last executing test programs:

10m43.562523813s ago: executing program 3 (id=22):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, r1, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r5 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x42f82, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0)
r6 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000080)=ANY=[@ANYBLOB], 0x38}}, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={0x0, 0x70}}, 0x0)
sendmmsg(r6, &(0x7f0000000180), 0x3ef, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x12, 0xc, &(0x7f0000000080)=ANY=[], &(0x7f0000000140)='GPL\x00', 0x9, 0x0, 0x0, 0x41100, 0xe, '\x00', 0x0, @cgroup_sock_addr=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
syz_open_dev$vcsa(0x0, 0x200, 0x0)
write$dsp(r5, 0x0, 0x0)
ioctl$SNDCTL_DSP_SYNC(r5, 0x5001, 0x0)

10m41.793725628s ago: executing program 3 (id=24):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
connect$pppoe(0xffffffffffffffff, &(0x7f00000004c0)={0x18, 0x0, {0x5, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xbc}, 'hsr0\x00'}}, 0x1e)
r4 = getpid()
r5 = syz_open_dev$sndctrl(&(0x7f0000000240), 0x2, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r5, 0xc1105517, &(0x7f0000000800)={{0x4, 0x0, 0x9, 0x8001, 'syz0\x00', 0xc22}, 0x2, 0x200, 0x9, r4, 0x0, 0x7fff, 'syz1\x00', 0x0})
openat$sndseq(0xffffffffffffff9c, 0x0, 0x102)
prlimit64(r4, 0x5, 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_REMOVE(r5, 0xc0405519, 0x0)

10m40.410918051s ago: executing program 3 (id=25):
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x12, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x18)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f00000001c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
keyctl$instantiate(0xc, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000340)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f00000003c0)='./bus\x00')
r4 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r4, &(0x7f0000001fc0)=""/184, 0x20002078)

10m39.029206985s ago: executing program 3 (id=26):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, 0x0, 0x0)
r2 = socket$key(0xf, 0x3, 0x2)
r3 = socket(0x400000000010, 0x3, 0x0)
syz_usb_connect$uac1(0x5, 0x8a, &(0x7f0000000000)=ANY=[@ANYBLOB="12010002000000206b1d01014000010203010902780003010000060904000000010100000a24010200000201020a24080304004000000009040100000102000009040101010102000009050109100001fc0b0725018107010809040200000102000009040201010102000008240201002647ba07240106040210090582090004"], 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, 0x0)
sendmsg$nl_route_sched(r3, 0x0, 0x0)
keyctl$clear(0x3, 0xfffffffffffffffd)
request_key(&(0x7f0000000000)='pkcs7_test\x00', 0x0, 0x0, 0xffffffffffffffff)
sendmsg$nl_route_sched(r3, 0x0, 0x0)
sendmsg$key(r2, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, 0x0, 0x0)
sendmsg$NFT_BATCH(r4, 0x0, 0x40800)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r0, 0x84, 0x17, 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, 0x0, 0x0)
ioctl$TCXONC(0xffffffffffffffff, 0x540a, 0x2)
ioctl$TCXONC(0xffffffffffffffff, 0x540a, 0x0)

10m35.986070121s ago: executing program 3 (id=33):
openat(0xffffffffffffff9c, &(0x7f0000000380)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x143102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
syz_usb_connect$hid(0x6, 0x36, 0x0, 0x0)
syz_emit_ethernet(0x66, &(0x7f0000000080)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @random="a0725ce9403b", @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "cb8000", 0x30, 0x3a, 0x0, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @mcast2, {[], @time_exceed={0x4, 0x0, 0x0, 0x60, '\x00', {0x0, 0x6, "fd9063", 0x2, 0x3a, 0x0, @empty, @mcast2}}}}}}}, 0x0)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x0)
r1 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_RES_MR_GET(r1, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000001040)={&(0x7f0000001000)={0x10, 0x140d, 0xe3263c25d365e57d, 0x70bd2a, 0x25dfdbff}, 0x10}, 0x1, 0x0, 0x0, 0x20000000}, 0x50)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f0000000000)={0x1, [0x0]}, &(0x7f0000000080)=0x8)
r3 = socket$inet6(0xa, 0x1, 0x8010000000000084)
bind$inet6(r3, &(0x7f00000000c0)={0xa, 0x4e21, 0x0, @empty}, 0x1c)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
bind$netlink(r4, &(0x7f0000000200)={0x10, 0x0, 0x0, 0x80065c9}, 0xc)
socket$nl_netfilter(0x10, 0x3, 0xc)
connect$inet6(r3, &(0x7f0000000000)={0xa, 0x4e21, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x14}}}, 0x1c)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000300)={0x0, @in6={{0xa, 0x0, 0x0, @empty}}, 0x0, 0x0, 0x318, 0x1, 0x24}, 0x9c)

10m30.287422582s ago: executing program 3 (id=39):
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000000), 0x8)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0xc3072, 0xffffffffffffffff, 0x200000)
openat$mixer(0xffffffffffffff9c, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f00000002c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}, {@nfs_export_on}]})
chdir(&(0x7f00000000c0)='./bus\x00')
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0)
r3 = creat(&(0x7f0000000580)='./file1\x00', 0x0)
r4 = fanotify_init(0xf00, 0x1)
fanotify_mark(r4, 0x105, 0x40009975, r3, 0x0)
fallocate(r2, 0x0, 0x1000000, 0x3)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27ffff7, 0x4012011, r2, 0x0)

10m14.588717397s ago: executing program 32 (id=39):
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000000), 0x8)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0xc3072, 0xffffffffffffffff, 0x200000)
openat$mixer(0xffffffffffffff9c, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f00000002c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}, {@nfs_export_on}]})
chdir(&(0x7f00000000c0)='./bus\x00')
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0)
r3 = creat(&(0x7f0000000580)='./file1\x00', 0x0)
r4 = fanotify_init(0xf00, 0x1)
fanotify_mark(r4, 0x105, 0x40009975, r3, 0x0)
fallocate(r2, 0x0, 0x1000000, 0x3)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27ffff7, 0x4012011, r2, 0x0)

6m19.796066314s ago: executing program 4 (id=536):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480))
syz_io_uring_setup(0xa8f, &(0x7f0000000340)={0x0, 0xaee2, 0x1, 0x0, 0x13}, &(0x7f0000000000), &(0x7f0000000040))
r1 = socket$nl_route(0x10, 0x3, 0x0)
socket$unix(0x1, 0x1, 0x0)
r2 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_STAT_SET(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000340)=ANY=[], 0x20}, 0x1, 0x0, 0x0, 0x24040832}, 0xc094)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0x3, &(0x7f0000000300)=ANY=[@ANYRES16, @ANYRESDEC, @ANYRESOCT=r1], &(0x7f0000000280)='GPL\x00', 0xa, 0x0, 0x0, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
socket$inet_udplite(0x2, 0x2, 0x88)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000600)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, 0x0, 0x0)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mknod$loop(&(0x7f0000000180)='./file0\x00', 0x6000, 0x0)
r5 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
r6 = dup2(r5, r5)
ioctl$BLKTRACESETUP(r6, 0xc0481273, &(0x7f0000000240)={'\x00', 0x40, 0xa, 0x1, 0x40000000, 0x10})

6m19.064064209s ago: executing program 4 (id=537):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000003, 0x8031, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0)={0xaa, 0x19})
openat$binderfs(0xffffffffffffff9c, 0x0, 0x802, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x3)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000100)={{&(0x7f0000010000/0x1000)=nil, 0x1000}, 0x5})
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
close(r0)

6m12.469879067s ago: executing program 4 (id=548):
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
fsopen(&(0x7f0000000040)='configfs\x00', 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_NEW_STATION(r0, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000080)={0x34, 0x0, 0x400, 0x70bd2c, 0x25dfdbfd, {{}, {@void, @void}}, [@NL80211_ATTR_STA_FLAGS={0x10, 0x11, 0x0, 0x1, [@NL80211_STA_FLAG_SHORT_PREAMBLE={0x4}, @NL80211_STA_FLAG_TDLS_PEER={0x4}, @NL80211_STA_FLAG_TDLS_PEER={0x4}]}, @NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x8}, @NL80211_ATTR_MGMT_SUBTYPE={0x5, 0x29, 0xa}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000000}, 0x20000080)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffd000)
syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000032680)=""/102392, 0x18ff8)
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x3)

6m9.403706744s ago: executing program 4 (id=552):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/timer_list\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x20000023896)
close(r0)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc)=<r3=>0x0)
timer_settime(r3, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
openat$ttyS3(0xffffffffffffff9c, 0x0, 0xc100, 0x0)

6m3.907168059s ago: executing program 4 (id=563):
r0 = socket(0x10, 0x803, 0x0)
socket$igmp6(0xa, 0x3, 0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
request_key(&(0x7f0000000040)='asymmetric\x00', 0x0, &(0x7f0000001fee)='R\x10suse\x00\x00\x00\x00\x00\x00\x00dn\x00\x00\x00', 0x0)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r5 = syz_open_dev$usbfs(&(0x7f00000001c0), 0x6, 0x389001)
ioctl$TCFLSH(r4, 0x400455c8, 0x4)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000180))
ioctl$USBDEVFS_CONTROL(r5, 0xc0105500, &(0x7f0000000500)={0x40, 0xf, 0x5, 0x1ff, 0x0, 0x5, 0x0})
ioctl$SNDCTL_DSP_CHANNELS(0xffffffffffffffff, 0xc0045006, &(0x7f0000000080)=0x7f)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000140)={'veth0_to_team\x00', &(0x7f0000000280)=@ethtool_channels={0x3d, 0x100, 0x0, 0x0, 0x4, 0x2, 0x1}})
ioctl$sock_SIOCETHTOOL(r0, 0x8946, 0x0)

5m59.756200622s ago: executing program 4 (id=571):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg(r1, 0x0, 0x0)
r2 = openat$sw_sync(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000140)={'batadv_slave_0\x00', <r4=>0x0})
newfstatat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, <r5=>0x0}, 0x100)
setsockopt$inet_IP_IPSEC_POLICY(r3, 0x0, 0x10, &(0x7f0000000400)={{{@in6=@remote, @in6=@ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x4e20, 0xe2, 0x4e23, 0x7, 0x2, 0x80, 0xa0, 0x20, r4, r5}, {0xfff, 0x4, 0x81, 0xc7a3, 0x9, 0xfffffffffffffffe, 0x2, 0x9}, {0x8000, 0x5, 0x3, 0x1}, 0xfff, 0x6e6bba, 0x1, 0x0, 0x1}, {{@in=@dev={0xac, 0x14, 0x14, 0x3e}, 0x4d4, 0x2b}, 0xa, @in6=@dev={0xfe, 0x80, '\x00', 0xb}, 0x3504, 0x0, 0x1, 0x5, 0x5, 0xd, 0x7fffffff}}, 0xe8)
getsockopt$bt_hci(r0, 0x0, 0x1, &(0x7f0000000340)=""/102, &(0x7f0000000500)=0x66)
r6 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000ac0), 0x400, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r6, 0xc0285700, &(0x7f0000000b00)={0x4, "abacd211119ca94c633774262eb5ab2c7b9c5cff6ce78185d8c4dc064744e042"})
close_range(r2, r6, 0x0)

5m43.771968417s ago: executing program 33 (id=571):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg(r1, 0x0, 0x0)
r2 = openat$sw_sync(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000140)={'batadv_slave_0\x00', <r4=>0x0})
newfstatat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, <r5=>0x0}, 0x100)
setsockopt$inet_IP_IPSEC_POLICY(r3, 0x0, 0x10, &(0x7f0000000400)={{{@in6=@remote, @in6=@ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x4e20, 0xe2, 0x4e23, 0x7, 0x2, 0x80, 0xa0, 0x20, r4, r5}, {0xfff, 0x4, 0x81, 0xc7a3, 0x9, 0xfffffffffffffffe, 0x2, 0x9}, {0x8000, 0x5, 0x3, 0x1}, 0xfff, 0x6e6bba, 0x1, 0x0, 0x1}, {{@in=@dev={0xac, 0x14, 0x14, 0x3e}, 0x4d4, 0x2b}, 0xa, @in6=@dev={0xfe, 0x80, '\x00', 0xb}, 0x3504, 0x0, 0x1, 0x5, 0x5, 0xd, 0x7fffffff}}, 0xe8)
getsockopt$bt_hci(r0, 0x0, 0x1, &(0x7f0000000340)=""/102, &(0x7f0000000500)=0x66)
r6 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000ac0), 0x400, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r6, 0xc0285700, &(0x7f0000000b00)={0x4, "abacd211119ca94c633774262eb5ab2c7b9c5cff6ce78185d8c4dc064744e042"})
close_range(r2, r6, 0x0)

3m37.342520205s ago: executing program 2 (id=846):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={<r0=>0xffffffffffffffff})
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r2, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="2e00000010008188040f80ec59acbc0413a1f848110000005e1406020000", 0x1e}], 0x1}, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'bond0\x00', <r3=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=@dellink={0x20, 0x11, 0x101, 0x0, 0x0, {0x0, 0x0, 0x0, r3}}, 0x20}}, 0x0)
syz_usb_connect_ath9k(0x3, 0x0, 0x0, 0x0)

3m28.828393127s ago: executing program 2 (id=858):
socket$inet6_udplite(0xa, 0x2, 0x88)
r0 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r0, &(0x7f0000000840)={0x2, 0x0, @loopback}, 0x10)
pipe2(&(0x7f0000001040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
gettid()
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
write$P9_RGETLOCK(r2, &(0x7f00000000c0)=ANY=[], 0xffffff6a)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0xb, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000007"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
pipe2(&(0x7f0000000240)={0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
tee(r1, r3, 0xfffffffffffffc01, 0x0)
tee(r1, r3, 0x60000000000, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)

3m27.151483688s ago: executing program 2 (id=860):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000680)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r1, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r2, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)

3m26.930886019s ago: executing program 2 (id=862):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
io_uring_setup(0x68e9, &(0x7f0000000240)={0x0, 0x4177, 0x4000, 0x2, 0x3e4})
sendmmsg$inet6(0xffffffffffffffff, 0x0, 0x0, 0x88000)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, 0x0, 0x80)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x3, @raw_data="dea233684c996156af0d4bd8e3300217e750b8c97b7123d48003e7e1d3be5f710c41a1db6719881876e9bcc6e2f73c67cc6b675eb43188b5b7f9f898868de9a9c5d536d418ba283121a73a5aba55a87d2a2525295f4492bbde02ad8bc8e88779f2de06f38e99172df4d45b6f13c813dee4230c204a93172922b778fef7a1f89ce876bb89d44cd705bbb28db4869dfac20d928950507acd92c02d17f51b0a627539f6e0a0bdb92004bc6252cd35e8cd100962db9a83ad63a4e7e1ca17c1b6aac63fefa9bebe429d00"})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000280)=ANY=[@ANYBLOB="440000003e000701feffffff00000000037c0000040042800c0001800600060086dd"], 0x44}, 0x1, 0x0, 0x0, 0x40040c0}, 0xc000)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
r3 = syz_open_dev$MSR(&(0x7f0000000040), 0x0, 0x0)
read$msr(r3, &(0x7f0000001580)=""/102400, 0x19000)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, 0x0, 0x24004090)
socket$inet6_tcp(0xa, 0x1, 0x0)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone3(&(0x7f0000001240)={0x2d000000, 0x0, 0x0, 0x0, {0x36}, 0x0, 0x0, 0x0, &(0x7f0000001200)=[0x0], 0x1}, 0x9c)
socket$inet6(0xa, 0xa, 0x1)
r4 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r4, &(0x7f0000000400)={0x18, 0x0, {0x2, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xa}, 'lo\x00'}}, 0x1e)
ioctl$PPPIOCGCHAN(r4, 0x80047437, &(0x7f0000001f00))
sendmmsg(r4, &(0x7f0000009140)=[{{0x0, 0x0, &(0x7f0000001480)=[{&(0x7f0000000000)="b3c7", 0x2}], 0x1}}], 0x1, 0x0)
r5 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_X86_SETUP_MCE(r6, 0x4008ae9c, &(0x7f0000000080)={0x1, 0x4, 0x81})

3m26.410255066s ago: executing program 2 (id=866):
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x2, 0x0, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e22, 0x9, @ipv4={'\x00', '\xff\xff', @remote}, 0x6}, 0x1c)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e22, 0x7, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
syz_emit_ethernet(0x84, &(0x7f0000000280)={@local, @empty, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x2, 0x3, 0x76, 0x64, 0x0, 0x7, 0x6, 0x0, @remote, @remote}, {{0x4e22, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x16, 0x80, 0x6071, 0x0, 0x8001, {[@nop, @nop, @md5sig={0x13, 0x12, "c64385d047cdec64401819d5615b270f"}, @mptcp=@synack={0x1e, 0x10, 0x0, 0x2, 0x8, 0x0, 0x7}, @eol, @mptcp=@capable={0x1e, 0xc, 0x2, 0x8, 0xa, 0xfffffffffffffffc}, @mptcp=@synack={0x1e, 0x10, 0x1, 0x2, 0x6, 0x0, 0x400}]}}, {"135748b2634d8b933020"}}}}}}, 0x0)

3m24.665967174s ago: executing program 2 (id=872):
socket$nl_netfilter(0x10, 0x3, 0xc)
openat$udambuf(0xffffff9c, &(0x7f0000000300), 0x2)
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, 0x0, &(0x7f0000000240)='//\xf2/\x06\b/\xdf/o\xdc\xea\x95\x9a\x82\x10\x97W\x8f7\x98\x9b\\/\\\xf9\rmD\x94)U\xdb\x15X.I\n}\xf3\x9d\xe4_\x05\x9cqf4I^#b?9\xde\xafu\'\x83L\xe0\x97\xe1n_\xa4%\xb1\x97\x93\xafv\xce/\\\xb4L\xf2_\xa7\xfb\xf4\x84\x1fA\xeas^\xef\xa2\x85\xa3!\xfb\x93\xd7R\xab2\x1eW\xe9h\x9b\xf7ul\xf9D\xd4\x82X5\x13\xaa\x87\xf9\xba\xa9m\x14\x14R_\x9a\\>4\xce\x8e_#\xf8D\xb1\xdep\x01\xcc:\xa6\xc5n\xeb\xab\xf70\x99\xef\x8b<M\n\xc0`[\x82\xf6$\xa4\xbe\x1e\xd3\xe4\xd9L\x14\xed\xcfK\xcc\xeb,\x1a1\xa6\xf3e\xc2F\xc3\x00\xaa\xd5\xfc\x1bR\xa9\x8c\xb4&\x9f\xa2$\x06\x1a\xb0W#\xf4\xde6\x04c\xc0\xeec\xa0l\xd5d\xe5\xcd\xb2\xc10\x97w\x87\xe5\x06\x91W\rr\xf5\x97%\xe8pO\xeb]\xc2\x98C\xffK\xa0\xb3\\\x99{\xcdR\x92\x94\xf7\x1d\x01Q\x1a\xbd\x15b\x15h\xe2!\x00\xb9z)\x19\x00\xee\xd2)[p`\xb3\x03\xa7p\'X\xec\xcdoX\x05\xff\xff/o\xb2\xad\xb8\x89i@\f\xffS&\x8a\xc9\xfez\xc2\x90\xe7F\xa6\xdb\r\x03j,N\xe1lw\n\xad\xe8\xf0\xbd\xa1\x98\xce\xf9\x1eR\x9cc\xc5ke_\xa7\x11\"\x04\xd8.\xa0\x15\x83\xf1\x92\xdby\xe9\xdc@.\xc1g\xc6\fc\xa26\xd8\xdf\xef\xf7\x9c\x1a\xcc\x8am\x8b7\xcf\xc5\xa6\xf4\f\xabj%Y\xa9\xdd\x0e9e\xb5\xec\x99@\xd2\t\n\xb1o', 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
syz_io_uring_setup(0x7c5c, &(0x7f0000000140)={0x0, 0xf18d, 0x0, 0x2, 0xbfdffffc}, &(0x7f0000000000), &(0x7f0000000280))
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="1b000000000000000000", @ANYRES32, @ANYBLOB="0000000000230000000000003485000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0xf, &(0x7f0000000180)=ANY=[@ANYBLOB="1800004000000000000000000100000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b7000000000000009500000000000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r2, 0x0, 0xf}, 0x18)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'veth0_to_bridge\x00', <r4=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000004c00)=@newtfilter={0x24, 0x11, 0xd27, 0x70bd28, 0x0, {0x0, 0x0, 0x74, r4, {}, {0x2}}}, 0x24}, 0x1, 0xf0ffffffffffff}, 0x0)
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r5, &(0x7f0000000100)={0x2, 0x4e24, @loopback}, 0x10)
socket(0xa, 0x3, 0x3a)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080))
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$cgroup_ro(r6, &(0x7f0000000040)='cgroup.freeze\x00', 0x275a, 0x0)
rmdir(&(0x7f00000001c0)='./cgroup/../file0\x00')
sendmmsg$inet(r5, &(0x7f0000004980)=[{{&(0x7f0000000000)={0x2, 0x4e24, @loopback}, 0x10, &(0x7f0000000040)}}], 0x1, 0x20008000)
shutdown(r5, 0x1)

3m9.378351859s ago: executing program 34 (id=872):
socket$nl_netfilter(0x10, 0x3, 0xc)
openat$udambuf(0xffffff9c, &(0x7f0000000300), 0x2)
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, 0x0, &(0x7f0000000240)='//\xf2/\x06\b/\xdf/o\xdc\xea\x95\x9a\x82\x10\x97W\x8f7\x98\x9b\\/\\\xf9\rmD\x94)U\xdb\x15X.I\n}\xf3\x9d\xe4_\x05\x9cqf4I^#b?9\xde\xafu\'\x83L\xe0\x97\xe1n_\xa4%\xb1\x97\x93\xafv\xce/\\\xb4L\xf2_\xa7\xfb\xf4\x84\x1fA\xeas^\xef\xa2\x85\xa3!\xfb\x93\xd7R\xab2\x1eW\xe9h\x9b\xf7ul\xf9D\xd4\x82X5\x13\xaa\x87\xf9\xba\xa9m\x14\x14R_\x9a\\>4\xce\x8e_#\xf8D\xb1\xdep\x01\xcc:\xa6\xc5n\xeb\xab\xf70\x99\xef\x8b<M\n\xc0`[\x82\xf6$\xa4\xbe\x1e\xd3\xe4\xd9L\x14\xed\xcfK\xcc\xeb,\x1a1\xa6\xf3e\xc2F\xc3\x00\xaa\xd5\xfc\x1bR\xa9\x8c\xb4&\x9f\xa2$\x06\x1a\xb0W#\xf4\xde6\x04c\xc0\xeec\xa0l\xd5d\xe5\xcd\xb2\xc10\x97w\x87\xe5\x06\x91W\rr\xf5\x97%\xe8pO\xeb]\xc2\x98C\xffK\xa0\xb3\\\x99{\xcdR\x92\x94\xf7\x1d\x01Q\x1a\xbd\x15b\x15h\xe2!\x00\xb9z)\x19\x00\xee\xd2)[p`\xb3\x03\xa7p\'X\xec\xcdoX\x05\xff\xff/o\xb2\xad\xb8\x89i@\f\xffS&\x8a\xc9\xfez\xc2\x90\xe7F\xa6\xdb\r\x03j,N\xe1lw\n\xad\xe8\xf0\xbd\xa1\x98\xce\xf9\x1eR\x9cc\xc5ke_\xa7\x11\"\x04\xd8.\xa0\x15\x83\xf1\x92\xdby\xe9\xdc@.\xc1g\xc6\fc\xa26\xd8\xdf\xef\xf7\x9c\x1a\xcc\x8am\x8b7\xcf\xc5\xa6\xf4\f\xabj%Y\xa9\xdd\x0e9e\xb5\xec\x99@\xd2\t\n\xb1o', 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
syz_io_uring_setup(0x7c5c, &(0x7f0000000140)={0x0, 0xf18d, 0x0, 0x2, 0xbfdffffc}, &(0x7f0000000000), &(0x7f0000000280))
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="1b000000000000000000", @ANYRES32, @ANYBLOB="0000000000230000000000003485000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0xf, &(0x7f0000000180)=ANY=[@ANYBLOB="1800004000000000000000000100000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b7000000000000009500000000000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r2, 0x0, 0xf}, 0x18)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'veth0_to_bridge\x00', <r4=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000004c00)=@newtfilter={0x24, 0x11, 0xd27, 0x70bd28, 0x0, {0x0, 0x0, 0x74, r4, {}, {0x2}}}, 0x24}, 0x1, 0xf0ffffffffffff}, 0x0)
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r5, &(0x7f0000000100)={0x2, 0x4e24, @loopback}, 0x10)
socket(0xa, 0x3, 0x3a)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080))
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$cgroup_ro(r6, &(0x7f0000000040)='cgroup.freeze\x00', 0x275a, 0x0)
rmdir(&(0x7f00000001c0)='./cgroup/../file0\x00')
sendmmsg$inet(r5, &(0x7f0000004980)=[{{&(0x7f0000000000)={0x2, 0x4e24, @loopback}, 0x10, &(0x7f0000000040)}}], 0x1, 0x20008000)
shutdown(r5, 0x1)

2m24.673918295s ago: executing program 1 (id=965):
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f00000000c0)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bind$vsock_stream(r0, &(0x7f0000000440), 0x10)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r2, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10)
sendto$packet(r2, &(0x7f0000000600)="5f0efc", 0xfffffffffffffe4c, 0x44, 0x0, 0x0)

2m24.263797976s ago: executing program 1 (id=966):
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
fsopen(0x0, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffd000)
syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000032680)=""/102392, 0x18ff8)
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x3)

2m24.262584338s ago: executing program 5 (id=967):
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(des3_ede)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292", 0xc)
r2 = accept4(r1, 0x0, 0x0, 0x0)
r3 = dup(r2)
write$6lowpan_enable(r3, 0x0, 0x0)
read$FUSE(r3, 0x0, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80202, 0x0)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000140)=@req3={0x7fffffff, 0x400, 0x1, 0xd, 0x1, 0x6, 0x6}, 0x1c)
r4 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r4, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
syz_open_dev$sndpcmc(&(0x7f0000000000), 0x0, 0x0)
mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000000040), 0x0, &(0x7f00000004c0))
pselect6(0x40, &(0x7f00000001c0)={0x20, 0x0, 0x20000000000, 0xfffffffffffffffd, 0x0, 0x0, 0x1000001000, 0x49}, 0x0, &(0x7f00000002c0)={0x3ff, 0x7, 0x0, 0x9, 0x0, 0xf, 0x80000006}, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'dummy0\x00'})

2m24.243950341s ago: executing program 0 (id=968):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a50000000060a09040000000000000000020000000900020073797a32000000000900010073797a30000000002400048020000180080001006c6f"], 0x78}}, 0x0)

2m23.059420949s ago: executing program 1 (id=969):
r0 = socket(0x2, 0x80805, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000009c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
mlock2(&(0x7f000034f000/0x4000)=nil, 0x4000, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r5 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r5, 0x0, 0x0)
r6 = accept4(r5, 0x0, 0x0, 0x0)
sendmsg$nl_route_sched_retired(r6, 0x0, 0x0)
recvmmsg(r6, &(0x7f0000000180)=[{{0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000000500)=""/217, 0xd9}], 0x1}}], 0x1, 0x0, 0x0)
fsopen(&(0x7f00000000c0)='ecryptfs\x00', 0x0)
bpf$MAP_GET_NEXT_KEY(0x4, 0x0, 0x0)
kexec_load(0x0, 0x0, 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f0000001140)=[@in={0x2, 0x4e24, @loopback}]}, &(0x7f0000000180)=0x10)

2m21.992439259s ago: executing program 6 (id=970):
openat$ptmx(0xffffffffffffff9c, 0x0, 0x40980, 0x0)
mknodat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x11c0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffed850000006d000000a5"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
timer_create(0x0, &(0x7f0000000200)={0x0, 0x21, 0x2, @tid=0xffffffffffffffff}, &(0x7f0000000300))
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0xd3283d0368e269b3, 0x8031, 0xffffffffffffffff, 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x148640, 0x78e22799f4a46f8e)
openat(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', 0x2c41, 0x0)

