last executing test programs:

29m7.769203747s ago: executing program 2 (id=482):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000032680)=""/102392, 0x18ff8)
r1 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000040), 0x2)
r2 = memfd_create(&(0x7f0000000300)='y\x105\xfb\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea\x7f\x8cZ7`_4t\xfe\xc3\xd4\\U \xf9\x1e\x1c^\x1b\xcda\x9b\x00\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xb0\xbe\x93j\xbe\xf5\xc5\x94\a\xf0(\xbc\x92}\xc7>\x8e\x8a\xe6\xcb3\x0f\x9b\xfcS\xbcd\x8b\xdd\xa7\xbb}\x9e\xcbO\xba\xc2#\xed\xa0\xfc/\xd9\xfeBK\x95\xacGI\xf9\x1a\xed4\xb6E[\xa2\x8a\\{\xca\x87\x91\"\x8c\x80\x985\x8d\x92\xbc\xb2\xd2D\xf2\xfd\xf0\xa0\th\xac\xa5{xAMp\xe2\xbc ,\x9a\x12\xac\x0fB\n\x14\x18D(\x00\xef<\x06pb{\x00\x8b)\x93O\xdc\xf0<.\xb8J\xe8\x8c0w>}\'\xda\xe0\t\f\xcb\x92RS;Ri\x85\x17mKB?\x81-\xce\x88\x06\xc2\xfa\xb5\x10@\xa0\x1b\x8a\x16\xad\x91\xa5\x94\xe9\xa2\x9d\xa2\xc1\x97\x87rA\x97eKM\xfc`\xa1\xf6\xf2\xf5\x91dF\x13\x13\x14\xf5\x9c\x86\x00C:If\xdf\x94J\xf1\x19\xd6E5\x8c\xa8\xf2N\x9f4W]\xc2s\xb6aM\xf9[j^\xa2m\x9f\xbb\xe0\x10\xf2r\x11\xce\x89\x8e\x1e}\xe9\x0eq#?E?\xddtU\xdd\xde\xd9\x0f\"\xed\xd5\xdc;\xf0\x18M\xca\x8a\xecN\x92\x9eh\xa60', 0x2)
ftruncate(r2, 0x1000006)
fcntl$addseals(r2, 0x409, 0x2)
ioctl$UDMABUF_CREATE(r1, 0x40187542, &(0x7f0000000000)={r2, 0x0, 0x0, 0x1000000})

29m4.6059001s ago: executing program 2 (id=485):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="b4050000fdff7f006110580000000000c60000000000000095000000000000009f33ef60916e6e713f1eeb0b725ad99b817fd98cd824498949714ffaac8a6f770600dcca55f21f3ca9e822d182054d54d53c"], 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb}, 0x94)
sendmsg$inet(r3, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000001740)=[{&(0x7f0000000280)='>', 0x22fe0}], 0x1}, 0x0)
recvmsg$unix(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000340)=""/229, 0x8ec0}], 0x1}, 0x12)
r4 = socket$kcm(0xa, 0x5, 0x0)
sendmsg$kcm(r4, &(0x7f0000000600)={&(0x7f0000000200)=@in6={0xa, 0x0, 0x0, @private0}, 0x80, &(0x7f0000000000)=[{&(0x7f00000000c0)="80", 0x1}], 0x1, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000008400000000000000"], 0x18}, 0x41)
close(r4)

28m59.913334666s ago: executing program 2 (id=494):
r0 = socket(0x2b, 0x1, 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000780)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet(0x2, 0x2, 0x1)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000180)={@mcast1, 0x8000000, 0x0, 0xff, 0x0, 0x4}, 0x20)

28m58.841279521s ago: executing program 2 (id=495):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
ioctl$sock_inet_tcp_SIOCINQ(r2, 0x541b, 0x0)
capset(&(0x7f0000000100)={0x20071026}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x81, 0xfffffffb})
r3 = syz_open_dev$loop(&(0x7f0000000080), 0x47ffffa, 0x122c42)
ioctl$LOOP_CONFIGURE(r3, 0x401070c9, 0x0)
syz_usb_connect(0x1, 0x2d, &(0x7f0000000340)=ANY=[@ANYBLOB="120100001ddf8208c007121522300000000109021b0001000000010904010001faf40d00"], 0x0)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f0000000180)={'bond0\x00', &(0x7f0000000380)=@ethtool_drvinfo={0x3, "7988575801915db29080407e348bd865ca94564bb317d44acb1676d2abc229dc", "a5857bc37aa7c1095d077b38512303291a95b5b09a636eef1a9f90cebd547f9e", "db2c2dc5ea4ad56c028ce741339656e6103d6d812fbae8c104e3835184c6138c", "828c66f67aba6ed78dcd61f7bd7570d458ce4a318928273faf5cdfafc0497ee8", "8cbbcb8943da47021c48642dd5d88ce097557bee945473d41ff5ce8ec9874658", "6f8887adedf20abcbc58386c", 0xfff, 0x651, 0xe, 0x1, 0x2}})
socket$alg(0x26, 0x5, 0x0)
dup(0xffffffffffffffff)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x0, 0x0, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1f, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

28m56.741205485s ago: executing program 2 (id=501):
socket$unix(0x1, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f00000002c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000380)=ANY=[@ANYBLOB="4c00000002060108000034e40000000000000000050001000600000005000400000000000900020073797a3100000080050005000200000011000300686173683a69702c706f7274"], 0x4c}}, 0x2)
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, 0x0, &(0x7f0000000240)='//\xf2/\x06\b///o\xdc\xea\x95\x9a\x82\x10\x97W\x8f7\x98\x9b\\/\\\xf9\rmD\x94)U\xdb\x15X.I\n}\xf3\x9d\xe4_\x05\x9cqf4I^#b?9\xde\xafu\'\x83L\xe0\x97\xe1n_\xa4%\xb1\x97\x93\xafv\xce/\xf2_\xa7\xfb\xf4\x84\x1fA\xeas^\xef\xa2\x85\xa3!\xfb\x93\xd7R\xab2\x1eW\xe9h\x9b\xf7ul\xf9D\xd4\x82X5\x13\xaa\x87\xf9\xba\xa9m\x14\x14R_\x9a\\>4\xce\x8e_#\xf8D\xb1\xdep\x01\xcc:\xa6\xc5n\xeb\xab\xf70\x99\xef\x8b<M\n\xc0`[\x82\xf6$\xa4\xbe\x1e\xd3\xe4\xd9L\x14\xed\xcfK\xcc\xeb,\x1a9\xa6\xf3e\xc2F\xc3\x00\xaa\xd5\xfc\x1bR\xa9\x8c\xb4&\x9f\xa2$\x06\x1a\xb0W#\xf4\xde6\x04c\xc0\xeec\xa0l\xd5d\xe5\xcd\xb2\xc10\x97w\x87\xe5\x06\x91W\rr\xf5\x97%\xe8pO\xeb]\xc2\x98C\xffK\xa0\xb3\\\x99{\xcdR\x92\x94\xf7\x1d\x01Q\x1a\xbd\x15b\x15h\xe2!\x00\xb9z)\x19\x00\xee\xd2)[p`\xb3\x03\xa7p\'X\xec\xcdoX\x05\xff\xff/o\xb2\xad\xb8\x89i@\f\xffS&\x8a\xc9\xfez\xc2\x90\xe7F\xa6\xdb\r\x03j,N\xe1lw\n\xad\xe8\xf0\xbd\xa1\x98\xce\xf9\x1eR\x9cc\xc5ke_\xa7\x11\"\x04\xd8.\xa0\x15\x83\xf1\x92\xdby\xe9\xdc@.\xc1g\xc6\fc\xa26\xd8\xdf\xef\xf7\xac/\xef\"m\x8b7\xcf\xc5\xa6\xf4\f\xabj%Y\xa9\xdd\x0e9e\xb5\xec\x99@\xd2\t\n\xb1o\x00\x00\x00', 0x0)
sendmsg$IPSET_CMD_ADD(r2, &(0x7f00000002c0)={0x0, 0x4001, &(0x7f0000000240)={&(0x7f0000000300)=ANY=[@ANYBLOB="50000000090601020000000000000000020000840900020073797a31000000000500010007000000280007800c00018008000140fffffff70500070084000000060004404e22000006000540"], 0x50}, 0x1, 0x0, 0x0, 0x10000082}, 0x80)

28m41.13637096s ago: executing program 32 (id=501):
socket$unix(0x1, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f00000002c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000380)=ANY=[@ANYBLOB="4c00000002060108000034e40000000000000000050001000600000005000400000000000900020073797a3100000080050005000200000011000300686173683a69702c706f7274"], 0x4c}}, 0x2)
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, 0x0, &(0x7f0000000240)='//\xf2/\x06\b///o\xdc\xea\x95\x9a\x82\x10\x97W\x8f7\x98\x9b\\/\\\xf9\rmD\x94)U\xdb\x15X.I\n}\xf3\x9d\xe4_\x05\x9cqf4I^#b?9\xde\xafu\'\x83L\xe0\x97\xe1n_\xa4%\xb1\x97\x93\xafv\xce/\xf2_\xa7\xfb\xf4\x84\x1fA\xeas^\xef\xa2\x85\xa3!\xfb\x93\xd7R\xab2\x1eW\xe9h\x9b\xf7ul\xf9D\xd4\x82X5\x13\xaa\x87\xf9\xba\xa9m\x14\x14R_\x9a\\>4\xce\x8e_#\xf8D\xb1\xdep\x01\xcc:\xa6\xc5n\xeb\xab\xf70\x99\xef\x8b<M\n\xc0`[\x82\xf6$\xa4\xbe\x1e\xd3\xe4\xd9L\x14\xed\xcfK\xcc\xeb,\x1a9\xa6\xf3e\xc2F\xc3\x00\xaa\xd5\xfc\x1bR\xa9\x8c\xb4&\x9f\xa2$\x06\x1a\xb0W#\xf4\xde6\x04c\xc0\xeec\xa0l\xd5d\xe5\xcd\xb2\xc10\x97w\x87\xe5\x06\x91W\rr\xf5\x97%\xe8pO\xeb]\xc2\x98C\xffK\xa0\xb3\\\x99{\xcdR\x92\x94\xf7\x1d\x01Q\x1a\xbd\x15b\x15h\xe2!\x00\xb9z)\x19\x00\xee\xd2)[p`\xb3\x03\xa7p\'X\xec\xcdoX\x05\xff\xff/o\xb2\xad\xb8\x89i@\f\xffS&\x8a\xc9\xfez\xc2\x90\xe7F\xa6\xdb\r\x03j,N\xe1lw\n\xad\xe8\xf0\xbd\xa1\x98\xce\xf9\x1eR\x9cc\xc5ke_\xa7\x11\"\x04\xd8.\xa0\x15\x83\xf1\x92\xdby\xe9\xdc@.\xc1g\xc6\fc\xa26\xd8\xdf\xef\xf7\xac/\xef\"m\x8b7\xcf\xc5\xa6\xf4\f\xabj%Y\xa9\xdd\x0e9e\xb5\xec\x99@\xd2\t\n\xb1o\x00\x00\x00', 0x0)
sendmsg$IPSET_CMD_ADD(r2, &(0x7f00000002c0)={0x0, 0x4001, &(0x7f0000000240)={&(0x7f0000000300)=ANY=[@ANYBLOB="50000000090601020000000000000000020000840900020073797a31000000000500010007000000280007800c00018008000140fffffff70500070084000000060004404e22000006000540"], 0x50}, 0x1, 0x0, 0x0, 0x10000082}, 0x80)

27m21.130037617s ago: executing program 33 (id=637):
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
syz_open_dev$evdev(&(0x7f0000000100), 0x2, 0x862b01)
ioctl$EVIOCSFF(0xffffffffffffffff, 0x40304580, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x275a, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
r0 = socket(0x10, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000000)={'ip6gre0\x00', &(0x7f00000009c0)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x1, 0x2, 0x0, @loopback, @private1={0xfc, 0x1, '\x00', 0x1}}})
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0xf, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000003000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='sched_switch\x00', r1}, 0x10)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r0, 0x89f3, &(0x7f0000000440)={'syztnl1\x00', &(0x7f0000000640)={'ip6_vti0\x00', 0x0, 0x0, 0x0, 0x3, 0x9, 0x0, @private2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x0, 0x0, 0x0, 0xc0}})

27m17.133368017s ago: executing program 34 (id=643):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r2, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0)
openat$nci(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r3 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, 0x0)
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$bt_hci_HCI_FILTER(r4, 0x0, 0x2, 0x0, 0x0)
syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=ANY=[@ANYBLOB="4c00000010001fff000000000100000000000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000240012800e00010069703665727370616e000000100002800400120006001800177b000008000a00", @ANYRES32=r2], 0x4c}, 0x1, 0x0, 0x0, 0x40001}, 0x4000)

19m18.151653931s ago: executing program 35 (id=1124):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x589b}, 0x50)
r3 = fsopen(&(0x7f0000000100)='configfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0)
r4 = fsmount(r3, 0x0, 0x0)
fchdir(r4)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
utimensat(r5, 0x0, &(0x7f0000000580)={{0x0, 0x3ffffffe}, {0x77359400}}, 0x0)

19m10.73977203s ago: executing program 36 (id=1134):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000140)=ANY=[@ANYBLOB="1800000000000000000000003b810000850000007d00000085000000500000"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000100)='sys_exit\x00', r0}, 0x10)
openat$sequencer(0xffffff9c, &(0x7f0000000040), 0x2000, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x401, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x4)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
openat$audio(0xffffff9c, &(0x7f00000004c0), 0x800, 0x0)
r3 = socket$nl_audit(0x10, 0x3, 0x9)
sendmsg$AUDIT_SIGNAL_INFO(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x10, 0x3f2, 0xf219233ff90c8b9d, 0x70bd28, 0x25dfdbfc, "", ["", "", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x4040044}, 0x4000880)

19m8.594224633s ago: executing program 37 (id=1139):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x3, &(0x7f00000000c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="0205fc090900000027bd7000070000000500060000000e000a004e24fffffffdfc01000000000000000000000000000098850000000000000200010004"], 0x48}, 0x1, 0x400000000000000}, 0x0)
r3 = openat$mice(0xffffffffffffff9c, &(0x7f00000003c0), 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
r4 = syz_open_dev$evdev(&(0x7f0000000000), 0x3, 0x822b01)
syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x1a3c82)
write$char_usb(r4, &(0x7f0000000040)="e2", 0x918)
read$FUSE(r3, 0x0, 0x0)

16m17.927733905s ago: executing program 6 (id=1291):
r0 = socket(0x1e, 0x805, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000740)=ANY=[], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00'}, 0x2d)
connect$tipc(r0, &(0x7f0000000000)=@id, 0x10)
r4 = add_key$fscrypt_v1(&(0x7f0000000540), &(0x7f0000000080)={'fscrypt:', @desc2}, &(0x7f00000000c0)={0x0, "f1a1173fb9462d3589e67197f90be6e423ceb0ab4912f9f6a31854ec98e950cfed21fcad7ff0fbcb566a0982f8938caa52dd8d39af14c31ed56ad59300"}, 0x48, 0xffffffffffffffff)
r5 = add_key$fscrypt_v1(0x0, &(0x7f0000000040)={'fscrypt:', @auto=[0x63, 0x30, 0x62, 0x39, 0x5, 0x2, 0x64, 0x66, 0x63, 0x35, 0x34, 0x34, 0x66, 0x64, 0x64, 0x32]}, 0x0, 0x0, 0xfffffffffffffffe)
keyctl$KEYCTL_MOVE(0x4, r5, r4, 0x0, 0x0)
keyctl$restrict_keyring(0x1d, r5, 0x0, &(0x7f0000000000)='\')\x00')
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000080)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x20, 0x20, 0x7, [@enum={0x3, 0x1, 0x0, 0xf, 0x4000000, [{}]}, @struct={0x2}]}, {0x0, [0x0, 0x61, 0x61, 0x5f, 0x2e]}}, &(0x7f0000002200)=""/4110, 0x3f, 0x100e, 0x1}, 0x28)

16m16.292632595s ago: executing program 6 (id=1292):
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0xd)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f00000000c0)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
setpriority(0x0, r0, 0x3)
madvise(&(0x7f000059e000/0x5000)=nil, 0x5000, 0x9)
r3 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$int_in(r3, 0x40000000af01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r3, 0x4008af03, 0x0)
ioctl$VHOST_NET_SET_BACKEND(r3, 0x4008af30, &(0x7f00000003c0)={0x1})
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0xa, 0xf, &(0x7f0000000480)=@ringbuf={{0x18, 0x8}, {{}, {}, {}, {0x85, 0x0, 0x0, 0x5}, {0x7, 0x1, 0xb, 0x9, 0x0, 0x8}}, {{0x5, 0x0, 0x5, 0x9, 0x0, 0x1, 0xffffff80}}, [], {{0x5, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000400)='syzkaller\x00', 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, 0x0)

16m14.979126801s ago: executing program 6 (id=1293):
pipe2$9p(0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x1, &(0x7f0000000300)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000080000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000005000000000400000d00000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r4], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000680)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r5}, 0x10)
syz_genetlink_get_family_id$wireguard(0x0, 0xffffffffffffffff)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="240000001a00017f000001000000000002000000000000000002509959b442fe1917801b42d10900000005001b003a00000057d1af752dec075d"], 0x24}}, 0x0)

16m13.39266962s ago: executing program 6 (id=1294):
openat$kvm(0xffffffffffffff9c, 0x0, 0x161642, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r0 = socket(0x1f, 0x2, 0x0)
setsockopt$TIPC_DEST_DROPPABLE(r0, 0x10f, 0x81, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001d40)={0x0}, 0x18)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x7}, 0x94)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0100000005000000090000008b0000"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000300)={0xffffffffffffffff, 0x0, &(0x7f00000000c0), &(0x7f0000000240), 0x800, r4}, 0x38)
bpf$MAP_LOOKUP_BATCH(0x19, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000680), &(0x7f0000000680), 0x2000006c, r4}, 0x38)

