 002b:00007f47eaea80e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  224.719158][    C1] RAX: ffffffffffffffda RBX: 00007f47ea1b6088 RCX: 00007f47e9f8eb69
[  224.719164][    C1] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f47ea1b608c
[  224.719171][    C1] RBP: 00007f47ea1b6080 R08: 7fffffffffffffff R09: 0000000000000000
[  224.719178][    C1] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f47ea1b608c
[  224.719184][    C1] R13: 0000000000000000 R14: 00007ffc31c372f0 R15: 00007ffc31c373d8
[  224.719206][    C1]  </TASK>
[  224.719257][    C1] sched: DL replenish lagged too much

VM DIAGNOSIS:
09:34:21  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000001 RBX=ffff88801d2a5408 RCX=ffffffff8b71260c RDX=0000000000000000
RSI=0000000000000004 RDI=ffff88801d2a5408 RBP=ffffc90002d5f8f8 RSP=ffffc90002d5f800
R8 =ffff88801d2a540b R9 =1ffff11003a54a81 R10=dffffc0000000000 R11=ffffed1003a54a82
R12=1ffff920005abf08 R13=0000000000000001 R14=ffffc90002d5f860 R15=1ffff11003a54a81
RIP=ffffffff8b7125ff RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 000055555a94f500 ffffffff 00c00000
GS =0000 ffff8880b861f000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000001b30518ff8 CR3=0000000111c3e000 CR4=000006f0
DR0=0100000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000600
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000000 XMM01=ffffffff81663aeb ffffffff8165fb5a
XMM02=ffffffff81c987ac ffffffff8165fb5a XMM03=ffffffff81c987ac ffffffff81c44775
XMM04=ffffffff81c987ac ffffffff81c987ac XMM05=ffffffff81c44775 ffffffff81c44775
XMM06=ffffffff81c44775 ffffffff8186d8fa XMM07=ffffffff8186d886 ffffffff81686f4f
XMM08=0000000000000000 00524f5252450040 XMM09=0000000000000000 00007f9fcaa12f89
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000065 RBX=0000000000000065 RCX=0000000000000000 RDX=00000000000003f8
RSI=0000000000000000 RDI=0000000000000020 RBP=00000000000003f8 RSP=ffffc900001df8d0
R8 =ffff8881087f8237 R9 =1ffff110210ff046 R10=dffffc0000000000 R11=ffffffff85471fa0
R12=dffffc0000000000 R13=ffffffff99af58bf R14=ffffffff99dfa1e0 R15=0000000000000000
RIP=ffffffff8547201c RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f47eaea86c0 ffffffff 00c00000
GS =0000 ffff8881a3c1f000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000001b30315ff8 CR3=0000000111c3e000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000600
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000000 XMM01=0000000000000000 0000000000000000
XMM02=00007f47ea187498 00007f47ea187470 XMM03=00007f47ea1874a8 00007f47ea1874a0
XMM04=00007f47eaced100 00007f47ea187460 XMM05=00007f47ea187478 00007f47ea1874c0
XMM06=00007f47ea1874b8 00007f47ea1874b0 XMM07=00007f47ea1874a8 00007f47ea1874a0
XMM08=0000000000000000 00524f5252450040 XMM09=0000000000000000 00007f47ea012f89
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