2m21.976009187s ago: executing program 5 (id=971):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000001740), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0)
r2 = openat$fuse(0xffffffffffffff9c, 0x0, 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r2, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r2, &(0x7f00000021c0)={0x2020, 0x0, <r3=>0x0, 0x0, <r4=>0x0}, 0x2020)
write$FUSE_INIT(r2, &(0x7f0000000040)={0x50, 0x0, r3, {0x7, 0x1f, 0x0, 0x490420, 0x2}}, 0x50)
syz_fuse_handle_req(r2, &(0x7f000000e3c0)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000d838aae8c05dd22d0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r2, &(0x7f0000004200)="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", 0x2000, &(0x7f0000000c80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x78, 0x0, 0x0, {0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, 0x0, 0x0, r4}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x20c01, 0x0)
io_setup(0x2, &(0x7f0000000200)=<r6=>0x0)
io_submit(r6, 0x140b, &(0x7f0000000700)=[&(0x7f0000000440)={0x18, 0x7000000, 0x4, 0x1, 0x0, r5, &(0x7f0000000180)='\x00', 0xfdfe}])
dup3(r1, r2, 0x6700000000000000)
close_range(r0, 0xffffffffffffffff, 0x0)

2m21.85209936s ago: executing program 0 (id=972):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000005c0)=@updpolicy={0xb8, 0x19, 0x1, 0x0, 0x0, {{@in=@multicast2, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x29}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x2, 0xffffffffffffffff}, {0x0, 0x0, 0x0, 0xffffffffffffffff}}}, 0xb8}}, 0x4004)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="b800000019000100000000fe00000000e00000020000000000000000000000000000000000000000000000000000000000000000fffd00000a"], 0xb8}}, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[], 0xb8}}, 0x0)

2m21.758083882s ago: executing program 6 (id=973):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @multicast2}, 0x10)
setsockopt$sock_int(r0, 0x1, 0x3c, &(0x7f0000000040)=0x1, 0xfff0)
connect$inet(r0, &(0x7f0000000080)={0x2, 0x4e20, @loopback}, 0x10)
sendmmsg$inet(r0, &(0x7f0000000740)=[{{0x0, 0x0, &(0x7f0000000280)=[{0x0}], 0x1}}], 0x1, 0x60cd894)

2m21.693048858s ago: executing program 5 (id=974):
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0, r1}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r2, 0x8924, &(0x7f0000000000)={'bridge_slave_0\x00', @random="010000201000"})

2m21.625292582s ago: executing program 0 (id=975):
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f00000000c0)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bind$vsock_stream(r0, &(0x7f0000000440), 0x10)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r2, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10)
sendto$packet(r2, &(0x7f0000000600)="5f0efc", 0xfffffffffffffe4c, 0x44, 0x0, 0x0)

2m21.280621596s ago: executing program 5 (id=976):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$unix(0x1, 0x2, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000100)={'wlan1\x00'})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x24044884)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
close(r2)
socket$inet_sctp(0x2, 0x1, 0x84)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})

2m21.143524339s ago: executing program 0 (id=977):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[@ANYBLOB="280000001200010400ff", @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b'], 0x28}}, 0x0)

2m20.972597503s ago: executing program 0 (id=978):
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
fsopen(0x0, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffd000)
syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000032680)=""/102392, 0x18ff8)
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x3)

2m20.858572477s ago: executing program 5 (id=979):
socket$inet6_udplite(0xa, 0x2, 0x88)
r0 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r0, &(0x7f0000000840)={0x2, 0x0, @loopback}, 0x10)
pipe2(0x0, 0x0)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
pipe2(&(0x7f0000000240)={0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
tee(0xffffffffffffffff, r2, 0xfffffffffffffc01, 0x0)
tee(0xffffffffffffffff, r2, 0x60000000000, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)

2m20.787409416s ago: executing program 6 (id=980):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r2, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r2, 0x6, 0x14, &(0x7f0000000280)=0x1, 0x4)
connect$inet6(r2, &(0x7f0000000080)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @remote}}, 0x1c)
sendto$inet6(r2, &(0x7f00000001c0)="a6", 0x1, 0x840, 0x0, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR(r2, 0x6, 0x13, &(0x7f0000000100)=0xffffffffffffffff, 0x4)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r2, 0x6, 0x23, &(0x7f00000003c0)={&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x0, 0x0, 0x0, &(0x7f0000002380)=""/4082, 0xff2, 0x0, 0x0}, &(0x7f0000000300)=0x40)
r3 = openat(0xffffffffffffff9c, 0x0, 0x42, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00'}, 0x2d)
r4 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r4, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r4, 0x1, 0x8, &(0x7f0000000000), 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r4, 0x10e, 0x4, &(0x7f0000000640)=0x401800, 0x4b)
r5 = socket$kcm(0x10, 0x2, 0x0)
r6 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r6, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000380)="2e00000010008188e6b62aa73772cc9f1ba1f848110000005e140602000000000e000a001000000002900000121f", 0x2e}], 0x1}, 0x0)
sendmsg$kcm(r5, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="2e00000010008188040f80ec59acbc0413a1f848110000005e140602000000000e000a000f00000002800000121f", 0x2e}], 0x1}, 0x0)
sendmsg$DEVLINK_CMD_PORT_SPLIT(r3, &(0x7f0000000280)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000001c0)={&(0x7f0000000100)={0x44, 0x0, 0x100, 0x70bd2a, 0x25dfdbff, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x2}}, {0x8, 0x9, 0x6}}]}, 0x44}, 0x1, 0x0, 0x0, 0x40000}, 0x4000810)

2m19.672501395s ago: executing program 0 (id=981):
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(des3_ede)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292", 0xc)
r2 = accept4(r1, 0x0, 0x0, 0x0)
r3 = dup(r2)
write$6lowpan_enable(r3, 0x0, 0x0)
read$FUSE(r3, 0x0, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80202, 0x0)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000140)=@req3={0x7fffffff, 0x400, 0x1, 0xd, 0x1, 0x6, 0x6}, 0x1c)
r4 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r4, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
syz_open_dev$sndpcmc(&(0x7f0000000000), 0x0, 0x0)
mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000000040), 0x0, &(0x7f00000004c0))
pselect6(0x40, &(0x7f00000001c0)={0x20, 0x0, 0x20000000000, 0xfffffffffffffffd, 0x0, 0x0, 0x1000001000, 0x49}, 0x0, &(0x7f00000002c0)={0x3ff, 0x7, 0x0, 0x9, 0x0, 0xf, 0x80000006}, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

2m19.040351748s ago: executing program 5 (id=982):
socket$nl_netfilter(0x10, 0x3, 0xc)
openat$udambuf(0xffffff9c, &(0x7f0000000300), 0x2)
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, 0x0, &(0x7f0000000240)='//\xf2/\x06\b/\xdf/o\xdc\xea\x95\x9a\x82\x10\x97W\x8f7\x98\x9b\\/\\\xf9\rmD\x94)U\xdb\x15X.I\n}\xf3\x9d\xe4_\x05\x9cqf4I^#b?9\xde\xafu\'\x83L\xe0\x97\xe1n_\xa4%\xb1\x97\x93\xafv\xce/\\\xb4L\xf2_\xa7\xfb\xf4\x84\x1fA\xeas^\xef\xa2\x85\xa3!\xfb\x93\xd7R\xab2\x1eW\xe9h\x9b\xf7ul\xf9D\xd4\x82X5\x13\xaa\x87\xf9\xba\xa9m\x14\x14R_\x9a\\>4\xce\x8e_#\xf8D\xb1\xdep\x01\xcc:\xa6\xc5n\xeb\xab\xf70\x99\xef\x8b<M\n\xc0`[\x82\xf6$\xa4\xbe\x1e\xd3\xe4\xd9L\x14\xed\xcfK\xcc\xeb,\x1a1\xa6\xf3e\xc2F\xc3\x00\xaa\xd5\xfc\x1bR\xa9\x8c\xb4&\x9f\xa2$\x06\x1a\xb0W#\xf4\xde6\x04c\xc0\xeec\xa0l\xd5d\xe5\xcd\xb2\xc10\x97w\x87\xe5\x06\x91W\rr\xf5\x97%\xe8pO\xeb]\xc2\x98C\xffK\xa0\xb3\\\x99{\xcdR\x92\x94\xf7\x1d\x01Q\x1a\xbd\x15b\x15h\xe2!\x00\xb9z)\x19\x00\xee\xd2)[p`\xb3\x03\xa7p\'X\xec\xcdoX\x05\xff\xff/o\xb2\xad\xb8\x89i@\f\xffS&\x8a\xc9\xfez\xc2\x90\xe7F\xa6\xdb\r\x03j,N\xe1lw\n\xad\xe8\xf0\xbd\xa1\x98\xce\xf9\x1eR\x9cc\xc5ke_\xa7\x11\"\x04\xd8.\xa0\x15\x83\xf1\x92\xdby\xe9\xdc@.\xc1g\xc6\fc\xa26\xd8\xdf\xef\xf7\x9c\x1a\xcc\x8am\x8b7\xcf\xc5\xa6\xf4\f\xabj%Y\xa9\xdd\x0e9e\xb5\xec\x99@\xd2\t\n\xb1o', 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
syz_io_uring_setup(0x7c5c, &(0x7f0000000140)={0x0, 0xf18d, 0x0, 0x2, 0xbfdffffc}, &(0x7f0000000000), &(0x7f0000000280))
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="1b000000000000000000", @ANYRES32, @ANYBLOB="0000000000230000000000003485000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0xf, &(0x7f0000000180)=ANY=[@ANYBLOB="1800004000000000000000000100000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b7000000000000009500000000000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r2, 0x0, 0xf}, 0x18)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'veth0_to_bridge\x00', <r4=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000004c00)=@newtfilter={0x24, 0x11, 0xd27, 0x70bd28, 0x0, {0x0, 0x0, 0x74, r4, {}, {0x2}}}, 0x24}, 0x1, 0xf0ffffffffffff}, 0x0)
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r5, &(0x7f0000000100)={0x2, 0x4e24, @loopback}, 0x10)
socket(0xa, 0x3, 0x3a)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080))
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$cgroup_ro(r6, &(0x7f0000000040)='cgroup.freeze\x00', 0x275a, 0x0)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x20000000000, 0xfffffffffffffffd, 0x0, 0x0, 0x1000001000, 0x49}, 0x0, &(0x7f00000002c0)={0x3ff, 0x7, 0xffffffffffffffff, 0x9, 0x0, 0xf, 0x80000006}, 0x0, 0x0)
sendmmsg$inet(r5, &(0x7f0000004980)=[{{&(0x7f0000000000)={0x2, 0x4e24, @loopback}, 0x10, &(0x7f0000000040)}}], 0x1, 0x20008000)
shutdown(r5, 0x1)

2m18.63139337s ago: executing program 6 (id=983):
openat$ptmx(0xffffffffffffff9c, 0x0, 0x40980, 0x0)
mknodat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x11c0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffed850000006d000000a500000005"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
timer_create(0x0, &(0x7f0000000200)={0x0, 0x21, 0x2, @tid=0xffffffffffffffff}, &(0x7f0000000300))
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0xd3283d0368e269b3, 0x8031, 0xffffffffffffffff, 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x148640, 0x78e22799f4a46f8e)
openat(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', 0x2c41, 0x0)

2m18.434521214s ago: executing program 1 (id=984):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000001740), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, 0x0, &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r2, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r2, &(0x7f00000021c0)={0x2020, 0x0, <r3=>0x0, 0x0, <r4=>0x0}, 0x2020)
write$FUSE_INIT(r2, &(0x7f0000000040)={0x50, 0x0, r3, {0x7, 0x1f, 0x0, 0x490420, 0x2}}, 0x50)
syz_fuse_handle_req(r2, &(0x7f000000e3c0)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000d838aae8c05dd22d0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r2, &(0x7f0000004200)="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", 0x2000, &(0x7f0000000c80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x78, 0x0, 0x0, {0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, 0x0, 0x0, r4}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x20c01, 0x0)
io_setup(0x2, &(0x7f0000000200)=<r6=>0x0)
io_submit(r6, 0x140b, &(0x7f0000000700)=[&(0x7f0000000440)={0x18, 0x7000000, 0x4, 0x1, 0x0, r5, &(0x7f0000000180)='\x00', 0xfdfe}])
dup3(r1, r2, 0x6700000000000000)
close_range(r0, 0xffffffffffffffff, 0x0)

2m17.859911821s ago: executing program 1 (id=985):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000005c0)=@updpolicy={0xb8, 0x19, 0x1, 0x0, 0x0, {{@in=@multicast2, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x29}, {0x0, 0x0, 0x7, 0x0, 0x0, 0x2, 0xffffffffffffffff}, {0x0, 0x0, 0x0, 0xffffffffffffffff}}}, 0xb8}}, 0x4004)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="b800000019000100000000fe00000000e00000020000000000000000000000000000000000000000000000000000000000000000fffd00000a"], 0xb8}}, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[], 0xb8}}, 0x0)

2m17.825869647s ago: executing program 6 (id=986):
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f00000000c0)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bind$vsock_stream(r0, &(0x7f0000000440), 0x10)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r2, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10)
sendto$packet(r2, &(0x7f0000000600)="5f0efc", 0xfffffffffffffe4c, 0x44, 0x0, 0x0)

2m14.547228958s ago: executing program 1 (id=987):
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0, r1}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r2, 0x8924, &(0x7f0000000000)={'bridge_slave_0\x00', @random="010000201000"})

2m14.339140915s ago: executing program 6 (id=988):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$unix(0x1, 0x2, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000100)={'wlan1\x00'})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x24044884)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
close(r2)
socket$inet_sctp(0x2, 0x1, 0x84)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})

1m52.355448892s ago: executing program 35 (id=981):
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(des3_ede)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292", 0xc)
r2 = accept4(r1, 0x0, 0x0, 0x0)
r3 = dup(r2)
write$6lowpan_enable(r3, 0x0, 0x0)
read$FUSE(r3, 0x0, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80202, 0x0)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000140)=@req3={0x7fffffff, 0x400, 0x1, 0xd, 0x1, 0x6, 0x6}, 0x1c)
r4 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r4, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
syz_open_dev$sndpcmc(&(0x7f0000000000), 0x0, 0x0)
mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000000040), 0x0, &(0x7f00000004c0))
pselect6(0x40, &(0x7f00000001c0)={0x20, 0x0, 0x20000000000, 0xfffffffffffffffd, 0x0, 0x0, 0x1000001000, 0x49}, 0x0, &(0x7f00000002c0)={0x3ff, 0x7, 0x0, 0x9, 0x0, 0xf, 0x80000006}, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

1m4.643964769s ago: executing program 36 (id=987):
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0, r1}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r2, 0x8924, &(0x7f0000000000)={'bridge_slave_0\x00', @random="010000201000"})

2.808491064s ago: executing program 37 (id=982):
socket$nl_netfilter(0x10, 0x3, 0xc)
openat$udambuf(0xffffff9c, &(0x7f0000000300), 0x2)
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, 0x0, &(0x7f0000000240)='//\xf2/\x06\b/\xdf/o\xdc\xea\x95\x9a\x82\x10\x97W\x8f7\x98\x9b\\/\\\xf9\rmD\x94)U\xdb\x15X.I\n}\xf3\x9d\xe4_\x05\x9cqf4I^#b?9\xde\xafu\'\x83L\xe0\x97\xe1n_\xa4%\xb1\x97\x93\xafv\xce/\\\xb4L\xf2_\xa7\xfb\xf4\x84\x1fA\xeas^\xef\xa2\x85\xa3!\xfb\x93\xd7R\xab2\x1eW\xe9h\x9b\xf7ul\xf9D\xd4\x82X5\x13\xaa\x87\xf9\xba\xa9m\x14\x14R_\x9a\\>4\xce\x8e_#\xf8D\xb1\xdep\x01\xcc:\xa6\xc5n\xeb\xab\xf70\x99\xef\x8b<M\n\xc0`[\x82\xf6$\xa4\xbe\x1e\xd3\xe4\xd9L\x14\xed\xcfK\xcc\xeb,\x1a1\xa6\xf3e\xc2F\xc3\x00\xaa\xd5\xfc\x1bR\xa9\x8c\xb4&\x9f\xa2$\x06\x1a\xb0W#\xf4\xde6\x04c\xc0\xeec\xa0l\xd5d\xe5\xcd\xb2\xc10\x97w\x87\xe5\x06\x91W\rr\xf5\x97%\xe8pO\xeb]\xc2\x98C\xffK\xa0\xb3\\\x99{\xcdR\x92\x94\xf7\x1d\x01Q\x1a\xbd\x15b\x15h\xe2!\x00\xb9z)\x19\x00\xee\xd2)[p`\xb3\x03\xa7p\'X\xec\xcdoX\x05\xff\xff/o\xb2\xad\xb8\x89i@\f\xffS&\x8a\xc9\xfez\xc2\x90\xe7F\xa6\xdb\r\x03j,N\xe1lw\n\xad\xe8\xf0\xbd\xa1\x98\xce\xf9\x1eR\x9cc\xc5ke_\xa7\x11\"\x04\xd8.\xa0\x15\x83\xf1\x92\xdby\xe9\xdc@.\xc1g\xc6\fc\xa26\xd8\xdf\xef\xf7\x9c\x1a\xcc\x8am\x8b7\xcf\xc5\xa6\xf4\f\xabj%Y\xa9\xdd\x0e9e\xb5\xec\x99@\xd2\t\n\xb1o', 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
syz_io_uring_setup(0x7c5c, &(0x7f0000000140)={0x0, 0xf18d, 0x0, 0x2, 0xbfdffffc}, &(0x7f0000000000), &(0x7f0000000280))
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="1b000000000000000000", @ANYRES32, @ANYBLOB="0000000000230000000000003485000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0xf, &(0x7f0000000180)=ANY=[@ANYBLOB="1800004000000000000000000100000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b7000000000000009500000000000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r2, 0x0, 0xf}, 0x18)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'veth0_to_bridge\x00', <r4=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000004c00)=@newtfilter={0x24, 0x11, 0xd27, 0x70bd28, 0x0, {0x0, 0x0, 0x74, r4, {}, {0x2}}}, 0x24}, 0x1, 0xf0ffffffffffff}, 0x0)
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r5, &(0x7f0000000100)={0x2, 0x4e24, @loopback}, 0x10)
socket(0xa, 0x3, 0x3a)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080))
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$cgroup_ro(r6, &(0x7f0000000040)='cgroup.freeze\x00', 0x275a, 0x0)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x20000000000, 0xfffffffffffffffd, 0x0, 0x0, 0x1000001000, 0x49}, 0x0, &(0x7f00000002c0)={0x3ff, 0x7, 0xffffffffffffffff, 0x9, 0x0, 0xf, 0x80000006}, 0x0, 0x0)
sendmmsg$inet(r5, &(0x7f0000004980)=[{{&(0x7f0000000000)={0x2, 0x4e24, @loopback}, 0x10, &(0x7f0000000040)}}], 0x1, 0x20008000)
shutdown(r5, 0x1)

0s ago: executing program 38 (id=988):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$unix(0x1, 0x2, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000100)={'wlan1\x00'})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x24044884)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
close(r2)
socket$inet_sctp(0x2, 0x1, 0x84)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})

kernel console output (not intermixed with test programs):

59] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   81.443268][   T59] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   81.451542][   T59] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   81.458321][   T59] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   81.471118][   T59] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   81.519851][ T5842] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   81.521851][ T5842] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   81.522585][ T5842] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   81.523697][ T5842] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   81.524487][ T5842] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   81.696219][ T5838] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   81.711393][ T5842] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   81.713060][ T5840] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   81.716377][ T5840] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   81.716831][ T5840] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   81.718949][ T5842] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   81.723042][ T5842] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   81.728932][ T5842] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   81.729075][ T5842] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   81.731623][ T5842] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   81.771602][   T45] cfg80211: failed to load regulatory.db
[   82.593808][ T5843] chnl_net:caif_netlink_parms(): no params data found
[   82.684731][ T5839] chnl_net:caif_netlink_parms(): no params data found
[   82.712317][ T5834] chnl_net:caif_netlink_parms(): no params data found
[   83.251673][ T5846] chnl_net:caif_netlink_parms(): no params data found
[   83.340750][ T5847] chnl_net:caif_netlink_parms(): no params data found
[   83.373116][ T5843] bridge0: port 1(bridge_slave_0) entered blocking state
[   83.374053][ T5843] bridge0: port 1(bridge_slave_0) entered disabled state
[   83.374418][ T5843] bridge_slave_0: entered allmulticast mode
[   83.376027][ T5843] bridge_slave_0: entered promiscuous mode
[   83.520620][   T59] Bluetooth: hci1: command tx timeout
[   83.598609][   T59] Bluetooth: hci2: command tx timeout
[   83.599352][ T5843] bridge0: port 2(bridge_slave_1) entered blocking state
[   83.599514][ T5843] bridge0: port 2(bridge_slave_1) entered disabled state
[   83.599933][ T5843] bridge_slave_1: entered allmulticast mode
[   83.602662][ T5843] bridge_slave_1: entered promiscuous mode
[   83.678341][   T59] Bluetooth: hci0: command tx timeout
[   83.839604][   T59] Bluetooth: hci3: command tx timeout
[   83.840103][ T5842] Bluetooth: hci4: command tx timeout
[   84.019076][ T5839] bridge0: port 1(bridge_slave_0) entered blocking state
[   84.019156][ T5839] bridge0: port 1(bridge_slave_0) entered disabled state
[   84.019319][ T5839] bridge_slave_0: entered allmulticast mode
[   84.020790][ T5839] bridge_slave_0: entered promiscuous mode
[   84.022548][ T5834] bridge0: port 1(bridge_slave_0) entered blocking state
[   84.022677][ T5834] bridge0: port 1(bridge_slave_0) entered disabled state
[   84.022842][ T5834] bridge_slave_0: entered allmulticast mode
[   84.024703][ T5834] bridge_slave_0: entered promiscuous mode
[   84.147888][ T5839] bridge0: port 2(bridge_slave_1) entered blocking state
[   84.148002][ T5839] bridge0: port 2(bridge_slave_1) entered disabled state
[   84.148731][ T5839] bridge_slave_1: entered allmulticast mode
[   84.151594][ T5839] bridge_slave_1: entered promiscuous mode
[   84.167219][ T5834] bridge0: port 2(bridge_slave_1) entered blocking state
[   84.167492][ T5834] bridge0: port 2(bridge_slave_1) entered disabled state
[   84.167698][ T5834] bridge_slave_1: entered allmulticast mode
[   84.173704][ T5834] bridge_slave_1: entered promiscuous mode
[   84.202739][ T5843] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   84.351025][ T5843] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   84.703319][ T5839] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   84.719645][ T5834] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   85.062959][ T5839] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   85.065082][ T5834] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   85.066546][ T5843] team0: Port device team_slave_0 added
[   85.066991][ T5846] bridge0: port 1(bridge_slave_0) entered blocking state
[   85.067193][ T5846] bridge0: port 1(bridge_slave_0) entered disabled state
[   85.067578][ T5846] bridge_slave_0: entered allmulticast mode
[   85.075407][ T5846] bridge_slave_0: entered promiscuous mode
[   85.112985][ T5847] bridge0: port 1(bridge_slave_0) entered blocking state
[   85.113159][ T5847] bridge0: port 1(bridge_slave_0) entered disabled state
[   85.113376][ T5847] bridge_slave_0: entered allmulticast mode
[   85.116094][ T5847] bridge_slave_0: entered promiscuous mode
[   85.311836][ T5843] team0: Port device team_slave_1 added
[   85.312564][ T5846] bridge0: port 2(bridge_slave_1) entered blocking state
[   85.312673][ T5846] bridge0: port 2(bridge_slave_1) entered disabled state
[   85.312837][ T5846] bridge_slave_1: entered allmulticast mode
[   85.314331][ T5846] bridge_slave_1: entered promiscuous mode
[   85.316858][ T5847] bridge0: port 2(bridge_slave_1) entered blocking state
[   85.316984][ T5847] bridge0: port 2(bridge_slave_1) entered disabled state
[   85.317194][ T5847] bridge_slave_1: entered allmulticast mode
[   85.348490][ T5847] bridge_slave_1: entered promiscuous mode
[   85.599133][ T5842] Bluetooth: hci1: command tx timeout
[   85.672125][ T5839] team0: Port device team_slave_0 added
[   85.674495][ T5834] team0: Port device team_slave_0 added
[   85.678404][ T5842] Bluetooth: hci2: command tx timeout
[   85.758809][ T5842] Bluetooth: hci0: command tx timeout
[   85.918455][ T5842] Bluetooth: hci4: command tx timeout
[   85.918487][ T5842] Bluetooth: hci3: command tx timeout
[   85.923046][ T5839] team0: Port device team_slave_1 added
[   85.925834][ T5834] team0: Port device team_slave_1 added
[   85.927942][ T5843] batman_adv: batadv0: Adding interface: batadv_slave_0
[   85.927956][ T5843] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   85.927978][ T5843] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   85.939184][ T5846] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   86.105486][ T5847] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   86.250481][ T5843] batman_adv: batadv0: Adding interface: batadv_slave_1
[   86.250497][ T5843] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   86.250520][ T5843] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   86.254556][ T5846] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   86.261072][ T5847] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   86.619831][ T5839] batman_adv: batadv0: Adding interface: batadv_slave_0
[   86.619842][ T5839] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   86.619855][ T5839] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   86.620951][ T5834] batman_adv: batadv0: Adding interface: batadv_slave_0
[   86.620964][ T5834] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   86.620991][ T5834] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   86.851725][ T5839] batman_adv: batadv0: Adding interface: batadv_slave_1
[   86.851746][ T5839] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   86.851768][ T5839] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   86.853486][ T5834] batman_adv: batadv0: Adding interface: batadv_slave_1
[   86.853498][ T5834] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   86.853521][ T5834] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   86.857966][ T5846] team0: Port device team_slave_0 added
[   86.863487][ T5847] team0: Port device team_slave_0 added
[   86.991712][ T5846] team0: Port device team_slave_1 added
[   86.994764][ T5847] team0: Port device team_slave_1 added
[   87.321065][ T5843] hsr_slave_0: entered promiscuous mode
[   87.322609][ T5843] hsr_slave_1: entered promiscuous mode
[   87.657802][ T5846] batman_adv: batadv0: Adding interface: batadv_slave_0
[   87.657814][ T5846] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   87.657829][ T5846] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   87.661037][ T5847] batman_adv: batadv0: Adding interface: batadv_slave_0
[   87.661050][ T5847] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   87.661072][ T5847] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   87.678275][ T5842] Bluetooth: hci1: command tx timeout
[   87.758211][ T5842] Bluetooth: hci2: command tx timeout
[   87.831931][ T5846] batman_adv: batadv0: Adding interface: batadv_slave_1
[   87.831951][ T5846] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   87.831969][ T5846] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   87.832848][ T5847] batman_adv: batadv0: Adding interface: batadv_slave_1
[   87.832856][ T5847] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   87.832869][ T5847] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   87.839547][ T5842] Bluetooth: hci0: command tx timeout
[   87.840708][ T5839] hsr_slave_0: entered promiscuous mode
[   87.842106][ T5839] hsr_slave_1: entered promiscuous mode
[   87.843097][ T5839] debugfs: 'hsr0' already exists in 'hsr'
[   87.843208][ T5839] Cannot create hsr debugfs directory
[   87.854001][ T5834] hsr_slave_0: entered promiscuous mode
[   87.856419][ T5834] hsr_slave_1: entered promiscuous mode
[   87.857354][ T5834] debugfs: 'hsr0' already exists in 'hsr'
[   87.857376][ T5834] Cannot create hsr debugfs directory
[   87.999089][ T5842] Bluetooth: hci3: command tx timeout
[   87.999121][ T5842] Bluetooth: hci4: command tx timeout
[   88.767680][ T5846] hsr_slave_0: entered promiscuous mode
[   88.769517][ T5846] hsr_slave_1: entered promiscuous mode
[   88.770405][ T5846] debugfs: 'hsr0' already exists in 'hsr'
[   88.770427][ T5846] Cannot create hsr debugfs directory
[   88.782326][ T5847] hsr_slave_0: entered promiscuous mode
[   88.783634][ T5847] hsr_slave_1: entered promiscuous mode
[   88.784637][ T5847] debugfs: 'hsr0' already exists in 'hsr'
[   88.784660][ T5847] Cannot create hsr debugfs directory
[   89.758350][   T59] Bluetooth: hci1: command tx timeout
[   89.838534][   T59] Bluetooth: hci2: command tx timeout
[   89.918361][   T59] Bluetooth: hci0: command tx timeout
[   90.083131][ T5843] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   90.089096][ T5842] Bluetooth: hci3: command tx timeout
[   90.089140][   T59] Bluetooth: hci4: command tx timeout
[   90.128001][ T5843] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   90.187406][ T5843] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   90.226804][ T5843] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   90.388744][ T5839] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   90.423532][ T5839] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   90.470290][ T5839] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   90.521775][ T5839] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   90.677105][ T5834] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   90.716557][ T5834] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   90.747847][ T5834] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   90.806252][ T5834] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   90.975900][ T5847] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   91.019380][ T5847] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   91.076115][ T5847] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   91.137858][ T5847] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   91.301557][ T5843] 8021q: adding VLAN 0 to HW filter on device bond0
[   91.346961][ T5846] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   91.389842][ T5846] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   91.453274][ T5846] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   91.497718][ T5846] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   91.581983][ T5843] 8021q: adding VLAN 0 to HW filter on device team0
[   91.630515][  T806] bridge0: port 1(bridge_slave_0) entered blocking state
[   91.630710][  T806] bridge0: port 1(bridge_slave_0) entered forwarding state
[   91.683697][ T5839] 8021q: adding VLAN 0 to HW filter on device bond0
[   91.690739][  T806] bridge0: port 2(bridge_slave_1) entered blocking state
[   91.692457][  T806] bridge0: port 2(bridge_slave_1) entered forwarding state
[   91.806661][ T5839] 8021q: adding VLAN 0 to HW filter on device team0
[   91.871348][  T806] bridge0: port 1(bridge_slave_0) entered blocking state
[   91.871580][  T806] bridge0: port 1(bridge_slave_0) entered forwarding state
[   91.911913][ T5834] 8021q: adding VLAN 0 to HW filter on device bond0
[   91.933193][   T43] bridge0: port 2(bridge_slave_1) entered blocking state
[   91.933278][   T43] bridge0: port 2(bridge_slave_1) entered forwarding state
[   92.049891][ T5847] 8021q: adding VLAN 0 to HW filter on device bond0
[   92.053115][ T5834] 8021q: adding VLAN 0 to HW filter on device team0
[   92.156312][  T806] bridge0: port 1(bridge_slave_0) entered blocking state
[   92.156570][  T806] bridge0: port 1(bridge_slave_0) entered forwarding state
[   92.224916][  T806] bridge0: port 2(bridge_slave_1) entered blocking state
[   92.225563][  T806] bridge0: port 2(bridge_slave_1) entered forwarding state
[   92.236133][ T5847] 8021q: adding VLAN 0 to HW filter on device team0
[   92.304004][ T5846] 8021q: adding VLAN 0 to HW filter on device bond0
[   92.330623][ T4501] bridge0: port 1(bridge_slave_0) entered blocking state
[   92.330772][ T4501] bridge0: port 1(bridge_slave_0) entered forwarding state
[   92.397874][   T57] bridge0: port 2(bridge_slave_1) entered blocking state
[   92.398013][   T57] bridge0: port 2(bridge_slave_1) entered forwarding state
[   92.514866][ T5846] 8021q: adding VLAN 0 to HW filter on device team0
[   92.592994][  T806] bridge0: port 1(bridge_slave_0) entered blocking state
[   92.593211][  T806] bridge0: port 1(bridge_slave_0) entered forwarding state
[   92.691598][ T5843] 8021q: adding VLAN 0 to HW filter on device batadv0
[   92.709944][  T806] bridge0: port 2(bridge_slave_1) entered blocking state
[   92.710086][  T806] bridge0: port 2(bridge_slave_1) entered forwarding state
[   92.983705][ T5839] 8021q: adding VLAN 0 to HW filter on device batadv0
[   93.360223][ T5839] veth0_vlan: entered promiscuous mode
[   93.410097][ T5839] veth1_vlan: entered promiscuous mode
[   93.547156][ T5834] 8021q: adding VLAN 0 to HW filter on device batadv0
[   93.641266][ T5847] 8021q: adding VLAN 0 to HW filter on device batadv0
[   93.644210][ T5839] veth0_macvtap: entered promiscuous mode
[   93.686612][ T5839] veth1_macvtap: entered promiscuous mode
[   93.821744][ T5839] batman_adv: batadv0: Interface activated: batadv_slave_0
[   93.860671][ T5839] batman_adv: batadv0: Interface activated: batadv_slave_1
[   93.905801][ T5843] veth0_vlan: entered promiscuous mode
[   93.907343][ T5834] veth0_vlan: entered promiscuous mode
[   93.926218][  T806] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   93.944036][ T5846] 8021q: adding VLAN 0 to HW filter on device batadv0
[   93.962702][  T806] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   93.971739][  T806] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   93.993235][  T806] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   94.016989][ T5847] veth0_vlan: entered promiscuous mode
[   94.028000][ T5843] veth1_vlan: entered promiscuous mode
[   94.040815][ T5834] veth1_vlan: entered promiscuous mode
[   94.152151][ T5847] veth1_vlan: entered promiscuous mode
[   94.366834][  T806] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   94.366859][  T806] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   94.440698][ T5834] veth0_macvtap: entered promiscuous mode
[   94.445078][ T5843] veth0_macvtap: entered promiscuous mode
[   94.485287][ T5846] veth0_vlan: entered promiscuous mode
[   94.509375][ T5834] veth1_macvtap: entered promiscuous mode
[   94.520670][ T5843] veth1_macvtap: entered promiscuous mode
[   94.538828][   T57] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   94.538845][   T57] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   94.543163][ T5847] veth0_macvtap: entered promiscuous mode
[   94.603295][ T5846] veth1_vlan: entered promiscuous mode
[   94.611241][ T5847] veth1_macvtap: entered promiscuous mode
[   94.664007][ T5834] batman_adv: batadv0: Interface activated: batadv_slave_0
[   94.667710][ T5843] batman_adv: batadv0: Interface activated: batadv_slave_0
[   94.720689][ T5834] batman_adv: batadv0: Interface activated: batadv_slave_1
[   94.742650][ T5843] batman_adv: batadv0: Interface activated: batadv_slave_1
[   94.760157][ T5847] batman_adv: batadv0: Interface activated: batadv_slave_0
[   94.811549][ T1456] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   94.818781][ T1456] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   94.863187][ T5847] batman_adv: batadv0: Interface activated: batadv_slave_1
[   94.865662][ T1456] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   94.889934][ T1456] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   94.905765][ T1456] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   94.925524][ T1456] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   94.981401][ T1456] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   95.013131][ T1456] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   95.095736][ T5846] veth0_macvtap: entered promiscuous mode
[   95.100496][ T3725] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   95.140116][ T3725] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   95.196750][ T3725] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   95.232748][ T3725] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   95.266756][ T5846] veth1_macvtap: entered promiscuous mode
[   95.616686][ T5846] batman_adv: batadv0: Interface activated: batadv_slave_0
[   95.793767][ T5958] netlink: 104 bytes leftover after parsing attributes in process `syz.1.7'.
[   95.794382][   T57] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   95.794400][   T57] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   95.801331][ T5846] batman_adv: batadv0: Interface activated: batadv_slave_1
[   95.850339][   T57] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   95.850358][   T57] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   95.881736][   T57] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   95.932700][   T57] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   95.974021][   T57] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   95.975099][   T57] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   96.079539][ T3725] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   96.079558][ T3725] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   96.485929][  T806] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   96.485948][  T806] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   96.557012][ T1456] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   96.557032][ T1456] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   96.669189][ T1119] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   96.669208][ T1119] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   96.786609][ T1456] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   96.786629][ T1456] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   97.087666][ T1119] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   97.087687][ T1119] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   97.260542][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[   97.262380][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[   98.060841][ T5924] hid-generic 0000:007F:FFFFFFFE.0001: unknown main item tag 0x0
[   98.060893][ T5924] hid-generic 0000:007F:FFFFFFFE.0001: unknown main item tag 0x0
[   98.060919][ T5924] hid-generic 0000:007F:FFFFFFFE.0001: unknown main item tag 0x0
[   98.060943][ T5924] hid-generic 0000:007F:FFFFFFFE.0001: unknown main item tag 0x0
[   98.060968][ T5924] hid-generic 0000:007F:FFFFFFFE.0001: unknown main item tag 0x0
[   98.060993][ T5924] hid-generic 0000:007F:FFFFFFFE.0001: unknown main item tag 0x0
[   98.061015][ T5924] hid-generic 0000:007F:FFFFFFFE.0001: unknown main item tag 0x0
[   98.061037][ T5924] hid-generic 0000:007F:FFFFFFFE.0001: unknown main item tag 0x0
[   98.061060][ T5924] hid-generic 0000:007F:FFFFFFFE.0001: unknown main item tag 0x0
[   98.061080][ T5924] hid-generic 0000:007F:FFFFFFFE.0001: unknown main item tag 0x0
[   98.224330][ T5924] hid-generic 0000:007F:FFFFFFFE.0001: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[   98.852511][ T5986] overlayfs: failed to resolve './file0': -2
[   99.569653][ T5913] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[   99.644783][ T5990] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   99.760279][ T5913] usb 2-1: Using ep0 maxpacket: 16
[   99.770718][ T5984] fido_id[5984]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[   99.802118][ T5913] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 8
[   99.823756][ T5913] usb 2-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 6.00
[   99.823783][ T5913] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   99.823800][ T5913] usb 2-1: Product: syz
[   99.823811][ T5913] usb 2-1: Manufacturer: syz
[   99.823823][ T5913] usb 2-1: SerialNumber: syz
[   99.866896][ T5913] usb 2-1: config 0 descriptor??
[   99.921461][ T5913] ftdi_sio 2-1:0.0: FTDI USB Serial Device converter detected
[   99.949767][ T5913] usb 2-1: Detected FT232R
[  101.588329][ T5913] ftdi_sio ttyUSB0: Unable to read latency timer: -71
[  101.591682][ T5913] ftdi_sio ttyUSB0: Unable to write latency timer: -71
[  101.592217][ T5913] ftdi_sio 2-1:0.0: GPIO initialisation failed: -71
[  101.612802][ T5913] usb 2-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  101.668172][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[  101.678168][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[  101.688138][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[  101.698146][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[  101.706864][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[  101.708117][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[  101.718139][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[  101.728149][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[  101.883320][ T5913] usb 2-1: USB disconnect, device number 2
[  101.913633][ T5913] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  101.914908][ T5913] ftdi_sio 2-1:0.0: device disconnected
[  102.894854][ T6014] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  103.213850][ T6023] netlink: 12 bytes leftover after parsing attributes in process `syz.0.19'.
[  103.776740][ T6027] sctp: [Deprecated]: syz.2.20 (pid 6027) Use of struct sctp_assoc_value in delayed_ack socket option.
[  103.776740][ T6027] Use struct sctp_sack_info instead
[  110.336627][ T6014] Zero length message leads to an empty skb
[  112.638045][ T6047] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  114.129865][    T9] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[  114.278154][    T9] usb 4-1: Using ep0 maxpacket: 32
[  114.286132][    T9] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  114.286148][    T9] usb 4-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  114.286158][    T9] usb 4-1: config 1 has no interface number 1
[  114.286192][    T9] usb 4-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  114.299615][    T9] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  114.299641][    T9] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  114.299659][    T9] usb 4-1: Product: syz
[  114.299671][    T9] usb 4-1: Manufacturer: syz
[  114.299682][    T9] usb 4-1: SerialNumber: syz
[  115.236535][    T9] usb 4-1: 2:1 : no or invalid class specific endpoint descriptor
[  115.236566][    T9] usb 4-1: 2:1: invalid format type 0x1002 is detected, processed as PCM
[  115.236585][    T9] usb 4-1: 2:1 : unsupported sample bitwidth 71 in 38 bytes
[  115.638224][    T9] usb 4-1: USB disconnect, device number 2
[  115.795013][ T6052] udevd[6052]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  115.848982][ T1230] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  116.018176][ T1230] usb 2-1: Using ep0 maxpacket: 8
[  116.022808][ T1230] usb 2-1: config index 0 descriptor too short (expected 301, got 45)
[  116.022878][ T1230] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  116.022898][ T1230] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  116.022919][ T1230] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  116.022940][ T1230] usb 2-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  116.022978][ T1230] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  116.022998][ T1230] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  116.300944][ T1230] usb 2-1: GET_CAPABILITIES returned 0
[  116.300974][ T1230] usbtmc 2-1:16.0: can't read capabilities
[  120.704090][ T5929] usb 2-1: USB disconnect, device number 3
[  122.709177][ T6098] =======================================================
[  122.709177][ T6098] WARNING: The mand mount option has been deprecated and
[  122.709177][ T6098]          and is ignored by this kernel. Remove the mand
[  122.709177][ T6098]          option from the mount to silence this warning.
[  122.709177][ T6098] =======================================================
[  122.715731][ T6098] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  124.539714][ T6102] evm: overlay not supported
[  126.028594][    C1] vkms_vblank_simulate: vblank timer overrun
[  126.468541][    C1] vkms_vblank_simulate: vblank timer overrun
[  127.036386][    C1] vkms_vblank_simulate: vblank timer overrun
[  127.232535][    C1] vkms_vblank_simulate: vblank timer overrun
[  127.651881][    C1] vkms_vblank_simulate: vblank timer overrun
[  128.072532][    C1] vkms_vblank_simulate: vblank timer overrun
[  128.886484][    C1] vkms_vblank_simulate: vblank timer overrun
[  129.027409][    C1] vkms_vblank_simulate: vblank timer overrun
[  129.334715][ T6134] netlink: 28 bytes leftover after parsing attributes in process `syz.1.49'.
[  129.335695][ T6131] sctp: [Deprecated]: syz.4.48 (pid 6131) Use of struct sctp_assoc_value in delayed_ack socket option.
[  129.335695][ T6131] Use struct sctp_sack_info instead
[  130.144819][ T6143] netlink: 12 bytes leftover after parsing attributes in process `syz.4.51'.
[  132.107444][ T6144] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  132.107740][ T6144] block device autoloading is deprecated and will be removed.
[  133.058594][ T1323] ieee802154 phy0 wpan0: encryption failed: -22
[  133.058658][ T1323] ieee802154 phy1 wpan1: encryption failed: -22
[  134.814563][    C0] vkms_vblank_simulate: vblank timer overrun
[  135.338298][   T31] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  135.441070][    C0] vkms_vblank_simulate: vblank timer overrun
[  135.488230][   T31] usb 2-1: Using ep0 maxpacket: 16
[  135.490408][   T31] usb 2-1: config 0 has no interfaces?
[  135.492037][   T31] usb 2-1: New USB device found, idVendor=0596, idProduct=0001, bcdDevice= 5.f5
[  135.492061][   T31] usb 2-1: New USB device strings: Mfr=1, Product=0, SerialNumber=3
[  135.492078][   T31] usb 2-1: Manufacturer: syz
[  135.492089][   T31] usb 2-1: SerialNumber: syz
[  135.611614][   T31] usb 2-1: config 0 descriptor??
[  135.822935][    C0] vkms_vblank_simulate: vblank timer overrun
[  136.097298][    C0] vkms_vblank_simulate: vblank timer overrun
[  136.314579][    C0] vkms_vblank_simulate: vblank timer overrun
[  136.418699][   T31] usb 2-1: USB disconnect, device number 4
[  136.878578][    C0] vkms_vblank_simulate: vblank timer overrun
[  137.225883][    C0] vkms_vblank_simulate: vblank timer overrun
[  138.537566][ T1238] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  138.770215][    C0] vkms_vblank_simulate: vblank timer overrun
[  138.885534][    C0] vkms_vblank_simulate: vblank timer overrun
[  138.907390][ T1238] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  138.907547][ T1238] usb 5-1: config 0 has no interfaces?
[  138.936038][    C0] vkms_vblank_simulate: vblank timer overrun
[  138.948262][ T1238] usb 5-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  138.948281][ T1238] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  139.001658][ T1238] usb 5-1: config 0 descriptor??
[  139.311111][ T1238] usb 5-1: string descriptor 0 read error: -71
[  139.312819][ T1238] usb 5-1: USB disconnect, device number 2
[  140.201355][ T5842] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  140.218396][ T5842] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  140.223080][ T5842] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  140.509768][ T5842] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  140.532870][ T5842] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  144.488971][ T5842] Bluetooth: hci5: command tx timeout
[  146.580576][ T5842] Bluetooth: hci5: command tx timeout