16m11.778385292s ago: executing program 6 (id=1295):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x20, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r3, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x73cea2d47785b264, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000280)='sched_switch\x00', r4}, 0x18)
r5 = creat(&(0x7f0000000000)='./file0\x00', 0xd931d3864d39dcdb)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
close(r5)
r6 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r7 = dup(r6)
write$UHID_INPUT(r7, &(0x7f0000004000)={0xf, {"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", 0xfffffffffffffe59}}, 0xfa)

16m10.579903267s ago: executing program 2 (id=1155):
socket$nl_generic(0x10, 0x3, 0x10)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x103)
r0 = inotify_init1(0x80000)
prlimit64(0x0, 0xe, &(0x7f0000000340)={0xd, 0x200200090}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000040)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = syz_io_uring_setup(0x9a, &(0x7f0000000640)={0x0, 0x5867, 0x10, 0xfffffffc, 0x24d}, &(0x7f0000000000)=<r5=>0x0, &(0x7f00000001c0)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f00000002c0)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r5, r6, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r4, 0x100847c0, 0x0, 0x1, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
inotify_add_watch(r0, &(0x7f00000000c0)='./file0\x00', 0x200)
unlinkat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0)

16m10.531081081s ago: executing program 6 (id=1296):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8f}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000380)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x1c000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
poll(&(0x7f0000000040)=[{0xffffffffffffffff, 0x80cd}], 0x1, 0x7)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r3, &(0x7f0000000040)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x12, r3, 0x0)
ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x14, 0x2, 0x4})
sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)

15m54.42551632s ago: executing program 38 (id=1155):
socket$nl_generic(0x10, 0x3, 0x10)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x103)
r0 = inotify_init1(0x80000)
prlimit64(0x0, 0xe, &(0x7f0000000340)={0xd, 0x200200090}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000040)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = syz_io_uring_setup(0x9a, &(0x7f0000000640)={0x0, 0x5867, 0x10, 0xfffffffc, 0x24d}, &(0x7f0000000000)=<r5=>0x0, &(0x7f00000001c0)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f00000002c0)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r5, r6, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r4, 0x100847c0, 0x0, 0x1, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
inotify_add_watch(r0, &(0x7f00000000c0)='./file0\x00', 0x200)
unlinkat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0)

15m54.28970622s ago: executing program 39 (id=1296):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8f}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000380)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x1c000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
poll(&(0x7f0000000040)=[{0xffffffffffffffff, 0x80cd}], 0x1, 0x7)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r3, &(0x7f0000000040)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x12, r3, 0x0)
ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x14, 0x2, 0x4})
sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)

10m31.423336363s ago: executing program 8 (id=1578):
socket$inet_udp(0x2, 0x2, 0x0)
r0 = syz_open_dev$sndctrl(&(0x7f0000000240), 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount$afs(0x0, &(0x7f0000002840)='./file0\x00', &(0x7f0000002880), 0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="64796e2c0081985a8b6e323b26d2723b14612748db4d74b23e2661a62a335f0bc884305a1ed29e8701f9da1c9ebdba3c4d4a1adc1d201fb77f491eb67a94493685"])
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0xf1)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
mkdir(&(0x7f00000004c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./bus\x00', &(0x7f0000000000), 0x0, &(0x7f0000000180)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f00000000c0)='./bus\x00')
r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x119800, 0x90)
openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
getdents64(r2, &(0x7f0000000f80)=""/4096, 0x1000)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$SNDRV_CTL_IOCTL_ELEM_REMOVE(r0, 0xc0405519, 0x0)

10m27.985805055s ago: executing program 8 (id=1572):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, 0x0, 0x0)
write$RDMA_USER_CM_CMD_QUERY(r1, &(0x7f00000000c0)={0x13, 0x10, 0x8, {0x0, 0xffffffffffffffff, 0x2}}, 0x18)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x3000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file1/file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r4, 0xc0285700, &(0x7f0000000100)={0x1b, "5660359c3245d1c42317afad7d48ed51000000000000000100"})
r5 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000040), 0x141100, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r5, 0xc0285700, &(0x7f0000000140)={0x1000, "340b7832ceefd131b8e6498c25f58fad9987ffe93bbabd18cf501922de974a27"})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00'}, 0xc)
socket(0x1e, 0x4, 0x0)
r6 = syz_open_dev$vim2m(&(0x7f0000000000), 0x7, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r6, 0xc0d05605, &(0x7f0000000140)={0x1, @pix_mp={0x0, 0x0, 0x34524742, 0x0, 0x7, [{}, {0xfffffff7}, {0x9}, {}, {0x20}, {0x0, 0x4}, {0x2000000}, {0xc28f}], 0x2}})
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'bridge0\x00'})
socket$nl_route(0x10, 0x3, 0x0)

10m22.405297867s ago: executing program 8 (id=1575):
uname(0x0)
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0a000000050000000200000007"], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000780)={0x0, 0x0, 0x0, &(0x7f0000000740), 0x75, r2}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
unlink(0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00'})
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x3, 0x0)
r6 = socket(0x10, 0x803, 0x2)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r6)
getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x50)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r9}, 0x10)
sendmsg$nl_route_sched(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000002c0)=@newtfilter={0x5c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {}, {}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x2c, 0x2, [@TCA_BASIC_EMATCHES={0x28, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0xffff}}, @TCA_EMATCH_TREE_LIST={0x1c, 0x2, 0x0, 0x1, [@TCF_EM_META={0x18, 0x1, 0x0, 0x0, {{0x8, 0x4, 0x4}, [@TCA_EM_META_HDR={0xc, 0x1, {{0x7, 0x14, 0x1}, {0x8, 0x9, 0x2}}}]}}]}]}]}}]}, 0x5c}, 0x1, 0x0, 0x0, 0x400c040}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x20004000)

10m22.07783836s ago: executing program 9 (id=1153):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0xe8381, 0x0)
syz_io_uring_setup(0xd2, 0x0, &(0x7f0000000000)=<r0=>0x0, &(0x7f0000000040)=<r1=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r0, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r0, r1, 0x0)
shmctl$IPC_RMID(0x0, 0xffffffffffffff7f)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sysfs(0xffffff9c, &(0x7f00000000c0)='/sys/kernel/hardlockup_count', 0x0, 0x8a)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={0x0}, 0x18)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000032680)=""/102392, 0x18ff8)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r3, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
syz_emit_ethernet(0xbe, &(0x7f0000000000)={@dev={'\xaa\xaa\xaa\xaa\xaa', 0x23}, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x75, 0x0, @wg=@initiation={0x1, 0x0, "7b4b143b7461fd777b1c012bd14efb9f49fcdb8f080c26a04883ad5c8c82b8af", "584cbf2649a50f2dbc43efa8698d0a881c51852e4451b57d037ad3c04594282423424d00", "bcfd56f1375461caaa2f19935e6996c7096ffeeb0300000000000064", {"9a3bfbc1f39cb307b3472eb9cdb042d2", "643fcbb2c5a57df67d544af6e8dafe09"}}}}}}}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x2003, 0x0, 0x0, 0x0, 0xe}, 0x94)
r4 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f0000000200)='syzkaller\x00', 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r4, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

10m20.562734217s ago: executing program 8 (id=1579):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
socket$nl_route(0x10, 0x3, 0x0)
r0 = fsopen(0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
fsconfig$FSCONFIG_SET_STRING(r1, 0x1, &(0x7f0000000100)='mode\x00', &(0x7f0000000140)='7', 0x0)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x8000000000002)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
sendmsg$key(0xffffffffffffffff, 0x0, 0x0)
sched_setscheduler(r2, 0x2, &(0x7f0000000240)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
ioctl$sock_inet6_SIOCADDRT(0xffffffffffffffff, 0x890b, 0x0)
unshare(0x22020400)
r5 = fsopen(&(0x7f0000000040)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r5, 0x6, 0x0, 0x0, 0x0)
r6 = fsmount(r5, 0x0, 0x4)
r7 = openat$cgroup_ro(r6, &(0x7f0000001100)='cpu.stat\x00', 0x5000000, 0x0)
readv(r7, &(0x7f00000012c0)=[{&(0x7f0000000100)=""/4096, 0x1000}], 0x1)

10m17.437037421s ago: executing program 8 (id=1581):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x2d)
r5 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r5, 0x1, &(0x7f0000000000)='source', &(0x7f0000000040)='c:::\x00\xfdM\xab\x89\xff\xda\xc7dw2\xa1\xb2\xabuQQ\x14\x97\xc9\xfae\xc7\xa1U\xe2\xbe\"\xb9t\xa0\x0e\xfa\xdb\xf1\xa5.\xd87\xc3p\xa5l\xf8vC\xe2\xe8 \xd5-<#\x186\xe1\xbd\xc0\xc3\xb5N(vj\xa7+<:\xc4\xe00\x01\xdd \x82\x83\xed\x0e\xc4\x1d\xac\xef7\b\xd3Z5\\A\'\x18\xa2\xc3\xab\xc7`\xc3\v\xf3L\x9d[Q\x9e\x11@=\xa1\x9b\xdc\xb1\xef\xc3k<\x97L\xa0\xab\xa6\x1ce\xcd\x99\xb3m\xef\x87\xc5i^N\xbd@\x01\xc0\xb2\x88\xc3\xe2\x96T\xa3\xa5\xeb\x0f\xf2f\xb9$\xd2\x14<L\x19K\xbf\xf7\x9c\xe7 \x12+4.\xa9\xa7\xdc[\xd2\xec\xbe\x1a\xa1\x04\xd3\x9e\x92\x8a\xf7\xdb\xe7f\xdeo\xc1\xa5\xb6T\r)\x1c\xbe\x12\xd1\xef\xc2S\xcci\xc8\x0e\x00]\xe6|\xccK\xc7\r\xfa \x02\xe8\x1b\xc1\x93\xce\x02%\x86\xcb\x94K\v\xe7x\xe3\x06[/\xf9\xa8\x82\x9b\xeeF\x88\xc0f\x82\xb7T\r\x04\xbb\x10\x1d3\xa6', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r5, 0x6, 0x0, 0x0, 0x0)
r6 = gettid()
tkill(r6, 0xb)
r7 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r7, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-twofish-3way\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r7, 0x117, 0x1, 0x0, 0x0)
socket$tipc(0x1e, 0x2, 0x0)
sendmsg$TIPC_CMD_SHOW_PORTS(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, 0x0}, 0x24048800)

10m15.657358285s ago: executing program 8 (id=1584):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x8ab43, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CAP_EXIT_HYPERCALL(r2, 0x4068aea3, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2)
socket$inet6_sctp(0xa, 0x1, 0x84)
mknodat(0xffffffffffffff9c, 0x0, 0x81c0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, 0x0)
r4 = syz_open_dev$MSR(&(0x7f0000000200), 0x0, 0x0)
read$msr(r4, &(0x7f000001b700)=""/102392, 0x18ff8)
openat(0xffffffffffffff9c, 0x0, 0x4842, 0x1cb)
ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, 0x0)
ioctl$KVM_SET_GUEST_DEBUG_x86(r3, 0x4048ae9b, &(0x7f00000005c0)={0x40003, 0x0, {[0x5, 0x0, 0x3, 0x0, 0x6, 0x6, 0x16, 0x2]}})
sendmsg$nl_route(r0, &(0x7f0000004380)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000600)=ANY=[@ANYBLOB="2c0000001800090400000001fedbdf250a000000000000000000008008001e00010000000800"], 0x2c}}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
semget(0x3, 0x0, 0x10)

10m5.985930298s ago: executing program 40 (id=1153):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0xe8381, 0x0)
syz_io_uring_setup(0xd2, 0x0, &(0x7f0000000000)=<r0=>0x0, &(0x7f0000000040)=<r1=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r0, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r0, r1, 0x0)
shmctl$IPC_RMID(0x0, 0xffffffffffffff7f)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sysfs(0xffffff9c, &(0x7f00000000c0)='/sys/kernel/hardlockup_count', 0x0, 0x8a)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={0x0}, 0x18)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000032680)=""/102392, 0x18ff8)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r3, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
syz_emit_ethernet(0xbe, &(0x7f0000000000)={@dev={'\xaa\xaa\xaa\xaa\xaa', 0x23}, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x75, 0x0, @wg=@initiation={0x1, 0x0, "7b4b143b7461fd777b1c012bd14efb9f49fcdb8f080c26a04883ad5c8c82b8af", "584cbf2649a50f2dbc43efa8698d0a881c51852e4451b57d037ad3c04594282423424d00", "bcfd56f1375461caaa2f19935e6996c7096ffeeb0300000000000064", {"9a3bfbc1f39cb307b3472eb9cdb042d2", "643fcbb2c5a57df67d544af6e8dafe09"}}}}}}}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x2003, 0x0, 0x0, 0x0, 0xe}, 0x94)
r4 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f0000000200)='syzkaller\x00', 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r4, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

9m59.47640808s ago: executing program 41 (id=1584):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x8ab43, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CAP_EXIT_HYPERCALL(r2, 0x4068aea3, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2)
socket$inet6_sctp(0xa, 0x1, 0x84)
mknodat(0xffffffffffffff9c, 0x0, 0x81c0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, 0x0)
r4 = syz_open_dev$MSR(&(0x7f0000000200), 0x0, 0x0)
read$msr(r4, &(0x7f000001b700)=""/102392, 0x18ff8)
openat(0xffffffffffffff9c, 0x0, 0x4842, 0x1cb)
ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, 0x0)
ioctl$KVM_SET_GUEST_DEBUG_x86(r3, 0x4048ae9b, &(0x7f00000005c0)={0x40003, 0x0, {[0x5, 0x0, 0x3, 0x0, 0x6, 0x6, 0x16, 0x2]}})
sendmsg$nl_route(r0, &(0x7f0000004380)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000600)=ANY=[@ANYBLOB="2c0000001800090400000001fedbdf250a000000000000000000008008001e00010000000800"], 0x2c}}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
semget(0x3, 0x0, 0x10)

5m49.741838399s ago: executing program 0 (id=1811):
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_STAT_SET(r0, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x24040832}, 0xc094)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0x3, &(0x7f0000000300)=ANY=[@ANYRES16, @ANYRESDEC], &(0x7f0000000280)='GPL\x00', 0xa, 0xb9, &(0x7f0000000140)=""/185, 0x40f00, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
socket$inet_udplite(0x2, 0x2, 0x88)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000600)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mknod$loop(&(0x7f0000000180)='./file0\x00', 0x6000, 0x0)
r4 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
r5 = dup2(r4, r4)
ioctl$BLKTRACESETUP(r5, 0xc0481273, &(0x7f0000000240)={'\x00', 0x40, 0xa, 0x1, 0x40000000, 0x10})
ioctl$BLKTRACETEARDOWN(r5, 0x1276, 0x0)
r6 = openat$proc_mixer(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/card0/oss_mixer\x00', 0x2002, 0x0)
dup3(0xffffffffffffffff, r6, 0x0)

5m45.618829363s ago: executing program 0 (id=1815):
socket$inet6(0xa, 0x1, 0x0)
bpf$MAP_CREATE(0x1900000000000000, 0x0, 0x50)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x3000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file1/file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x6)
getitimer(0x1, &(0x7f0000000000))
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="18050000000000fe000000004b64ffec850000007d000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0xc)
r4 = syz_open_dev$swradio(&(0x7f0000000040), 0x1, 0x2)
pread64(r4, &(0x7f00000002c0)=""/75, 0x4b, 0x0)
ioctl$VIDIOC_EXPBUF(r4, 0xc0405610, &(0x7f0000000140)={0xb})
r5 = socket(0x1e, 0x4, 0x0)
r6 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r6, 0x10f, 0x87, &(0x7f0000000040)=@req={0x3fc, 0xfffffffc}, 0x10)
setsockopt$packet_tx_ring(r5, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
sendmmsg(r5, &(0x7f00000030c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x9200000000000080)
recvmmsg(r6, &(0x7f0000002840)=[{{0x0, 0x0, 0x0}, 0xbe58}], 0x1, 0x7ffeedc0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)

5m42.136177675s ago: executing program 0 (id=1818):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20020008008f}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00'}, 0x10)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, 0x0, 0x0)
r3 = socket$kcm(0x2, 0x5, 0x84)
setsockopt$sock_attach_bpf(r3, 0x84, 0xd, &(0x7f0000000000), 0x8)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000000)='./file1\x00')
syz_open_dev$vim2m(&(0x7f00000006c0), 0x8, 0x2)
open(&(0x7f00000000c0)='./file1\x00', 0x0, 0x53)
unshare(0x8000600)
setxattr$system_posix_acl(0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB], 0x24, 0x0)
rmdir(&(0x7f0000000040)='./bus\x00')
r4 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
ioctl$TIOCSSOFTCAR(r4, 0x5453, 0x0)