[  147.157903][ T6191] chnl_net:caif_netlink_parms(): no params data found
[  147.519124][ T6216] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[  147.736775][ T6222] netlink: 8 bytes leftover after parsing attributes in process `syz.1.73'.
[  148.639200][ T5842] Bluetooth: hci5: command tx timeout
[  150.830653][ T5842] Bluetooth: hci5: command tx timeout
[  154.290360][ T6191] bridge0: port 1(bridge_slave_0) entered blocking state
[  154.290560][ T6191] bridge0: port 1(bridge_slave_0) entered disabled state
[  154.290809][ T6191] bridge_slave_0: entered allmulticast mode
[  154.337330][ T6191] bridge_slave_0: entered promiscuous mode
[  154.762935][ T1512] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  155.079154][ T6191] bridge0: port 2(bridge_slave_1) entered blocking state
[  155.079307][ T6191] bridge0: port 2(bridge_slave_1) entered disabled state
[  155.079541][ T6191] bridge_slave_1: entered allmulticast mode
[  155.082446][ T6191] bridge_slave_1: entered promiscuous mode
[  156.911589][ T6297] netlink: 8 bytes leftover after parsing attributes in process `syz.0.96'.
[  162.777182][ T1512] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  163.533504][    C0] vkms_vblank_simulate: vblank timer overrun
[  163.921371][    C0] vkms_vblank_simulate: vblank timer overrun
[  164.296858][    C0] vkms_vblank_simulate: vblank timer overrun
[  164.795658][    C0] vkms_vblank_simulate: vblank timer overrun
[  166.093495][ T1512] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  166.255046][ T6191] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  166.291759][ T6191] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  166.604742][ T1512] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  166.877180][ T6191] team0: Port device team_slave_0 added
[  166.900913][ T6191] team0: Port device team_slave_1 added
[  167.438447][    C0] vkms_vblank_simulate: vblank timer overrun
[  167.554613][    C0] vkms_vblank_simulate: vblank timer overrun
[  167.600432][ T6328] netlink: 348 bytes leftover after parsing attributes in process `syz.1.104'.
[  167.600474][ T6328] netlink: 40 bytes leftover after parsing attributes in process `syz.1.104'.
[  167.719235][ T6191] batman_adv: batadv0: Adding interface: batadv_slave_0
[  167.719252][ T6191] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  167.719275][ T6191] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  167.721851][ T6191] batman_adv: batadv0: Adding interface: batadv_slave_1
[  167.721865][ T6191] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  167.721887][ T6191] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  168.092976][    C0] vkms_vblank_simulate: vblank timer overrun
[  168.218872][    C0] vkms_vblank_simulate: vblank timer overrun
[  168.317403][    C0] vkms_vblank_simulate: vblank timer overrun
[  168.667187][ T6191] hsr_slave_0: entered promiscuous mode
[  168.680755][ T6191] hsr_slave_1: entered promiscuous mode
[  168.685426][ T6191] debugfs: 'hsr0' already exists in 'hsr'
[  168.685455][ T6191] Cannot create hsr debugfs directory
[  169.043459][    C0] vkms_vblank_simulate: vblank timer overrun
[  169.086923][ T1512] bridge_slave_1: left allmulticast mode
[  169.735802][    C0] vkms_vblank_simulate: vblank timer overrun
[  169.778474][ T1512] bridge_slave_1: left promiscuous mode
[  169.782245][ T1512] bridge0: port 2(bridge_slave_1) entered disabled state
[  170.031325][ T1512] bridge_slave_0: left allmulticast mode
[  170.031346][ T1512] bridge_slave_0: left promiscuous mode
[  170.031508][ T1512] bridge0: port 1(bridge_slave_0) entered disabled state
[  172.693111][    C0] vkms_vblank_simulate: vblank timer overrun
[  174.375627][    C0] vkms_vblank_simulate: vblank timer overrun
[  174.459117][    C0] vkms_vblank_simulate: vblank timer overrun
[  174.835353][    C0] vkms_vblank_simulate: vblank timer overrun
[  177.962918][    C0] vkms_vblank_simulate: vblank timer overrun
[  178.718861][ T1512] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  178.789050][ T1512] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  178.827080][ T1512] bond0 (unregistering): Released all slaves
[  179.504212][    C0] vkms_vblank_simulate: vblank timer overrun
[  179.894625][    C0] vkms_vblank_simulate: vblank timer overrun
[  180.186018][ T5842] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[  180.186128][ T5842] Bluetooth: hci0: Injecting HCI hardware error event
[  180.194395][ T5842] Bluetooth: hci0: hardware error 0x00
[  180.220170][    C0] vkms_vblank_simulate: vblank timer overrun
[  180.367168][    C0] vkms_vblank_simulate: vblank timer overrun
[  180.439840][    C0] vkms_vblank_simulate: vblank timer overrun
[  181.962954][    C0] vkms_vblank_simulate: vblank timer overrun
[  182.160426][    C0] vkms_vblank_simulate: vblank timer overrun
[  182.778976][ T5842] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  182.911624][    C0] vkms_vblank_simulate: vblank timer overrun
[  182.992582][    C0] vkms_vblank_simulate: vblank timer overrun
[  184.119875][    C0] vkms_vblank_simulate: vblank timer overrun
[  184.207676][    C0] vkms_vblank_simulate: vblank timer overrun
[  184.250203][    C0] vkms_vblank_simulate: vblank timer overrun
[  185.553007][    C0] vkms_vblank_simulate: vblank timer overrun
[  186.310758][    C0] vkms_vblank_simulate: vblank timer overrun
[  186.408446][ T1512] hsr_slave_0: left promiscuous mode
[  186.458675][ T1512] hsr_slave_1: left promiscuous mode
[  186.459532][ T1512] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  186.459618][ T1512] batman_adv: batadv0: Removing interface: batadv_slave_0
[  186.526434][ T1512] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  186.526469][ T1512] batman_adv: batadv0: Removing interface: batadv_slave_1
[  187.323310][ T1512] veth1_macvtap: left promiscuous mode
[  187.323572][ T1512] veth0_macvtap: left promiscuous mode
[  187.323902][ T1512] veth1_vlan: left promiscuous mode
[  187.324252][ T1512] veth0_vlan: left promiscuous mode
[  187.773338][ T6449] netlink: 'syz.2.145': attribute type 32 has an invalid length.
[  187.947315][ T5842] Bluetooth: hci2: failed to read key size for handle 201
[  188.781299][    C0] vkms_vblank_simulate: vblank timer overrun
[  189.055288][    C0] vkms_vblank_simulate: vblank timer overrun
[  189.155706][    C0] vkms_vblank_simulate: vblank timer overrun
[  189.916343][ T6470] netlink: 228 bytes leftover after parsing attributes in process `syz.1.154'.
[  191.229590][ T1512] team0 (unregistering): Port device team_slave_1 removed
[  191.462860][ T1512] team0 (unregistering): Port device team_slave_0 removed
[  192.013103][ T5842] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[  192.013289][ T5842] Bluetooth: hci2: Injecting HCI hardware error event
[  192.016025][   T59] Bluetooth: hci2: hardware error 0x00
[  194.242007][   T59] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  194.406352][ T1323] ieee802154 phy0 wpan0: encryption failed: -22
[  194.406442][ T1323] ieee802154 phy1 wpan1: encryption failed: -22
[  195.098227][ T6247] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  195.171480][ T6191] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  195.258305][ T6247] usb 5-1: Using ep0 maxpacket: 8
[  195.268341][ T6247] usb 5-1: unable to get BOS descriptor or descriptor too short
[  195.286607][ T6247] usb 5-1: config 128 has an invalid interface number: 153 but max is 0
[  195.286631][ T6247] usb 5-1: config 128 has an invalid descriptor of length 0, skipping remainder of the config
[  195.286648][ T6247] usb 5-1: config 128 has no interface number 0
[  195.286696][ T6247] usb 5-1: config 128 interface 153 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  195.286717][ T6247] usb 5-1: config 128 interface 153 altsetting 4 endpoint 0x81 has invalid wMaxPacketSize 0
[  195.286736][ T6247] usb 5-1: config 128 interface 153 altsetting 4 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  195.286756][ T6247] usb 5-1: config 128 interface 153 has no altsetting 0
[  195.308934][ T6247] usb 5-1: New USB device found, idVendor=06cd, idProduct=011c, bcdDevice=14.a4
[  195.308960][ T6247] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  195.308976][ T6247] usb 5-1: Product: syz
[  195.308989][ T6247] usb 5-1: Manufacturer: syz
[  195.309000][ T6247] usb 5-1: SerialNumber: syz
[  195.328342][ T6191] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  195.507239][ T6191] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  195.623578][ T6191] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  195.869084][ T6247] keyspan 5-1:128.153: Keyspan 1 port adapter converter detected
[  195.869417][ T6247] keyspan 5-1:128.153: found no endpoint descriptor for endpoint 84
[  195.874325][ T6247] keyspan 5-1:128.153: found no endpoint descriptor for endpoint 82
[  195.874413][ T6247] keyspan 5-1:128.153: found no endpoint descriptor for endpoint 1
[  195.874485][ T6247] keyspan 5-1:128.153: found no endpoint descriptor for endpoint 2
[  195.874569][ T6247] keyspan 5-1:128.153: found no endpoint descriptor for endpoint 83
[  195.874644][ T6247] keyspan 5-1:128.153: found no endpoint descriptor for endpoint 3
[  195.889478][ T6247] usb 5-1: Keyspan 1 port adapter converter now attached to ttyUSB0
[  195.908769][ T6247] usb 5-1: USB disconnect, device number 3
[  196.769345][ T6247] keyspan_1 ttyUSB0: Keyspan 1 port adapter converter now disconnected from ttyUSB0
[  196.770183][ T6247] keyspan 5-1:128.153: device disconnected
[  196.793219][ T6065] udevd[6065]: setting mode of /dev/bus/usb/005/003 to 020664 failed: No such file or directory
[  196.793405][ T6065] udevd[6065]: setting owner of /dev/bus/usb/005/003 to uid=0, gid=0 failed: No such file or directory
[  196.946217][ T6191] 8021q: adding VLAN 0 to HW filter on device bond0
[  200.128877][ T5842] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  200.134891][ T5842] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  200.168354][ T5842] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  200.173929][ T5842] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  200.177074][ T5842] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  200.473374][ T6543] Bluetooth: MGMT ver 1.23
[  202.238266][   T59] Bluetooth: hci3: command tx timeout
[  202.392828][ T6570] input: syz0 as /devices/virtual/input/input5
[  204.240062][ T6247] usb 3-1: new full-speed USB device number 2 using dummy_hcd
[  204.254341][ T6594] bridge_slave_0: left allmulticast mode
[  204.254375][ T6594] bridge_slave_0: left promiscuous mode
[  204.260217][ T6594] bridge0: port 1(bridge_slave_0) entered disabled state
[  204.328288][   T59] Bluetooth: hci3: command tx timeout
[  204.612929][ T6247] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1023, setting to 64
[  204.612960][ T6247] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 4
[  204.612998][ T6247] usb 3-1: New USB device found, idVendor=046d, idProduct=ca04, bcdDevice= 0.00
[  204.613019][ T6247] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  204.617165][ T6594] bridge_slave_1: left allmulticast mode
[  204.617195][ T6594] bridge_slave_1: left promiscuous mode
[  204.617465][ T6594] bridge0: port 2(bridge_slave_1) entered disabled state
[  204.719231][ T6247] usb 3-1: config 0 descriptor??
[  204.721774][ T6595] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  204.845569][ T6594] bond0: (slave bond_slave_0): Releasing backup interface
[  204.970524][ T6594] bond0: (slave bond_slave_1): Releasing backup interface
[  205.095133][ T6594] team0: Port device team_slave_0 removed
[  205.186409][ T6247] logitech 0003:046D:CA04.0002: unbalanced delimiter at end of report description
[  205.187315][ T6247] logitech 0003:046D:CA04.0002: parse failed
[  205.187412][ T6247] logitech 0003:046D:CA04.0002: probe with driver logitech failed with error -22
[  205.248454][ T6594] team0: Port device team_slave_1 removed
[  205.249482][ T6594] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  205.249509][ T6594] batman_adv: batadv0: Removing interface: batadv_slave_0
[  205.300258][ T6594] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  205.300290][ T6594] batman_adv: batadv0: Removing interface: batadv_slave_1
[  205.421463][ T6083] usb 3-1: USB disconnect, device number 2
[  206.398287][ T5840] Bluetooth: hci3: command tx timeout
[  206.721835][ T5840] Bluetooth: hci4: command 0x0406 tx timeout
[  206.721863][ T5840] Bluetooth: hci1: command 0x0406 tx timeout
[  209.257466][   T59] Bluetooth: hci3: command tx timeout
[  211.416470][ T6534] chnl_net:caif_netlink_parms(): no params data found
[  213.061191][ T6679] netlink: 48 bytes leftover after parsing attributes in process `syz.1.210'.
[  213.062600][ T6682] netlink: 48 bytes leftover after parsing attributes in process `syz.1.210'.
[  218.123639][ T6534] bridge0: port 1(bridge_slave_0) entered blocking state
[  218.123782][ T6534] bridge0: port 1(bridge_slave_0) entered disabled state
[  218.123978][ T6534] bridge_slave_0: entered allmulticast mode
[  218.130623][ T6534] bridge_slave_0: entered promiscuous mode
[  218.283925][ T6534] bridge0: port 2(bridge_slave_1) entered blocking state
[  218.284073][ T6534] bridge0: port 2(bridge_slave_1) entered disabled state
[  218.284309][ T6534] bridge_slave_1: entered allmulticast mode
[  218.336319][ T6534] bridge_slave_1: entered promiscuous mode
[  218.746704][ T1173] bridge_slave_1: left allmulticast mode
[  218.746737][ T1173] bridge_slave_1: left promiscuous mode
[  218.747045][ T1173] bridge0: port 2(bridge_slave_1) entered disabled state
[  218.959206][ T1173] bridge_slave_0: left allmulticast mode
[  218.959239][ T1173] bridge_slave_0: left promiscuous mode
[  218.959519][ T1173] bridge0: port 1(bridge_slave_0) entered disabled state
[  223.127523][ T6758] 9pnet_virtio: no channels available for device 127.0.0.1
[  224.669025][ T1173] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  224.739233][ T1173] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  224.792263][ T1173] bond0 (unregistering): Released all slaves
[  225.652309][ T6534] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  225.671133][ T6534] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  227.011853][ T6534] team0: Port device team_slave_0 added
[  227.110856][ T6774] binder: 6773:6774 unknown command 0
[  227.110879][ T6774] binder: 6773:6774 ioctl c0306201 200000000080 returned -22
[  227.200127][ T1173] hsr_slave_0: left promiscuous mode
[  227.238404][ T1173] hsr_slave_1: left promiscuous mode
[  227.239324][ T1173] batman_adv: batadv0: Removing interface: batadv_slave_0
[  227.279178][ T1173] batman_adv: batadv0: Removing interface: batadv_slave_1
[  229.603257][ T1173] team0 (unregistering): Port device team_slave_1 removed
[  229.929329][ T6797] 9pnet_virtio: no channels available for device 127.0.0.1
[  230.678972][ T1173] team0 (unregistering): Port device team_slave_0 removed
[  231.344015][ T6534] team0: Port device team_slave_1 added
[  233.078527][ T6534] batman_adv: batadv0: Adding interface: batadv_slave_0
[  233.078544][ T6534] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  233.078566][ T6534] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  233.082089][ T6534] batman_adv: batadv0: Adding interface: batadv_slave_1
[  233.082103][ T6534] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  233.082126][ T6534] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  233.086241][ T5924] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  233.278373][ T5924] usb 5-1: Using ep0 maxpacket: 8
[  233.281946][ T5924] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8D has an invalid bInterval 42, changing to 9
[  233.281975][ T5924] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  233.281994][ T5924] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  233.282015][ T5924] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 12336, setting to 1024
[  233.282038][ T5924] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024
[  233.282074][ T5924] usb 5-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58
[  233.282093][ T5924] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  233.373359][ T6809] netlink: 128 bytes leftover after parsing attributes in process `syz.2.248'.
[  233.373722][ T6809] netlink: 8 bytes leftover after parsing attributes in process `syz.2.248'.
[  234.281424][ T5924] usb 5-1: config 0 descriptor??
[  234.292743][ T6806] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  234.728260][ T5929] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[  234.813172][ T6534] hsr_slave_0: entered promiscuous mode
[  234.845785][ T6534] hsr_slave_1: entered promiscuous mode
[  234.854257][ T6534] debugfs: 'hsr0' already exists in 'hsr'
[  234.854285][ T6534] Cannot create hsr debugfs directory
[  234.882371][   T59] Bluetooth: hci5: Opcode 0x0c03 failed: -71
[  234.888249][ T5929] usb 3-1: Using ep0 maxpacket: 32
[  234.893129][ T5924] usb 5-1: USB disconnect, device number 4
[  234.897104][ T5929] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  234.897125][ T5929] usb 3-1: config 0 has no interfaces?
[  234.902657][ T5929] usb 3-1: New USB device found, idVendor=05ac, idProduct=0219, bcdDevice=f0.72
[  234.902682][ T5929] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  234.902699][ T5929] usb 3-1: Product: syz
[  234.902707][ T5929] usb 3-1: Manufacturer: syz
[  234.902713][ T5929] usb 3-1: SerialNumber: syz
[  235.007787][ T5929] usb 3-1: config 0 descriptor??
[  235.563115][    C1] vkms_vblank_simulate: vblank timer overrun
[  237.719072][ T5929] usb 3-1: USB disconnect, device number 3
[  238.076709][ T6849] overlayfs: failed to resolve './file1': -2
[  238.827722][    C1] vkms_vblank_simulate: vblank timer overrun
[  238.886512][ T6860] 9pnet_virtio: no channels available for device 127.0.0.1
[  239.554637][    C1] vkms_vblank_simulate: vblank timer overrun
[  239.652636][    C1] vkms_vblank_simulate: vblank timer overrun
[  241.800112][ T6534] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  241.864045][ T6534] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  241.917564][ T6534] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  242.041072][ T6534] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  242.667202][ T6534] 8021q: adding VLAN 0 to HW filter on device bond0
[  242.830302][ T6534] 8021q: adding VLAN 0 to HW filter on device team0
[  242.863760][ T1173] bridge0: port 1(bridge_slave_0) entered blocking state
[  242.864716][ T1173] bridge0: port 1(bridge_slave_0) entered forwarding state
[  242.975453][ T6223] bridge0: port 2(bridge_slave_1) entered blocking state
[  242.975544][ T6223] bridge0: port 2(bridge_slave_1) entered forwarding state
[  244.290179][ T6906] netlink: 128 bytes leftover after parsing attributes in process `syz.2.259'.
[  244.290214][ T6906] netlink: 8 bytes leftover after parsing attributes in process `syz.2.259'.
[  244.652147][ T5929] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  245.158236][ T5929] usb 2-1: Using ep0 maxpacket: 8
[  245.160126][ T5929] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8D has an invalid bInterval 42, changing to 9
[  245.160152][ T5929] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  245.160163][ T5929] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  245.160174][ T5929] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 12336, setting to 1024
[  245.160186][ T5929] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024
[  245.160207][ T5929] usb 2-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58
[  245.160218][ T5929] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  245.163265][ T5929] usb 2-1: config 0 descriptor??
[  245.166924][ T6900] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  245.492666][ T6534] 8021q: adding VLAN 0 to HW filter on device batadv0
[  245.698392][ T5916] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  245.807849][   T59] Bluetooth: hci5: Opcode 0x0c03 failed: -71
[  245.808863][   T31] usb 2-1: USB disconnect, device number 5
[  245.861721][ T5916] usb 3-1: Using ep0 maxpacket: 32
[  245.875844][ T5916] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  245.875867][ T5916] usb 3-1: config 0 has no interfaces?
[  245.901534][ T5916] usb 3-1: New USB device found, idVendor=05ac, idProduct=0219, bcdDevice=f0.72
[  245.901551][ T5916] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  245.901560][ T5916] usb 3-1: Product: syz
[  245.901567][ T5916] usb 3-1: Manufacturer: syz
[  245.901573][ T5916] usb 3-1: SerialNumber: syz
[  245.978375][ T5916] usb 3-1: config 0 descriptor??
[  246.339028][ T6928] 9pnet_virtio: no channels available for device 127.0.0.1
[  246.340723][    C1] vkms_vblank_simulate: vblank timer overrun
[  247.132004][    C1] vkms_vblank_simulate: vblank timer overrun
[  247.708426][    C1] vkms_vblank_simulate: vblank timer overrun
[  248.495372][    C1] vkms_vblank_simulate: vblank timer overrun
[  249.408257][    C1] vkms_vblank_simulate: vblank timer overrun
[  249.763725][ T5916] usb 3-1: USB disconnect, device number 4
[  250.104623][ T6534] veth0_vlan: entered promiscuous mode
[  250.252683][ T6534] veth1_vlan: entered promiscuous mode
[  250.527295][ T6534] veth0_macvtap: entered promiscuous mode
[  250.555693][ T6534] veth1_macvtap: entered promiscuous mode
[  250.701679][ T6534] batman_adv: batadv0: Interface activated: batadv_slave_0
[  250.749028][ T6534] batman_adv: batadv0: Interface activated: batadv_slave_1
[  250.803676][   T13] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  250.809339][   T13] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  250.809628][   T13] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  250.809866][   T13] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  251.421098][ T6968] netlink: 128 bytes leftover after parsing attributes in process `syz.4.277'.
[  251.421135][ T6968] netlink: 8 bytes leftover after parsing attributes in process `syz.4.277'.
[  251.513500][  T806] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  251.513523][  T806] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  252.381123][ T5999] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  252.381143][ T5999] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  252.636030][ T6977] 9pnet_virtio: no channels available for device 127.0.0.1
[  253.618320][   T45] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  255.118727][   T45] usb 5-1: Using ep0 maxpacket: 8
[  255.121664][   T45] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8D has an invalid bInterval 42, changing to 9
[  255.121696][   T45] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  255.121716][   T45] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  255.121736][   T45] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 12336, setting to 1024
[  255.121764][   T45] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024
[  255.121800][   T45] usb 5-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58
[  255.121820][   T45] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  255.145148][   T45] usb 5-1: config 0 descriptor??
[  255.146517][ T6972] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[  255.846176][ T1323] ieee802154 phy0 wpan0: encryption failed: -22
[  255.846261][ T1323] ieee802154 phy1 wpan1: encryption failed: -22
[  256.376125][ T5842] Bluetooth: hci5: Opcode 0x0c03 failed: -71
[  256.400800][ T5916] usb 5-1: USB disconnect, device number 5
[  256.907294][    C1] vkms_vblank_simulate: vblank timer overrun
[  257.634296][    C1] vkms_vblank_simulate: vblank timer overrun
[  258.052455][    C1] vkms_vblank_simulate: vblank timer overrun
[  258.387695][    C1] vkms_vblank_simulate: vblank timer overrun
[  258.785807][    C1] vkms_vblank_simulate: vblank timer overrun
[  259.202988][    C1] vkms_vblank_simulate: vblank timer overrun
[  261.320348][    C1] vkms_vblank_simulate: vblank timer overrun
[  262.346454][    C1] vkms_vblank_simulate: vblank timer overrun
[  262.742636][ T7038] netlink: 24 bytes leftover after parsing attributes in process `syz.0.291'.
[  263.098210][ T7047] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[  263.118046][ T7045] IPVS: stopping master sync thread 7047 ...
[  267.385954][ T7104] GUP no longer grows the stack in syz.4.304 (7104): 200000004000-20000000a000 (200000002000)
[  267.386000][ T7104] CPU: 0 UID: 0 PID: 7104 Comm: syz.4.304 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  267.386019][ T7104] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  267.386037][ T7104] Call Trace:
[  267.386044][ T7104]  <TASK>
[  267.386053][ T7104]  dump_stack_lvl+0x189/0x250
[  267.386094][ T7104]  ? __pfx_dump_stack_lvl+0x10/0x10
[  267.386119][ T7104]  ? __pfx__printk+0x10/0x10
[  267.386135][ T7104]  ? find_vma+0xe7/0x160
[  267.386169][ T7104]  __get_user_pages+0x237e/0x2b60
[  267.386233][ T7104]  get_user_pages_remote+0x2f1/0xad0
[  267.386255][ T7104]  ? __pfx_mtree_load+0x10/0x10
[  267.386284][ T7104]  ? __pfx_get_user_pages_remote+0x10/0x10
[  267.386307][ T7104]  ? __access_remote_vm+0x367/0x7d0
[  267.386337][ T7104]  __access_remote_vm+0x211/0x7d0
[  267.386369][ T7104]  ? __pfx___access_remote_vm+0x10/0x10
[  267.386390][ T7104]  ? set_page_refcounted+0xa0/0x1e0
[  267.386413][ T7104]  ? alloc_pages_noprof+0xe4/0x1e0
[  267.386439][ T7104]  proc_pid_cmdline_read+0x433/0x810
[  267.386462][ T7104]  ? __asan_memset+0x22/0x50
[  267.386487][ T7104]  ? __pfx_proc_pid_cmdline_read+0x10/0x10
[  267.386515][ T7104]  ? rw_verify_area+0x2ac/0x4e0
[  267.386540][ T7104]  vfs_readv+0x5b3/0x850
[  267.386564][ T7104]  ? __pfx_proc_pid_cmdline_read+0x10/0x10
[  267.386590][ T7104]  ? __pfx_vfs_readv+0x10/0x10
[  267.386636][ T7104]  ? __fget_files+0x2a/0x420
[  267.386665][ T7104]  ? __fget_files+0x3a6/0x420
[  267.386687][ T7104]  ? __fget_files+0x2a/0x420
[  267.386719][ T7104]  __x64_sys_preadv+0x19a/0x2a0
[  267.386742][ T7104]  ? __pfx___se_sys_futex+0x10/0x10
[  267.386763][ T7104]  ? __pfx___x64_sys_preadv+0x10/0x10
[  267.386782][ T7104]  ? rcu_is_watching+0x15/0xb0
[  267.386811][ T7104]  ? do_syscall_64+0xbe/0x3b0
[  267.386833][ T7104]  do_syscall_64+0xfa/0x3b0
[  267.386850][ T7104]  ? lockdep_hardirqs_on+0x9c/0x150
[  267.386876][ T7104]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  267.386892][ T7104]  ? clear_bhb_loop+0x60/0xb0
[  267.386912][ T7104]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  267.386928][ T7104] RIP: 0033:0x7ff76444ebe9
[  267.386951][ T7104] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  267.386966][ T7104] RSP: 002b:00007ff76268d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[  267.386992][ T7104] RAX: ffffffffffffffda RBX: 00007ff764676090 RCX: 00007ff76444ebe9
[  267.387006][ T7104] RDX: 0000000000000001 RSI: 0000200000000040 RDI: 0000000000000007
[  267.387017][ T7104] RBP: 00007ff7644d1e19 R08: 0000000000000000 R09: 0000000000000000
[  267.387028][ T7104] R10: 0000000000000300 R11: 0000000000000246 R12: 0000000000000000
[  267.387039][ T7104] R13: 00007ff764676128 R14: 00007ff764676090 R15: 00007ffc970abfe8
[  267.387067][ T7104]  </TASK>
[  277.919709][    C0] vkms_vblank_simulate: vblank timer overrun
[  278.118740][    C0] vkms_vblank_simulate: vblank timer overrun
[  278.299860][    C0] vkms_vblank_simulate: vblank timer overrun
[  278.351243][    C0] vkms_vblank_simulate: vblank timer overrun
[  278.492780][    C0] vkms_vblank_simulate: vblank timer overrun
[  278.589174][    C0] vkms_vblank_simulate: vblank timer overrun
[  278.751597][    C0] vkms_vblank_simulate: vblank timer overrun
[  281.092240][    C0] vkms_vblank_simulate: vblank timer overrun
[  282.305502][    C0] vkms_vblank_simulate: vblank timer overrun
[  282.764571][    C0] vkms_vblank_simulate: vblank timer overrun
[  283.025091][    C0] vkms_vblank_simulate: vblank timer overrun
[  283.419055][    C0] vkms_vblank_simulate: vblank timer overrun
[  283.523748][    C0] vkms_vblank_simulate: vblank timer overrun
[  283.588757][    C0] vkms_vblank_simulate: vblank timer overrun
[  283.831680][    C0] vkms_vblank_simulate: vblank timer overrun
[  284.839339][ T7228] overlayfs: failed to resolve './file1': -2
[  286.595565][    C0] vkms_vblank_simulate: vblank timer overrun
[  286.637755][    C0] vkms_vblank_simulate: vblank timer overrun
[  287.407474][    C0] vkms_vblank_simulate: vblank timer overrun
[  287.959950][    C0] vkms_vblank_simulate: vblank timer overrun
[  288.048813][    C0] vkms_vblank_simulate: vblank timer overrun
[  288.273553][    C0] vkms_vblank_simulate: vblank timer overrun
[  288.447392][ T7266] overlayfs: failed to resolve './file1': -2
[  289.195174][    C0] vkms_vblank_simulate: vblank timer overrun
[  289.414495][ T5842] Bluetooth: hci3: failed to read key size for handle 201
[  291.922528][    C0] vkms_vblank_simulate: vblank timer overrun
[  292.912834][    C1] vkms_vblank_simulate: vblank timer overrun
[  293.441984][ T5842] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[  293.442152][ T5842] Bluetooth: hci3: Injecting HCI hardware error event
[  293.444836][ T5842] Bluetooth: hci3: hardware error 0x00
[  293.798796][ T7306] overlayfs: failed to resolve './file1': -2
[  293.897869][   T59] Bluetooth: hci1: failed to read key size for handle 201
[  293.908745][   T59] Bluetooth: hci1: unexpected event for opcode 0x1408
[  295.039941][    C1] vkms_vblank_simulate: vblank timer overrun
[  295.998420][    C1] vkms_vblank_simulate: vblank timer overrun
[  296.238473][ T5842] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[  296.492917][    C1] vkms_vblank_simulate: vblank timer overrun
[  296.760540][    C1] vkms_vblank_simulate: vblank timer overrun
[  297.094887][    C1] vkms_vblank_simulate: vblank timer overrun
[  297.494183][    C1] vkms_vblank_simulate: vblank timer overrun
[  297.558751][    C1] vkms_vblank_simulate: vblank timer overrun
[  297.920888][ T5842] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  297.924486][ T5842] Bluetooth: hci1: Injecting HCI hardware error event
[  297.933548][   T59] Bluetooth: hci1: hardware error 0x00
[  298.257634][    C1] vkms_vblank_simulate: vblank timer overrun
[  298.558860][    C1] vkms_vblank_simulate: vblank timer overrun
[  300.964555][   T59] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  301.148938][    C1] vkms_vblank_simulate: vblank timer overrun
[  302.864412][    C1] vkms_vblank_simulate: vblank timer overrun
[  303.586418][    C1] vkms_vblank_simulate: vblank timer overrun
[  303.624071][    C1] vkms_vblank_simulate: vblank timer overrun
[  303.773879][    C1] vkms_vblank_simulate: vblank timer overrun
[  306.625892][    C1] vkms_vblank_simulate: vblank timer overrun
[  307.686823][    C1] vkms_vblank_simulate: vblank timer overrun
[  308.414805][    C1] vkms_vblank_simulate: vblank timer overrun
[  308.618749][    C1] vkms_vblank_simulate: vblank timer overrun
[  311.989524][    C1] vkms_vblank_simulate: vblank timer overrun
[  314.079676][    C1] vkms_vblank_simulate: vblank timer overrun
[  314.774117][    C1] vkms_vblank_simulate: vblank timer overrun
[  315.200888][    C1] vkms_vblank_simulate: vblank timer overrun
[  315.569713][    C1] vkms_vblank_simulate: vblank timer overrun
[  315.790000][    C1] vkms_vblank_simulate: vblank timer overrun
[  316.186634][    C1] vkms_vblank_simulate: vblank timer overrun
[  316.213835][    C1] vkms_vblank_simulate: vblank timer overrun
[  316.549142][    C1] vkms_vblank_simulate: vblank timer overrun
[  317.982873][ T1323] ieee802154 phy0 wpan0: encryption failed: -22
[  317.984859][ T1323] ieee802154 phy1 wpan1: encryption failed: -22
[  318.431382][    C1] vkms_vblank_simulate: vblank timer overrun
[  318.739250][    C1] vkms_vblank_simulate: vblank timer overrun
[  318.801010][    C1] vkms_vblank_simulate: vblank timer overrun
[  319.218581][    C1] vkms_vblank_simulate: vblank timer overrun
[  319.512373][    C1] vkms_vblank_simulate: vblank timer overrun
[  320.084521][    C1] vkms_vblank_simulate: vblank timer overrun
[  320.459434][    C1] vkms_vblank_simulate: vblank timer overrun
[  320.638596][    C1] vkms_vblank_simulate: vblank timer overrun
[  322.299863][    C1] vkms_vblank_simulate: vblank timer overrun
[  322.629438][    C1] vkms_vblank_simulate: vblank timer overrun
[  324.247957][    C1] vkms_vblank_simulate: vblank timer overrun
[  325.426560][    C1] vkms_vblank_simulate: vblank timer overrun
[  327.036435][    C1] vkms_vblank_simulate: vblank timer overrun
[  327.799340][    C1] vkms_vblank_simulate: vblank timer overrun
[  327.893007][    C1] vkms_vblank_simulate: vblank timer overrun
[  328.466848][    C1] vkms_vblank_simulate: vblank timer overrun
[  328.724301][    C1] vkms_vblank_simulate: vblank timer overrun
[  329.212162][    C1] vkms_vblank_simulate: vblank timer overrun
[  330.919973][    C1] vkms_vblank_simulate: vblank timer overrun
[  330.944192][    C1] vkms_vblank_simulate: vblank timer overrun
[  331.038832][    C1] vkms_vblank_simulate: vblank timer overrun
[  331.589092][ T7593] overlayfs: missing 'lowerdir'
[  332.279150][    C1] vkms_vblank_simulate: vblank timer overrun
[  332.947380][    C1] vkms_vblank_simulate: vblank timer overrun
[  333.283879][    C1] vkms_vblank_simulate: vblank timer overrun
[  333.891872][ T5916] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  334.052814][ T5916] usb 6-1: Using ep0 maxpacket: 8
[  334.070348][ T5916] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8D has an invalid bInterval 42, changing to 9
[  334.070380][ T5916] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  334.070399][ T5916] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  334.070419][ T5916] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 12336, setting to 1024
[  334.070442][ T5916] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024
[  334.070487][ T5916] usb 6-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58
[  334.070507][ T5916] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  334.215834][ T5916] usb 6-1: config 0 descriptor??
[  334.216869][ T7604] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  334.475252][    C1] vkms_vblank_simulate: vblank timer overrun
[  335.959801][   T59] Bluetooth: hci5: Opcode 0x0c03 failed: -71
[  335.969067][ T6083] usb 6-1: USB disconnect, device number 2
[  337.109451][    C1] vkms_vblank_simulate: vblank timer overrun
[  337.290424][ T7627] overlayfs: missing 'lowerdir'
[  337.967616][    C1] vkms_vblank_simulate: vblank timer overrun
[  338.111600][    C1] vkms_vblank_simulate: vblank timer overrun
[  338.627948][    C1] vkms_vblank_simulate: vblank timer overrun
[  340.227300][    C1] vkms_vblank_simulate: vblank timer overrun
[  342.052480][    C1] vkms_vblank_simulate: vblank timer overrun
[  342.219574][ T7666] overlayfs: missing 'lowerdir'
[  342.662773][    C1] vkms_vblank_simulate: vblank timer overrun
[  343.536315][    C0] vkms_vblank_simulate: vblank timer overrun
[  343.582432][    C0] vkms_vblank_simulate: vblank timer overrun
[  343.873132][    C0] vkms_vblank_simulate: vblank timer overrun
[  345.378396][    C0] vkms_vblank_simulate: vblank timer overrun
[  346.038210][ T5924] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  348.610683][ T5924] usb 2-1: Using ep0 maxpacket: 8
[  348.655760][ T5924] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8D has an invalid bInterval 42, changing to 9
[  348.655791][ T5924] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  348.655810][ T5924] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  348.655830][ T5924] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 12336, setting to 1024
[  348.655853][ T5924] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024
[  348.655889][ T5924] usb 2-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58
[  348.655909][ T5924] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  348.666357][ T5924] usb 2-1: config 0 descriptor??
[  348.718633][ T7691] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  348.952231][   T59] Bluetooth: hci5: Opcode 0x0c03 failed: -71
[  349.019438][ T6083] usb 2-1: USB disconnect, device number 6
[  349.430772][ T7704] overlayfs: missing 'lowerdir'
[  351.379274][    C0] vkms_vblank_simulate: vblank timer overrun
[  352.257390][    C0] vkms_vblank_simulate: vblank timer overrun
[  352.344570][    C0] vkms_vblank_simulate: vblank timer overrun
[  352.421273][    C0] vkms_vblank_simulate: vblank timer overrun
[  352.767308][    C0] vkms_vblank_simulate: vblank timer overrun
[  353.059202][    T9] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  353.248195][    T9] usb 6-1: Using ep0 maxpacket: 8
[  353.251071][    T9] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8D has an invalid bInterval 42, changing to 9
[  353.251101][    T9] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  353.251120][    T9] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  353.251140][    T9] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 12336, setting to 1024
[  353.251163][    T9] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024
[  353.251198][    T9] usb 6-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58
[  353.251218][    T9] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  353.348338][    T9] usb 6-1: config 0 descriptor??
[  353.353252][ T7734] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  353.959817][    T9] usb 6-1: USB disconnect, device number 3
[  353.974284][   T59] Bluetooth: hci5: Opcode 0x0c03 failed: -71
[  355.252894][ T7742] overlayfs: missing 'lowerdir'
[  355.973288][    C0] vkms_vblank_simulate: vblank timer overrun
[  356.301983][    C0] vkms_vblank_simulate: vblank timer overrun
[  356.607298][    C0] vkms_vblank_simulate: vblank timer overrun
[  357.172703][    C0] vkms_vblank_simulate: vblank timer overrun
[  358.210970][    C0] vkms_vblank_simulate: vblank timer overrun
[  359.108662][    C0] vkms_vblank_simulate: vblank timer overrun
[  359.146321][    C0] vkms_vblank_simulate: vblank timer overrun
[  359.550317][    C0] vkms_vblank_simulate: vblank timer overrun
[  361.348752][ T7785] overlayfs: missing 'lowerdir'
[  362.658223][ T6083] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  362.878283][ T6083] usb 3-1: Using ep0 maxpacket: 32
[  362.881014][ T6083] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  362.881038][ T6083] usb 3-1: config 0 has no interfaces?
[  362.884218][ T6083] usb 3-1: New USB device found, idVendor=05ac, idProduct=0219, bcdDevice=f0.72
[  362.884244][ T6083] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  362.884262][ T6083] usb 3-1: Product: syz
[  362.884274][ T6083] usb 3-1: Manufacturer: syz
[  362.884287][ T6083] usb 3-1: SerialNumber: syz
[  362.954374][ T6083] usb 3-1: config 0 descriptor??
[  363.993551][    C0] vkms_vblank_simulate: vblank timer overrun
[  364.971464][    C0] vkms_vblank_simulate: vblank timer overrun
[  365.309112][    C0] vkms_vblank_simulate: vblank timer overrun
[  365.571452][ T5916] usb 3-1: USB disconnect, device number 5
[  365.886762][    C0] vkms_vblank_simulate: vblank timer overrun
[  367.576194][    C0] vkms_vblank_simulate: vblank timer overrun
[  367.844134][    C0] vkms_vblank_simulate: vblank timer overrun
[  368.388308][    C0] vkms_vblank_simulate: vblank timer overrun
[  369.109187][    C0] vkms_vblank_simulate: vblank timer overrun
[  369.811617][ T6247] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  370.252161][    C0] vkms_vblank_simulate: vblank timer overrun
[  370.258491][ T6247] usb 5-1: Using ep0 maxpacket: 8
[  370.261431][ T6247] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8D has an invalid bInterval 42, changing to 9
[  370.261461][ T6247] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  370.261480][ T6247] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  370.261501][ T6247] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 12336, setting to 1024
[  370.261522][ T6247] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024
[  370.261557][ T6247] usb 5-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58
[  370.261575][ T6247] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  370.273962][ T6247] usb 5-1: config 0 descriptor??
[  370.276521][ T7848] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  370.708320][ T6083] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  370.868280][ T6083] usb 6-1: Using ep0 maxpacket: 32
[  370.887704][ T6083] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  370.887720][ T6083] usb 6-1: config 0 has no interfaces?
[  370.931427][ T6083] usb 6-1: New USB device found, idVendor=05ac, idProduct=0219, bcdDevice=f0.72
[  370.931558][ T6083] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  370.931576][ T6083] usb 6-1: Product: syz
[  370.931583][ T6083] usb 6-1: Manufacturer: syz
[  370.931590][ T6083] usb 6-1: SerialNumber: syz
[  371.143502][ T6083] usb 6-1: config 0 descriptor??
[  371.580449][    C0] vkms_vblank_simulate: vblank timer overrun
[  371.752639][   T59] Bluetooth: hci5: Opcode 0x0c03 failed: -71
[  371.966417][ T6247] usb 5-1: USB disconnect, device number 6
[  372.835364][ T7866] blktrace: Concurrent blktraces are not allowed on loop8
[  373.837057][   T45] usb 6-1: USB disconnect, device number 4
[  374.519529][    C0] vkms_vblank_simulate: vblank timer overrun
[  374.782478][    C0] vkms_vblank_simulate: vblank timer overrun
[  375.106320][    C0] vkms_vblank_simulate: vblank timer overrun
[  375.363894][    C0] vkms_vblank_simulate: vblank timer overrun
[  375.731648][    C0] vkms_vblank_simulate: vblank timer overrun
[  376.111830][    C0] vkms_vblank_simulate: vblank timer overrun
[  378.237583][    C0] vkms_vblank_simulate: vblank timer overrun
[  379.070642][    C0] vkms_vblank_simulate: vblank timer overrun
[  379.170067][    C0] vkms_vblank_simulate: vblank timer overrun
[  379.179010][ T1323] ieee802154 phy0 wpan0: encryption failed: -22
[  379.179080][ T1323] ieee802154 phy1 wpan1: encryption failed: -22
[  380.018860][    C0] vkms_vblank_simulate: vblank timer overrun
[  382.240499][ T7911] 9pnet_virtio: no channels available for device 127.0.0.1
[  384.094978][    C0] vkms_vblank_simulate: vblank timer overrun
[  384.498010][    C0] vkms_vblank_simulate: vblank timer overrun
[  384.695137][    C0] vkms_vblank_simulate: vblank timer overrun
[  384.847007][    C0] vkms_vblank_simulate: vblank timer overrun
[  386.875608][ T7940] blktrace: Concurrent blktraces are not allowed on loop10
[  387.157539][    C0] vkms_vblank_simulate: vblank timer overrun
[  388.238493][    C0] vkms_vblank_simulate: vblank timer overrun
[  392.868403][ T7980] netlink: 128 bytes leftover after parsing attributes in process `syz.2.572'.
[  392.868609][ T7980] netlink: 8 bytes leftover after parsing attributes in process `syz.2.572'.
[  392.918213][   T31] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  393.048251][   T31] usb 2-1: device descriptor read/64, error -71
[  393.668260][   T31] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  393.818222][   T31] usb 2-1: device descriptor read/64, error -71
[  393.941986][   T31] usb usb2-port1: attempt power cycle
[  394.728214][   T31] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  394.764124][   T31] usb 2-1: device descriptor read/8, error -71
[  395.008203][   T31] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  395.028985][   T31] usb 2-1: device descriptor read/8, error -71
[  395.172336][   T31] usb usb2-port1: unable to enumerate USB device
[  404.053255][    C0] vkms_vblank_simulate: vblank timer overrun
[  404.526212][    C0] vkms_vblank_simulate: vblank timer overrun
[  405.039882][ T8033] netlink: 128 bytes leftover after parsing attributes in process `syz.1.584'.
[  405.040157][ T8033] netlink: 8 bytes leftover after parsing attributes in process `syz.1.584'.
[  406.464496][ T8043] 9pnet_virtio: no channels available for device 127.0.0.1
[  406.525153][    C0] vkms_vblank_simulate: vblank timer overrun
[  406.944760][    C0] vkms_vblank_simulate: vblank timer overrun
[  407.289634][    C0] vkms_vblank_simulate: vblank timer overrun
[  408.220467][    C0] vkms_vblank_simulate: vblank timer overrun
[  410.160454][ T5838] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  410.239817][    C0] vkms_vblank_simulate: vblank timer overrun
[  410.270468][ T5838] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  410.271852][ T5838] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  410.273425][ T5838] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  410.274208][ T5838] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  411.919539][ T8074] netlink: 128 bytes leftover after parsing attributes in process `syz.2.596'.
[  411.919896][ T8074] netlink: 8 bytes leftover after parsing attributes in process `syz.2.596'.
[  412.401443][ T5842] Bluetooth: hci2: command tx timeout
[  412.906738][   T67] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  413.246100][    C0] vkms_vblank_simulate: vblank timer overrun
[  414.194678][    C0] vkms_vblank_simulate: vblank timer overrun
[  414.415152][    C0] vkms_vblank_simulate: vblank timer overrun
[  414.478350][ T5842] Bluetooth: hci2: command tx timeout
[  414.516277][    C0] vkms_vblank_simulate: vblank timer overrun
[  415.118454][ T5924] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  415.277464][   T67] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  415.328643][ T5924] usb 3-1: Using ep0 maxpacket: 16
[  415.333533][ T5924] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 8
[  415.342778][ T5924] usb 3-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 6.00
[  415.342803][ T5924] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  415.342820][ T5924] usb 3-1: Product: syz
[  415.342832][ T5924] usb 3-1: Manufacturer: syz
[  415.342845][ T5924] usb 3-1: SerialNumber: syz
[  415.438697][ T5924] usb 3-1: config 0 descriptor??
[  415.462696][ T5924] ftdi_sio 3-1:0.0: FTDI USB Serial Device converter detected
[  415.558547][ T5924] usb 3-1: Detected FT232R
[  415.910740][    C0] vkms_vblank_simulate: vblank timer overrun
[  416.860463][ T5842] Bluetooth: hci2: command tx timeout
[  416.861593][ T5924] ftdi_sio ttyUSB0: Unable to read latency timer: -71
[  416.866331][ T5924] ftdi_sio ttyUSB0: Unable to write latency timer: -71
[  416.866852][ T5924] ftdi_sio 3-1:0.0: GPIO initialisation failed: -71
[  416.908880][ T5924] usb 3-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  417.124121][ T5924] usb 3-1: USB disconnect, device number 6
[  417.159335][ T5924] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  417.160228][ T5924] ftdi_sio 3-1:0.0: device disconnected
[  417.252583][   T67] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  417.500733][    C0] vkms_vblank_simulate: vblank timer overrun
[  418.308581][ T8116] netlink: 32 bytes leftover after parsing attributes in process `syz.5.610'.
[  418.308869][ T8116] openvswitch: netlink: Missing key (keys=40, expected=100)
[  418.378328][    C0] vkms_vblank_simulate: vblank timer overrun
[  418.471136][    C0] vkms_vblank_simulate: vblank timer overrun
[  418.515935][    C0] vkms_vblank_simulate: vblank timer overrun
[  418.768223][    C0] vkms_vblank_simulate: vblank timer overrun
[  418.880604][ T5842] Bluetooth: hci2: command tx timeout
[  418.941540][   T67] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  421.080406][   T67] bridge_slave_1: left allmulticast mode
[  421.080437][   T67] bridge_slave_1: left promiscuous mode
[  421.081681][   T67] bridge0: port 2(bridge_slave_1) entered disabled state
[  421.509665][   T67] bridge_slave_0: left allmulticast mode
[  421.509695][   T67] bridge_slave_0: left promiscuous mode
[  421.509963][   T67] bridge0: port 1(bridge_slave_0) entered disabled state
[  424.850537][    C0] vkms_vblank_simulate: vblank timer overrun
[  425.515902][    C0] vkms_vblank_simulate: vblank timer overrun
[  425.755768][    C0] vkms_vblank_simulate: vblank timer overrun
[  426.193879][    C0] vkms_vblank_simulate: vblank timer overrun
[  426.295964][    C0] vkms_vblank_simulate: vblank timer overrun
[  426.381474][    C0] vkms_vblank_simulate: vblank timer overrun
[  426.848199][    T9] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  426.998330][    T9] usb 3-1: Using ep0 maxpacket: 8
[  427.000706][    T9] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8D has an invalid bInterval 42, changing to 9
[  427.000737][    T9] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  427.000755][    T9] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  427.000774][    T9] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 12336, setting to 1024
[  427.000796][    T9] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024
[  427.000839][    T9] usb 3-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58
[  427.000858][    T9] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  427.017139][    T9] usb 3-1: config 0 descriptor??
[  427.019209][ T8169] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  427.963026][    C0] vkms_vblank_simulate: vblank timer overrun
[  428.386083][ T5842] Bluetooth: hci5: Opcode 0x0c03 failed: -71
[  428.386395][    T9] usb 3-1: USB disconnect, device number 7
[  429.552115][   T67] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  429.628885][   T67] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  429.653810][   T67] bond0 (unregistering): Released all slaves
[  429.877707][ T8057] chnl_net:caif_netlink_parms(): no params data found
[  433.017048][    C0] vkms_vblank_simulate: vblank timer overrun
[  433.269175][    C0] vkms_vblank_simulate: vblank timer overrun
[  433.406071][    C0] vkms_vblank_simulate: vblank timer overrun
[  436.683237][    C0] vkms_vblank_simulate: vblank timer overrun
[  437.808559][    C0] vkms_vblank_simulate: vblank timer overrun
[  438.091235][ T8057] bridge0: port 1(bridge_slave_0) entered blocking state
[  438.094693][ T8057] bridge0: port 1(bridge_slave_0) entered disabled state
[  438.094925][ T8057] bridge_slave_0: entered allmulticast mode
[  438.145679][ T8057] bridge_slave_0: entered promiscuous mode
[  438.193390][ T8057] bridge0: port 2(bridge_slave_1) entered blocking state
[  438.193544][ T8057] bridge0: port 2(bridge_slave_1) entered disabled state
[  438.193852][ T8057] bridge_slave_1: entered allmulticast mode
[  438.204126][ T8057] bridge_slave_1: entered promiscuous mode
[  438.618712][   T67] hsr_slave_0: left promiscuous mode
[  438.671160][   T67] hsr_slave_1: left promiscuous mode
[  438.672109][   T67] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  438.672136][   T67] batman_adv: batadv0: Removing interface: batadv_slave_0
[  438.743977][   T67] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  438.744006][   T67] batman_adv: batadv0: Removing interface: batadv_slave_1
[  439.031090][   T67] veth1_macvtap: left promiscuous mode
[  439.031216][   T67] veth0_macvtap: left promiscuous mode
[  439.031572][   T67] veth1_vlan: left promiscuous mode
[  439.192270][    C0] vkms_vblank_simulate: vblank timer overrun
[  439.199753][   T67] veth0_vlan: left promiscuous mode
[  439.564561][    C0] vkms_vblank_simulate: vblank timer overrun
[  439.679988][    C0] vkms_vblank_simulate: vblank timer overrun
[  439.774818][    C0] vkms_vblank_simulate: vblank timer overrun
[  439.964577][    C0] vkms_vblank_simulate: vblank timer overrun
[  440.165305][ T1323] ieee802154 phy0 wpan0: encryption failed: -22
[  440.165404][ T1323] ieee802154 phy1 wpan1: encryption failed: -22
[  440.514278][    C0] vkms_vblank_simulate: vblank timer overrun
[  441.166503][    C0] vkms_vblank_simulate: vblank timer overrun
[  441.514219][    C0] vkms_vblank_simulate: vblank timer overrun
[  443.943056][    C0] vkms_vblank_simulate: vblank timer overrun
[  444.848858][    C0] vkms_vblank_simulate: vblank timer overrun
[  445.007236][    C0] vkms_vblank_simulate: vblank timer overrun
[  445.330759][    C0] vkms_vblank_simulate: vblank timer overrun
[  445.461255][    C0] vkms_vblank_simulate: vblank timer overrun
[  445.585006][    C0] vkms_vblank_simulate: vblank timer overrun
[  447.139512][ T8320] netlink: 8 bytes leftover after parsing attributes in process `syz.5.671'.
[  447.858585][ T5924] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[  447.905866][   T67] team0 (unregistering): Port device team_slave_1 removed
[  448.018203][ T5924] usb 2-1: Using ep0 maxpacket: 8
[  448.020847][ T5924] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8D has an invalid bInterval 42, changing to 9
[  448.020878][ T5924] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  448.020897][ T5924] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  448.020918][ T5924] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 12336, setting to 1024
[  448.020940][ T5924] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024
[  448.020975][ T5924] usb 2-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58
[  448.020995][ T5924] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  448.029212][ T5924] usb 2-1: config 0 descriptor??
[  448.030773][ T8328] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  448.325758][   T67] team0 (unregistering): Port device team_slave_0 removed
[  448.523682][ T6083] usb 2-1: USB disconnect, device number 11
[  448.527862][ T5842] Bluetooth: hci5: Opcode 0x0c03 failed: -71
[  448.846052][    C0] vkms_vblank_simulate: vblank timer overrun
[  449.312229][    C0] vkms_vblank_simulate: vblank timer overrun
[  449.413063][ T8334] netlink: 8 bytes leftover after parsing attributes in process `syz.1.675'.
[  449.513567][    C0] vkms_vblank_simulate: vblank timer overrun
[  449.796926][    C0] vkms_vblank_simulate: vblank timer overrun
[  450.072672][    C0] vkms_vblank_simulate: vblank timer overrun
[  450.175886][    C0] vkms_vblank_simulate: vblank timer overrun
[  450.753663][    C0] vkms_vblank_simulate: vblank timer overrun
[  450.782433][ T8344] netlink: 24 bytes leftover after parsing attributes in process `syz.1.678'.
[  450.989290][    C0] vkms_vblank_simulate: vblank timer overrun
[  454.114741][ T8057] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  454.243371][ T8057] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  455.770484][ T8057] team0: Port device team_slave_0 added
[  455.806689][ T8057] team0: Port device team_slave_1 added
[  456.148184][ T5924] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  456.371027][ T5924] usb 3-1: Using ep0 maxpacket: 8
[  456.432303][ T5924] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8D has an invalid bInterval 42, changing to 9
[  456.432385][ T5924] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  456.432429][ T5924] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  456.432475][ T5924] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 12336, setting to 1024
[  456.432524][ T5924] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024
[  456.432741][ T5924] usb 3-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58
[  456.432787][ T5924] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  456.801674][ T5924] usb 3-1: config 0 descriptor??
[  456.823992][ T8370] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  457.211279][ T8057] batman_adv: batadv0: Adding interface: batadv_slave_0
[  457.211296][ T8057] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  457.211319][ T8057] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  457.236103][ T8380] netlink: 32 bytes leftover after parsing attributes in process `syz.0.687'.
[  457.236136][ T8380] openvswitch: netlink: Missing key (keys=40, expected=100)
[  458.028922][ T8057] batman_adv: batadv0: Adding interface: batadv_slave_1
[  458.028938][ T8057] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  458.028960][ T8057] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  458.123935][ T6083] usb 3-1: USB disconnect, device number 8
[  458.135374][ T5842] Bluetooth: hci5: Opcode 0x0c03 failed: -71
[  458.782327][    C0] vkms_vblank_simulate: vblank timer overrun
[  459.069887][ T8057] hsr_slave_0: entered promiscuous mode
[  459.073567][ T8057] hsr_slave_1: entered promiscuous mode
[  460.119934][    C0] vkms_vblank_simulate: vblank timer overrun
[  461.574039][    C0] vkms_vblank_simulate: vblank timer overrun
[  462.321591][    C0] vkms_vblank_simulate: vblank timer overrun
[  464.619168][ T8435] 9pnet_fd: Insufficient options for proto=fd
[  465.194986][ T8057] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  465.425333][ T8057] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  467.051244][ T8057] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  467.237273][ T8057] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  470.476819][ T8475] netlink: 24 bytes leftover after parsing attributes in process `syz.2.706'.
[  471.102594][ T5842] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  471.106212][ T5842] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  471.107207][ T5842] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  471.130304][ T5842] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  471.135262][ T5842] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  471.447485][ T6083] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  471.669845][ T6083] usb 6-1: Using ep0 maxpacket: 8
[  471.680214][ T6083] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8D has an invalid bInterval 42, changing to 9
[  471.680259][ T6083] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  471.680296][ T6083] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  471.680334][ T6083] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 12336, setting to 1024
[  471.680370][ T6083] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024
[  471.680416][ T6083] usb 6-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58
[  471.680450][ T6083] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  471.796985][ T6083] usb 6-1: config 0 descriptor??
[  471.858547][ T8483] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  472.579380][ T6083] usb 6-1: USB disconnect, device number 5
[  472.586983][ T5838] Bluetooth: hci2: Opcode 0x0c03 failed: -71
[  472.861408][    C0] vkms_vblank_simulate: vblank timer overrun
[  473.508158][    C0] vkms_vblank_simulate: vblank timer overrun
[  473.654147][ T5838] Bluetooth: hci5: command tx timeout
[  473.783327][ T8496] netlink: 'syz.2.713': attribute type 10 has an invalid length.
[  473.835477][ T8497] netlink: 'syz.2.713': attribute type 10 has an invalid length.
[  474.007487][    C0] vkms_vblank_simulate: vblank timer overrun
[  474.781030][    C0] vkms_vblank_simulate: vblank timer overrun