5m39.958690226s ago: executing program 0 (id=1819):
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x81, 0xffffffff})
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x15, 0xe, &(0x7f0000001b80)=ANY=[@ANYBLOB="b702000000000000bfa300000000000007030000f0ffffff7a0af0ff0200000079a4f0ff00000000b706000000000081ad64020000000000450404000100ff0f1704000001130a00b7050000010000006a0af2fe000000008500000044000000b700000000000000950000000000000000e154cd8445974b26c933f7ffffffffe4fbffffff55bb2007ee51050512b5b42128aa090a79507df79f298129daa7a6b2f91af50342115e17392ac627c87881c000006146001e04aeacea799a22a2fa798b5adc43eb27d53319d0ad229e5752548300000000dbc2777df150b7cdd77b85b941092314fd085f028f2ed1a4535550614e09d6378198a6097a670838337af2abd55a87ac0394b2f92ffab7d153d6200100000000000000ccf55520f22c9ca8b6712f3024b7041b1df65b3e1b9bf115646d14ce53d13d0ccacda1ef0900094fa737c28b99938512c816fdcceaede3faedc51d29a47fc813a2ec00f4c7a53ac271d6d7f4ea6bf97f2f33e2ea2e534300bcb3fdc4b4861004eefbda7f54f82a804da4f85db47a4a69bf9bc5fa96ee293fbd165a5a68488e40b030166565a097b1b44b451de736bb6d43db8db03d4b7745fef1d04ec633dee254a6d491b849a5a787e814c4fd21a18986252a70f8f92eb6f0e8c7db4bf23242a1f2c28159f09943b1b0452d1b72183aacf4a84f9130b775dd4e9e3070756f97ad791fa99dac06b57479321a0574fb30ff0000001989328c8ddc20ea011bf5742e0e0d4334db8b20ce3f9f16cb7fc20fb4791ec85821d0c48fb657c29b309c73f0977e7cde65a82b94c461d7962b0d2277a84af326f37f3e2c25a61ec45c3af97a8f17da954aff3fc8c108755f75ca13fb7c8bbd8b6e7dac1aba4b20dc7de058a4dfa7e85a8bdf1d41a2d8bda74d66f47cc180f82c5f573c6d294d3665016ac59dda0fde4745db06753a7ac74a0932f7528751313694bf5700b20ef0c248ddd3da32396a614cacad4aff2066bb5d4045c958559b7dcb98a6273b8c651e24d9f679e4fbe948dfb4cc4a389469608241730459f0123fd39206000000000000eb55dad46de56ef907b059b90b8aa49afb9a79ae5498f6589880ed6eea7f9c670012be05e7de0940313c5870786554df26236ebced9390cb6941b8375d936a7d2120eca291963eb2d537d8ee4de5c183c960119451c31539b22809e1d7f0cda06a9fa87d64cb77872a2cd8a104e16bb1a2bacf13464ca03aff14a9aa4bd9539f5096412b92012e095b84c20243ff98df3347f0e399d1b9f27e3c33269c0e153b28b2d4410572bc45b9d3fa02208d304d455c36300000000022320178b00cc6ed7966130b547dbf8b497af002000000cd1d00000020000000ef19349ee7f31abc11c800000000000000000000000928ee53595a779d243a48cea769470424d28804c04b2c43ff010000000000000128dfd70b438af60b060000000000000056642b49b745f3bf2c4af38ffb7d748308eea09fc361b4735efbf3411718d6ee7aebf9ef679dbfae9fb4a79f8a836804ed3a1079b0282a12043408cd60b687dcff91af19010000000000000000456f7d2a42bd13da202274f20675eb781925441578e93046aaddea8ec4ca37f71c2710a7ea8ae0dc214e1cc275b26adfa892e6de92000000000000000000ddff004cff9ec7ffff35e62f4eeee50e5bafecea4d4134f9d006c8d6883eca5c9c58c9e93311ab5009c68c73de2f04f15d005387577f480000ea65559eb00e76e9d0ada201bcbb5c252b28a60ca770663da451790cc36000906d5a9fad98c308e39bd5ffb6151d79c1cee1cd102e3c8e63e9fba05e3633be3f00000015762e5f5a3a0bc33fdbe28a5ffc83f2b485185cc92fe7f791e8f6429309d6adab4b7e508e5bf024ed8f8a005f2bbf96c89739f5cf1e750d50517a59a3ad09e8802e8f4f535447cc0fc9d5f99a73145dfcedad69da9cd4375c624600e78f4458542b14f29611f95d4a31838eeb20c20bb82aa31771cd379ec83554cea5e6539db7384e1f58d81f2f2653c4d9818708e27c89b552d7fcd116bce9c764c714c9402c21d181aac59efb28d4f91652f6750b6ec962802c0320f8059195729d60c534ee8e8ff0755b67fe4c25edb85bcff24c757aa8090000000000008c420eb4304f66e3a37aaf000000c42a570f0e9dd5fd545470f862f8c3c14fa9ecd1e877b0d8ca84c044859e85e6158f9184bc61a9a284db80e4636c25b96174327d82761c26e329555f9290af4100000000000000749efd3763655500344bae34137f5ab0d534b8d63e4ca3b671f2de1cdf519192c6b59a601fd419adc16e2055b85058f793484305d7a1759782e4c571ee855a47bc00edf5e9020c09ab004321610b857e8717764b633b21cb32f0eb3280e09758bd445ab91d20baca005452b79d7b574a247f1d2fe45b3c4e93da3d51de647c10dd49944dc87c92332af00f191b66b6a6f732a91f0e2e9120be61e58c79d497247d278888901d442ad7f8536605a644e9e3d769db497c3960dfde12182334caee99367a54b9e182b78e9a0ceb9a2c4f63902c1ad1a7c5a08d0920a23c2a86abbdf357849a651733e57d31019876026888c8ccb85c86b4f8ffffff7f000000002c331fca0e541b7ca211c28ed61c525708a13d115b43f8b1894c8fa8a14dc4810f61ae96bf704526a8919bc700002100000000000000000001000027c9a46157a3609b6fd9843ee19ec647249a9375de5858818f3c4a4fa6ce46f4d42b07199de8b99231ace58c77819ee214e49666c464d35ca9b5143ed3b3dc8c17a23692759ccf5a205311b7ab22532697b861dfb54609fd88e6043bd52ae84c1bb0c8a6c769f952283a1f4e3842edb3d42c68a27ef6a1296dfff4a979369b0e8ebc62887aa46e820a74f91381ccc198e353047db70686d147357024eb3cb94f1e89cb5ba0a56aa046b4dc521a3d9356b4b8b5917c4c860495b240e80063bde261fd00000000007271e28ef6806bc8e139c49b91c76bea3858f78fbd8d31330d89069f9648a2ff93060ff073b3a113e47edf76f7d116d2b0976cf2ec447c030931651dd315003b7a6a5433a2bb3c035fc6846abe389b25c988f0bbb889560ae99ec4b227eda2e63a1c31a2c2bd48a822cbe92b6524e0cd8020ecaa34e19e7141d5e221509342bfe7d294d1eb3de6a50ca0301f89c2ee627e949c68b3a4a426a9b7d503a26e9a714ee5f72d8805dd1bfbd081f6a5d1f1289dfe14cb9194e26a44fac273461fc5c0e0a33db7f2d43ea8086cf059f40fa2640b6bfb74dd35f5a31059c01517cf4b6641fce9a24b96767b837ca037a1199735c375c705c798e0e208e4a5259d0bfa526b462af45a6eab34000000000000000000000000c4426344ec1a3366515dee221e747f55d7dd02534bc503b9b28277c253e410986bef2111a99cc448d652929f8a67a6a1d3f00dcad91aff428aade3f85714a1d3ef29acd4d49b62339c10c2ec0dac4728288e78980c1184d8223edbccbf9258b7374e79a1f8bf3fb73cfd1e76982f3d899f71e4a9f0ba8c6dbb7bbdfc399847a11921f97eba0ea14c4fed9a71eedb97c02461792e3a49dac16c60c3fcaab222025d78963c3ac899fa8b63f58a30212c9b2d7fe751e2046b78f86e22861b6504c667350244dd6d9189a8b9c45f8aaff9db694811ca86ed978f23eed7459c0382074170cf1e25b0e9ba3d1cc309353eea4cd8ab96bafda393276bdd8d32ead8db9e1b54d2d3d50e2815268fc1a6ec566981bc8ca2a4583f3d40e817433d0f4f25cfe6cc1897449ba5f26a9d66ac73e6f5c401376f23a314e0b9ff997d22f3e34b7524642c248aa813edaa626f0000000000000000"], &(0x7f0000000b80)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_reuseport, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8}, 0x94)
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
sendmmsg$inet_sctp(r0, &(0x7f00000024c0)=[{&(0x7f00000006c0)=@in={0x2, 0x4e23, @empty}, 0x10, &(0x7f0000000780)=[{&(0x7f0000000700)="7bd4", 0x2}], 0x1, &(0x7f00000007c0), 0x0, 0x20004004}], 0x1, 0x40804)
r1 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r1, 0xc01864c6, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r2=>0xffffffffffffffff})
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r2, 0xc04064a0, &(0x7f0000000740)={0x0, 0x0, 0x0, 0x0})
ioctl$HIDIOCGVERSION(r2, 0x80044801, &(0x7f00000002c0))
r3 = syz_open_dev$vim2m(&(0x7f0000000000), 0x7, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r3, 0xc0145608, &(0x7f0000000040)={0x8, 0x1, 0x4, 0x0, 0xb})
modify_ldt$write(0x1, &(0x7f0000000340)={0x8, 0x20000000}, 0x10)
modify_ldt$read(0x0, 0x0, 0x0)
preadv(r3, &(0x7f0000000100)=[{0x0}], 0x1, 0x9, 0x6)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
unshare(0x2040400)
syz_io_uring_setup(0x118d, &(0x7f00000000c0)={0x0, 0x8d2dc, 0x0, 0xffffffff, 0xc2}, &(0x7f00000003c0)=<r4=>0x0, &(0x7f0000000200)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r4, r5, &(0x7f00000002c0)=@IORING_OP_ACCEPT={0xd, 0x40, 0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x80000})
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa10000000000"], &(0x7f00000001c0)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000580)='sched_switch\x00', r6}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r7 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r7, 0x2, &(0x7f0000000200)=0x4)

5m35.980713786s ago: executing program 0 (id=1821):
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_STAT_SET(r0, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x24040832}, 0xc094)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0x3, &(0x7f0000000300)=ANY=[@ANYRES16, @ANYRESDEC], &(0x7f0000000280)='GPL\x00', 0xa, 0xb9, &(0x7f0000000140)=""/185, 0x40f00, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
socket$inet_udplite(0x2, 0x2, 0x88)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000600)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mknod$loop(&(0x7f0000000180)='./file0\x00', 0x6000, 0x0)
r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
ioctl$BLKTRACESETUP(r4, 0xc0481273, &(0x7f0000000240)={'\x00', 0x40, 0xa, 0x1, 0x40000000, 0x10})
ioctl$BLKTRACESTART(0xffffffffffffffff, 0x1274, 0x0)
ioctl$BLKTRACETEARDOWN(r4, 0x1276, 0x0)
r5 = openat$proc_mixer(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/card0/oss_mixer\x00', 0x2002, 0x0)
write$proc_mixer(r5, &(0x7f0000000180)=ANY=[@ANYBLOB="5245434c45560a50484f4e454f55540a535045414b455220274344272030303030303030303030303030303030303030300a4449474954414c32202706b86e652043617074557265272030303030"], 0xb8)
dup3(0xffffffffffffffff, r5, 0x0)

5m34.33994635s ago: executing program 0 (id=1823):
bind$netlink(0xffffffffffffffff, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
socket(0x400000000010, 0x3, 0x0)
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0xa0842, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000002c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
write$binfmt_aout(0xffffffffffffffff, 0x0, 0x9c8)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000600)=[@text64={0x40, &(0x7f0000000640)="430fc73f0f2390b9800000c00f3235010000000f300f20d835080000000f22d8c4e18173f53866baf80cb83879e487ef66bafc0cec66b88e008ec02d1aa80000460f1c460041ae", 0x47}], 0x1, 0x76, 0x0, 0x0)
r6 = mq_open(0x0, 0x42, 0x0, 0x0)
lseek(r6, 0x3, 0x3)
getsockopt$sock_buf(r0, 0x1, 0x1c, 0x0, &(0x7f0000000240))
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, 0x1, 0x2}, 0x28)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
execve(0x0, 0x0, 0x0)
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r7, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r8 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$nl_route_sched(r8, 0x0, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000740)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x70bd2b, 0x80000, {0x0, 0x0, 0x0, 0x0, {0x0, 0x6}, {0x4, 0xb}, {0xffe0, 0xb}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0x14, 0x2, [@TCA_FQ_CODEL_ECN={0x8, 0x4, 0x1}, @TCA_FQ_CODEL_QUANTUM={0x8, 0x6, 0xe}]}}]}, 0x48}}, 0x4008000)

5m19.046380789s ago: executing program 42 (id=1823):
bind$netlink(0xffffffffffffffff, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
socket(0x400000000010, 0x3, 0x0)
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0xa0842, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000002c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
write$binfmt_aout(0xffffffffffffffff, 0x0, 0x9c8)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000600)=[@text64={0x40, &(0x7f0000000640)="430fc73f0f2390b9800000c00f3235010000000f300f20d835080000000f22d8c4e18173f53866baf80cb83879e487ef66bafc0cec66b88e008ec02d1aa80000460f1c460041ae", 0x47}], 0x1, 0x76, 0x0, 0x0)
r6 = mq_open(0x0, 0x42, 0x0, 0x0)
lseek(r6, 0x3, 0x3)
getsockopt$sock_buf(r0, 0x1, 0x1c, 0x0, &(0x7f0000000240))
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, 0x1, 0x2}, 0x28)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
execve(0x0, 0x0, 0x0)
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r7, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r8 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$nl_route_sched(r8, 0x0, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000740)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x70bd2b, 0x80000, {0x0, 0x0, 0x0, 0x0, {0x0, 0x6}, {0x4, 0xb}, {0xffe0, 0xb}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0x14, 0x2, [@TCA_FQ_CODEL_ECN={0x8, 0x4, 0x1}, @TCA_FQ_CODEL_QUANTUM={0x8, 0x6, 0xe}]}}]}, 0x48}}, 0x4008000)

8.398222529s ago: executing program 3 (id=2618):
openat$uhid(0xffffffffffffff9c, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000003900)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r0}, 0x10)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdir(&(0x7f0000000180)='./file0\x00', 0x0)
r4 = memfd_create(&(0x7f0000000100)='\vem\xda\x99R@m\xfc\xfe\x9b#*\xff', 0x0)
write(r4, &(0x7f0000000040)="0600", 0x2)
write$FUSE_NOTIFY_STORE(r4, &(0x7f0000000180)=ANY=[], 0xe)
sendfile(r4, r4, &(0x7f0000001000), 0xffff)
mmap(&(0x7f0000000000/0x7000)=nil, 0x7000, 0x80000000004, 0x11, r4, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f000001a000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r5, 0x1, 0x1a, &(0x7f000002eff0)={0x135, &(0x7f0000000000)=[{}]}, 0x10)

7.178293587s ago: executing program 5 (id=2628):
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_STAT_SET(r0, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x24040832}, 0xc094)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0x3, &(0x7f0000000300)=ANY=[@ANYRES16, @ANYRESDEC], &(0x7f0000000280)='GPL\x00', 0xa, 0xb9, &(0x7f0000000140)=""/185, 0x40f00, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
socket$inet_udplite(0x2, 0x2, 0x88)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000600)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mknod$loop(&(0x7f0000000180)='./file0\x00', 0x6000, 0x0)
r4 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
r5 = dup2(r4, r4)
ioctl$BLKTRACESETUP(r5, 0xc0481273, &(0x7f0000000240)={'\x00', 0x40, 0xa, 0x1, 0x40000000, 0x10})
ioctl$BLKTRACESTART(r4, 0x1274, 0x0)
ioctl$BLKTRACETEARDOWN(r5, 0x1276, 0x0)
r6 = openat$proc_mixer(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/card0/oss_mixer\x00', 0x2002, 0x0)
write$proc_mixer(r6, &(0x7f0000000180)=ANY=[@ANYBLOB="5245434c45560a50484f4e454f55540a535045414b455220274344272030303030303030303030303030303030303030300a4449474954414c32202706b86e652043617074557265272030303030"], 0xb8)
dup3(0xffffffffffffffff, r6, 0x0)

5.643422948s ago: executing program 1 (id=2632):
r0 = syz_init_net_socket$bt_bnep(0x1f, 0x3, 0x4)
ioctl$sock_bt_bnep_BNEPCONNDEL(r0, 0x400442c9, &(0x7f0000000680)={0x0, @broadcast})

5.284026327s ago: executing program 1 (id=2635):
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x800, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000040)={0x44, 0x2, 0x0, "7a00f78c87420285c903be187e1d01e1327528cd7e5f3dfee6955a6c39ddf280", 0x49433553})

5.25698646s ago: executing program 7 (id=2636):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x40001e0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000540)={0x0, 0x0, 0x0}, 0x0)
r4 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r4, 0x0, 0x0)
syz_open_dev$loop(0x0, 0x2, 0x60500)
r5 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
connect$netrom(r5, &(0x7f0000000380)={{0x6, @null, 0xa}, [@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @bcast, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}]}, 0x48)
syz_init_net_socket$netrom(0x6, 0x5, 0x0)
fcntl$lock(0xffffffffffffffff, 0x6, 0x0)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(0x0, 0x1, &(0x7f0000000040)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2)
r6 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r6)
r7 = open(&(0x7f0000000140)='.\x00', 0x8000, 0x112)
getdents(r7, &(0x7f0000001fc0)=""/184, 0xb8)
getdents(r7, &(0x7f0000001fc0)=""/184, 0xb8)
listen(r5, 0x1ad72f7)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r8, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0)

5.216616141s ago: executing program 3 (id=2637):
r0 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(r0, 0x89f0, &(0x7f0000001440)={'gre0\x00', &(0x7f00000001c0)=@ethtool_regs})

5.190610075s ago: executing program 4 (id=2638):
r0 = io_uring_setup(0x1614, &(0x7f0000000340)={0x0, 0xa03, 0x40, 0x4, 0x1d})
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r0, 0xf, &(0x7f0000000540)={0x4, 0x2000000, 0x0, 0x0}, 0x20)

5.066393818s ago: executing program 1 (id=2639):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)=@newtaction={0x68, 0x30, 0x101, 0x0, 0x0, {}, [{0x54, 0x1, [@m_connmark={0x50, 0x1, 0x0, 0x0, {{0xd}, {0x20, 0x2, 0x0, 0x1, [@TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x0, 0x0, 0xf8df803362adb335}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x68}}, 0x4000000)

4.757299879s ago: executing program 5 (id=2640):
creat(&(0x7f0000010280)='./file0\x00', 0x182)
mount(&(0x7f00000001c0), &(0x7f0000000440)='./file0\x00', &(0x7f0000000200)='9p\x00', 0x0, &(0x7f0000000900)='trans=tcp,')

4.756635399s ago: executing program 3 (id=2641):
mremap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x3000, 0x3, &(0x7f0000ff5000/0x3000)=nil)
mremap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x5000000, 0x3, &(0x7f0000ffd000/0x1000)=nil)

3.606129614s ago: executing program 1 (id=2642):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20020008008f}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, 0x0, 0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, 0x0, 0x0)
r3 = socket$kcm(0x2, 0x5, 0x84)
setsockopt$sock_attach_bpf(r3, 0x84, 0xd, &(0x7f0000000000), 0x8)