[  474.853514][    C0] vkms_vblank_simulate: vblank timer overrun
[  475.118584][ T8496] team0: Port device dummy0 added
[  475.279611][ T8497] team0: Port device dummy0 removed
[  475.298635][ T8497] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  475.459306][    C0] vkms_vblank_simulate: vblank timer overrun
[  475.680316][ T5838] Bluetooth: hci5: command tx timeout
[  476.070972][    C0] vkms_vblank_simulate: vblank timer overrun
[  476.164701][    C0] vkms_vblank_simulate: vblank timer overrun
[  476.378194][ T8522] 9pnet_fd: Insufficient options for proto=fd
[  477.815035][ T5838] Bluetooth: hci5: command tx timeout
[  479.906873][ T5842] Bluetooth: hci5: command tx timeout
[  481.918162][ T5842] Bluetooth: hci5: command 0x0405 tx timeout
[  482.428299][ T8484] chnl_net:caif_netlink_parms(): no params data found
[  485.609467][ T8589] netlink: 32 bytes leftover after parsing attributes in process `syz.2.737'.
[  485.609493][ T8589] openvswitch: netlink: Missing key (keys=40, expected=100)
[  486.890945][ T8484] bridge0: port 1(bridge_slave_0) entered blocking state
[  486.891098][ T8484] bridge0: port 1(bridge_slave_0) entered disabled state
[  486.892123][ T8484] bridge_slave_0: entered allmulticast mode
[  486.895123][ T8484] bridge_slave_0: entered promiscuous mode
[  487.380545][ T8484] bridge0: port 2(bridge_slave_1) entered blocking state
[  487.380690][ T8484] bridge0: port 2(bridge_slave_1) entered disabled state
[  487.380938][ T8484] bridge_slave_1: entered allmulticast mode
[  487.388319][ T8484] bridge_slave_1: entered promiscuous mode
[  488.319174][ T8484] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  488.335748][ T8484] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  488.648912][   T13] bridge_slave_1: left allmulticast mode
[  488.648935][   T13] bridge_slave_1: left promiscuous mode
[  488.649096][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[  488.830072][   T13] bridge_slave_0: left allmulticast mode
[  488.830104][   T13] bridge_slave_0: left promiscuous mode
[  488.832083][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[  489.709614][ T8623] netlink: 24 bytes leftover after parsing attributes in process `syz.0.747'.
[  490.119661][   T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  490.189766][   T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  490.230621][   T13] bond0 (unregistering): Released all slaves
[  491.484042][ T8616] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  491.543862][ T8639] netlink: 32 bytes leftover after parsing attributes in process `syz.2.752'.
[  491.543884][ T8639] openvswitch: netlink: Missing key (keys=40, expected=100)
[  491.565285][ T8616] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  491.585116][ T8616] bond0 (unregistering): Released all slaves
[  491.740120][ T8484] team0: Port device team_slave_0 added
[  491.867592][ T8644] netlink: 32 bytes leftover after parsing attributes in process `syz.0.753'.
[  491.867614][ T8644] openvswitch: netlink: Missing key (keys=40, expected=100)
[  492.407202][   T13] hsr_slave_0: left promiscuous mode
[  492.453416][   T13] hsr_slave_1: left promiscuous mode
[  492.454375][   T13] batman_adv: batadv0: Removing interface: batadv_slave_0
[  492.489127][   T13] batman_adv: batadv0: Removing interface: batadv_slave_1
[  495.196870][ T8668] syz.0.760 uses obsolete (PF_INET,SOCK_PACKET)
[  495.256741][   T13] team0 (unregistering): Port device team_slave_1 removed
[  495.439460][   T13] team0 (unregistering): Port device team_slave_0 removed
[  496.111187][ T8484] team0: Port device team_slave_1 added
[  496.873607][ T8684] netlink: 24 bytes leftover after parsing attributes in process `syz.5.764'.
[  497.638988][    C0] vkms_vblank_simulate: vblank timer overrun
[  497.970811][ T8484] batman_adv: batadv0: Adding interface: batadv_slave_0
[  497.970827][ T8484] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  497.970849][ T8484] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  497.978553][ T8484] batman_adv: batadv0: Adding interface: batadv_slave_1
[  497.978568][ T8484] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  497.978590][ T8484] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  499.679539][ T8484] hsr_slave_0: entered promiscuous mode
[  499.715312][ T8484] hsr_slave_1: entered promiscuous mode
[  500.278251][    C0] vkms_vblank_simulate: vblank timer overrun
[  500.365620][    C0] vkms_vblank_simulate: vblank timer overrun
[  500.815701][ T8711] netlink: 32 bytes leftover after parsing attributes in process `syz.0.773'.
[  500.815731][ T8711] openvswitch: netlink: Missing key (keys=40, expected=100)
[  500.908348][    C0] vkms_vblank_simulate: vblank timer overrun
[  501.203571][    C0] vkms_vblank_simulate: vblank timer overrun
[  501.604670][ T1323] ieee802154 phy0 wpan0: encryption failed: -22
[  501.962695][ T8721] netlink: 128 bytes leftover after parsing attributes in process `syz.1.776'.
[  501.962736][ T8721] netlink: 8 bytes leftover after parsing attributes in process `syz.1.776'.
[  502.325527][ T8732] 9pnet_fd: Insufficient options for proto=fd
[  502.798263][    T9] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  502.998302][    T9] usb 6-1: Using ep0 maxpacket: 16
[  503.385401][    T9] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  503.385425][    T9] usb 6-1: config 0 has 0 interfaces, different from the descriptor's value: 8
[  503.403129][    T9] usb 6-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 6.00
[  503.403163][    T9] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  503.403180][    T9] usb 6-1: Product: syz
[  503.403192][    T9] usb 6-1: Manufacturer: syz
[  503.403204][    T9] usb 6-1: SerialNumber: syz
[  503.431653][    T9] usb 6-1: config 0 descriptor??
[  504.043881][ T6247] usb 6-1: USB disconnect, device number 6
[  505.983252][ T8773] netlink: 128 bytes leftover after parsing attributes in process `syz.0.790'.
[  505.983287][ T8773] netlink: 8 bytes leftover after parsing attributes in process `syz.0.790'.
[  506.482778][ T8484] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  506.620136][ T8484] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  506.729356][ T8484] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  506.765748][ T8484] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  506.866587][ T8782] netlink: 32 bytes leftover after parsing attributes in process `syz.1.796'.
[  506.866617][ T8782] openvswitch: netlink: Missing key (keys=40, expected=100)
[  507.431564][ T8790] netlink: 32 bytes leftover after parsing attributes in process `syz.2.797'.
[  507.431593][ T8790] openvswitch: netlink: Missing key (keys=40, expected=100)
[  508.869902][ T8484] 8021q: adding VLAN 0 to HW filter on device bond0
[  509.147519][ T8484] 8021q: adding VLAN 0 to HW filter on device team0
[  509.232914][ T3718] bridge0: port 1(bridge_slave_0) entered blocking state
[  509.236527][ T3718] bridge0: port 1(bridge_slave_0) entered forwarding state
[  509.277073][ T3718] bridge0: port 2(bridge_slave_1) entered blocking state
[  509.277479][ T3718] bridge0: port 2(bridge_slave_1) entered forwarding state
[  509.540893][    C1] vkms_vblank_simulate: vblank timer overrun
[  509.605315][ T8805] netlink: 12 bytes leftover after parsing attributes in process `syz.5.802'.
[  509.605591][ T8805] netlink: 12 bytes leftover after parsing attributes in process `syz.5.802'.
[  509.720704][ T8809] netlink: 24 bytes leftover after parsing attributes in process `syz.1.800'.
[  510.002787][    C1] vkms_vblank_simulate: vblank timer overrun
[  510.447554][    C1] vkms_vblank_simulate: vblank timer overrun
[  510.846926][ T8814] sch_tbf: burst 32852 is lower than device lo mtu (65550) !
[  510.871577][ T8817] netlink: 32 bytes leftover after parsing attributes in process `syz.2.805'.
[  510.871605][ T8817] openvswitch: netlink: Missing key (keys=40, expected=100)
[  511.790993][ T8839] netlink: 4 bytes leftover after parsing attributes in process `syz.5.809'.
[  511.791016][ T8839] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  511.791041][ T8839] batman_adv: batadv0: Removing interface: batadv_slave_0
[  511.854483][ T8839] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  511.854516][ T8839] batman_adv: batadv0: Removing interface: batadv_slave_1
[  512.192778][ T8844] 9pnet_virtio: no channels available for device 127.0.0.1
[  512.833701][ T8484] 8021q: adding VLAN 0 to HW filter on device batadv0
[  514.742875][ T8864] netlink: 'syz.5.815': attribute type 10 has an invalid length.
[  514.965752][ T8866] netlink: 'syz.5.815': attribute type 10 has an invalid length.
[  514.998494][ T8864] team0: Port device dummy0 added
[  515.000325][ T8866] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  516.255595][ T8866] team0: Port device dummy0 removed
[  516.554530][ T8874] sch_tbf: burst 32852 is lower than device lo mtu (65550) !
[  516.573479][ T8484] veth0_vlan: entered promiscuous mode
[  516.723795][ T8484] veth1_vlan: entered promiscuous mode
[  521.843104][ T8484] veth0_macvtap: entered promiscuous mode
[  521.865300][ T8484] veth1_macvtap: entered promiscuous mode
[  522.023026][ T8484] batman_adv: batadv0: Interface activated: batadv_slave_0
[  522.074102][ T8484] batman_adv: batadv0: Interface activated: batadv_slave_1
[  522.152974][ T3718] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  522.153198][ T3718] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  522.153393][ T3718] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  522.153577][ T3718] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  522.439341][ T8884] 9pnet_virtio: no channels available for device 127.0.0.1
[  524.332117][ T7997] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  524.332130][ T7997] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  525.876501][ T5999] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  525.876522][ T5999] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  526.103535][ T8908] sch_tbf: burst 32852 is lower than device lo mtu (65550) !
[  526.573876][ T8915] netlink: 'syz.0.830': attribute type 10 has an invalid length.
[  527.501893][ T8917] netlink: 'syz.0.830': attribute type 10 has an invalid length.
[  527.546503][ T8915] team0: Port device dummy0 added
[  527.547906][ T8917] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  527.971849][ T8917] team0: Failed to send options change via netlink (err -105)
[  527.971987][ T8917] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  527.972304][ T8917] team0: Port device dummy0 removed
[  527.976400][ T8917] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  528.935498][ T8927] netlink: 128 bytes leftover after parsing attributes in process `syz.1.832'.
[  528.935755][ T8927] netlink: 8 bytes leftover after parsing attributes in process `syz.1.832'.
[  529.394461][ T8934] netlink: 4 bytes leftover after parsing attributes in process `syz.6.834'.
[  529.647043][ T8933] netlink: 'syz.5.835': attribute type 10 has an invalid length.
[  529.687225][ T8935] netlink: 'syz.5.835': attribute type 10 has an invalid length.
[  530.530028][ T8934] bridge0: port 1(bridge_slave_0) entered disabled state
[  532.417408][ T8934] bridge_slave_0 (unregistering): left allmulticast mode
[  532.417430][ T8934] bridge_slave_0 (unregistering): left promiscuous mode
[  532.417505][ T8934] bridge0: port 1(bridge_slave_0) entered disabled state
[  532.575151][ T8933] team0: Port device dummy0 added
[  532.704326][ T8935] team0: Port device dummy0 removed
[  532.857496][ T8952] sch_tbf: burst 32852 is lower than device lo mtu (65550) !
[  532.914040][ T8954] netlink: 'syz.5.842': attribute type 10 has an invalid length.
[  532.965193][ T8954] team0: Port device dummy0 added
[  532.967682][ T8958] netlink: 'syz.5.842': attribute type 10 has an invalid length.
[  532.981947][ T8958] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  533.058799][ T8958] team0: Failed to send options change via netlink (err -105)
[  533.059035][ T8958] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  533.069905][ T8958] team0: Port device dummy0 removed
[  533.128361][ T5923] usb 2-1: new high-speed USB device number 12 using dummy_hcd
[  533.283971][ T5923] usb 2-1: Using ep0 maxpacket: 8
[  533.295890][ T5923] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8D has an invalid bInterval 42, changing to 9
[  533.295922][ T5923] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  533.295942][ T5923] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  533.295962][ T5923] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 12336, setting to 1024
[  533.295985][ T5923] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024
[  533.296021][ T5923] usb 2-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58
[  533.296042][ T5923] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  533.590479][ T5923] usb 2-1: config 0 descriptor??
[  533.591588][ T8956] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  534.251485][ T5842] Bluetooth: hci2: Opcode 0x0c03 failed: -71
[  534.262372][ T5924] usb 2-1: USB disconnect, device number 12
[  534.741562][    C1] vkms_vblank_simulate: vblank timer overrun
[  535.431340][    C1] vkms_vblank_simulate: vblank timer overrun
[  535.792247][ T8981] netlink: 128 bytes leftover after parsing attributes in process `syz.1.847'.
[  535.792540][ T8981] netlink: 8 bytes leftover after parsing attributes in process `syz.1.847'.
[  537.174627][    C1] vkms_vblank_simulate: vblank timer overrun
[  538.680156][    C1] vkms_vblank_simulate: vblank timer overrun
[  538.761748][    C1] vkms_vblank_simulate: vblank timer overrun
[  539.789773][ T8976] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  541.292033][ T9001] syz.0.850 (9001): drop_caches: 2
[  541.338792][ T8976] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  541.400942][ T8976] bond0 (unregistering): (slave dummy0): Releasing backup interface
[  541.456683][ T8976] bond0 (unregistering): Released all slaves
[  543.368988][ T8998] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  543.450887][ T8998] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  544.374163][ T8998] bond0 (unregistering): Released all slaves
[  545.373935][ T9037] netlink: 32 bytes leftover after parsing attributes in process `syz.2.862'.
[  545.373957][ T9037] openvswitch: netlink: Missing key (keys=40, expected=100)
[  547.629930][ T9063] QAT: failed to copy from user cfg_data.
[  549.303574][ T9076] netlink: 4 bytes leftover after parsing attributes in process `syz.2.872'.
[  553.641722][ T9076] bridge0: port 1(bridge_slave_0) entered disabled state
[  556.313331][ T9076] bridge_slave_0 (unregistering): left allmulticast mode
[  556.313357][ T9076] bridge_slave_0 (unregistering): left promiscuous mode
[  556.313499][ T9076] bridge0: port 1(bridge_slave_0) entered disabled state
[  556.477871][ T9094] warning: `syz.0.876' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  563.137622][ T1323] ieee802154 phy0 wpan0: encryption failed: -22
[  565.318211][ T5923] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  565.488282][ T5923] usb 7-1: Using ep0 maxpacket: 16
[  565.491816][ T5923] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 8
[  565.542800][ T5923] usb 7-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 6.00
[  565.542827][ T5923] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  565.542846][ T5923] usb 7-1: Product: syz
[  565.542859][ T5923] usb 7-1: Manufacturer: syz
[  565.542871][ T5923] usb 7-1: SerialNumber: syz
[  565.568519][ T5923] usb 7-1: config 0 descriptor??
[  565.572288][ T5923] ftdi_sio 7-1:0.0: FTDI USB Serial Device converter detected
[  565.587453][ T5923] usb 7-1: Detected FT232R
[  566.105500][ T5838] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  566.121210][ T5838] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  566.126719][ T5838] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  566.145413][ T5838] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  566.155089][ T5838] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  566.353677][ T5923] ftdi_sio ttyUSB0: Unable to read latency timer: -71
[  566.354132][ T5923] ftdi_sio ttyUSB0: Unable to write latency timer: -71
[  566.354615][ T5923] ftdi_sio 7-1:0.0: GPIO initialisation failed: -71
[  566.387416][ T5923] usb 7-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  566.400811][ T5923] usb 7-1: USB disconnect, device number 2
[  566.416703][ T5923] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  566.417166][ T5923] ftdi_sio 7-1:0.0: device disconnected
[  566.542315][ T9121] netlink: 24 bytes leftover after parsing attributes in process `syz.1.886'.
[  566.597212][ T9133] 9pnet_fd: Insufficient options for proto=fd
[  568.240046][ T5842] Bluetooth: hci2: command tx timeout
[  568.556615][ T9142] netlink: 8 bytes leftover after parsing attributes in process `syz.0.890'.
[  568.880978][ T3718] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  570.357636][ T5842] Bluetooth: hci2: command tx timeout
[  574.033541][ T5842] Bluetooth: hci2: command tx timeout
[  574.056041][ T3718] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  574.633326][    C1] vkms_vblank_simulate: vblank timer overrun
[  575.858254][    C1] vkms_vblank_simulate: vblank timer overrun
[  575.919829][    C1] vkms_vblank_simulate: vblank timer overrun
[  576.002723][ T9174] netlink: 32 bytes leftover after parsing attributes in process `syz.6.898'.
[  576.002752][ T9174] openvswitch: netlink: Missing key (keys=40, expected=100)
[  576.207276][ T5838] Bluetooth: hci2: command tx timeout
[  576.207341][    C1] vkms_vblank_simulate: vblank timer overrun
[  576.475388][ T3718] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  576.639323][    C1] vkms_vblank_simulate: vblank timer overrun
[  577.021024][ T3718] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  577.380118][    C1] vkms_vblank_simulate: vblank timer overrun
[  579.608388][ T5924] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  579.616201][ T9126] chnl_net:caif_netlink_parms(): no params data found
[  581.239500][ T5924] usb 7-1: Using ep0 maxpacket: 16
[  581.594735][ T5924] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 8
[  581.646742][ T9201] 9pnet_fd: Insufficient options for proto=fd
[  581.734851][ T5924] usb 7-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 6.00
[  581.734878][ T5924] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  581.734895][ T5924] usb 7-1: Product: syz
[  581.734907][ T5924] usb 7-1: Manufacturer: syz
[  581.734919][ T5924] usb 7-1: SerialNumber: syz
[  582.027851][ T5924] usb 7-1: config 0 descriptor??
[  582.042144][ T5924] ftdi_sio 7-1:0.0: FTDI USB Serial Device converter detected
[  582.080310][ T5924] usb 7-1: Detected FT232R
[  583.341197][ T5924] ftdi_sio ttyUSB0: Unable to read latency timer: -71
[  583.344561][ T5924] ftdi_sio ttyUSB0: Unable to write latency timer: -71
[  583.442590][ T5924] ftdi_sio 7-1:0.0: GPIO initialisation failed: -71
[  583.460338][ T5924] usb 7-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  583.466749][ T5924] usb 7-1: USB disconnect, device number 3
[  583.499035][ T5924] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  583.499507][ T5924] ftdi_sio 7-1:0.0: device disconnected
[  584.646795][ T9206] bond0 (unregistering): Released all slaves
[  584.792156][ T3718] bridge_slave_1: left allmulticast mode
[  584.792238][ T3718] bridge_slave_1: left promiscuous mode
[  584.792496][ T3718] bridge0: port 2(bridge_slave_1) entered disabled state
[  586.440228][ T9103] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  587.778173][ T9103] usb 6-1: Using ep0 maxpacket: 8
[  587.780996][ T9103] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8D has an invalid bInterval 42, changing to 9
[  587.781027][ T9103] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  587.781045][ T9103] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  587.781066][ T9103] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 12336, setting to 1024
[  587.781089][ T9103] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024
[  587.781127][ T9103] usb 6-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58
[  587.781147][ T9103] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  587.786479][ T9103] usb 6-1: config 0 descriptor??
[  587.787838][ T9243] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  588.311683][ T5838] Bluetooth: hci4: Opcode 0x0c03 failed: -71
[  588.315966][ T9103] usb 6-1: USB disconnect, device number 7
[  588.725584][ T9253] netlink: 8 bytes leftover after parsing attributes in process `syz.6.923'.
[  589.046380][    C0] vkms_vblank_simulate: vblank timer overrun
[  589.163312][    C0] vkms_vblank_simulate: vblank timer overrun
[  589.570830][    C0] vkms_vblank_simulate: vblank timer overrun
[  590.474397][    C0] vkms_vblank_simulate: vblank timer overrun
[  591.651020][    C0] vkms_vblank_simulate: vblank timer overrun
[  591.713793][    C0] vkms_vblank_simulate: vblank timer overrun
[  592.295916][ T9126] bridge0: port 1(bridge_slave_0) entered blocking state
[  592.296598][ T9126] bridge0: port 1(bridge_slave_0) entered disabled state
[  592.296947][ T9126] bridge_slave_0: entered allmulticast mode
[  592.324587][ T9126] bridge_slave_0: entered promiscuous mode
[  592.392736][ T9126] bridge0: port 2(bridge_slave_1) entered blocking state
[  592.392997][ T9126] bridge0: port 2(bridge_slave_1) entered disabled state
[  592.393289][ T9126] bridge_slave_1: entered allmulticast mode
[  593.406742][    C0] vkms_vblank_simulate: vblank timer overrun
[  593.491474][    C0] vkms_vblank_simulate: vblank timer overrun
[  593.530314][ T9126] bridge_slave_1: entered promiscuous mode
[  594.594331][    C0] vkms_vblank_simulate: vblank timer overrun
[  595.096926][    C0] vkms_vblank_simulate: vblank timer overrun
[  595.200819][ T9126] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  595.201059][ T9308] netlink: 8 bytes leftover after parsing attributes in process `syz.5.937'.
[  595.774274][    C0] vkms_vblank_simulate: vblank timer overrun
[  595.844364][ T5842] Bluetooth: hci5: command 0x0405 tx timeout
[  595.891998][    C0] vkms_vblank_simulate: vblank timer overrun
[  595.935245][ T3718] hsr_slave_0: left promiscuous mode
[  595.969623][ T3718] hsr_slave_1: left promiscuous mode
[  595.971434][ T3718] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  595.971461][ T3718] batman_adv: batadv0: Removing interface: batadv_slave_0
[  596.038531][    C0] vkms_vblank_simulate: vblank timer overrun
[  596.055806][ T3718] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  596.055829][ T3718] batman_adv: batadv0: Removing interface: batadv_slave_1
[  596.201226][ T3718] veth1_macvtap: left promiscuous mode
[  596.201350][ T3718] veth0_macvtap: left promiscuous mode
[  596.201641][ T3718] veth1_vlan: left promiscuous mode
[  596.201844][ T3718] veth0_vlan: left promiscuous mode
[  596.376943][    C0] vkms_vblank_simulate: vblank timer overrun
[  597.058847][ T9330] fuse: Bad value for 'fd'
[  597.775543][ T9335] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[  601.146144][ T3718] team0 (unregistering): Port device team_slave_1 removed
[  601.359047][ T3718] team0 (unregistering): Port device team_slave_0 removed
[  603.402348][ T9126] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  603.866237][ T9349] netlink: 8 bytes leftover after parsing attributes in process `syz.5.950'.
[  604.404606][ T9126] team0: Port device team_slave_0 added
[  604.414179][ T9126] team0: Port device team_slave_1 added
[  606.212165][ T9370] fuse: Bad value for 'fd'
[  607.128921][ T9126] batman_adv: batadv0: Adding interface: batadv_slave_0
[  607.128936][ T9126] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  607.128955][ T9126] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  607.149034][ T9126] batman_adv: batadv0: Adding interface: batadv_slave_1
[  607.149061][ T9126] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  607.149085][ T9126] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  607.666547][ T9395] netlink: 8 bytes leftover after parsing attributes in process `syz.0.964'.
[  607.970573][ T9126] hsr_slave_0: entered promiscuous mode
[  607.972928][ T9126] hsr_slave_1: entered promiscuous mode
[  607.974554][ T9126] debugfs: 'hsr0' already exists in 'hsr'
[  607.974579][ T9126] Cannot create hsr debugfs directory
[  609.188913][ T9405] netlink: 20 bytes leftover after parsing attributes in process `syz.0.968'.
[  609.188955][ T9405] netlink: 20 bytes leftover after parsing attributes in process `syz.0.968'.
[  609.286764][ T9407] 9pnet_fd: Insufficient options for proto=fd
[  610.317615][ T9412] fuse: Bad value for 'fd'
[  611.124353][ T9429] netlink: 8 bytes leftover after parsing attributes in process `syz.0.977'.
[  612.633706][ T9438] netlink: 'syz.6.980': attribute type 10 has an invalid length.
[  612.686399][ T9439] netlink: 'syz.6.980': attribute type 10 has an invalid length.
[  612.726695][ T9438] team0: Port device dummy0 added
[  612.732500][ T9439] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  612.811649][ T9439] team0: Failed to send options change via netlink (err -105)
[  612.811905][ T9439] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  612.812472][ T9439] team0: Port device dummy0 removed
[  613.137402][ T9126] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  613.585278][ T9126] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  613.740252][ T9443] syz.1.969 (9443) used greatest stack depth: 18904 bytes left
[  613.834224][ T9447] netlink: 4 bytes leftover after parsing attributes in process `syz.5.982'.
[  614.432020][ T9447] bridge0: port 1(bridge_slave_0) entered disabled state
[  630.046458][ T9456] syz.5.982 (9456) used greatest stack depth: 17648 bytes left
[  632.946988][ T9466] sched: DL replenish lagged too much
[  633.198659][ T1323] ieee802154 phy0 wpan0: encryption failed: -22
[  651.577727][ T5842] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  651.591784][ T5842] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  651.593129][ T5842] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  651.595502][ T5842] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  651.596450][ T5842] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  653.691394][ T5842] Bluetooth: hci0: command tx timeout
[  662.958214][ T5842] Bluetooth: hci0: command tx timeout
[  672.078158][ T5842] Bluetooth: hci0: command tx timeout
[  681.838232][ T5842] Bluetooth: hci0: command tx timeout
[  685.922501][ T1323] ieee802154 phy0 wpan0: encryption failed: -22
[  697.198164][ T5842] Bluetooth: hci2: command tx timeout
[  747.377621][ T1323] ieee802154 phy0 wpan0: encryption failed: -22
[  756.200103][ T9491] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  756.226053][ T9491] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  756.243063][ T9491] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  756.295707][ T9491] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  756.296576][ T9491] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  756.573647][ T5838] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  756.610051][ T5838] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  756.612559][ T5838] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  756.614641][ T5838] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  756.615465][ T5838] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  756.947141][ T5838] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  756.974163][ T5838] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  756.975832][ T5838] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  756.977112][ T5838] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  756.990082][ T5838] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  757.129773][ T5838] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[  757.154011][ T5838] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[  757.155400][ T5838] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[  757.157067][ T5838] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[  757.157922][ T5838] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[  757.555290][ T9491] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1
[  757.595951][ T9491] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9
[  757.612125][ T9491] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9
[  757.616122][ T9491] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4
[  757.633195][ T9491] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2
[  758.400848][ T5838] Bluetooth: hci4: command tx timeout
[  758.718322][ T5838] Bluetooth: hci6: command tx timeout
[  759.651816][ T5838] Bluetooth: hci7: command tx timeout
[  759.819942][ T5838] Bluetooth: hci8: command tx timeout
[  759.997010][ T5838] Bluetooth: hci9: command tx timeout
[  760.593234][ T5838] Bluetooth: hci4: command tx timeout
[  760.881681][ T5838] Bluetooth: hci6: command tx timeout
[  762.224472][ T5838] Bluetooth: hci9: command tx timeout
[  762.224510][ T5838] Bluetooth: hci8: command tx timeout
[  762.224532][ T5838] Bluetooth: hci7: command tx timeout
[  762.799183][ T5838] Bluetooth: hci4: command tx timeout
[  763.001738][ T9491] Bluetooth: hci6: command tx timeout