3.577634695s ago: executing program 7 (id=2643):
r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/drop_packet\x00', 0x2, 0x0)
sendfile(r0, r0, 0x0, 0x1)

3.563434116s ago: executing program 3 (id=2644):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000010c0)={0x6, 0x4, &(0x7f0000000100)=ANY=[@ANYBLOB="180200000100008000000000000000008500000036000000950000"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x0, 0x2100, 0x0, &(0x7f0000000100), 0x0, 0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)

3.52510645s ago: executing program 4 (id=2645):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=@newlink={0x58, 0x10, 0x503, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x88a9fda5}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @vxcan={{0xa}, {0xfffffefd, 0x2, 0x0, 0x1, @val={0x14, 0x1, {{0x0, 0x0, 0x0, 0x0, 0xd020, 0x50000}}}}}}, @IFLA_NET_NS_PID={0x8}, @IFLA_MTU={0x8, 0x4, 0xffe1}]}, 0x58}, 0x1, 0x0, 0x0, 0x40000}, 0x0)

3.524638997s ago: executing program 5 (id=2646):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
syz_init_net_socket$x25(0x9, 0x5, 0x0)
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$PPPIOCSMRU(r0, 0x40047452, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x3e, 0x88}, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000100)=ANY=[@ANYBLOB="18000000090f0008000000000000000085"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, 0x2}, 0x94)
flistxattr(0xffffffffffffffff, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
r2 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000002c0)=ANY=[@ANYBLOB="00e47fffff0000000000a38cec6d742b3ef66e6294e87a591c21cd7c583352d13dce955e74d920d6ed972f"], 0x18}], 0x1}, 0x20000012)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000001c0)=0x6)
r5 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x80800)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r5, 0xc04064a0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000240)=[<r6=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCONNECTOR(r5, 0xc05064a7, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000280)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000340), 0x0, 0x6, 0x0, 0x0, r6})
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='setgroups\x00')
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000600)=ANY=[], 0x94}}, 0x8000)

3.258760944s ago: executing program 4 (id=2647):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
pidfd_send_signal(0xffffffffffffffff, 0x12, 0x0, 0x0)

2.452795558s ago: executing program 1 (id=2648):
openat$uhid(0xffffffffffffff9c, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000003900)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd120000000000008500000006000000b70000000000000095000000000000003faf4f1e7f2aa3d9b18ed81c0c869b51ec6c0af4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f36c70d0f13905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64f751a0f241b07080008002d75593a286cecc93e64c227c95aa0b784625704f07a72c234664c0af9360a1f7a5e6b607130c89f18c0c1089d8b853289e01aa27ae8b09e00e79ab20b0b8e1148f49faf2ad0000000000000006fa03c6468972089b302d7bf6023cdcedb5e0125ebbc08dee510cb2364149215108333719acd97cfa107d40224edc5465a932b77e74e802a0d42bc6099ad2300000080006ef6c1ff0900000000000010c63a949e8b7955394ffa82b8e942c89112f4ab87b1bfeda7be586602d985430cea0162ab3fcf4591c926abfb0767192302000000b0eea24492a660583eecb42cbcd3de3a83209da17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c95c25a573dc2edcaea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b5b7632f32030916f89c6dad7603f2ba2a790d62d6faec2fed44da4928b30142ba11de6c5d50b83bae613402216b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0eb97fca585ec6bf5af51d564beb6d952aab9c70764b0a8a7583c90b3433b809bdb9fbd48bc873495cbff8a326eea31ae4e0f7505ebf6c9d13330ca005ace1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223a0eb4fa39f6b5c02e6d6d90756ff57902a8f57000000009700cf0b4b8bc2294133000000000000000000030000000000000000000000000010008bc0d9559711e6e8861c46495ba585a4b2d02edc3e28dd271c896249ed85b980680b00002b435ac15fc0288d9b2a169cdcacc413038dafb7a2c8cb482bac0ac502d9ba96ffffff7f0000100000000000007d5ad897ef3b7cda42013d53046da21b40216e14ba2d6ad5656bfff17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccff729433282830689da6b53b263339863297771429d120000003341bf4abacac95900fca0493cf29b33dcc9ffffffffffffffd39fec2271ff01589646efd1cf870cd7bb2366fde41f94290c2a5ff870ce41fd3467decb05cfd9fcb32c8ed1dbd9d10a64c1083d5e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78100788f11f76161d46ea3abe0fa4d30dc94ef241875f3b4ce0232fcea69c271d7fa29822aea68a660e717a04becff0f719197724f4fce1093b62d7e8c7123d8ec571be54c72d978cf906df0042e36acd37d7f9e119f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2ae582786105c7df8be5877050c91301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c4d75cf2458e3546c1c776da64fb5abee0acfd235f2f4632c9062ece84c99a061887a20639b41c8c12ee86c50804042b3fb5aac518a75f9e7d7101d5e186c489b3a06fb99e0aa7f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af40326993947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f54c2d3335457acf37331766e472391e358c3b377327ac9ecc34f24c9ae153ec60ac0694dc55bff9f5f45f90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e66964ae09bb6d163118e4cbe024fd4500f8ff0700000000cc9d8046c216c1f895778cb25122a2a9f9b444aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99b355b72d538ba4958ea8e4aa37094191e10096e7e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250ddc8674152f94e3a409e2a3bce109b60000000000000000d6d5210d7503000000a87a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137abf9a404abde7750898b1bd627e873f8703be8672d70d1ab57075228a9f46ed9bd1f08fb8191bbab2dc51de3a61f0868afc4294859323e6c257a45319f18101288d139bd3da20fed05a8fe64680b0a3fc22dd70400000000946912d6c98cd1a9fbe1e7d58c08acaf30235b918a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ced69993e9960ff5f76015e6009556237badf4e7965bbe2777e808fcba821aa8e8c5c39609ff854352cb4900000000000000000000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66418d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466a53f1c96e0d4b3bc19faa5449209b083dbd334b47f067bbab40743b2a42010082008df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c3431ee97471c7868dcda7eaa69eb7f7f80572fdd11bb1d0d1280fbc22bf73468788df51710d7d31c632fc5ed1762eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331945ecefa26b8471d42645288d7226bbd9ccd628ab84875f2c50ba891cea592b0430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71f96756ea5cce7daac4be290159f6bcd75f0dda9de5532e71ae9e48b0ed0254a83100000000f6fbb869604d51a36a54c832e45b2569dc0d90b075225fde44c4e0973171ad47d6b0fdf9743af932cd6db49a47613808bad959710300000000000000832d0a45fa4242e24c7e800003c9e8095e02985f28e678f66422436f949e2ab8f162d7e3f855e378f4a1f40b0c6fb2d4b205a800b6d713acebc5b014e61a543a5a194f9ac18d76b5440e3b1a569e7397f6cafa86966d7ba19e720413267a6ccea9c439671d2c680f2753ca184eeeb843450368acb4383a01d25eb3d1e23e0f2645d1cdfa9fa410632f95a5f622f851c66ee7e30393cd7a4d67ff2a49c4f93c0984b5c2d4523497e4d64f95f08493564a1df87111c9bf3194fef97dcecc467ace45feeb685c5870d05f88a0f463db88d377442e1349acaf766218b54a9d624778e1c4e064c98e494198276eb2df7766411bef0ebb5000000000006065d635b0b7a00ee767221d8af9753387e0cd8d718f54a29df6eba3bd4c440e6e2172e3fcc01b8babb757b5c59217b80d0db3ba582814a604e4ef7a803e9ca7c85b35c9b93a9e0885e238b44ae1c2e64cce3b27083b8246829e64056000302bffff15405bd5f2eba20000000000000000000000000000000000009a9823fd8fbc5aa16509945ed032b48ea12d8e0588dc52702e4084913a06d468d0928bad76d697e1f85ab030e788d38788ee5b5428d4a971cc97db9fd231088e570735ce129e7e77fc2777692664a1488fd8d6dff4dad618fd54f529d4555c6507009ee69dd1bc55258789b24052137e9637f3efbab71720f88c3c44b3b7486f979e8a3174b531f573fe0e5239c000be2733c49546f6e8a9175ec6f14dbf72cac91643b2fd99c29eca28a3c2e60d5e5b8795fae16a7c3ea57e728eca35eaf0155a39f97580e079175426c088a0208040982a0000000000000000000000000051ceaaf0159fe61f2eade7603d0a7a56fb09cd119ac06adb6597155ae47846892bb423c024d8cbe9240b71ec6dc2124d3a19e2d714b273d95d1d3aa737cb04a33615ff2a730e51067d5d675d7122361c37c61a43b5afd865b60d4cae891b73220f17d25985a7f76834995e53a93a1c7b9eef267df691ca983a0b15bda7f6c5c1ca7aa50261a3089a1ebf0734c9b07e8951ff023263ad5aed8cfb49b49e128c697724c057d22c5df5aef27ce3db11d5ad5527d149d076e1a87e2df27c0cb8a67ad026bf953e88f10447e125c2c0f1aebee1f3390a9e3ddad4e2a6e0f6e4569fdefa19e870e04acf9493b963f98e23cfc665e4f465fa3f801e1957c399e45f61d3459b1c606204368bb931345af2823c487d2fd99db6ea6e008e7ffa06ca861551189d155bd077a79fe2c7e961352e56824f727d21d41eae78bfec4a2d7a7edbc8ef958c5ea599f7c25bf71c2340558aa12fdd24a88aaad5921aee7dae6a2f3009d9cb43ab4898d0f0aa565431b6abe585d75db04d1c9ba0b9de4ae8b0d3132bc6810cc9a693979f55174a72e1df9fdef35bc470f9e6e591982757f45c52c645d891bf63bb21fb66926ebe1a8525611fc3e8bb8795c36dc2a86b5ab46ff33cc74f61751b2dae92676db85c8d0c721b7ea4544bf51c95c86fcac1f434d09d1ee4928aafe23de66fed972e0dddfb33f64e48701b049239e7f552d816441d11c4c2647c014462344359198d97c4b6e9ed31ca18987b64de079b2bed641e8a92f13ca70844c65cb423d01950b0ebf44bd28e09c05d9ae5dd689fb880fb18d042219f5ac60c3a03b085abf3e8e3efc842a8d328733461f04c99607061c65ed14c61322a5ac2d371a95b8ad867ec92d13a4fa4ae033a09673866cd77f4bcdaaa05207166b19a8758d8855400d8c6a7242dc207251e8797eca24ea4f487663e60f2f5e1f1424958fd148f846830e88a42d93e1fe9c0b4a4a268921738938aa9f3cb3811ac87c54c8ebc8bcfb4613cc3a997ff1579edbd4ade8020e3ad001b072b1a751b588ac4639f35a58e00a50c0270608c7a7f10132b1c25b9ea81232fbef665f6212f875b2a0000000000000000000000000000cf7b6c4ba9bec153d6834bfef080df374703a8ff56a63ec1fe5f2e05a79e3cace7283dd68d41e94420c325fe4dae144fde5ec25a87d625cab20753a77b323fa3783c8b675859b9012647885a242adfee2fe812ecbe5191e0a15142f7349e7627cc39d724e2e34e7a24154f26ae3125b36d0504965295d0453902ac7079b11a3a1e655e482331e3dc35b2e7e4e3ea99064fe5b9c8ae0ca3e5fd653f3286a99d81ce4eba765c38d097391ad4babac38ce5b4344e24a361cd54e5"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r0}, 0x10)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdir(&(0x7f0000000180)='./file0\x00', 0x0)
r4 = memfd_create(&(0x7f0000000100)='\vem\xda\x99R@m\xfc\xfe\x9b#*\xff', 0x0)
write(r4, &(0x7f0000000040)="0600", 0x2)
write$FUSE_NOTIFY_STORE(r4, &(0x7f0000000180)=ANY=[], 0xe)
sendfile(r4, r4, &(0x7f0000001000), 0xffff)
mmap(&(0x7f0000000000/0x7000)=nil, 0x7000, 0x80000000004, 0x11, r4, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f000001a000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r5, 0x1, 0x1a, &(0x7f000002eff0)={0x135, &(0x7f0000000000)=[{}]}, 0x10)

2.452088816s ago: executing program 7 (id=2649):
openat$uhid(0xffffffffffffff9c, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000003900)=ANY=[@ANYBLOB], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r0}, 0x10)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdir(0x0, 0x0)
r4 = memfd_create(&(0x7f0000000100)='\vem\xda\x99R@m\xfc\xfe\x9b#*\xff', 0x0)
write(r4, &(0x7f0000000040)="0600", 0x2)
write$FUSE_NOTIFY_STORE(r4, &(0x7f0000000180)=ANY=[], 0xe)
sendfile(r4, r4, &(0x7f0000001000), 0xffff)
mmap(&(0x7f0000000000/0x7000)=nil, 0x7000, 0x80000000004, 0x11, r4, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f000001a000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r5, 0x1, 0x1a, &(0x7f000002eff0)={0x135, &(0x7f0000000000)=[{}]}, 0x10)

2.400036779s ago: executing program 4 (id=2650):
r0 = socket(0x10, 0x3, 0xa)
sendmsg$NFT_BATCH(r0, &(0x7f0000002c40)={0x0, 0x0, &(0x7f0000002c00)={&(0x7f00000004c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [], {0x14, 0x11, 0x1, 0x0, 0x0, {0xa}}}, 0x28}, 0x1, 0x0, 0x0, 0x80}, 0x844)

1.905333225s ago: executing program 5 (id=2651):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000007040)={0x0, 0x0, &(0x7f0000007000)={&(0x7f0000000d80)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x101, 0x0, 0x0, {0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}]}, @NFT_MSG_NEWTABLE={0x28, 0x0, 0xa, 0x801, 0x0, 0x0, {0xa}, [@NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWTABLE={0x28, 0x0, 0xa, 0x3, 0x0, 0x0, {0xa}, [@NFTA_TABLE_FLAGS={0x8}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0x98}}, 0x0)

929.795371ms ago: executing program 4 (id=2652):
r0 = openat$binderfs_ctrl(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder-control\x00', 0x0, 0x0)
ioctl$BINDER_CTL_ADD(r0, 0xc1086201, &(0x7f00000000c0)={'custom0\x00'})

707.234265ms ago: executing program 7 (id=2653):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0x13, 0x0, 0x0)

558.133386ms ago: executing program 3 (id=2654):
r0 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x10, 0x8, &(0x7f0000001340)=ANY=[@ANYBLOB="beaa000000000000791008000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000bf03000000000000850000000c000000b70000000000000095"], &(0x7f0000000480)='syzkaller\x00'}, 0x94)

490.978369ms ago: executing program 5 (id=2655):
r0 = syz_open_dev$usbfs(&(0x7f0000000080), 0x77, 0x101301)
ioctl$USBDEVFS_CONNECTINFO(r0, 0x8004550f, &(0x7f0000002a40))

370.527151ms ago: executing program 7 (id=2656):
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f00000001c0), 0xc00, 0x0)
ioctl$FBIOPUTCMAP(r0, 0x4605, &(0x7f0000000400)={0x7, 0x1, &(0x7f0000000200)=[0xffff], 0x0, 0x0, 0x0})

355.961431ms ago: executing program 4 (id=2657):
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_STAT_SET(r0, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x24040832}, 0xc094)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0x3, &(0x7f0000000300)=ANY=[@ANYRES16, @ANYRESDEC], &(0x7f0000000280)='GPL\x00', 0xa, 0xb9, &(0x7f0000000140)=""/185, 0x40f00, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
socket$inet_udplite(0x2, 0x2, 0x88)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000600)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mknod$loop(&(0x7f0000000180)='./file0\x00', 0x6000, 0x0)
r3 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
r4 = dup2(r3, r3)
ioctl$BLKTRACESETUP(r4, 0xc0481273, &(0x7f0000000240)={'\x00', 0x40, 0xa, 0x1, 0x40000000, 0x10})
ioctl$BLKTRACESTART(r3, 0x1274, 0x0)
ioctl$BLKTRACETEARDOWN(r4, 0x1276, 0x0)
r5 = openat$proc_mixer(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/card0/oss_mixer\x00', 0x2002, 0x0)
write$proc_mixer(r5, &(0x7f0000000180)=ANY=[@ANYBLOB="5245434c45560a50484f4e454f55540a535045414b455220274344272030303030303030303030303030303030303030300a4449474954414c32202706b86e652043617074557265272030303030"], 0xb8)
dup3(0xffffffffffffffff, r5, 0x0)

160.62665ms ago: executing program 1 (id=2658):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20020008008f}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, 0x0, 0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, 0x0, 0x0)
r3 = socket$kcm(0x2, 0x5, 0x84)
setsockopt$sock_attach_bpf(r3, 0x84, 0xd, &(0x7f0000000000), 0x8)

159.640463ms ago: executing program 5 (id=2659):
syz_open_dev$vbi(0x0, 0x0, 0x2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
request_key(&(0x7f0000001000)='dns_resolver\x00', &(0x7f0000001040)={'syz', 0x2}, &(0x7f0000001080)='\x00', 0x0)
request_key(&(0x7f00000010c0)='dns_resolver\x00', &(0x7f0000001100)={'syz', 0x2}, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$x25(0x9, 0x5, 0x0)
r4 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
connect$netrom(r4, &(0x7f0000000240)={{0x6, @rose, 0x3}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @bcast]}, 0x48)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r5, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
write(r5, &(0x7f0000000340)="08000000010000", 0x7)
setsockopt$inet_tcp_TCP_FASTOPEN_KEY(0xffffffffffffffff, 0x6, 0x21, &(0x7f0000000b00)="86cf8445f4ba1d9f20174688f169e58c", 0x10)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[], 0x28}}, 0x0)
sendmsg$NFQNL_MSG_CONFIG(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c0000000203f403000000205ed32f0045aee3000000000000eb4000"], 0x1c}}, 0x0)
sendmsg$NFQNL_MSG_VERDICT(r6, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000480)=ANY=[@ANYBLOB="1400000001030101fc1f8a0cccb70000000000000000000000108a205b981679413b1fa93c84bc23b2a1857c9210fcd4dad0937cc4a1a8e472d9cca75cf8a5e6d380d0432b5dbe2c8c29e2e10c509a9ccb7b7a15cf32d4294fce4332115659e467b4a5ef9d787a8bd7b99de986973a17f1cdb74d35c4ada40cac7b34a055323d49dca7d72d8008cd505207f53f06"], 0x14}}, 0x0)
syz_io_uring_setup(0x7082, &(0x7f00000003c0)={0x0, 0x8b9c, 0x8, 0x0, 0x2b8}, &(0x7f0000000100), &(0x7f0000000140))

149.611712ms ago: executing program 3 (id=2660):
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000600)={[{@redirect_dir_nofollow}, {@userxattr}]})

0s ago: executing program 7 (id=2661):
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x400, 0x0)
ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0)

kernel console output (not intermixed with test programs):

9] Bluetooth: hci4: command tx timeout
[ 1553.758210][T13979] Bluetooth: hci4: command tx timeout
[ 1555.367911][T13938] workqueue: Failed to create a rescuer kthread for wq "bond0": -EINTR
[ 1555.490861][T14255] vlan2: entered promiscuous mode
[ 1555.491122][T14255] vlan2: entered allmulticast mode
[ 1555.491136][T14255] hsr_slave_1: entered allmulticast mode
[ 1556.973087][T14249] vxcan1 speed is unknown, defaulting to 1000
[ 1557.174292][T14316] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1719'.
[ 1557.235146][T14318] Option 'TX¼÷Æ®€' to dns_resolver key: bad/missing value
[ 1558.166135][   T37] audit: type=1326 audit(2000001056.710:1881): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14313 comm="syz.3.1720" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e620eeec9 code=0x7ffc0000
[ 1558.166289][   T37] audit: type=1326 audit(2000001056.710:1882): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14313 comm="syz.3.1720" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e620eeec9 code=0x7ffc0000
[ 1558.166339][   T37] audit: type=1326 audit(2000001056.710:1883): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14313 comm="syz.3.1720" exe="/root/syz-executor" sig=0 arch=c000003e syscall=83 compat=0 ip=0x7f2e620eeec9 code=0x7ffc0000
[ 1558.166387][   T37] audit: type=1326 audit(2000001056.720:1884): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14313 comm="syz.3.1720" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e620eeec9 code=0x7ffc0000
[ 1558.166435][   T37] audit: type=1326 audit(2000001056.720:1885): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14313 comm="syz.3.1720" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e620eeec9 code=0x7ffc0000
[ 1558.166482][   T37] audit: type=1326 audit(2000001056.720:1886): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14313 comm="syz.3.1720" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7f2e620eeec9 code=0x7ffc0000
[ 1558.166531][   T37] audit: type=1326 audit(2000001056.720:1887): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14313 comm="syz.3.1720" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e620eeec9 code=0x7ffc0000
[ 1558.166579][   T37] audit: type=1326 audit(2000001056.720:1888): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14313 comm="syz.3.1720" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e620eeec9 code=0x7ffc0000
[ 1558.166629][   T37] audit: type=1326 audit(2000001056.720:1889): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14313 comm="syz.3.1720" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f2e620eeec9 code=0x7ffc0000
[ 1558.166678][   T37] audit: type=1326 audit(2000001056.720:1890): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14313 comm="syz.3.1720" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e620eeec9 code=0x7ffc0000
[ 1565.638857][T14218] vxcan1 speed is unknown, defaulting to 1000
[ 1565.646089][T14249] lo speed is unknown, defaulting to 1000
[ 1571.396207][T13150] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[ 1578.228922][T14408] =======================================================
[ 1578.228922][T14408] WARNING: The mand mount option has been deprecated and
[ 1578.228922][T14408]          and is ignored by this kernel. Remove the mand
[ 1578.228922][T14408]          option from the mount to silence this warning.
[ 1578.228922][T14408] =======================================================
[ 1578.370009][T14408] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1579.280885][T14407] input: syz0 as /devices/virtual/input/input15
[ 1580.606354][   T37] kauditd_printk_skb: 4 callbacks suppressed
[ 1580.606374][   T37] audit: type=1107 audit(2000001078.040:1895): pid=14410 uid=0 auid=4294967295 ses=4294967295 subj=_ msg=''
[ 1581.188575][T14218] lo speed is unknown, defaulting to 1000
[ 1583.215160][T14249] chnl_net:caif_netlink_parms(): no params data found
[ 1583.325639][T14444] 9pnet_fd: Insufficient options for proto=fd
[ 1586.525368][ T3783] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1587.456352][T14473] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1740'.
[ 1587.456414][T14473] netlink: 'syz.0.1740': attribute type 3 has an invalid length.
[ 1588.657964][T13979] Bluetooth: hci0: unexpected cc 0x203c length: 9 > 1
[ 1588.658000][T13979] Bluetooth: hci0: unexpected event for opcode 0x203c
[ 1588.942124][T14478] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1742'.
[ 1588.960799][   T37] audit: type=1400 audit(2000001087.560:1896): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="^" requested=w pid=14476 comm="syz.4.1742" daddr=::ffff:172.20.20.20 dest=20001
[ 1589.476123][T14482] trusted_key: encrypted_key: keyword 'new¼°±‹U£_5' not recognized
[ 1595.202666][ T3783] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1595.263122][T14249] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1595.326163][T14249] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1595.326450][T14249] bridge_slave_0: entered allmulticast mode
[ 1595.331189][T14249] bridge_slave_0: entered promiscuous mode
[ 1595.470050][T14249] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1595.470207][T14249] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1595.470473][T14249] bridge_slave_1: entered allmulticast mode
[ 1595.505931][T14249] bridge_slave_1: entered promiscuous mode
[ 1598.018375][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1598.603794][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1598.767557][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1600.251272][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1600.453842][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1600.636403][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1600.766509][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1600.882743][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1602.871162][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1603.114993][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1604.185249][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1604.272817][ T3783] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1604.358623][T14222] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1604.386811][T14222] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1604.388600][T14222] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1604.390484][T14222] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1604.391277][T14222] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1604.469124][T14249] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1604.996240][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1605.296708][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1605.407647][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1605.708024][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1606.266769][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1607.298933][T14222] Bluetooth: hci1: command tx timeout
[ 1607.608059][T14558] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_rx_wq": -EINTR
[ 1607.903924][ T1319] ieee802154 phy0 wpan0: encryption failed: -22
[ 1607.904001][ T1319] ieee802154 phy1 wpan1: encryption failed: -22
[ 1609.152106][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1609.937441][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1609.942205][T14222] Bluetooth: hci1: command tx timeout
[ 1610.069741][ T3783] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1610.170005][T13979] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1610.203463][T13979] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1610.233718][T13979] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1610.235027][T13979] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1610.241990][T13979] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1610.855640][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1611.079277][T14583] block device autoloading is deprecated and will be removed.
[ 1611.224265][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1611.475551][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1611.754907][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1612.144255][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1612.561611][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1612.590421][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1612.722573][T14222] Bluetooth: hci2: command tx timeout
[ 1612.760467][T14222] Bluetooth: hci1: command tx timeout
[ 1612.968042][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1613.397652][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1613.627428][T14550] vxcan1 speed is unknown, defaulting to 1000
[ 1614.968708][ T5956] IPVS: starting estimator thread 0...
[ 1615.057451][T14620] IPVS: using max 1 ests per chain, 2400 per kthread
[ 1615.634166][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1615.643432][T14222] Bluetooth: hci1: command tx timeout
[ 1615.643470][T14222] Bluetooth: hci2: command tx timeout
[ 1615.831547][ T3783] bridge_slave_1: left allmulticast mode
[ 1615.831571][ T3783] bridge_slave_1: left promiscuous mode
[ 1615.831759][ T3783] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1615.999200][ T3783] bridge_slave_0: left allmulticast mode
[ 1615.999232][ T3783] bridge_slave_0: left promiscuous mode
[ 1615.999519][ T3783] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1616.188506][ T3783] bridge_slave_1: left allmulticast mode
[ 1616.188542][ T3783] bridge_slave_1: left promiscuous mode
[ 1616.188829][ T3783] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1616.478153][ T3783] bridge_slave_0: left allmulticast mode
[ 1616.478176][ T3783] bridge_slave_0: left promiscuous mode
[ 1616.478370][ T3783] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1616.589166][T14637] IPVS: set_ctl: invalid protocol: 29 0.0.0.0:20000
[ 1616.762445][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1616.835508][T14639] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1616.863220][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1617.095401][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1617.697190][ T5801] Bluetooth: hci2: command tx timeout
[ 1619.758997][ T5801] Bluetooth: hci2: command tx timeout
[ 1625.029966][T14673] fuse: Bad value for 'fd'
[ 1627.496548][ T3783] bond0 (unregistering): Released all slaves
[ 1629.016795][T14694] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[ 1629.016853][T14694] CIFS mount error: No usable UNC path provided in device string!
[ 1629.016853][T14694] 
[ 1629.017184][T14694] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[ 1629.588303][T14695] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(11)
[ 1629.591915][T14695] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1629.634795][T14695] vhci_hcd vhci_hcd.0: Device attached
[ 1629.956509][T14696] vhci_hcd: connection closed
[ 1629.975459][T10040] vhci_hcd: stop threads
[ 1629.975527][T10040] vhci_hcd: release socket
[ 1629.978388][T10040] vhci_hcd: disconnect device
[ 1629.991319][ T5809] usb 39-1: new high-speed USB device number 2 using vhci_hcd
[ 1630.002198][ T5809] usb 39-1: enqueue for inactive port 0
[ 1630.118316][ T3783] bond0 (unregistering): Released all slaves
[ 1630.126267][ T5809] vhci_hcd: vhci_device speed not set
[ 1630.347486][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1630.573057][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1630.789232][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1631.822975][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1632.326430][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1632.421114][T14705] fuse: Bad value for 'fd'
[ 1633.540914][ T5801] Bluetooth: hci6: unexpected cc 0x203c length: 9 > 1
[ 1633.540950][ T5801] Bluetooth: hci6: unexpected event for opcode 0x203c
[ 1633.608216][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1635.211734][T14710] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1780'.
[ 1635.443934][   T37] audit: type=1400 audit(2000001134.040:1897): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="^" requested=w pid=14708 comm="syz.3.1780" daddr=::ffff:172.20.20.20 dest=20001
[ 1636.358671][ T3783] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1636.418731][ T3783] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1636.438763][ T3783] bond0 (unregistering): Released all slaves
[ 1637.018008][T14579] vxcan1 speed is unknown, defaulting to 1000
[ 1637.020273][T14550] lo speed is unknown, defaulting to 1000
[ 1645.096508][ T5801] Bluetooth: hci6: unknown advertising packet type: 0xdf
[ 1645.979577][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1647.197401][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1647.574681][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1647.740898][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1648.251465][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1648.305204][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1648.438549][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1648.621772][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1648.770240][T14783] input input16: cannot allocate more than FF_MAX_EFFECTS effects
[ 1650.010443][T14579] lo speed is unknown, defaulting to 1000
[ 1654.343513][T14550] chnl_net:caif_netlink_parms(): no params data found
[ 1655.930640][T14807] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1656.432749][T14828] fuse: Unknown parameter '0x0000000000000007'
[ 1656.883672][T14833] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1800'.
[ 1657.821900][T14842] vimc link validate: Sensor A:src:640x480 (0x33424752, 8, 0, 0, 0) Raw Capture 0:snk:640x480 (0x33424752, 8, 0, 0, 0)
[ 1658.086809][T14579] chnl_net:caif_netlink_parms(): no params data found
[ 1658.749003][T14222] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1658.770222][T14222] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1658.784647][T14222] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1658.807821][T14222] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1658.817061][T14222] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1660.886151][T14222] Bluetooth: hci4: command tx timeout
[ 1662.956112][T14222] Bluetooth: hci4: command tx timeout
[ 1663.086095][   T37] audit: type=1400 audit(2000001160.740:1898): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="^" requested=w pid=14862 comm="syz.4.1803" dest=2
[ 1665.036164][T14222] Bluetooth: hci4: command tx timeout
[ 1665.252093][T14843] vxcan1 speed is unknown, defaulting to 1000
[ 1665.332790][T14893] netlink: 88 bytes leftover after parsing attributes in process `syz.3.1807'.
[ 1666.665654][T14905] ptrace attach of "./syz-executor exec"[5811] was attempted by "./syz-executor exec"[14905]
[ 1667.108398][T14913] befs: (nbd0): No write support. Marking filesystem read-only
[ 1667.116270][T14222] Bluetooth: hci4: command tx timeout
[ 1667.154803][T14913] befs: (nbd0): unable to read superblock
[ 1667.937908][ T5801] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1667.958849][ T5801] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1667.985424][ T5801] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1668.000611][ T5801] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1668.016386][ T5801] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1668.862176][   T37] audit: type=1400 audit(2000001167.100:1899): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="^" requested=w pid=14923 comm="syz.0.1810" daddr=::ffff:172.20.20.170 dest=20006
[ 1669.618260][ T1319] ieee802154 phy0 wpan0: encryption failed: -22
[ 1669.618334][ T1319] ieee802154 phy1 wpan1: encryption failed: -22
[ 1670.166773][T14222] Bluetooth: hci1: command tx timeout
[ 1671.416132][T14843] lo speed is unknown, defaulting to 1000
[ 1672.324583][T14918] vxcan1 speed is unknown, defaulting to 1000
[ 1673.402229][T14222] Bluetooth: hci1: command tx timeout
[ 1675.460815][T14222] Bluetooth: hci1: command tx timeout
[ 1677.684141][T14972] No control pipe specified
[ 1678.204416][ T5801] Bluetooth: hci1: command tx timeout
[ 1682.518470][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1683.437865][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1684.178651][   T31] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[ 1684.799713][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1685.083096][   T31] usb 4-1: Using ep0 maxpacket: 16
[ 1685.086131][   T31] usb 4-1: config 0 has no interfaces?
[ 1685.086173][   T31] usb 4-1: New USB device found, idVendor=04d8, idProduct=00df, bcdDevice= 0.00
[ 1685.086197][   T31] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1685.210914][   T31] usb 4-1: config 0 descriptor??
[ 1685.253854][   T31] usb 4-1: can't set config #0, error -71
[ 1685.254506][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1685.357487][ T3783] hsr_slave_0: left promiscuous mode
[ 1685.406884][   T31] usb 4-1: USB disconnect, device number 5
[ 1685.450318][ T3783] hsr_slave_1: left promiscuous mode
[ 1685.451512][ T3783] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1685.451539][ T3783] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1685.551321][ T3783] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1685.551354][ T3783] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1685.777240][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1685.954511][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1686.428063][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1686.811700][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1687.032818][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1687.357436][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1687.640017][ T3783] veth1_macvtap: left promiscuous mode
[ 1687.640147][ T3783] veth0_macvtap: left promiscuous mode
[ 1687.640443][ T3783] veth1_vlan: left promiscuous mode
[ 1687.640657][ T3783] veth0_vlan: left promiscuous mode
[ 1688.263594][   T37] audit: type=1326 audit(2000001186.860:1900): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15019 comm="syz.4.1826" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f854d5feec9 code=0x7ffc0000
[ 1688.263656][   T37] audit: type=1326 audit(2000001186.860:1901): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15019 comm="syz.4.1826" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f854d5feec9 code=0x7ffc0000
[ 1688.266209][   T37] audit: type=1326 audit(2000001186.860:1902): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15019 comm="syz.4.1826" exe="/root/syz-executor" sig=0 arch=c000003e syscall=448 compat=0 ip=0x7f854d5feec9 code=0x7ffc0000
[ 1688.266268][   T37] audit: type=1326 audit(2000001186.860:1903): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15019 comm="syz.4.1826" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f854d5feec9 code=0x7ffc0000
[ 1688.266317][   T37] audit: type=1326 audit(2000001186.860:1904): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15019 comm="syz.4.1826" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f854d5feec9 code=0x7ffc0000
[ 1688.266367][   T37] audit: type=1326 audit(2000001186.860:1905): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15019 comm="syz.4.1826" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7f854d600d5c code=0x7ffc0000
[ 1688.266422][   T37] audit: type=1326 audit(2000001186.860:1906): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15019 comm="syz.4.1826" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7f854d600c94 code=0x7ffc0000
[ 1688.266466][   T37] audit: type=1326 audit(2000001186.860:1907): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15019 comm="syz.4.1826" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7f854d600c94 code=0x7ffc0000
[ 1688.266510][   T37] audit: type=1326 audit(2000001186.860:1908): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15019 comm="syz.4.1826" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f854d5feec9 code=0x7ffc0000
[ 1688.266555][   T37] audit: type=1326 audit(2000001186.860:1909): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15019 comm="syz.4.1826" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f854d5feec9 code=0x7ffc0000
[ 1688.338117][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1688.815010][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1690.594534][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1690.658465][T15027] ptrace attach of "./syz-executor exec"[13388] was attempted by "./syz-executor exec"[15027]
[ 1690.749394][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1690.819462][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1690.921051][T15029] befs: (nbd3): No write support. Marking filesystem read-only
[ 1690.978865][T15029] befs: (nbd3): unable to read superblock
[ 1691.084096][T15030] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1828'.
[ 1691.798096][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1691.878497][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1691.951264][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1693.820598][T15040] netlink: 'syz.3.1830': attribute type 2 has an invalid length.
[ 1698.136668][ T3783] team0 (unregistering): Port device team_slave_1 removed
[ 1698.528494][ T3783] team0 (unregistering): Port device team_slave_0 removed
[ 1699.942321][T15054] netlink: 132 bytes leftover after parsing attributes in process `syz.3.1833'.