[  764.283353][ T9491] Bluetooth: hci9: command tx timeout
[  764.434543][ T9491] Bluetooth: hci8: command tx timeout
[  764.434583][ T9491] Bluetooth: hci7: command tx timeout
[  765.089582][ T9491] Bluetooth: hci4: command tx timeout
[  765.089627][ T9491] Bluetooth: hci6: command tx timeout
[  766.386394][ T9503] Bluetooth: hci9: command tx timeout
[  768.005040][ T9503] Bluetooth: hci8: command tx timeout
[  768.005080][ T9503] Bluetooth: hci7: command tx timeout
[  773.005086][   T38] INFO: task kworker/u8:1:13 blocked for more than 143 seconds.
[  773.005111][   T38]       Not tainted syzkaller #0
[  773.005121][   T38] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  773.005130][   T38] task:kworker/u8:1    state:D stack:20264 pid:13    tgid:13    ppid:2      task_flags:0x4208060 flags:0x00004000
[  773.005178][   T38] Workqueue: ipv6_addrconf addrconf_dad_work
[  773.005218][   T38] Call Trace:
[  773.005225][   T38]  <TASK>
[  773.005238][   T38]  __schedule+0x16f3/0x4c20
[  773.005289][   T38]  ? __pfx___schedule+0x10/0x10
[  773.005313][   T38]  ? preempt_schedule+0xae/0xc0
[  773.005344][   T38]  ? preempt_schedule_thunk+0x16/0x30
[  773.005369][   T38]  rt_mutex_schedule+0x77/0xf0
[  773.005387][   T38]  rt_mutex_slowlock_block+0x5ba/0x6d0
[  773.005406][   T38]  ? task_blocks_on_rt_mutex+0xf12/0x1380
[  773.005449][   T38]  rt_mutex_slowlock+0x2b1/0x6e0
[  773.005469][   T38]  ? rt_mutex_slowlock+0x1c9/0x6e0
[  773.005487][   T38]  ? __pfx_rt_mutex_slowlock+0x10/0x10
[  773.005503][   T38]  ? __lock_acquire+0xab9/0xd20
[  773.005546][   T38]  ? addrconf_dad_work+0x119/0x15a0
[  773.005571][   T38]  ? __lock_acquire+0xab9/0xd20
[  773.005601][   T38]  ? addrconf_dad_work+0x119/0x15a0
[  773.005623][   T38]  mutex_lock_nested+0x16a/0x1d0
[  773.005647][   T38]  addrconf_dad_work+0x119/0x15a0
[  773.005672][   T38]  ? __lock_acquire+0xab9/0xd20
[  773.005701][   T38]  ? __pfx_addrconf_dad_work+0x10/0x10
[  773.005725][   T38]  ? process_scheduled_works+0x9ef/0x17b0
[  773.005753][   T38]  ? _raw_spin_unlock_irq+0x23/0x50
[  773.005773][   T38]  ? process_scheduled_works+0x9ef/0x17b0
[  773.005791][   T38]  ? process_scheduled_works+0x9ef/0x17b0
[  773.005814][   T38]  process_scheduled_works+0xade/0x17b0
[  773.005865][   T38]  ? __pfx_process_scheduled_works+0x10/0x10
[  773.005905][   T38]  worker_thread+0x8a0/0xda0
[  773.005954][   T38]  kthread+0x711/0x8a0
[  773.005981][   T38]  ? __pfx_worker_thread+0x10/0x10
[  773.006002][   T38]  ? __pfx_kthread+0x10/0x10
[  773.006031][   T38]  ? __pfx_kthread+0x10/0x10
[  773.006055][   T38]  ret_from_fork+0x3fc/0x770
[  773.006079][   T38]  ? __pfx_ret_from_fork+0x10/0x10
[  773.006107][   T38]  ? __switch_to_asm+0x39/0x70
[  773.006122][   T38]  ? __switch_to_asm+0x33/0x70
[  773.006137][   T38]  ? __pfx_kthread+0x10/0x10
[  773.006161][   T38]  ret_from_fork_asm+0x1a/0x30
[  773.006195][   T38]  </TASK>
[  773.006221][   T38] INFO: task kworker/u8:4:67 blocked for more than 143 seconds.
[  773.006233][   T38]       Not tainted syzkaller #0
[  773.006242][   T38] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  773.006251][   T38] task:kworker/u8:4    state:D stack:21224 pid:67    tgid:67    ppid:2      task_flags:0x4208060 flags:0x00004000
[  773.006297][   T38] Workqueue: events_unbound linkwatch_event
[  773.006321][   T38] Call Trace:
[  773.006327][   T38]  <TASK>
[  773.006338][   T38]  __schedule+0x16f3/0x4c20
[  773.006370][   T38]  ? unwind_next_frame+0xa5/0x2390
[  773.006405][   T38]  ? __pfx___schedule+0x10/0x10
[  773.006429][   T38]  ? preempt_schedule+0xae/0xc0
[  773.006460][   T38]  ? preempt_schedule_thunk+0x16/0x30
[  773.006484][   T38]  rt_mutex_schedule+0x77/0xf0
[  773.006501][   T38]  rt_mutex_slowlock_block+0x5ba/0x6d0
[  773.006519][   T38]  ? task_blocks_on_rt_mutex+0xf12/0x1380
[  773.006569][   T38]  rt_mutex_slowlock+0x2b1/0x6e0
[  773.006589][   T38]  ? rt_mutex_slowlock+0x1c9/0x6e0
[  773.006607][   T38]  ? __pfx_rt_mutex_slowlock+0x10/0x10
[  773.006636][   T38]  ? linkwatch_event+0xe/0x60
[  773.006665][   T38]  ? process_scheduled_works+0x9ef/0x17b0
[  773.006690][   T38]  ? linkwatch_event+0xe/0x60
[  773.006710][   T38]  mutex_lock_nested+0x16a/0x1d0
[  773.006726][   T38]  ? _raw_spin_unlock_irq+0x23/0x50
[  773.006747][   T38]  ? process_scheduled_works+0x9ef/0x17b0
[  773.006770][   T38]  linkwatch_event+0xe/0x60
[  773.006791][   T38]  process_scheduled_works+0xade/0x17b0
[  773.006842][   T38]  ? __pfx_process_scheduled_works+0x10/0x10
[  773.006882][   T38]  worker_thread+0x8a0/0xda0
[  773.006930][   T38]  kthread+0x711/0x8a0
[  773.006958][   T38]  ? __pfx_worker_thread+0x10/0x10
[  773.006978][   T38]  ? __pfx_kthread+0x10/0x10
[  773.007007][   T38]  ? __pfx_kthread+0x10/0x10
[  773.007031][   T38]  ret_from_fork+0x3fc/0x770
[  773.007055][   T38]  ? __pfx_ret_from_fork+0x10/0x10
[  773.007083][   T38]  ? __switch_to_asm+0x39/0x70
[  773.007099][   T38]  ? __switch_to_asm+0x33/0x70
[  773.007114][   T38]  ? __pfx_kthread+0x10/0x10
[  773.007138][   T38]  ret_from_fork_asm+0x1a/0x30
[  773.007172][   T38]  </TASK>
[  773.007276][   T38] INFO: task kworker/1:7:6247 blocked for more than 143 seconds.
[  773.007289][   T38]       Not tainted syzkaller #0
[  773.007298][   T38] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  773.007306][   T38] task:kworker/1:7     state:D stack:20776 pid:6247  tgid:6247  ppid:2      task_flags:0x4208060 flags:0x00004000
[  773.007350][   T38] Workqueue: events switchdev_deferred_process_work
[  773.007375][   T38] Call Trace:
[  773.007381][   T38]  <TASK>
[  773.007392][   T38]  __schedule+0x16f3/0x4c20
[  773.007439][   T38]  ? __pfx___schedule+0x10/0x10
[  773.007476][   T38]  ? _raw_spin_unlock_irq+0x23/0x50
[  773.007500][   T38]  rt_mutex_schedule+0x77/0xf0
[  773.007517][   T38]  rt_mutex_slowlock_block+0x5ba/0x6d0
[  773.007541][   T38]  ? task_blocks_on_rt_mutex+0xf12/0x1380
[  773.007584][   T38]  rt_mutex_slowlock+0x2b1/0x6e0
[  773.007605][   T38]  ? rt_mutex_slowlock+0x1c9/0x6e0
[  773.007624][   T38]  ? __pfx_rt_mutex_slowlock+0x10/0x10
[  773.007653][   T38]  ? switchdev_deferred_process_work+0xe/0x20
[  773.007683][   T38]  ? process_scheduled_works+0x9ef/0x17b0
[  773.007708][   T38]  ? switchdev_deferred_process_work+0xe/0x20
[  773.007729][   T38]  mutex_lock_nested+0x16a/0x1d0
[  773.007745][   T38]  ? _raw_spin_unlock_irq+0x23/0x50
[  773.007765][   T38]  ? process_scheduled_works+0x9ef/0x17b0
[  773.007787][   T38]  switchdev_deferred_process_work+0xe/0x20
[  773.007809][   T38]  process_scheduled_works+0xade/0x17b0
[  773.007861][   T38]  ? __pfx_process_scheduled_works+0x10/0x10
[  773.007900][   T38]  worker_thread+0x8a0/0xda0
[  773.007924][   T38]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  773.007954][   T38]  ? __kthread_parkme+0x7b/0x200
[  773.007983][   T38]  kthread+0x711/0x8a0
[  773.008009][   T38]  ? __pfx_worker_thread+0x10/0x10
[  773.008088][   T38]  ? __pfx_kthread+0x10/0x10
[  773.008118][   T38]  ? __pfx_kthread+0x10/0x10
[  773.008143][   T38]  ret_from_fork+0x3fc/0x770
[  773.008167][   T38]  ? __pfx_ret_from_fork+0x10/0x10
[  773.008195][   T38]  ? __switch_to_asm+0x39/0x70
[  773.008211][   T38]  ? __switch_to_asm+0x33/0x70
[  773.008225][   T38]  ? __pfx_kthread+0x10/0x10
[  773.008250][   T38]  ret_from_fork_asm+0x1a/0x30
[  773.008283][   T38]  </TASK>
[  773.008302][   T38] INFO: task syz-executor:9126 blocked for more than 143 seconds.
[  773.008314][   T38]       Not tainted syzkaller #0
[  773.008323][   T38] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  773.008331][   T38] task:syz-executor    state:D stack:21400 pid:9126  tgid:9126  ppid:1      task_flags:0x400140 flags:0x00004004
[  773.008376][   T38] Call Trace:
[  773.008394][   T38]  <TASK>
[  773.008406][   T38]  __schedule+0x16f3/0x4c20
[  773.008455][   T38]  ? __pfx___schedule+0x10/0x10
[  773.008494][   T38]  ? _raw_spin_unlock_irq+0x23/0x50
[  773.008518][   T38]  rt_mutex_schedule+0x77/0xf0
[  773.008543][   T38]  rt_mutex_slowlock_block+0x5ba/0x6d0
[  773.008562][   T38]  ? task_blocks_on_rt_mutex+0x78c/0x1380
[  773.008605][   T38]  rt_mutex_slowlock+0x2b1/0x6e0
[  773.008625][   T38]  ? rt_mutex_slowlock+0x1c9/0x6e0
[  773.008644][   T38]  ? __pfx_rt_mutex_slowlock+0x10/0x10
[  773.008670][   T38]  ? lockdep_hardirqs_on+0x9c/0x150
[  773.008695][   T38]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  773.008717][   T38]  ? bpf_lsm_capable+0x9/0x20
[  773.008737][   T38]  ? security_capable+0x7e/0x2e0
[  773.008765][   T38]  ? rtnl_newlink+0x8db/0x1c70
[  773.008782][   T38]  mutex_lock_nested+0x16a/0x1d0
[  773.008797][   T38]  ? rtnl_newlink+0x8db/0x1c70
[  773.008820][   T38]  rtnl_newlink+0x8db/0x1c70
[  773.008838][   T38]  ? trace_sched_exit_tp+0x36/0x110
[  773.008874][   T38]  ? __pfx_rtnl_newlink+0x10/0x10
[  773.008895][   T38]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  773.008916][   T38]  ? lockdep_hardirqs_on+0x9c/0x150
[  773.008939][   T38]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  773.008968][   T38]  ? __lock_acquire+0xab9/0xd20
[  773.009003][   T38]  ? __lock_acquire+0xab9/0xd20
[  773.009046][   T38]  ? is_bpf_text_address+0x26/0x2b0
[  773.009073][   T38]  ? is_bpf_text_address+0x292/0x2b0
[  773.009094][   T38]  ? is_bpf_text_address+0x26/0x2b0
[  773.009125][   T38]  ? __lock_acquire+0xab9/0xd20
[  773.009172][   T38]  ? __pfx_rtnl_newlink+0x10/0x10
[  773.009191][   T38]  rtnetlink_rcv_msg+0x7cc/0xb70
[  773.009210][   T38]  ? __lock_acquire+0xab9/0xd20
[  773.009232][   T38]  ? rtnetlink_rcv_msg+0x1ab/0xb70
[  773.009252][   T38]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  773.009289][   T38]  netlink_rcv_skb+0x205/0x470
[  773.009308][   T38]  ? __lock_acquire+0xab9/0xd20
[  773.009328][   T38]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  773.009350][   T38]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  773.009382][   T38]  ? netlink_deliver_tap+0x2e/0x1b0
[  773.009411][   T38]  netlink_unicast+0x843/0xa10
[  773.009439][   T38]  ? __pfx_netlink_unicast+0x10/0x10
[  773.009460][   T38]  ? netlink_sendmsg+0x642/0xb30
[  773.009478][   T38]  ? skb_put+0x11b/0x210
[  773.009503][   T38]  netlink_sendmsg+0x805/0xb30
[  773.009556][   T38]  ? __pfx_netlink_sendmsg+0x10/0x10
[  773.009586][   T38]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  773.009603][   T38]  ? __pfx_netlink_sendmsg+0x10/0x10
[  773.009625][   T38]  __sock_sendmsg+0x219/0x270
[  773.009648][   T38]  __sys_sendto+0x3c7/0x520
[  773.009672][   T38]  ? __pfx___sys_sendto+0x10/0x10
[  773.009707][   T38]  ? fput_close_sync+0x119/0x200
[  773.009740][   T38]  ? __pfx_fput_close_sync+0x10/0x10
[  773.009758][   T38]  ? rt_spin_unlock+0x65/0x80
[  773.009782][   T38]  __x64_sys_sendto+0xde/0x100
[  773.009863][   T38]  do_syscall_64+0xfa/0x3b0
[  773.009885][   T38]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  773.009898][   T38]  ? asm_sysvec_reschedule_ipi+0x1a/0x20
[  773.009919][   T38]  ? clear_bhb_loop+0x60/0xb0
[  773.009946][   T38]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  773.009971][   T38] RIP: 0033:0x7f9d28ee0a7c
[  773.009987][   T38] RSP: 002b:00007ffe7577be70 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  773.010005][   T38] RAX: ffffffffffffffda RBX: 00007f9d29c335c0 RCX: 00007f9d28ee0a7c
[  773.010018][   T38] RDX: 0000000000000030 RSI: 00007f9d29c33610 RDI: 0000000000000006
[  773.010029][   T38] RBP: 0000000000000000 R08: 00007ffe7577bec4 R09: 000000000000000c
[  773.010040][   T38] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000006
[  773.010051][   T38] R13: 0000000000000000 R14: 00007f9d29c33610 R15: 0000000000000000
[  773.010081][   T38]  </TASK>
[  773.010094][   T38] INFO: task syz.1.987:9459 blocked for more than 143 seconds.
[  773.010107][   T38]       Not tainted syzkaller #0
[  773.010114][   T38] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  773.010122][   T38] task:syz.1.987       state:D stack:25736 pid:9459  tgid:9458  ppid:5839   task_flags:0x400140 flags:0x00004004
[  773.010170][   T38] Call Trace:
[  773.010176][   T38]  <TASK>
[  773.010186][   T38]  __schedule+0x16f3/0x4c20
[  773.010219][   T38]  ? arch_stack_walk+0xfc/0x150
[  773.010255][   T38]  ? __pfx___schedule+0x10/0x10
[  773.010295][   T38]  ? _raw_spin_unlock_irq+0x23/0x50
[  773.010319][   T38]  rt_mutex_schedule+0x77/0xf0
[  773.010337][   T38]  rt_mutex_slowlock_block+0x5ba/0x6d0
[  773.010355][   T38]  ? task_blocks_on_rt_mutex+0xf12/0x1380
[  773.010399][   T38]  rt_mutex_slowlock+0x2b1/0x6e0
[  773.010420][   T38]  ? rt_mutex_slowlock+0x1c9/0x6e0
[  773.010440][   T38]  ? __pfx_rt_mutex_slowlock+0x10/0x10
[  773.010470][   T38]  ? dev_ioctl+0x7a4/0x1150
[  773.010505][   T38]  ? dev_ioctl+0x7a4/0x1150
[  773.010522][   T38]  mutex_lock_nested+0x16a/0x1d0
[  773.010546][   T38]  dev_ioctl+0x7a4/0x1150
[  773.010571][   T38]  sock_do_ioctl+0x22c/0x300
[  773.010595][   T38]  ? __pfx_sock_do_ioctl+0x10/0x10
[  773.010612][   T38]  ? __lock_acquire+0xab9/0xd20
[  773.010646][   T38]  ? __asan_memset+0x22/0x50
[  773.010667][   T38]  ? smack_file_ioctl+0x24d/0x340
[  773.010694][   T38]  sock_ioctl+0x579/0x790
[  773.010715][   T38]  ? __pfx_sock_ioctl+0x10/0x10
[  773.010734][   T38]  ? __fget_files+0x2a/0x420
[  773.010757][   T38]  ? __fget_files+0x3a6/0x420
[  773.010777][   T38]  ? __fget_files+0x2a/0x420
[  773.010805][   T38]  ? bpf_lsm_file_ioctl+0x9/0x20
[  773.010828][   T38]  ? __pfx_sock_ioctl+0x10/0x10
[  773.010845][   T38]  __se_sys_ioctl+0xfc/0x170
[  773.010868][   T38]  do_syscall_64+0xfa/0x3b0
[  773.010888][   T38]  ? lockdep_hardirqs_on+0x9c/0x150
[  773.010909][   T38]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  773.010928][   T38]  ? clear_bhb_loop+0x60/0xb0
[  773.010950][   T38]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  773.010967][   T38] RIP: 0033:0x7f3b4eceebe9
[  773.010982][   T38] RSP: 002b:00007f3b4cf4e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  773.011002][   T38] RAX: ffffffffffffffda RBX: 00007f3b4ef15fa0 RCX: 00007f3b4eceebe9
[  773.011015][   T38] RDX: 0000200000000000 RSI: 0000000000008924 RDI: 0000000000000007
[  773.011027][   T38] RBP: 00007f3b4ed71e19 R08: 0000000000000000 R09: 0000000000000000
[  773.011039][   T38] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  773.011049][   T38] R13: 00007f3b4ef16038 R14: 00007f3b4ef15fa0 R15: 00007ffd0af8fda8
[  773.011081][   T38]  </TASK>
[  773.011090][   T38] INFO: task syz.6.988:9461 blocked for more than 143 seconds.
[  773.011104][   T38]       Not tainted syzkaller #0
[  773.011113][   T38] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  773.011121][   T38] task:syz.6.988       state:D stack:26824 pid:9461  tgid:9460  ppid:8484   task_flags:0x400040 flags:0x00004004
[  773.011171][   T38] Call Trace:
[  773.011178][   T38]  <TASK>
[  773.011189][   T38]  __schedule+0x16f3/0x4c20
[  773.011231][   T38]  ? __pfx___schedule+0x10/0x10
[  773.011252][   T38]  ? __pfx___schedule+0x10/0x10
[  773.011287][   T38]  ? _raw_spin_unlock_irq+0x23/0x50
[  773.011311][   T38]  rt_mutex_schedule+0x77/0xf0
[  773.011328][   T38]  rt_mutex_slowlock_block+0x5ba/0x6d0
[  773.011347][   T38]  ? task_blocks_on_rt_mutex+0xf12/0x1380
[  773.011391][   T38]  rt_mutex_slowlock+0x2b1/0x6e0
[  773.011429][   T38]  ? rt_mutex_slowlock+0x1c9/0x6e0
[  773.011449][   T38]  ? __pfx_rt_mutex_slowlock+0x10/0x10
[  773.011486][   T38]  ? __pfx___fsnotify_parent+0x10/0x10
[  773.011516][   T38]  ? tun_chr_close+0x41/0x1c0
[  773.011537][   T38]  mutex_lock_nested+0x16a/0x1d0
[  773.011554][   T38]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  773.011578][   T38]  ? __pfx_tun_chr_close+0x10/0x10
[  773.011600][   T38]  tun_chr_close+0x41/0x1c0
[  773.011621][   T38]  __fput+0x45b/0xa80
[  773.011659][   T38]  fput_close_sync+0x119/0x200
[  773.011680][   T38]  ? __pfx_fput_close_sync+0x10/0x10
[  773.011699][   T38]  ? rt_spin_unlock+0x65/0x80
[  773.011728][   T38]  __x64_sys_close+0x7f/0x110
[  773.011748][   T38]  do_syscall_64+0xfa/0x3b0
[  773.011768][   T38]  ? lockdep_hardirqs_on+0x9c/0x150
[  773.011789][   T38]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  773.011807][   T38]  ? clear_bhb_loop+0x60/0xb0
[  773.011829][   T38]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  773.011846][   T38] RIP: 0033:0x7f05fb7debe9
[  773.011861][   T38] RSP: 002b:00007f05f9a3e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[  773.011880][   T38] RAX: ffffffffffffffda RBX: 00007f05fba05fa0 RCX: 00007f05fb7debe9
[  773.011891][   T38] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005
[  773.011901][   T38] RBP: 00007f05fb861e19 R08: 0000000000000000 R09: 0000000000000000
[  773.011911][   T38] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  773.011921][   T38] R13: 00007f05fba06038 R14: 00007f05fba05fa0 R15: 00007ffe957c0c48
[  773.011948][   T38]  </TASK>
[  773.011956][   T38] INFO: task syz.6.988:9462 blocked for more than 143 seconds.
[  773.011967][   T38]       Not tainted syzkaller #0
[  773.011976][   T38] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  773.011983][   T38] task:syz.6.988       state:D stack:27928 pid:9462  tgid:9460  ppid:8484   task_flags:0x400140 flags:0x00004004
[  773.012031][   T38] Call Trace:
[  773.012037][   T38]  <TASK>
[  773.012048][   T38]  __schedule+0x16f3/0x4c20
[  773.012083][   T38]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  773.012114][   T38]  ? __pfx___schedule+0x10/0x10
[  773.012153][   T38]  ? _raw_spin_unlock_irq+0x23/0x50
[  773.012175][   T38]  rt_mutex_schedule+0x77/0xf0
[  773.012192][   T38]  rt_mutex_slowlock_block+0x5ba/0x6d0
[  773.012211][   T38]  ? task_blocks_on_rt_mutex+0xf12/0x1380
[  773.012253][   T38]  rt_mutex_slowlock+0x2b1/0x6e0
[  773.012275][   T38]  ? rt_mutex_slowlock+0x1c9/0x6e0
[  773.012294][   T38]  ? __pfx_rt_mutex_slowlock+0x10/0x10
[  773.012309][   T38]  ? __lock_acquire+0xab9/0xd20
[  773.012342][   T38]  ? devinet_ioctl+0x323/0x1b50
[  773.012371][   T38]  ? safesetid_security_capable+0xa9/0x1a0
[  773.012396][   T38]  ? devinet_ioctl+0x323/0x1b50
[  773.012415][   T38]  mutex_lock_nested+0x16a/0x1d0
[  773.012439][   T38]  devinet_ioctl+0x323/0x1b50
[  773.012474][   T38]  ? __pfx_devinet_ioctl+0x10/0x10
[  773.012502][   T38]  ? get_user_ifreq+0x12c/0x180
[  773.012529][   T38]  inet_ioctl+0x3c0/0x4c0
[  773.012551][   T38]  ? __pfx_inet_ioctl+0x10/0x10
[  773.012593][   T38]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  773.012620][   T38]  sock_do_ioctl+0xdc/0x300
[  773.012649][   T38]  ? __pfx_sock_do_ioctl+0x10/0x10
[  773.012665][   T38]  ? __lock_acquire+0xab9/0xd20
[  773.012690][   T38]  ? __asan_memset+0x22/0x50
[  773.012709][   T38]  ? smack_file_ioctl+0x24d/0x340
[  773.012735][   T38]  sock_ioctl+0x579/0x790
[  773.012755][   T38]  ? __pfx_sock_ioctl+0x10/0x10
[  773.012773][   T38]  ? __fget_files+0x2a/0x420
[  773.012794][   T38]  ? __fget_files+0x3a6/0x420
[  773.012815][   T38]  ? __fget_files+0x2a/0x420
[  773.012840][   T38]  ? bpf_lsm_file_ioctl+0x9/0x20
[  773.012860][   T38]  ? __pfx_sock_ioctl+0x10/0x10
[  773.012877][   T38]  __se_sys_ioctl+0xfc/0x170
[  773.012898][   T38]  do_syscall_64+0xfa/0x3b0
[  773.012919][   T38]  ? lockdep_hardirqs_on+0x9c/0x150
[  773.012939][   T38]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  773.012956][   T38]  ? clear_bhb_loop+0x60/0xb0
[  773.012977][   T38]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  773.012995][   T38] RIP: 0033:0x7f05fb7debe9
[  773.013009][   T38] RSP: 002b:00007f05f9a1d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  773.013028][   T38] RAX: ffffffffffffffda RBX: 00007f05fba06090 RCX: 00007f05fb7debe9
[  773.013042][   T38] RDX: 0000200000002280 RSI: 0000000000008914 RDI: 0000000000000005
[  773.013054][   T38] RBP: 00007f05fb861e19 R08: 0000000000000000 R09: 0000000000000000
[  773.013065][   T38] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  773.013076][   T38] R13: 00007f05fba06128 R14: 00007f05fba06090 R15: 00007ffe957c0c48
[  773.013107][   T38]  </TASK>
[  773.013141][   T38] 
[  773.013141][   T38] Showing all locks held in the system:
[  773.013152][   T38] 6 locks held by kworker/u8:0/12:
[  773.013164][   T38]  #0: ffff8880263cd938 ((wq_completion)wg-kex-wg2#11){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  773.013214][   T38]  #1: ffffc90000117bc0 ((work_completion)(&peer->transmit_handshake_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  773.013258][   T38]  #2: ffff8880331195f8 (&wg->static_identity.lock){++++}-{4:4}, at: wg_noise_handshake_create_initiation+0x10a/0x7e0
[  773.013307][   T38]  #3: ffff888062d74e20 (&handshake->lock){++++}-{4:4}, at: wg_noise_handshake_create_initiation+0x11b/0x7e0
[  773.013355][   T38]  #4: ffffffff8d84a760 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[  773.013399][   T38]  #5: ffff8880b8923d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[  773.013443][   T38] 3 locks held by kworker/u8:1/13:
[  773.013453][   T38]  #0: ffff88814d374938 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  773.013497][   T38]  #1: ffffc90000127bc0 ((work_completion)(&(&ifa->dad_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  773.013542][   T38]  #2: ffffffff8ecd1e78 (rtnl_mutex){+.+.}-{4:4}, at: addrconf_dad_work+0x119/0x15a0
[  773.013590][   T38] 2 locks held by ksoftirqd/0/15:
[  773.013599][   T38]  #0: ffffffff8d84a760 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[  773.013650][   T38]  #1: ffff8880b8823d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[  773.013698][   T38] 4 locks held by ktimers/0/16:
[  773.013709][   T38] 2 locks held by rcuc/0/20:
[  773.013719][   T38]  #0: ffffffff8d84a760 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[  773.013762][   T38]  #1: ffff8880b8823d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[  773.013806][   T38] 2 locks held by rcuc/1/28:
[  773.013816][   T38]  #0: ffffffff8d84a760 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[  773.013859][   T38]  #1: ffff8880b8923d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[  773.013902][   T38] 7 locks held by ktimers/1/29:
[  773.013912][   T38] 2 locks held by ksoftirqd/1/30:
[  773.013922][   T38]  #0: ffffffff8d84a760 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[  773.013964][   T38]  #1: ffff8880b8923d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[  773.014008][   T38] 1 lock held by khungtaskd/38:
[  773.014018][   T38]  #0: ffffffff8d9a8b80 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x2e/0x180
[  773.014060][   T38] 6 locks held by kworker/u8:2/43:
[  773.014069][   T38]  #0: ffff8880263cd938 ((wq_completion)wg-kex-wg2#11){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  773.014123][   T38]  #1: ffffc90000b47bc0 ((work_completion)(&peer->transmit_handshake_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  773.014167][   T38]  #2: ffff8880331195f8 (&wg->static_identity.lock){++++}-{4:4}, at: wg_noise_handshake_create_initiation+0x10a/0x7e0
[  773.014215][   T38]  #3: ffff888062d74388 (&handshake->lock){++++}-{4:4}, at: wg_noise_handshake_create_initiation+0x11b/0x7e0
[  773.014262][   T38]  #4: ffffffff8d84a760 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[  773.014305][   T38]  #5: ffff8880b8923d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[  773.014349][   T38] 4 locks held by kworker/u8:3/57:
[  773.014359][   T38]  #0: ffff888034653938 ((wq_completion)wg-kex-wg0#9){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  773.014406][   T38]  #1: ffffc9000123fbc0 ((work_completion)(&peer->transmit_handshake_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  773.014449][   T38]  #2: ffffffff8d84a760 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[  773.014491][   T38]  #3: ffff8880b8923d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[  773.014537][   T38] 3 locks held by kworker/u8:4/67:
[  773.014547][   T38]  #0: ffff888019881138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  773.014591][   T38]  #1: ffffc9000152fbc0 ((linkwatch_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  773.014641][   T38]  #2: ffffffff8ecd1e78 (rtnl_mutex){+.+.}-{4:4}, at: linkwatch_event+0xe/0x60
[  773.014691][   T38] 5 locks held by kworker/u8:5/806:
[  773.014701][   T38]  #0: ffff888019881138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  773.014744][   T38]  #1: ffffc90003f8fbc0 ((work_completion)(&rdev->wiphy_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  773.014788][   T38]  #2: ffff8880391b0898 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: cfg80211_wiphy_work+0xc4/0x470
[  773.014830][   T38]  #3: ffffffff8d84a760 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[  773.014871][   T38]  #4: ffff8880b8923d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[  773.014918][   T38] 7 locks held by kworker/u8:6/1119:
[  773.014928][   T38]  #0: ffff888019881138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  773.014971][   T38]  #1: ffffc900048a7bc0 ((work_completion)(&(&nsim_dev->trap_data->trap_report_dw)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  773.015020][   T38]  #2: ffff88803d0b6300 (&devlink->lock_key#10){+.+.}-{4:4}, at: nsim_dev_trap_report_work+0x57/0xbc0
[  773.015071][   T38]  #3: ffff8880290df920 (&nsim_trap_data->trap_lock){+.+.}-{3:3}, at: nsim_dev_trap_report_work+0x1ad/0xbc0
[  773.015116][   T38]  #4: ffffffff8d9a8b80 (rcu_read_lock){....}-{1:3}, at: rt_spin_lock+0x1bb/0x2c0
[  773.015155][   T38]  #5: ffffffff8d84a760 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[  773.015198][   T38]  #6: ffff8880b8823d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[  773.015241][   T38] 5 locks held by kworker/u8:7/1173:
[  773.015251][   T38]  #0: ffff888019881138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  773.015294][   T38]  #1: ffffc90004a87bc0 ((work_completion)(&rdev->wiphy_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  773.015337][   T38]  #2: ffff888055210898 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: cfg80211_wiphy_work+0xc4/0x470
[  773.015378][   T38]  #3: ffffffff8d84a760 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[  773.015421][   T38]  #4: ffff8880b8923d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[  773.015466][   T38] 5 locks held by kworker/u8:8/1417:
[  773.015476][   T38]  #0: ffff888019881138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  773.015518][   T38]  #1: ffffc90005117bc0 ((work_completion)(&rdev->wiphy_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  773.015561][   T38]  #2: ffff88805f740898 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: cfg80211_wiphy_work+0xc4/0x470
[  773.015603][   T38]  #3: ffffffff8d84a760 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[  773.015653][   T38]  #4: ffff8880b8923d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[  773.015697][   T38] 5 locks held by kworker/u8:9/1456:
[  773.015707][   T38]  #0: ffff888019881138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  773.015750][   T38]  #1: ffffc90005107bc0 ((work_completion)(&rdev->wiphy_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  773.015795][   T38]  #2: ffff88805f3b0898 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: cfg80211_wiphy_work+0xc4/0x470
[  773.015837][   T38]  #3: ffffffff8d84a760 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[  773.015879][   T38]  #4: ffff8880b8923d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[  773.015921][   T38] 5 locks held by kworker/u8:10/1499:
[  773.015932][   T38]  #0: ffff888019881138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  773.015974][   T38]  #1: ffffc90005347bc0 ((work_completion)(&rdev->wiphy_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  773.016018][   T38]  #2: ffff88804a160898 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: cfg80211_wiphy_work+0xc4/0x470
[  773.016059][   T38]  #3: ffffffff8d84a760 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[  773.016102][   T38]  #4: ffff8880b8823d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[  773.016144][   T38] 5 locks held by kworker/u8:11/1512:
[  773.016169][   T38] 7 locks held by kworker/u8:12/3718:
[  773.016178][   T38]  #0: ffff888019881138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  773.016222][   T38]  #1: ffffc9000dc07bc0 ((work_completion)(&(&nsim_dev->trap_data->trap_report_dw)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  773.016268][   T38]  #2: ffff888031cce300 (&devlink->lock_key#5){+.+.}-{4:4}, at: nsim_dev_trap_report_work+0x57/0xbc0
[  773.016315][   T38]  #3: ffff888060712120 (&nsim_trap_data->trap_lock){+.+.}-{3:3}, at: nsim_dev_trap_report_work+0x1ad/0xbc0
[  773.016359][   T38]  #4: ffffffff8d9a8b80 (rcu_read_lock){....}-{1:3}, at: rt_spin_lock+0x1bb/0x2c0
[  773.016398][   T38]  #5: ffffffff8d84a760 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[  773.016441][   T38]  #6: ffff8880b8923d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[  773.016484][   T38] 5 locks held by kworker/u8:13/3725:
[  773.016494][   T38]  #0: ffff888019881138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  773.016535][   T38]  #1: ffffc9000db97bc0 ((work_completion)(&rdev->wiphy_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  773.016578][   T38]  #2: ffff8880347b0898 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: cfg80211_wiphy_work+0xc4/0x470