[ 1701.725800][T14222] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1701.782323][T14222] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1701.801638][T14222] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1701.804258][T14222] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1701.805199][T14222] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1702.198714][T15023] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -12
[ 1702.198762][T15023] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -12
[ 1702.198781][T15023] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[ 1702.299198][ T5809] vxcan1 speed is unknown, defaulting to 1000
[ 1702.299229][ T5809] syz2: Port: 1 Link DOWN
[ 1702.300026][T14918] lo speed is unknown, defaulting to 1000
[ 1702.346988][T11811] smc: removing ib device syz2
[ 1703.024301][T15068] qnx4: no qnx4 filesystem (no root dir).
[ 1703.094688][   T37] kauditd_printk_skb: 1 callbacks suppressed
[ 1703.094754][   T37] audit: type=1400 audit(2000001201.360:1911): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="^" requested=w pid=15063 comm="syz.4.1835" daddr=::ffff:172.20.20.170 dest=20002
[ 1703.927499][ T5801] Bluetooth: hci2: command tx timeout
[ 1704.342931][T13296] vxcan1 speed is unknown, defaulting to 1000
[ 1706.007871][ T5801] Bluetooth: hci2: command tx timeout
[ 1706.082707][T15058] lo speed is unknown, defaulting to 1000
[ 1706.476440][T14843] chnl_net:caif_netlink_parms(): no params data found
[ 1707.386154][T13167] usb 5-1: new full-speed USB device number 7 using dummy_hcd
[ 1707.564511][T13167] usb 5-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 9.00
[ 1707.564533][T13167] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1707.564545][T13167] usb 5-1: Product: syz
[ 1707.564553][T13167] usb 5-1: Manufacturer: syz
[ 1707.564561][T13167] usb 5-1: SerialNumber: syz
[ 1707.607763][T13167] usb 5-1: config 0 descriptor??
[ 1707.610909][T13167] ftdi_sio 5-1:0.0: FTDI USB Serial Device converter detected
[ 1707.612721][T13167] usb 5-1: Detected FT232H
[ 1708.331441][ T5801] Bluetooth: hci2: command tx timeout
[ 1710.362933][T15110] 9pnet_virtio: no channels available for device syz
[ 1711.023425][ T5801] Bluetooth: hci2: command tx timeout
[ 1711.389071][T13167] ftdi_sio ttyUSB0: Unable to read latency timer: -71
[ 1711.389476][T13167] ftdi_sio ttyUSB0: Unable to write latency timer: -71
[ 1711.389853][T13167] ftdi_sio 5-1:0.0: GPIO initialisation failed: -71
[ 1711.398844][T13167] usb 5-1: FTDI USB Serial Device converter now attached to ttyUSB0
[ 1711.446203][T13167] usb 5-1: USB disconnect, device number 7
[ 1711.580540][T13167] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[ 1711.591738][T13167] ftdi_sio 5-1:0.0: device disconnected
[ 1712.059640][T15119] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1712.798363][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1712.823481][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1712.902778][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1713.266175][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1713.335561][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1713.816263][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1714.932681][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1714.957677][T15136] ip_tunnel: non-ECT from 0.0.0.0 with TOS=0x3
[ 1715.516187][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1715.844453][T15146] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1850'.
[ 1716.398958][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1717.013079][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1717.634433][T14843] workqueue: Failed to create a rescuer kthread for wq "wg-crypt-wg0": -EINTR
[ 1718.553116][T15163] TCP: TCP_TX_DELAY enabled
[ 1718.567139][T15163] program syz.3.1851 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1720.212990][T15168] qnx4: no qnx4 filesystem (no root dir).
[ 1720.713149][   T37] audit: type=1400 audit(2000001218.770:1912): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="^" requested=w pid=15165 comm="syz.3.1852" daddr=::ffff:172.20.20.170 dest=20002
[ 1724.949656][T14222] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1724.957532][T14222] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1724.972160][T14222] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1724.988821][T14222] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1724.994705][T14222] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1725.331066][T15186] ALSA: mixer_oss: invalid OSS volume ''
[ 1726.162149][T15195] ptrace attach of "./syz-executor exec"[13385] was attempted by "./syz-executor exec"[15195]
[ 1726.350653][T15192] befs: (nbd4): No write support. Marking filesystem read-only
[ 1726.408026][T15192] befs: (nbd4): unable to read superblock
[ 1726.549408][T15181] lo speed is unknown, defaulting to 1000
[ 1727.047816][T14222] Bluetooth: hci3: command tx timeout
[ 1727.533457][T15208] tmpfs: Bad value for 'mpol'
[ 1729.116065][T14222] Bluetooth: hci3: command tx timeout
[ 1729.820554][ T5801] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1729.852662][ T5801] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1729.861689][ T5801] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1729.882170][ T5801] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1729.891549][ T5801] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1730.563714][ T1319] ieee802154 phy0 wpan0: encryption failed: -22
[ 1730.563798][ T1319] ieee802154 phy1 wpan1: encryption failed: -22
[ 1731.013855][   T37] audit: type=1326 audit(2000001229.610:1913): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15242 comm="syz.4.1866" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f854d5feec9 code=0x0
[ 1731.395009][ T5801] Bluetooth: hci3: command tx timeout
[ 1731.454476][T15058] chnl_net:caif_netlink_parms(): no params data found
[ 1732.264556][T14222] Bluetooth: hci1: command tx timeout
[ 1732.522428][T15220] lo speed is unknown, defaulting to 1000
[ 1732.706099][T13296] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[ 1732.856535][T13296] usb 5-1: Using ep0 maxpacket: 8
[ 1732.860222][T13296] usb 5-1: config 1 interface 0 altsetting 5 endpoint 0x81 has an invalid bInterval 64, changing to 10
[ 1732.860260][T13296] usb 5-1: config 1 interface 0 altsetting 5 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 1732.860284][T13296] usb 5-1: config 1 interface 0 altsetting 5 endpoint 0x82 has invalid wMaxPacketSize 0
[ 1732.860306][T13296] usb 5-1: config 1 interface 0 has no altsetting 0
[ 1732.874624][T13296] usb 5-1: New USB device found, idVendor=1044, idProduct=7a4d, bcdDevice= 0.40
[ 1732.874650][T13296] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1732.874669][T13296] usb 5-1: Product: syz
[ 1732.874682][T13296] usb 5-1: Manufacturer: syz
[ 1732.874694][T13296] usb 5-1: SerialNumber: syz
[ 1733.232361][T13296] usbhid 5-1:1.0: can't add hid device: -71
[ 1733.232505][T13296] usbhid 5-1:1.0: probe with driver usbhid failed with error -71
[ 1733.400871][T13296] usb 5-1: USB disconnect, device number 8
[ 1734.064560][T14222] Bluetooth: hci3: command tx timeout
[ 1734.360049][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1734.396368][T14222] Bluetooth: hci1: command tx timeout
[ 1734.637801][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1734.934451][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1735.031683][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1736.864035][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1736.866817][ T5801] Bluetooth: hci1: command tx timeout
[ 1737.158922][T15058] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1737.159157][T15058] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1737.159477][T15058] bridge_slave_0: entered allmulticast mode
[ 1737.162840][T15058] bridge_slave_0: entered promiscuous mode
[ 1737.187083][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1737.279451][T15058] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1737.279610][T15058] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1737.279930][T15058] bridge_slave_1: entered allmulticast mode
[ 1737.284504][T15058] bridge_slave_1: entered promiscuous mode
[ 1738.170390][T15058] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1738.432976][T15058] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1738.446069][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1738.478036][T15181] chnl_net:caif_netlink_parms(): no params data found
[ 1739.479278][T14222] Bluetooth: hci1: command tx timeout
[ 1740.042597][T15058] team0: Port device team_slave_0 added
[ 1740.086119][T15061] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[ 1740.125495][ T3783] IPVS: stop unused estimator thread 0...
[ 1740.256040][T15061] usb 5-1: Using ep0 maxpacket: 32
[ 1740.258538][T15061] usb 5-1: config 1 interface 0 altsetting 254 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1740.258569][T15061] usb 5-1: config 1 interface 0 altsetting 254 bulk endpoint 0x82 has invalid maxpacket 32
[ 1740.258593][T15061] usb 5-1: config 1 interface 0 altsetting 254 has an endpoint descriptor with address 0x95, changing to 0x85
[ 1740.258618][T15061] usb 5-1: config 1 interface 0 altsetting 254 endpoint 0x85 has an invalid bInterval 0, changing to 7
[ 1740.258643][T15061] usb 5-1: config 1 interface 0 altsetting 254 endpoint 0x85 has invalid wMaxPacketSize 0
[ 1740.258665][T15061] usb 5-1: config 1 interface 0 altsetting 254 has 3 endpoint descriptors, different from the interface descriptor's value: 22
[ 1740.258705][T15061] usb 5-1: config 1 interface 0 has no altsetting 0
[ 1740.260278][T15061] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1740.260304][T15061] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[ 1740.260325][T15061] usb 5-1: SerialNumber: syz
[ 1740.287879][T15334] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[ 1740.307069][T15061] cdc_acm 5-1:1.0: Control and data interfaces are not separated!
[ 1740.418616][T15058] team0: Port device team_slave_1 added
[ 1740.535038][ T5956] usb 5-1: USB disconnect, device number 9
[ 1741.485733][T15058] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1741.485747][T15058] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1741.485762][T15058] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1742.977354][T15058] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1742.977374][T15058] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1742.977403][T15058] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1743.255231][T15181] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1743.255402][T15181] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1743.255666][T15181] bridge_slave_0: entered allmulticast mode
[ 1743.269047][T15181] bridge_slave_0: entered promiscuous mode
[ 1743.308302][T15181] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1743.308468][T15181] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1743.308745][T15181] bridge_slave_1: entered allmulticast mode
[ 1743.325681][T15181] bridge_slave_1: entered promiscuous mode
[ 1743.336798][T15220] chnl_net:caif_netlink_parms(): no params data found
[ 1744.378268][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1744.549275][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1744.798673][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1745.297130][ T6604] usb 5-1: new full-speed USB device number 10 using dummy_hcd
[ 1745.408359][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1745.507527][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1745.586181][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1745.706384][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1745.784501][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1745.840678][ T6604] usb 5-1: config 0 has an invalid interface number: 170 but max is 0
[ 1745.840708][ T6604] usb 5-1: config 0 has no interface number 0
[ 1745.840772][ T6604] usb 5-1: config 0 interface 170 altsetting 0 endpoint 0x88 has invalid maxpacket 1023, setting to 64
[ 1745.852056][ T6604] usb 5-1: New USB device found, idVendor=0489, idProduct=e0da, bcdDevice=a4.45
[ 1745.852085][ T6604] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1745.852103][ T6604] usb 5-1: Product: syz
[ 1745.852116][ T6604] usb 5-1: Manufacturer: syz
[ 1745.852128][ T6604] usb 5-1: SerialNumber: syz
[ 1745.878783][ T6604] usb 5-1: config 0 descriptor??
[ 1745.879808][T15401] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[ 1745.898207][ T6604] option 5-1:0.170: GSM modem (1-port) converter detected
[ 1745.909669][T15181] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1746.139943][ T6604] usb 5-1: USB disconnect, device number 10
[ 1746.167098][ T6604] option 5-1:0.170: device disconnected
[ 1746.680135][T15181] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1747.509731][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1747.749371][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1747.849116][T15058] hsr_slave_0: entered promiscuous mode
[ 1747.863502][T15058] hsr_slave_1: entered promiscuous mode
[ 1748.149773][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1748.383167][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1748.881221][T15181] team0: Port device team_slave_0 added
[ 1749.069535][T15181] team0: Port device team_slave_1 added
[ 1749.586173][ T5956] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[ 1749.700659][ T3783] netdevsim netdevsim0 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1749.700685][ T3783] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1749.752680][ T5956] usb 4-1: config 0 has an invalid interface number: 220 but max is 0
[ 1749.752711][ T5956] usb 4-1: config 0 has no interface number 0
[ 1749.770805][ T5956] usb 4-1: New USB device found, idVendor=05ac, idProduct=024d, bcdDevice=20.73
[ 1749.770836][ T5956] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1749.770856][ T5956] usb 4-1: Product: syz
[ 1749.770870][ T5956] usb 4-1: Manufacturer: syz
[ 1749.770885][ T5956] usb 4-1: SerialNumber: syz
[ 1749.835903][ T5956] usb 4-1: config 0 descriptor??
[ 1749.870379][ T5956] input: bcm5974 as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.220/input/input17
[ 1749.912497][   T37] audit: type=1400 audit(2000001248.500:1914): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="^" requested=w pid=15458 comm="syz.4.1907" daddr=::ffff:172.20.20.0
[ 1750.065493][ T5155] bcm5974 4-1:0.220: could not read from device
[ 1750.161396][ T5956] usb 4-1: USB disconnect, device number 6
[ 1750.283675][T15220] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1750.284299][T15220] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1750.284602][T15220] bridge_slave_0: entered allmulticast mode
[ 1750.324844][T15220] bridge_slave_0: entered promiscuous mode
[ 1750.507843][T15181] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1750.507861][T15181] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1750.507889][T15181] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1750.782386][ T3783] netdevsim netdevsim0 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1750.782426][ T3783] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1750.827399][T15220] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1750.827579][T15220] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1750.827942][T15220] bridge_slave_1: entered allmulticast mode
[ 1750.840502][T15220] bridge_slave_1: entered promiscuous mode
[ 1750.899734][T15181] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1750.899747][T15181] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1750.899761][T15181] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1752.575069][ T3783] netdevsim netdevsim0 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1752.575094][ T3783] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1752.665781][T15220] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1752.762065][T15220] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1753.528913][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1753.594766][ T3783] netdevsim netdevsim0 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1753.594805][ T3783] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1753.598452][T10549] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[ 1753.660958][T15181] hsr_slave_0: entered promiscuous mode
[ 1753.662635][T15181] hsr_slave_1: entered promiscuous mode
[ 1753.663829][T15181] debugfs: 'hsr0' already exists in 'hsr'
[ 1753.663855][T15181] Cannot create hsr debugfs directory
[ 1753.759221][T10549] usb 4-1: Using ep0 maxpacket: 16
[ 1753.763373][T10549] usb 4-1: config 166 has an invalid interface number: 177 but max is 1
[ 1753.763403][T10549] usb 4-1: config 166 has an invalid interface number: 34 but max is 1
[ 1753.763422][T10549] usb 4-1: config 166 has an invalid descriptor of length 0, skipping remainder of the config
[ 1753.763441][T10549] usb 4-1: config 166 has no interface number 0
[ 1753.763457][T10549] usb 4-1: config 166 has no interface number 1
[ 1753.763524][T10549] usb 4-1: config 166 interface 177 altsetting 4 has an invalid descriptor for endpoint zero, skipping
[ 1753.763547][T10549] usb 4-1: config 166 interface 177 altsetting 4 has an invalid descriptor for endpoint zero, skipping
[ 1753.763587][T10549] usb 4-1: config 166 interface 34 altsetting 1 has a duplicate endpoint with address 0x9, skipping
[ 1753.763613][T10549] usb 4-1: config 166 interface 34 altsetting 1 endpoint 0x3 has an invalid bInterval 0, changing to 7
[ 1753.763639][T10549] usb 4-1: config 166 interface 34 altsetting 1 has 3 endpoint descriptors, different from the interface descriptor's value: 4
[ 1753.763666][T10549] usb 4-1: config 166 interface 177 has no altsetting 0
[ 1753.763684][T10549] usb 4-1: config 166 interface 34 has no altsetting 0
[ 1753.769405][T10549] usb 4-1: New USB device found, idVendor=0bda, idProduct=0138, bcdDevice=30.12
[ 1753.769432][T10549] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1753.769451][T10549] usb 4-1: Product: syz
[ 1753.769464][T10549] usb 4-1: Manufacturer: syz
[ 1753.769477][T10549] usb 4-1: SerialNumber: syz
[ 1753.920625][T15220] team0: Port device team_slave_0 added
[ 1753.975026][T15220] team0: Port device team_slave_1 added
[ 1754.122928][T10549] ums-realtek 4-1:166.177: USB Mass Storage device detected
[ 1754.223124][T10549] ums-realtek 4-1:166.34: USB Mass Storage device detected
[ 1754.248179][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1754.365553][T10549] uvcvideo 4-1:166.34: Found UVC 0.00 device syz (0bda:0138)
[ 1754.365580][T10549] uvcvideo 4-1:166.34: No valid video chain found.
[ 1754.372322][T10549] usb 4-1: USB disconnect, device number 7
[ 1754.892096][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1755.282678][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1755.456527][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1755.812275][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1755.978945][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1756.177470][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1756.195783][T15220] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1756.195802][T15220] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1756.195830][T15220] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1757.895723][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1758.536532][T15500] loop6: detected capacity change from 0 to 524288000
[ 1759.737044][T15220] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1759.737064][T15220] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1759.737093][T15220] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1760.422427][T15523] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1922'.
[ 1767.052069][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1767.115084][ T5801] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1767.140147][ T5801] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1767.142251][ T5801] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1767.144915][ T5801] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1767.145882][ T5801] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1767.246524][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1767.472699][T15566] dns_resolver: Unsupported content type (24)
[ 1767.572207][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1769.211550][T15220] hsr_slave_0: entered promiscuous mode
[ 1769.221724][T15220] hsr_slave_1: entered promiscuous mode
[ 1769.230053][T15220] debugfs: 'hsr0' already exists in 'hsr'
[ 1769.230083][T15220] Cannot create hsr debugfs directory
[ 1769.566505][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1769.568230][ T5801] Bluetooth: hci4: command tx timeout
[ 1770.075466][ T3783] bridge_slave_1: left allmulticast mode
[ 1770.075490][ T3783] bridge_slave_1: left promiscuous mode
[ 1770.075683][ T3783] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1770.149660][ T3783] bridge_slave_0: left allmulticast mode
[ 1770.149684][ T3783] bridge_slave_0: left promiscuous mode
[ 1770.149980][ T3783] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1770.228663][ T3783] bridge_slave_1: left allmulticast mode
[ 1770.228687][ T3783] bridge_slave_1: left promiscuous mode
[ 1770.228854][ T3783] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1770.256252][T13167] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[ 1770.287266][ T3783] bridge_slave_0: left allmulticast mode
[ 1770.287290][ T3783] bridge_slave_0: left promiscuous mode
[ 1770.287467][ T3783] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1770.432507][T13167] usb 4-1: config 0 has an invalid interface number: 237 but max is 0
[ 1770.432528][T13167] usb 4-1: config 0 has no interface number 0
[ 1770.432562][T13167] usb 4-1: config 0 interface 237 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7
[ 1770.432577][T13167] usb 4-1: config 0 interface 237 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[ 1770.432590][T13167] usb 4-1: config 0 interface 237 altsetting 0 endpoint 0x8A has an invalid bInterval 0, changing to 7
[ 1770.432604][T13167] usb 4-1: config 0 interface 237 altsetting 0 endpoint 0x8A has invalid wMaxPacketSize 0
[ 1770.519349][T13167] usb 4-1: New USB device found, idVendor=045e, idProduct=84bd, bcdDevice=89.b6
[ 1770.519371][T13167] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1770.519383][T13167] usb 4-1: Product: syz
[ 1770.519391][T13167] usb 4-1: Manufacturer: syz
[ 1770.519399][T13167] usb 4-1: SerialNumber: syz
[ 1770.558837][T13167] usb 4-1: config 0 descriptor??
[ 1770.619721][T13167] xpad 4-1:0.237: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90
[ 1770.627017][T13167] input: Generic X-Box pad as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.237/input/input18
[ 1770.852631][T13296] usb 4-1: USB disconnect, device number 8
[ 1771.422377][ T3783] bond0 (unregistering): Released all slaves
[ 1771.596724][ T5801] Bluetooth: hci4: command tx timeout
[ 1773.260657][ T3783] bond0 (unregistering): Released all slaves
[ 1773.676475][ T5801] Bluetooth: hci4: command tx timeout
[ 1773.829091][T13167] usb 5-1: new full-speed USB device number 11 using dummy_hcd
[ 1773.998517][T13167] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1773.998582][T13167] usb 5-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3
[ 1773.999957][T13167] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a5, bcdDevice=ab.40
[ 1773.999985][T13167] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[ 1774.000006][T13167] usb 5-1: SerialNumber: syz
[ 1774.136160][T13167] usb 5-1: bad CDC descriptors
[ 1774.318754][ T5956] usb 5-1: USB disconnect, device number 11
[ 1775.072679][ T3783] bond0 (unregistering): (slave vxlan0): Releasing backup interface
[ 1775.428962][T15121] usb 5-1: new full-speed USB device number 12 using dummy_hcd
[ 1776.304893][ T5801] Bluetooth: hci4: command tx timeout
[ 1776.620179][T15121] usb 5-1: config 8 has an invalid interface number: 177 but max is 0
[ 1776.620210][T15121] usb 5-1: config 8 has an invalid descriptor of length 0, skipping remainder of the config
[ 1776.620231][T15121] usb 5-1: config 8 has no interface number 0
[ 1776.620281][T15121] usb 5-1: config 8 interface 177 altsetting 9 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[ 1776.620309][T15121] usb 5-1: config 8 interface 177 has no altsetting 0
[ 1776.620345][T15121] usb 5-1: New USB device found, idVendor=04d8, idProduct=fd08, bcdDevice=59.b1
[ 1776.620370][T15121] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1776.649826][T15121] ir_toy 5-1:8.177: required endpoints not found
[ 1776.912118][T13167] usb 5-1: USB disconnect, device number 12
[ 1777.336366][T15121] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[ 1777.497712][T15121] usb 4-1: Using ep0 maxpacket: 16
[ 1777.547052][T15121] usb 4-1: config index 0 descriptor too short (expected 16456, got 72)
[ 1777.547081][T15121] usb 4-1: config 0 has an invalid interface number: 125 but max is 1
[ 1777.547100][T15121] usb 4-1: config 0 has an invalid interface number: 125 but max is 1
[ 1777.547118][T15121] usb 4-1: config 0 has an invalid interface number: 125 but max is 1
[ 1777.547135][T15121] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 2
[ 1777.547153][T15121] usb 4-1: config 0 has no interface number 0
[ 1777.547211][T15121] usb 4-1: config 0 interface 125 altsetting 4 endpoint 0x4 has invalid maxpacket 21760, setting to 64
[ 1777.547236][T15121] usb 4-1: config 0 interface 125 altsetting 4 endpoint 0xB has invalid wMaxPacketSize 0
[ 1777.547256][T15121] usb 4-1: config 0 interface 125 altsetting 4 endpoint 0x2 has invalid wMaxPacketSize 0
[ 1777.547289][T15121] usb 4-1: config 0 interface 125 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 1777.547314][T15121] usb 4-1: config 0 interface 125 has no altsetting 0
[ 1777.547331][T15121] usb 4-1: config 0 interface 125 has no altsetting 2
[ 1777.550844][T15121] usb 4-1: New USB device found, idVendor=050d, idProduct=0002, bcdDevice=23.27
[ 1777.550869][T15121] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1777.550887][T15121] usb 4-1: Product: syz
[ 1777.550899][T15121] usb 4-1: Manufacturer: syz
[ 1777.550912][T15121] usb 4-1: SerialNumber: syz
[ 1777.556740][T15121] usb 4-1: config 0 descriptor??
[ 1777.562216][T15121] usb 4-1: selecting invalid altsetting 2
[ 1778.027704][    C1] usb 4-1: async_complete: urb error -71
[ 1778.028191][    C1] usb 4-1: async_complete: urb error -71
[ 1778.028301][    C1] usb 4-1: async_complete: urb error -71
[ 1778.028413][    C1] usb 4-1: async_complete: urb error -71
[ 1778.033977][T15121] get_1284_register: usb error -71
[ 1778.034128][T15121] uss720 4-1:0.125: probe with driver uss720 failed with error -71
[ 1778.572018][T15121] usb 4-1: USB disconnect, device number 9
[ 1779.354342][T14222] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1779.419005][T14222] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1779.421312][T14222] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1779.425454][T14222] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1779.450370][T14222] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1780.007141][ T3783] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1780.087056][ T3783] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1780.108450][ T3783] bond0 (unregistering): Released all slaves
[ 1780.256310][T13167] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[ 1780.344980][ T3783] bond0 (unregistering): Released all slaves
[ 1780.408899][T13167] usb 4-1: Using ep0 maxpacket: 32
[ 1780.410820][T13167] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7
[ 1780.410842][T13167] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8 has invalid wMaxPacketSize 0
[ 1780.423638][T13167] usb 4-1: New USB device found, idVendor=05e1, idProduct=0408, bcdDevice=25.11
[ 1780.423666][T13167] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1780.423684][T13167] usb 4-1: Product: syz
[ 1780.423696][T13167] usb 4-1: Manufacturer: syz
[ 1780.423709][T13167] usb 4-1: SerialNumber: syz
[ 1780.438996][T13167] usb 4-1: config 0 descriptor??
[ 1780.461573][T13167] usb 4-1: no audio or video endpoints found
[ 1780.662965][ T3783] bond0 (unregistering): Released all slaves
[ 1780.716860][T13167] usb 4-1: USB disconnect, device number 10
[ 1781.817608][ T5801] Bluetooth: hci5: command tx timeout
[ 1782.878534][ T3783] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1783.049709][ T3783] bond0 (unregistering): Released all slaves
[ 1783.307844][T13296] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[ 1783.539832][T13296] usb 4-1: Using ep0 maxpacket: 16
[ 1783.557473][T13296] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1783.557503][T13296] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1783.560689][T13296] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1783.560718][T13296] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1783.560738][T13296] usb 4-1: Product: syz
[ 1783.560753][T13296] usb 4-1: Manufacturer: syz
[ 1783.560768][T13296] usb 4-1: SerialNumber: syz
[ 1783.836990][T13296] usb 4-1: 0:2 : does not exist
[ 1783.856118][ T5801] Bluetooth: hci5: command tx timeout
[ 1784.155878][T13296] usb 4-1: USB disconnect, device number 11
[ 1784.493533][T15564] udevd[15564]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1784.705563][T15557] lo speed is unknown, defaulting to 1000
[ 1784.706840][ T3783] tipc: Left network mode
[ 1785.447720][T15640] lo speed is unknown, defaulting to 1000
[ 1785.922629][ T5801] Bluetooth: hci5: command tx timeout
[ 1786.365696][ T3783] IPVS: stopping backup sync thread 14115 ...
[ 1787.767667][T14222] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1787.806248][T14222] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1787.856190][T14222] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1787.865398][T14222] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1787.883008][T14222] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1788.012696][ T5801] Bluetooth: hci5: command tx timeout
[ 1790.452979][ T5801] Bluetooth: hci1: command tx timeout
[ 1790.977743][T15061] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[ 1791.222576][T15061] usb 5-1: Using ep0 maxpacket: 16
[ 1791.226829][T15061] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1791.226897][T15061] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFC, changing to 0x8C
[ 1791.226925][T15061] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8C has an invalid bInterval 0, changing to 7
[ 1791.226950][T15061] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1791.235643][T15061] usb 5-1: New USB device found, idVendor=045e, idProduct=0284, bcdDevice=a4.91
[ 1791.235669][T15061] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1791.235687][T15061] usb 5-1: Product: syz
[ 1791.235700][T15061] usb 5-1: Manufacturer: syz
[ 1791.235712][T15061] usb 5-1: SerialNumber: syz
[ 1791.257974][T15061] usb 5-1: config 0 descriptor??
[ 1791.366066][T15061] rc_core: IR keymap rc-xbox-dvd not found
[ 1791.366091][T15061] Registered IR keymap rc-empty
[ 1791.374119][T15061] rc rc0: syz syz as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/rc/rc0
[ 1791.390956][T15061] input: syz syz as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/rc/rc0/input19
[ 1792.186997][ T1319] ieee802154 phy0 wpan0: encryption failed: -22
[ 1792.187271][ T1319] ieee802154 phy1 wpan1: encryption failed: -22
[ 1792.939201][ T5801] Bluetooth: hci1: command tx timeout
[ 1793.205958][    C0] xbox_remote 5-1:0.0: xbox_remote_irq_in: usb_submit_urb()=-19
[ 1793.214869][T15061] usb 5-1: USB disconnect, device number 13
[ 1793.287451][T15681] lo speed is unknown, defaulting to 1000
[ 1793.803775][T15557] chnl_net:caif_netlink_parms(): no params data found
[ 1794.056476][ T3783] hsr_slave_0: left promiscuous mode
[ 1794.089351][ T3783] hsr_slave_1: left promiscuous mode
[ 1794.091146][ T3783] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1794.091175][ T3783] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1794.141169][ T3783] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1794.141202][ T3783] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1794.460595][ T3783] veth1_macvtap: left promiscuous mode
[ 1794.460727][ T3783] veth0_macvtap: left promiscuous mode
[ 1794.461043][ T3783] veth1_vlan: left promiscuous mode
[ 1794.956477][ T5801] Bluetooth: hci1: command tx timeout
[ 1797.039552][ T5801] Bluetooth: hci1: command tx timeout
[ 1797.914224][ T5801] Bluetooth: hci6: ACL packet for unknown connection handle 201
[ 1799.351069][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1799.393353][   T37] audit: type=1326 audit(2000001297.990:1915): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15737 comm="syz.4.1981" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f854d5feec9 code=0x0
[ 1800.413079][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1800.484613][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1800.538757][ T5809] usb 4-1: new high-speed USB device number 12 using dummy_hcd
[ 1800.709173][ T5809] usb 4-1: New USB device found, idVendor=055f, idProduct=c420, bcdDevice=6a.33
[ 1800.709208][ T5809] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1800.717632][ T5809] usb 4-1: config 0 descriptor??
[ 1800.725635][ T5809] gspca_main: sunplus-2.14.0 probing 055f:c420
[ 1800.764745][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1800.848017][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1800.931901][ T5809] gspca_sunplus: reg_w_riv err -71
[ 1800.932015][ T5809] sunplus 4-1:0.0: probe with driver sunplus failed with error -71
[ 1800.942588][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1800.965099][ T5809] usb 4-1: USB disconnect, device number 12
[ 1801.229938][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1801.615873][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1801.712702][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1801.990602][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1802.074532][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1802.608558][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1802.956700][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1803.019374][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1803.044159][ T5801] Bluetooth: hci6: ACL packet for unknown connection handle 201
[ 1803.146267][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1803.300743][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1803.681229][T15061] usb 4-1: new high-speed USB device number 13 using dummy_hcd
[ 1803.979140][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1804.136728][T15061] usb 4-1: Using ep0 maxpacket: 8
[ 1804.141979][T15061] usb 4-1: unable to get BOS descriptor or descriptor too short
[ 1804.145343][T15061] usb 4-1: config 4 has an invalid interface number: 147 but max is 0
[ 1804.145373][T15061] usb 4-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config
[ 1804.145392][T15061] usb 4-1: config 4 has no interface number 0
[ 1804.232477][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1804.238006][T15061] usb 4-1: string descriptor 0 read error: -22
[ 1804.238186][T15061] usb 4-1: New USB device found, idVendor=04f2, idProduct=b746, bcdDevice=8e.6e
[ 1804.238210][T15061] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1804.253537][T15061] uvcvideo 4-1:4.147: Found multiple Units with ID 6
[ 1804.253602][T15061] uvcvideo 4-1:4.147: Found UVC 0.02 device <unnamed> (04f2:b746)
[ 1804.253727][T15061] uvcvideo 4-1:4.147: No streaming interface found for terminal 65535.
[ 1804.461797][T15061] usb 4-1: USB disconnect, device number 13
[ 1806.097550][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1806.252423][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1806.372145][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1806.434790][   T37] audit: type=1326 audit(2000001305.030:1916): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15779 comm="syz.3.1993" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2e620eeec9 code=0x0
[ 1806.531254][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1806.873140][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1806.947576][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1807.100577][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1807.211856][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1807.524126][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1808.048186][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1808.237604][ T3783] team0 (unregistering): Port device team_slave_1 removed
[ 1808.457979][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1808.511280][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1809.059709][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1809.143182][ T3783] team0 (unregistering): Port device team_slave_0 removed
[ 1809.282388][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1809.384916][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1809.679612][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1809.818057][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1809.952778][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1810.071859][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1810.225667][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1810.279489][ T5801] Bluetooth: hci6: ACL packet for unknown connection handle 201
[ 1810.313730][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1810.381387][T15804] syz.3.2000 (15804): attempted to duplicate a private mapping with mremap.  This is not supported.
[ 1810.470853][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1810.612803][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1813.856634][   T37] audit: type=1400 audit(2000001311.730:1917): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="^" requested=w pid=15828 comm="syz.3.2011" daddr=fe80::bb dest=20003
[ 1816.666214][T13296] usb 5-1: new full-speed USB device number 14 using dummy_hcd
[ 1817.009866][T13296] usb 5-1: config 0 has an invalid interface number: 248 but max is 0
[ 1817.009897][T13296] usb 5-1: config 0 has no interface number 0
[ 1817.009949][T13296] usb 5-1: config 0 interface 248 altsetting 0 endpoint 0x5 has invalid maxpacket 48120, setting to 64
[ 1817.013137][T13296] usb 5-1: New USB device found, idVendor=133e, idProduct=0815, bcdDevice=7e.66
[ 1817.013167][T13296] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1817.013186][T13296] usb 5-1: Product: syz
[ 1817.013200][T13296] usb 5-1: Manufacturer: syz
[ 1817.013214][T13296] usb 5-1: SerialNumber: syz
[ 1817.038653][T13296] usb 5-1: config 0 descriptor??
[ 1817.063769][T13296] snd-usb-audio 5-1:0.248: probe with driver snd-usb-audio failed with error -22
[ 1817.344670][T15640] chnl_net:caif_netlink_parms(): no params data found
[ 1817.361853][T15121] usb 5-1: USB disconnect, device number 14
[ 1819.944226][T15557] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1819.944374][T15557] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1819.944645][T15557] bridge_slave_0: entered allmulticast mode
[ 1819.949170][T15557] bridge_slave_0: entered promiscuous mode
[ 1820.146162][T15557] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1820.146334][T15557] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1820.148302][T15557] bridge_slave_1: entered allmulticast mode
[ 1820.183429][T15557] bridge_slave_1: entered promiscuous mode
[ 1820.967066][T15557] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1820.976212][T15640] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1820.976355][T15640] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1820.976624][T15640] bridge_slave_0: entered allmulticast mode
[ 1820.979469][T15640] bridge_slave_0: entered promiscuous mode
[ 1821.050725][T15557] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1821.051816][T15640] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1821.051981][T15640] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1821.052218][T15640] bridge_slave_1: entered allmulticast mode
[ 1821.068196][T15640] bridge_slave_1: entered promiscuous mode
[ 1821.403665][   T37] audit: type=1326 audit(2000001319.820:1918): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15873 comm="syz.3.2020" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e620eeec9 code=0x7ffc0000
[ 1821.404305][   T37] audit: type=1326 audit(2000001319.820:1919): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15873 comm="syz.3.2020" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e620eeec9 code=0x7ffc0000
[ 1821.404584][   T37] audit: type=1326 audit(2000001319.830:1920): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15873 comm="syz.3.2020" exe="/root/syz-executor" sig=0 arch=c000003e syscall=448 compat=0 ip=0x7f2e620eeec9 code=0x7ffc0000
[ 1821.404664][   T37] audit: type=1326 audit(2000001319.830:1921): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15873 comm="syz.3.2020" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e620eeec9 code=0x7ffc0000
[ 1821.404945][   T37] audit: type=1326 audit(2000001319.830:1922): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15873 comm="syz.3.2020" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e620eeec9 code=0x7ffc0000
[ 1821.405410][   T37] audit: type=1326 audit(2000001319.840:1923): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15873 comm="syz.3.2020" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7f2e620f0d5c code=0x7ffc0000
[ 1821.405655][   T37] audit: type=1326 audit(2000001319.840:1924): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15873 comm="syz.3.2020" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7f2e620f0c94 code=0x7ffc0000
[ 1821.405749][   T37] audit: type=1326 audit(2000001319.840:1925): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15873 comm="syz.3.2020" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7f2e620f0c94 code=0x7ffc0000
[ 1821.407052][   T37] audit: type=1326 audit(2000001319.840:1926): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15873 comm="syz.3.2020" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e620eeec9 code=0x7ffc0000
[ 1821.407473][   T37] audit: type=1326 audit(2000001319.840:1927): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15873 comm="syz.3.2020" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e620eeec9 code=0x7ffc0000
[ 1822.328839][T15878] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -12
[ 1822.328892][T15878] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -12
[ 1822.328912][T15878] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[ 1822.551433][T15885] gfs2: gfs2 mount does not exist
[ 1822.988032][T15640] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1822.990812][T15681] chnl_net:caif_netlink_parms(): no params data found
[ 1823.011840][T15640] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1823.170347][T14222] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1823.204132][T14222] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1823.214499][T14222] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1823.224115][T14222] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1823.225595][T14222] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1823.815834][T15640] team0: Port device team_slave_0 added
[ 1824.419882][T15640] team0: Port device team_slave_1 added