[  773.016620][   T38]  #3: ffffffff8d84a760 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[  773.016670][   T38]  #4: ffff8880b8923d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[  773.016714][   T38] 5 locks held by kworker/u8:14/4501:
[  773.016724][   T38]  #0: ffff888019881138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  773.016768][   T38]  #1: ffffc9000ef77bc0 ((work_completion)(&rdev->wiphy_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  773.016811][   T38]  #2: ffff88805f3a0898 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: cfg80211_wiphy_work+0xc4/0x470
[  773.016853][   T38]  #3: ffffffff8d84a760 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[  773.016895][   T38]  #4: ffff8880b8923d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[  773.016940][   T38] 2 locks held by getty/5598:
[  773.016950][   T38]  #0: ffff88823bf328a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  773.016996][   T38]  #1: ffffc90003e832e0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x444/0x1410
[  773.017037][   T38] 3 locks held by syz-executor/5824:
[  773.017047][   T38]  #0: ffff888039219290 (sk_lock-AF_INET){+.+.}-{0:0}, at: tcp_recvmsg+0xd3/0x560
[  773.017089][   T38]  #1: ffffffff8d84a760 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[  773.017131][   T38]  #2: ffff8880b8923d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[  773.017175][   T38] 1 lock held by syz-executor/5834:
[  773.017185][   T38]  #0: ffffffff8ecd1e78 (rtnl_mutex){+.+.}-{4:4}, at: tun_chr_close+0x41/0x1c0
[  773.017228][   T38] 2 locks held by kworker/u9:2/5838:
[  773.017242][   T38] 4 locks held by kworker/0:4/5916:
[  773.017253][   T38]  #0: ffff88805c4f9d38 ((wq_completion)wg-crypt-wg0){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  773.017297][   T38]  #1: ffffc900052a7bc0 ((work_completion)(&peer->transmit_packet_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  773.017341][   T38]  #2: ffffffff8d84a760 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[  773.017384][   T38]  #3: ffff8880b8823d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[  773.017427][   T38] 4 locks held by kworker/1:5/5923:
[  773.017438][   T38]  #0: ffff88805c4f9d38 ((wq_completion)wg-crypt-wg0){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  773.017480][   T38]  #1: ffffc90005317bc0 ((work_completion)(&({ do { const void *__vpp_verify = (typeof((worker) + 0))((void *)0); (void)__vpp_verify; } while (0); ({ unsigned long __ptr; __ptr = (unsigned long) ((__typeof_unqual__(*((worker))) *)(( unsigned long)((worker)))); (typeof((__typeof_unqual__(*((worker))) *)(( unsigned long)((worker))))) (__ptr + (((__per_cpu_offset[(cpu)])))); }); })->work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  773.017537][   T38]  #2: ffffffff8d84a760 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[  773.017578][   T38]  #3: ffff8880b8923d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[  773.017621][   T38] 4 locks held by kworker/1:6/5924:
[  773.017636][   T38]  #0: ffff888019899138 ((wq_completion)events_long){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  773.017680][   T38]  #1: ffffc90005327bc0 ((work_completion)(&(&ipvs->defense_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  773.017724][   T38]  #2: ffffffff8d84a760 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[  773.017766][   T38]  #3: ffff8880b8923d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[  773.017810][   T38] 7 locks held by kworker/u8:15/5999:
[  773.017821][   T38] 4 locks held by kworker/u8:16/6223:
[  773.017831][   T38]  #0: ffff888019881138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  773.017875][   T38]  #1: ffffc90003effbc0 ((work_completion)(&port->bc_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  773.017918][   T38]  #2: ffffffff8d84a760 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[  773.017961][   T38]  #3: ffff8880b8923d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[  773.018009][   T38] 3 locks held by kworker/1:7/6247:
[  773.018019][   T38]  #0: ffff888019898538 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  773.018418][   T38]  #1: ffffc90003eefbc0 (deferred_process_work){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  773.018462][   T38]  #2: ffffffff8ecd1e78 (rtnl_mutex){+.+.}-{4:4}, at: switchdev_deferred_process_work+0xe/0x20
[  773.018511][   T38] 7 locks held by kworker/u8:17/7994:
[  773.018521][   T38]  #0: ffff888019881138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  773.018566][   T38]  #1: ffffc9000d247bc0 ((work_completion)(&(&nsim_dev->trap_data->trap_report_dw)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  773.018610][   T38]  #2: ffff88803caa5300 (&devlink->lock_key#9){+.+.}-{4:4}, at: nsim_dev_trap_report_work+0x57/0xbc0
[  773.018669][   T38]  #3: ffff888060713520 (&nsim_trap_data->trap_lock){+.+.}-{3:3}, at: nsim_dev_trap_report_work+0x1ad/0xbc0
[  773.018713][   T38]  #4: ffffffff8d9a8b80 (rcu_read_lock){....}-{1:3}, at: rt_spin_lock+0x1bb/0x2c0
[  773.018752][   T38]  #5: ffffffff8d84a760 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[  773.018794][   T38]  #6: ffff8880b8923d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[  773.018836][   T38] 7 locks held by kworker/u8:18/7995:
[  773.018846][   T38]  #0: ffff888019881138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  773.018889][   T38]  #1: ffffc9000d387bc0 ((work_completion)(&(&nsim_dev->trap_data->trap_report_dw)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  773.018932][   T38]  #2: ffff88805de2a300 (&devlink->lock_key#3){+.+.}-{4:4}, at: nsim_dev_trap_report_work+0x57/0xbc0
[  773.018981][   T38]  #3: ffff88805df05d20 (&nsim_trap_data->trap_lock){+.+.}-{3:3}, at: nsim_dev_trap_report_work+0x1ad/0xbc0
[  773.019024][   T38]  #4: ffffffff8d9a8b80 (rcu_read_lock){....}-{1:3}, at: rt_spin_lock+0x1bb/0x2c0
[  773.019063][   T38]  #5: ffffffff8d84a760 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[  773.019106][   T38]  #6: ffff8880b8923d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[  773.019150][   T38] 6 locks held by kworker/u8:19/7996:
[  773.019160][   T38]  #0: ffff88805c542938 ((wq_completion)wg-kex-wg1){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  773.019203][   T38]  #1: ffffc9000d8d7bc0 ((work_completion)(&peer->transmit_handshake_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  773.019247][   T38]  #2: ffff88805c7795f8 (&wg->static_identity.lock){++++}-{4:4}, at: wg_noise_handshake_create_initiation+0x10a/0x7e0
[  773.019296][   T38]  #3: ffff888039d94e20 (&handshake->lock){++++}-{4:4}, at: wg_noise_handshake_create_initiation+0x11b/0x7e0
[  773.019345][   T38]  #4: ffffffff8d84a760 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[  773.019386][   T38]  #5: ffff8880b8923d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[  773.019429][   T38] 4 locks held by kworker/u8:20/7997:
[  773.019440][   T38] 5 locks held by kworker/u8:21/7998:
[  773.019450][   T38]  #0: ffff888019881138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  773.019493][   T38]  #1: ffffc9000d8f7bc0 ((work_completion)(&rdev->wiphy_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  773.019537][   T38]  #2: ffff88803fcf0898 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: cfg80211_wiphy_work+0xc4/0x470
[  773.019579][   T38]  #3: ffffffff8d84a760 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[  773.019621][   T38]  #4: ffff8880b8923d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[  773.019674][   T38] 4 locks held by kworker/0:1/9103:
[  773.019689][   T38]  #0: ffff88805c3d5d38 ((wq_completion)wg-crypt-wg1){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  773.019733][   T38]  #1: ffffc9000c907bc0 ((work_completion)(&({ do { const void *__vpp_verify = (typeof((worker) + 0))((void *)0); (void)__vpp_verify; } while (0); ({ unsigned long __ptr; __ptr = (unsigned long) ((__typeof_unqual__(*((worker))) *)(( unsigned long)((worker)))); (typeof((__typeof_unqual__(*((worker))) *)(( unsigned long)((worker))))) (__ptr + (((__per_cpu_offset[(cpu)])))); }); })->work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  773.019794][   T38]  #2: ffffffff8d84a760 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[  773.019836][   T38]  #3: ffff8880b8823d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[  773.019879][   T38] 1 lock held by syz-executor/9126:
[  773.019889][   T38]  #0: ffffffff8ecd1e78 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_newlink+0x8db/0x1c70
[  773.019932][   T38] 1 lock held by syz.5.982/9447:
[  773.019942][   T38]  #0: ffffffff8ecd1e78 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_dellink+0x331/0x710
[  773.019983][   T38] 1 lock held by syz.1.987/9459:
[  773.019994][   T38]  #0: ffffffff8ecd1e78 (rtnl_mutex){+.+.}-{4:4}, at: dev_ioctl+0x7a4/0x1150
[  773.020033][   T38] 1 lock held by syz.6.988/9461:
[  773.020043][   T38]  #0: ffffffff8ecd1e78 (rtnl_mutex){+.+.}-{4:4}, at: tun_chr_close+0x41/0x1c0
[  773.020087][   T38] 1 lock held by syz.6.988/9462:
[  773.020097][   T38]  #0: ffffffff8ecd1e78 (rtnl_mutex){+.+.}-{4:4}, at: devinet_ioctl+0x323/0x1b50
[  773.020141][   T38] 4 locks held by kworker/0:3/9470:
[  773.020151][   T38]  #0: ffff88805c4f9d38 ((wq_completion)wg-crypt-wg0){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  773.020195][   T38]  #1: ffffc90004e57bc0 ((work_completion)(&({ do { const void *__vpp_verify = (typeof((worker) + 0))((void *)0); (void)__vpp_verify; } while (0); ({ unsigned long __ptr; __ptr = (unsigned long) ((__typeof_unqual__(*((worker))) *)(( unsigned long)((worker)))); (typeof((__typeof_unqual__(*((worker))) *)(( unsigned long)((worker))))) (__ptr + (((__per_cpu_offset[(cpu)])))); }); })->work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  773.020252][   T38]  #2: ffffffff8d84a760 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[  773.020294][   T38]  #3: ffff8880b8823d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[  773.020338][   T38] 6 locks held by kworker/u8:22/9471:
[  773.020348][   T38]  #0: ffff88803fe03138 ((wq_completion)wg-kex-wg2#10){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  773.020396][   T38]  #1: ffffc90005da7bc0 ((work_completion)(&peer->transmit_handshake_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  773.020440][   T38]  #2: ffff88803c9d95f8 (&wg->static_identity.lock){++++}-{4:4}, at: wg_noise_handshake_create_initiation+0x10a/0x7e0
[  773.020489][   T38]  #3: ffff888062d70e90 (&handshake->lock){++++}-{4:4}, at: wg_noise_handshake_create_initiation+0x11b/0x7e0
[  773.020537][   T38]  #4: ffffffff8d84a760 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[  773.020579][   T38]  #5: ffff8880b8923d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[  773.020622][   T38] 1 lock held by syz-executor/9472:
[  773.020638][   T38]  #0: ffffffff8ecd1e78 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x3b0/0x18b0
[  773.020685][   T38] 4 locks held by kworker/u8:23/9476:
[  773.020695][   T38]  #0: ffff8880311c8138 ((wq_completion)bat_events){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  773.020739][   T38]  #1: ffffc900042ffbc0 ((work_completion)(&(&bat_priv->nc.work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  773.020783][   T38]  #2: ffffffff8d84a760 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[  773.020825][   T38]  #3: ffff8880b8823d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[  773.020869][   T38] 4 locks held by kworker/1:12/9481:
[  773.020879][   T38]  #0: ffff88805e5f2938 ((wq_completion)wg-crypt-wg0#5){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  773.020932][   T38]  #1: ffffc90005c57bc0 ((work_completion)(&({ do { const void *__vpp_verify = (typeof((worker) + 0))((void *)0); (void)__vpp_verify; } while (0); ({ unsigned long __ptr; __ptr = (unsigned long) ((__typeof_unqual__(*((worker))) *)(( unsigned long)((worker)))); (typeof((__typeof_unqual__(*((worker))) *)(( unsigned long)((worker))))) (__ptr + (((__per_cpu_offset[(cpu)])))); }); })->work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  773.020989][   T38]  #2: ffffffff8d84a760 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[  773.021031][   T38]  #3: ffff8880b8923d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[  773.021074][   T38] 7 locks held by kworker/u8:24/9482:
[  773.021084][   T38]  #0: ffff888019881138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  773.021128][   T38]  #1: ffffc90005d17bc0 ((work_completion)(&(&nsim_dev->trap_data->trap_report_dw)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  773.021172][   T38]  #2: ffff88805dc50300 (&devlink->lock_key){+.+.}-{4:4}, at: nsim_dev_trap_report_work+0x57/0xbc0
[  773.021217][   T38]  #3: ffff888028dd5520 (&nsim_trap_data->trap_lock){+.+.}-{3:3}, at: nsim_dev_trap_report_work+0x1ad/0xbc0
[  773.021261][   T38]  #4: ffffffff8d9a8b80 (rcu_read_lock){....}-{1:3}, at: rt_spin_lock+0x1bb/0x2c0
[  773.021301][   T38]  #5: ffffffff8d84a760 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[  773.021343][   T38]  #6: ffff8880b8923d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[  773.021386][   T38] 4 locks held by kworker/0:6/9483:
[  773.021396][   T38]  #0: ffff888019899938 ((wq_completion)events_power_efficient){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  773.021441][   T38]  #1: ffffc9000c68fbc0 ((work_completion)(&(&tbl->managed_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  773.021485][   T38]  #2: ffffffff8d84a760 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[  773.021527][   T38]  #3: ffff8880b8823d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[  773.021573][   T38] 1 lock held by syz-executor/9490:
[  773.021583][   T38]  #0: ffffffff8ecd1e78 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x3b0/0x18b0
[  773.021636][   T38] 1 lock held by syz-executor/9493:
[  773.021646][   T38]  #0: ffffffff8ecd1e78 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x3b0/0x18b0
[  773.021692][   T38] 1 lock held by syz-executor/9495:
[  773.021702][   T38]  #0: ffffffff8ecd1e78 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x3b0/0x18b0
[  773.021747][   T38] 1 lock held by syz-executor/9497:
[  773.021758][   T38]  #0: ffffffff8ecd1e78 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x3b0/0x18b0
[  773.021813][   T38] 1 lock held by syz-executor/9499:
[  773.021823][   T38]  #0: ffffffff8ecd1e78 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x3b0/0x18b0
[  773.021868][   T38] 6 locks held by kworker/u8:25/9501:
[  773.021878][   T38] 6 locks held by kworker/u8:26/9502:
[  773.021888][   T38]  #0: ffff888036142138 ((wq_completion)wg-kex-wg0#3){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  773.021936][   T38]  #1: ffffc9000125fbc0 ((work_completion)(&peer->transmit_handshake_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  773.021980][   T38]  #2: ffff88805c6795f8 (&wg->static_identity.lock){++++}-{4:4}, at: wg_noise_handshake_create_initiation+0x10a/0x7e0
[  773.022027][   T38]  #3: ffff88801f2f2e58 (&handshake->lock){++++}-{4:4}, at: wg_noise_handshake_create_initiation+0x11b/0x7e0
[  773.022075][   T38]  #4: ffffffff8d84a760 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[  773.022117][   T38]  #5: ffff8880b8923d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[  773.022161][   T38] 6 locks held by kworker/u8:27/9504:
[  773.022171][   T38]  #0: ffff888036143938 ((wq_completion)wg-kex-wg1#3){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  773.022218][   T38]  #1: ffffc90005c27bc0 ((work_completion)(&peer->transmit_handshake_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  773.022262][   T38]  #2: ffff88805c67d5f8 (&wg->static_identity.lock){++++}-{4:4}, at: wg_noise_handshake_create_initiation+0x10a/0x7e0
[  773.022310][   T38]  #3: ffff88801f2f4388 (&handshake->lock){++++}-{4:4}, at: wg_noise_handshake_create_initiation+0x11b/0x7e0
[  773.022357][   T38]  #4: ffffffff8d84a760 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[  773.022400][   T38]  #5: ffff8880b8823d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[  773.022443][   T38] 6 locks held by kworker/u8:28/9505:
[  773.022454][   T38]  #0: ffff8880513c8138 ((wq_completion)wg-kex-wg1#11){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  773.022501][   T38]  #1: ffffc90005bf7bc0 ((work_completion)(&peer->transmit_handshake_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  773.022545][   T38]  #2: ffff8880608cd5f8 (&wg->static_identity.lock){++++}-{4:4}, at: wg_noise_handshake_create_initiation+0x10a/0x7e0
[  773.022591][   T38]  #3: ffff888062d72e58 (&handshake->lock){++++}-{4:4}, at: wg_noise_handshake_create_initiation+0x11b/0x7e0
[  773.022645][   T38]  #4: ffffffff8d84a760 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[  773.022686][   T38]  #5: ffff8880b8923d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[  773.022729][   T38] 6 locks held by kworker/u8:29/9506:
[  773.022739][   T38]  #0: ffff888036143938 ((wq_completion)wg-kex-wg1#3){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  773.022786][   T38]  #1: ffffc90005be7bc0 ((work_completion)(&peer->transmit_handshake_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  773.022830][   T38]  #2: ffff88805c67d5f8 (&wg->static_identity.lock){++++}-{4:4}, at: wg_noise_handshake_create_initiation+0x10a/0x7e0
[  773.022878][   T38]  #3: ffff88801f2f4e20 (&handshake->lock){++++}-{4:4}, at: wg_noise_handshake_create_initiation+0x11b/0x7e0
[  773.022924][   T38]  #4: ffffffff8d84a760 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[  773.022966][   T38]  #5: ffff8880b8923d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[  773.023009][   T38] 6 locks held by kworker/u8:30/9507:
[  773.023019][   T38]  #0: ffff88805c545938 ((wq_completion)wg-kex-wg2#3){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  773.023068][   T38]  #1: ffffc90005bd7bc0 ((work_completion)(&peer->transmit_handshake_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  773.023111][   T38]  #2: ffff88803608d5f8 (&wg->static_identity.lock){++++}-{4:4}, at: wg_noise_handshake_create_initiation+0x10a/0x7e0
[  773.023159][   T38]  #3: ffff88801f2f6350 (&handshake->lock){++++}-{4:4}, at: wg_noise_handshake_create_initiation+0x11b/0x7e0
[  773.023207][   T38]  #4: ffffffff8d84a760 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[  773.023249][   T38]  #5: ffff8880b8923d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[  773.023292][   T38] 6 locks held by kworker/u8:31/9508:
[  773.023302][   T38]  #0: ffff8880513cb938 ((wq_completion)wg-kex-wg0#11){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  773.023350][   T38]  #1: ffffc90005b77bc0 ((work_completion)(&peer->transmit_handshake_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  773.023394][   T38]  #2: ffff8880608c95f8 (&wg->static_identity.lock){++++}-{4:4}, at: wg_noise_handshake_create_initiation+0x10a/0x7e0
[  773.023442][   T38]  #3: ffff888062d723c0 (&handshake->lock){++++}-{4:4}, at: wg_noise_handshake_create_initiation+0x11b/0x7e0
[  773.023490][   T38]  #4: ffffffff8d84a760 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[  773.023532][   T38]  #5: ffff8880b8923d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[  773.023577][   T38] 4 locks held by kworker/u8:32/9509:
[  773.023592][   T38]  #0: ffff888036142138 ((wq_completion)wg-kex-wg0#3){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  773.023647][   T38]  #1: ffffc90005b67bc0 ((work_completion)(&peer->transmit_handshake_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  773.023691][   T38]  #2: ffffffff8d84a760 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[  773.023734][   T38]  #3: ffff8880b8923d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[  773.023777][   T38] 6 locks held by kworker/u8:33/9510:
[  773.023787][   T38]  #0: ffff88805c545938 ((wq_completion)wg-kex-wg2#3){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  773.023834][   T38]  #1: ffffc90005b57bc0 ((work_completion)(&peer->transmit_handshake_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  773.023878][   T38]  #2: ffff88803608d5f8 (&wg->static_identity.lock){++++}-{4:4}, at: wg_noise_handshake_create_initiation+0x10a/0x7e0
[  773.023925][   T38]  #3: ffff88801f2f58b8 (&handshake->lock){++++}-{4:4}, at: wg_noise_handshake_create_initiation+0x11b/0x7e0
[  773.023971][   T38]  #4: ffffffff8d84a760 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[  773.024010][   T38]  #5: ffff8880b8923d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[  773.024054][   T38] 8 locks held by kworker/u8:35/9512:
[  773.024067][   T38] 
[  773.024072][   T38] =============================================
[  773.024072][   T38] 
[  773.024089][   T38] NMI backtrace for cpu 1
[  773.024110][   T38] CPU: 1 UID: 0 PID: 38 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  773.024130][   T38] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  773.024140][   T38] Call Trace:
[  773.024148][   T38]  <TASK>
[  773.024156][   T38]  dump_stack_lvl+0x189/0x250
[  773.024183][   T38]  ? __pfx_dump_stack_lvl+0x10/0x10
[  773.024206][   T38]  ? __pfx__printk+0x10/0x10
[  773.024237][   T38]  nmi_cpu_backtrace+0x39e/0x3d0
[  773.024260][   T38]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  773.024281][   T38]  ? __pfx__printk+0x10/0x10
[  773.024304][   T38]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  773.024327][   T38]  nmi_trigger_cpumask_backtrace+0x17a/0x300
[  773.024348][   T38]  watchdog+0xf93/0xfe0
[  773.024374][   T38]  ? watchdog+0x1de/0xfe0
[  773.024400][   T38]  kthread+0x711/0x8a0
[  773.024426][   T38]  ? __pfx_watchdog+0x10/0x10
[  773.024445][   T38]  ? __pfx_kthread+0x10/0x10
[  773.024472][   T38]  ? __pfx_kthread+0x10/0x10
[  773.024493][   T38]  ret_from_fork+0x3fc/0x770
[  773.024515][   T38]  ? __pfx_ret_from_fork+0x10/0x10
[  773.024541][   T38]  ? __switch_to_asm+0x39/0x70
[  773.024556][   T38]  ? __switch_to_asm+0x33/0x70
[  773.024570][   T38]  ? __pfx_kthread+0x10/0x10
[  773.024594][   T38]  ret_from_fork_asm+0x1a/0x30
[  773.024625][   T38]  </TASK>
[  773.024637][   T38] Sending NMI from CPU 1 to CPUs 0:
[  773.024691][    C0] NMI backtrace for cpu 0
[  773.024705][    C0] CPU: 0 UID: 0 PID: 16 Comm: ktimers/0 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  773.024723][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  773.024733][    C0] RIP: 0010:check_preemption_disabled+0x4a/0x120
[  773.024758][    C0] Code: 0d fb 74 ff 06 f7 c1 ff ff ff 7f 74 23 65 48 8b 0d db 74 ff 06 48 3b 4c 24 08 0f 85 cc 00 00 00 48 83 c4 10 5b 41 5e 41 5f 5d <e9> 81 94 03 00 cc 48 c7 04 24 00 00 00 00 9c 8f 04 24 f7 04 24 00
[  773.024772][    C0] RSP: 0000:ffffc900001569d0 EFLAGS: 00000282
[  773.024787][    C0] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 919d7a4f3ae4be00
[  773.024798][    C0] RDX: 0000000000000100 RSI: ffffffff8b620c60 RDI: ffffffff8b620c20
[  773.024810][    C0] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000100
[  773.024820][    C0] R10: ffffc90000156b20 R11: fffff5200002ad6a R12: ffff88803c495100
[  773.024832][    C0] R13: ffff8880330ad380 R14: ffffc90000156b20 R15: dffffc0000000000
[  773.024845][    C0] FS:  0000000000000000(0000) GS:ffff8881268c2000(0000) knlGS:0000000000000000
[  773.024859][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  773.024870][    C0] CR2: 00007f5ec6127ff8 CR3: 000000000d7a6000 CR4: 00000000003526f0
[  773.024891][    C0] Call Trace:
[  773.024897][    C0]  <TASK>
[  773.024903][    C0]  rcu_lockdep_current_cpu_online+0x37/0x120
[  773.024924][    C0]  rcu_read_lock_held+0x1e/0x50
[  773.024938][    C0]  fib_lookup+0x195/0x440
[  773.024959][    C0]  ? fib_lookup+0x76/0x440
[  773.024980][    C0]  ip_route_output_key_hash_rcu+0x31b/0x23d0
[  773.025007][    C0]  ? ip_route_output_key_hash+0xde/0x2e0
[  773.025029][    C0]  ? ip_route_output_key_hash+0xde/0x2e0
[  773.025051][    C0]  ip_route_output_key_hash+0x1b9/0x2e0
[  773.025073][    C0]  ? __lock_acquire+0xab9/0xd20
[  773.025094][    C0]  ? __pfx_ip_route_output_key_hash+0x10/0x10
[  773.025119][    C0]  ? ip_route_me_harder+0x4ad/0x1030
[  773.025158][    C0]  ip_route_output_flow+0x2a/0x150
[  773.025178][    C0]  ? ip_route_me_harder+0x6c0/0x1030
[  773.025195][    C0]  ip_route_me_harder+0x6d2/0x1030
[  773.025216][    C0]  ? __pfx_ip_route_me_harder+0x10/0x10
[  773.025246][    C0]  synproxy_send_tcp+0x359/0x6c0
[  773.025270][    C0]  synproxy_send_client_synack+0x8bb/0xe20
[  773.025297][    C0]  ? __pfx_synproxy_send_client_synack+0x10/0x10
[  773.025316][    C0]  ? nft_tproxy_eval+0x6e8/0x1c00
[  773.025336][    C0]  ? synproxy_pernet+0x45/0x270
[  773.025361][    C0]  nft_synproxy_eval_v4+0x36e/0x560
[  773.025386][    C0]  ? __pfx_nft_synproxy_eval_v4+0x10/0x10
[  773.025410][    C0]  ? nf_ip_checksum+0x13c/0x510
[  773.025434][    C0]  nft_synproxy_do_eval+0x345/0x570
[  773.025459][    C0]  ? __pfx_nft_synproxy_do_eval+0x10/0x10
[  773.025490][    C0]  nft_do_chain+0x40c/0x1920
[  773.025518][    C0]  ? __pfx_nft_do_chain+0x10/0x10
[  773.025542][    C0]  ? rtlock_slowlock_locked+0xd8/0x4010
[  773.025573][    C0]  nft_do_chain_inet+0x25d/0x340
[  773.025595][    C0]  ? __pfx_nft_do_chain_inet+0x10/0x10
[  773.025616][    C0]  ? __lock_acquire+0xab9/0xd20
[  773.025640][    C0]  ? NF_HOOK+0x9a/0x3a0
[  773.025658][    C0]  ? __pfx_nft_do_chain_inet+0x10/0x10
[  773.025679][    C0]  nf_hook_slow+0xc5/0x220
[  773.025700][    C0]  NF_HOOK+0x206/0x3a0
[  773.025718][    C0]  ? __pfx_ip_local_deliver_finish+0x10/0x10
[  773.025736][    C0]  ? NF_HOOK+0x9a/0x3a0
[  773.025752][    C0]  ? __pfx_NF_HOOK+0x10/0x10
[  773.025768][    C0]  ? ip_rcv_finish_core+0xda3/0x1c00
[  773.025788][    C0]  ? __pfx_ip_local_deliver_finish+0x10/0x10
[  773.025806][    C0]  ? skb_dst+0x4f/0xd0
[  773.025823][    C0]  ? ip_local_deliver+0x12a/0x1b0
[  773.025843][    C0]  NF_HOOK+0x309/0x3a0
[  773.025861][    C0]  ? __pfx_ip_rcv_finish+0x10/0x10
[  773.025878][    C0]  ? NF_HOOK+0x9a/0x3a0
[  773.025900][    C0]  ? __pfx_NF_HOOK+0x10/0x10
[  773.025918][    C0]  ? __pfx_ip_rcv_finish+0x10/0x10
[  773.025940][    C0]  ? __pfx_ip_rcv+0x10/0x10
[  773.025956][    C0]  __netif_receive_skb+0x143/0x380
[  773.025973][    C0]  ? rt_spin_unlock+0x65/0x80
[  773.025990][    C0]  ? process_backlog+0x27b/0x900
[  773.026006][    C0]  process_backlog+0x31e/0x900
[  773.026029][    C0]  __napi_poll+0xb6/0x540
[  773.026048][    C0]  net_rx_action+0x707/0xe00
[  773.026074][    C0]  ? __pfx_net_rx_action+0x10/0x10
[  773.026099][    C0]  ? __pfx_sched_clock_cpu+0x10/0x10
[  773.026130][    C0]  handle_softirqs+0x22c/0x710
[  773.026153][    C0]  ? __pfx_handle_softirqs+0x10/0x10
[  773.026177][    C0]  run_ktimerd+0xcf/0x190
[  773.026196][    C0]  ? __pfx_run_ktimerd+0x10/0x10
[  773.026215][    C0]  ? schedule+0x91/0x360
[  773.026235][    C0]  ? smpboot_thread_fn+0x4d/0xa60
[  773.026253][    C0]  smpboot_thread_fn+0x542/0xa60
[  773.026273][    C0]  ? smpboot_thread_fn+0x4d/0xa60
[  773.026295][    C0]  kthread+0x711/0x8a0
[  773.026318][    C0]  ? __pfx_smpboot_thread_fn+0x10/0x10
[  773.026336][    C0]  ? __pfx_kthread+0x10/0x10
[  773.026360][    C0]  ? __pfx_kthread+0x10/0x10
[  773.026381][    C0]  ret_from_fork+0x3fc/0x770
[  773.026402][    C0]  ? __pfx_ret_from_fork+0x10/0x10
[  773.026423][    C0]  ? __switch_to_asm+0x39/0x70
[  773.026438][    C0]  ? __switch_to_asm+0x33/0x70
[  773.026451][    C0]  ? __pfx_kthread+0x10/0x10
[  773.026473][    C0]  ret_from_fork_asm+0x1a/0x30
[  773.026495][    C0]  </TASK>
[  773.026662][   T38] Kernel panic - not syncing: hung_task: blocked tasks
[  773.026676][   T38] CPU: 1 UID: 0 PID: 38 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  773.026694][   T38] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  773.026704][   T38] Call Trace:
[  773.026711][   T38]  <TASK>
[  773.026719][   T38]  dump_stack_lvl+0x99/0x250
[  773.026742][   T38]  ? __asan_memcpy+0x40/0x70
[  773.026762][   T38]  ? __pfx_dump_stack_lvl+0x10/0x10
[  773.026784][   T38]  ? __pfx__printk+0x10/0x10
[  773.026815][   T38]  vpanic+0x281/0x750
[  773.026839][   T38]  ? __pfx_vpanic+0x10/0x10
[  773.026858][   T38]  ? __x2apic_send_IPI_mask+0x1e4/0x260
[  773.026876][   T38]  ? lockdep_hardirqs_on+0x9c/0x150
[  773.026906][   T38]  panic+0xb9/0xc0
[  773.026928][   T38]  ? __pfx_panic+0x10/0x10
[  773.026952][   T38]  ? irq_work_queue+0xc3/0x140
[  773.026977][   T38]  ? nmi_trigger_cpumask_backtrace+0x234/0x300
[  773.026998][   T38]  watchdog+0xfd2/0xfe0
[  773.027023][   T38]  ? watchdog+0x1de/0xfe0
[  773.027049][   T38]  kthread+0x711/0x8a0
[  773.027074][   T38]  ? __pfx_watchdog+0x10/0x10
[  773.027094][   T38]  ? __pfx_kthread+0x10/0x10
[  773.027119][   T38]  ? __pfx_kthread+0x10/0x10
[  773.027142][   T38]  ret_from_fork+0x3fc/0x770
[  773.027166][   T38]  ? __pfx_ret_from_fork+0x10/0x10
[  773.027192][   T38]  ? __switch_to_asm+0x39/0x70
[  773.027208][   T38]  ? __switch_to_asm+0x33/0x70
[  773.027223][   T38]  ? __pfx_kthread+0x10/0x10
[  773.027246][   T38]  ret_from_fork_asm+0x1a/0x30
[  773.027278][   T38]  </TASK>
[  773.027567][   T38] Kernel Offset: disabled