[ 1825.335339][T14222] Bluetooth: hci2: command tx timeout
[ 1826.032595][T15640] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1826.032615][T15640] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1826.032644][T15640] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1826.092162][T15640] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1826.092181][T15640] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1826.092207][T15640] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1826.237099][T15892] lo speed is unknown, defaulting to 1000
[ 1826.549672][T15681] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1826.549880][T15681] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1826.550594][T15681] bridge_slave_0: entered allmulticast mode
[ 1826.554594][T15681] bridge_slave_0: entered promiscuous mode
[ 1826.661160][T15911] program syz.4.2029 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1826.728506][T15681] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1826.733760][T15681] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1826.734105][T15681] bridge_slave_1: entered allmulticast mode
[ 1826.747440][T15681] bridge_slave_1: entered promiscuous mode
[ 1827.011453][T15640] hsr_slave_0: entered promiscuous mode
[ 1827.012611][T15640] hsr_slave_1: entered promiscuous mode
[ 1827.014719][T15640] debugfs: 'hsr0' already exists in 'hsr'
[ 1827.014747][T15640] Cannot create hsr debugfs directory
[ 1827.257819][T15681] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1827.297099][T15681] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1827.407625][T14222] Bluetooth: hci2: command tx timeout
[ 1827.537166][ T3783] IPVS: stop unused estimator thread 0...
[ 1828.090483][T15681] team0: Port device team_slave_0 added
[ 1828.113785][T15681] team0: Port device team_slave_1 added
[ 1828.285687][T15681] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1828.285706][T15681] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1828.285733][T15681] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1828.309927][T15681] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1828.309944][T15681] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1828.309968][T15681] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1829.069846][T15681] hsr_slave_0: entered promiscuous mode
[ 1829.070878][T15681] hsr_slave_1: entered promiscuous mode
[ 1829.071557][T15681] debugfs: 'hsr0' already exists in 'hsr'
[ 1829.071573][T15681] Cannot create hsr debugfs directory
[ 1829.078051][ T3783] bridge_slave_1: left allmulticast mode
[ 1829.078079][ T3783] bridge_slave_1: left promiscuous mode
[ 1829.078355][ T3783] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1829.137337][ T3783] bridge_slave_0: left allmulticast mode
[ 1829.137360][ T3783] bridge_slave_0: left promiscuous mode
[ 1829.137572][ T3783] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1829.211917][ T3783] bridge_slave_1: left allmulticast mode
[ 1829.211941][ T3783] bridge_slave_1: left promiscuous mode
[ 1829.212122][ T3783] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1829.277116][ T3783] bridge_slave_0: left allmulticast mode
[ 1829.277140][ T3783] bridge_slave_0: left promiscuous mode
[ 1829.277319][ T3783] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1829.349271][ T3783] bridge_slave_1: left allmulticast mode
[ 1829.349296][ T3783] bridge_slave_1: left promiscuous mode
[ 1829.349476][ T3783] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1829.420268][ T3783] bridge_slave_0: left allmulticast mode
[ 1829.420290][ T3783] bridge_slave_0: left promiscuous mode
[ 1829.420483][ T3783] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1829.436046][T14222] Bluetooth: hci2: command tx timeout
[ 1829.478963][ T3783] bridge_slave_1: left allmulticast mode
[ 1829.478992][ T3783] bridge_slave_1: left promiscuous mode
[ 1829.479163][ T3783] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1829.560867][ T3783] bridge_slave_0: left allmulticast mode
[ 1829.560892][ T3783] bridge_slave_0: left promiscuous mode
[ 1829.561068][ T3783] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1829.826860][ T3783] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1829.916975][ T3783] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1829.981939][ T3783] bond0 (unregistering): Released all slaves
[ 1830.211703][ T3783] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1830.286917][ T3783] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1830.348212][ T3783] bond0 (unregistering): Released all slaves
[ 1830.609217][ T3783] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1830.686770][ T3783] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1830.748395][ T3783] bond0 (unregistering): Released all slaves
[ 1830.977066][ T3783] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1831.106704][ T3783] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1831.169016][ T3783] bond0 (unregistering): Released all slaves
[ 1831.535487][T14222] Bluetooth: hci2: command tx timeout
[ 1831.839562][T15892] chnl_net:caif_netlink_parms(): no params data found
[ 1833.296748][T15892] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1833.296837][T15892] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1833.297069][T15892] bridge_slave_0: entered allmulticast mode
[ 1833.298870][T15892] bridge_slave_0: entered promiscuous mode
[ 1833.313616][T15892] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1833.313752][T15892] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1833.313955][T15892] bridge_slave_1: entered allmulticast mode
[ 1833.323833][T15892] bridge_slave_1: entered promiscuous mode
[ 1833.526205][ T3783] hsr_slave_0: left promiscuous mode
[ 1833.567003][ T3783] hsr_slave_1: left promiscuous mode
[ 1833.568070][ T3783] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1833.589773][ T3783] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1833.746343][ T3783] hsr_slave_0: left promiscuous mode
[ 1833.767386][ T3783] hsr_slave_1: left promiscuous mode
[ 1833.768159][ T3783] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1833.808175][ T3783] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1833.956311][ T3783] hsr_slave_0: left promiscuous mode
[ 1833.976487][ T3783] hsr_slave_1: left promiscuous mode
[ 1833.977643][ T3783] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1834.037955][ T3783] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1835.187067][ T3783] team0 (unregistering): Port device team_slave_1 removed
[ 1835.357114][ T3783] team0 (unregistering): Port device team_slave_0 removed
[ 1836.687146][ T3783] team0 (unregistering): Port device team_slave_1 removed
[ 1836.885707][ T3783] team0 (unregistering): Port device team_slave_0 removed
[ 1838.249451][ T3783] team0 (unregistering): Port device team_slave_1 removed
[ 1838.417300][ T3783] team0 (unregistering): Port device team_slave_0 removed
[ 1839.343077][T15892] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1839.418810][T15892] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1840.262024][ T5801] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1840.269678][ T5801] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1840.272412][ T5801] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1840.278571][ T5801] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1840.279840][ T5801] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1840.514938][T15892] team0: Port device team_slave_0 added
[ 1840.919424][T15892] team0: Port device team_slave_1 added
[ 1841.717972][T15892] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1841.717991][T15892] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1841.718020][T15892] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1841.721109][T15892] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1841.721126][T15892] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1841.721153][T15892] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1842.264931][T15892] hsr_slave_0: entered promiscuous mode
[ 1842.265878][T15892] hsr_slave_1: entered promiscuous mode
[ 1842.270912][T15922] lo speed is unknown, defaulting to 1000
[ 1842.396194][T14222] Bluetooth: hci3: command tx timeout
[ 1843.394763][T15681] netdevsim netdevsim7 netdevsim0: renamed from eth0
[ 1843.518997][T15681] netdevsim netdevsim7 netdevsim1: renamed from eth1
[ 1843.563061][T15681] netdevsim netdevsim7 netdevsim2: renamed from eth2
[ 1843.719370][T15681] netdevsim netdevsim7 netdevsim3: renamed from eth3
[ 1843.794242][T15922] chnl_net:caif_netlink_parms(): no params data found
[ 1844.157011][T15892] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 1844.279445][T15892] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 1844.365744][T15892] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 1844.401954][T15922] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1844.402197][T15922] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1844.402427][T15922] bridge_slave_0: entered allmulticast mode
[ 1844.404292][T15922] bridge_slave_0: entered promiscuous mode
[ 1844.439241][T15892] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 1844.474563][T15922] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1844.476309][T14222] Bluetooth: hci3: command tx timeout
[ 1844.481669][T15922] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1844.481931][T15922] bridge_slave_1: entered allmulticast mode
[ 1844.484862][T15922] bridge_slave_1: entered promiscuous mode
[ 1844.708041][T15922] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1844.720446][T15922] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1844.897829][T15922] team0: Port device team_slave_0 added
[ 1844.903270][T15922] team0: Port device team_slave_1 added
[ 1845.258507][ T3783] bridge_slave_1: left allmulticast mode
[ 1845.258533][ T3783] bridge_slave_1: left promiscuous mode
[ 1845.258739][ T3783] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1845.328008][ T3783] bridge_slave_0: left allmulticast mode
[ 1845.328031][ T3783] bridge_slave_0: left promiscuous mode
[ 1845.328239][ T3783] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1845.646689][ T3783] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1845.726754][ T3783] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1845.806048][ T3783] bond0 (unregistering): Released all slaves
[ 1845.829166][T15922] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1845.829193][T15922] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1845.829220][T15922] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1845.844144][T15922] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1845.844161][T15922] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1845.844193][T15922] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1846.193024][T15922] hsr_slave_0: entered promiscuous mode
[ 1846.194126][T15922] hsr_slave_1: entered promiscuous mode
[ 1846.194798][T15922] debugfs: 'hsr0' already exists in 'hsr'
[ 1846.194819][T15922] Cannot create hsr debugfs directory
[ 1846.316550][ T3783] hsr_slave_0: left promiscuous mode
[ 1846.336705][ T3783] hsr_slave_1: left promiscuous mode
[ 1846.337466][ T3783] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1846.377539][ T3783] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1846.556237][T14222] Bluetooth: hci3: command tx timeout
[ 1847.129636][ T3783] team0 (unregistering): Port device team_slave_1 removed
[ 1847.300322][ T3783] team0 (unregistering): Port device team_slave_0 removed
[ 1848.237204][ T5801] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1848.241628][ T5801] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1848.256155][ T5801] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1848.282698][ T5801] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1848.289639][ T5801] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1848.655315][ T5801] Bluetooth: hci3: command tx timeout
[ 1848.875194][T15944] lo speed is unknown, defaulting to 1000
[ 1849.472425][T15892] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1849.655668][T15922] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 1849.949781][T15922] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 1850.020554][T15892] 8021q: adding VLAN 0 to HW filter on device team0
[ 1850.020910][T15922] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 1850.315224][T15922] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 1850.354794][ T3533] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1850.356953][ T3533] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1850.396558][ T5801] Bluetooth: hci4: command tx timeout
[ 1850.411827][ T6837] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1850.412066][ T6837] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1850.620400][T15944] chnl_net:caif_netlink_parms(): no params data found
[ 1851.203788][T15944] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1851.203952][T15944] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1851.204219][T15944] bridge_slave_0: entered allmulticast mode
[ 1851.233251][T15944] bridge_slave_0: entered promiscuous mode
[ 1851.242163][T15944] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1851.242358][T15944] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1851.242990][T15944] bridge_slave_1: entered allmulticast mode
[ 1851.244716][T15944] bridge_slave_1: entered promiscuous mode
[ 1851.450806][T15944] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1851.466666][T15944] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1851.727837][T15944] team0: Port device team_slave_0 added
[ 1851.755841][T15944] team0: Port device team_slave_1 added
[ 1851.995242][T15944] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1851.995260][T15944] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1851.995289][T15944] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1852.096292][T15944] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1852.096311][T15944] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1852.096340][T15944] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1852.271241][ T3783] bridge_slave_1: left allmulticast mode
[ 1852.271273][ T3783] bridge_slave_1: left promiscuous mode
[ 1852.271561][ T3783] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1852.337071][ T3783] bridge_slave_0: left allmulticast mode
[ 1852.337094][ T3783] bridge_slave_0: left promiscuous mode
[ 1852.337291][ T3783] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1852.486293][ T5801] Bluetooth: hci4: command tx timeout
[ 1853.268420][ T3783] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1853.368038][ T3783] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1853.428345][ T3783] bond0 (unregistering): Released all slaves
[ 1853.443407][ T1319] ieee802154 phy0 wpan0: encryption failed: -22
[ 1853.443482][ T1319] ieee802154 phy1 wpan1: encryption failed: -22
[ 1853.744253][T15944] hsr_slave_0: entered promiscuous mode
[ 1853.745193][T15944] hsr_slave_1: entered promiscuous mode
[ 1853.745830][T15944] debugfs: 'hsr0' already exists in 'hsr'
[ 1853.745847][T15944] Cannot create hsr debugfs directory
[ 1853.904076][ T3783] hsr_slave_0: left promiscuous mode
[ 1853.918211][ T3783] hsr_slave_1: left promiscuous mode
[ 1853.918941][ T3783] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1853.966800][ T3783] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1854.590523][ T5801] Bluetooth: hci4: command tx timeout
[ 1854.717657][ T3783] team0 (unregistering): Port device team_slave_1 removed
[ 1854.887076][ T3783] team0 (unregistering): Port device team_slave_0 removed
[ 1855.871242][T15922] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1855.913673][T15892] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1856.150494][T15922] 8021q: adding VLAN 0 to HW filter on device team0
[ 1856.195859][ T4559] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1856.199248][ T4559] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1856.472981][ T4559] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1856.473096][ T4559] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1856.663226][ T5801] Bluetooth: hci4: command tx timeout
[ 1856.743489][T15892] veth0_vlan: entered promiscuous mode
[ 1856.818912][T15892] veth1_vlan: entered promiscuous mode
[ 1857.183098][T15892] veth0_macvtap: entered promiscuous mode
[ 1857.240315][T15892] veth1_macvtap: entered promiscuous mode
[ 1857.330995][T15892] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1857.351653][T15892] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1857.412023][ T4559] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1857.482878][ T4559] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1857.485439][ T4559] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1857.491581][T15922] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1857.491804][ T4559] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1858.121059][T15944] netdevsim netdevsim7 netdevsim0: renamed from eth0
[ 1858.193426][T15944] netdevsim netdevsim7 netdevsim1: renamed from eth1
[ 1858.225189][ T4559] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1858.225210][ T4559] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1858.250740][T15944] netdevsim netdevsim7 netdevsim2: renamed from eth2
[ 1858.310267][T15944] netdevsim netdevsim7 netdevsim3: renamed from eth3
[ 1858.464650][T10222] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1858.464673][T10222] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1858.590203][T15922] veth0_vlan: entered promiscuous mode
[ 1858.749947][T15922] veth1_vlan: entered promiscuous mode
[ 1858.964349][T15922] veth0_macvtap: entered promiscuous mode
[ 1858.995575][T15922] veth1_macvtap: entered promiscuous mode
[ 1859.476697][T13296] usb 4-1: new high-speed USB device number 14 using dummy_hcd
[ 1859.511099][T15944] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1859.527339][T15922] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1859.564248][T15922] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1859.596362][ T1298] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1859.597898][ T1298] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1859.598231][ T1298] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1859.598496][ T1298] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1859.742227][T15944] 8021q: adding VLAN 0 to HW filter on device team0
[ 1859.756191][T13296] usb 4-1: Using ep0 maxpacket: 8
[ 1859.771613][T13296] usb 4-1: unable to get BOS descriptor or descriptor too short
[ 1859.774470][T13296] usb 4-1: config 8 interface 0 altsetting 7 endpoint 0x83 has invalid wMaxPacketSize 0
[ 1859.774500][T13296] usb 4-1: config 8 interface 0 altsetting 7 bulk endpoint 0x83 has invalid maxpacket 0
[ 1859.774522][T13296] usb 4-1: config 8 interface 0 altsetting 7 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1859.774548][T13296] usb 4-1: config 8 interface 0 has no altsetting 0
[ 1859.823265][T13296] usb 4-1: New USB device found, idVendor=07fd, idProduct=0001, bcdDevice=6a.e5
[ 1859.823298][T13296] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1859.823318][T13296] usb 4-1: Product: syz
[ 1859.823332][T13296] usb 4-1: Manufacturer: syz
[ 1859.823346][T13296] usb 4-1: SerialNumber: syz
[ 1859.857703][T15061] usb 5-1: new high-speed USB device number 15 using dummy_hcd
[ 1860.456710][   T37] kauditd_printk_skb: 1 callbacks suppressed
[ 1860.456761][   T37] audit: type=1326 audit(2000001358.640:1929): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16010 comm="syz.1.2030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f88da5eeec9 code=0x7ffc0000
[ 1860.456849][   T37] audit: type=1326 audit(2000001358.640:1930): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16010 comm="syz.1.2030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f88da5eeec9 code=0x7ffc0000
[ 1860.457263][   T37] audit: type=1326 audit(2000001358.640:1931): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16010 comm="syz.1.2030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=448 compat=0 ip=0x7f88da5eeec9 code=0x7ffc0000
[ 1860.457721][   T37] audit: type=1326 audit(2000001358.660:1932): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16010 comm="syz.1.2030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f88da5eeec9 code=0x7ffc0000
[ 1860.457922][   T37] audit: type=1326 audit(2000001358.660:1933): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16010 comm="syz.1.2030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f88da5eeec9 code=0x7ffc0000
[ 1860.458032][   T37] audit: type=1326 audit(2000001358.660:1934): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16010 comm="syz.1.2030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7f88da5f0d5c code=0x7ffc0000
[ 1860.458299][   T37] audit: type=1326 audit(2000001358.660:1935): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16010 comm="syz.1.2030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7f88da5f0c94 code=0x7ffc0000
[ 1860.458600][   T37] audit: type=1326 audit(2000001358.660:1936): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16010 comm="syz.1.2030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7f88da5f0c94 code=0x7ffc0000
[ 1860.458936][   T37] audit: type=1326 audit(2000001358.660:1937): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16010 comm="syz.1.2030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f88da5eeec9 code=0x7ffc0000
[ 1860.459016][   T37] audit: type=1326 audit(2000001358.660:1938): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16010 comm="syz.1.2030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f88da5eeec9 code=0x7ffc0000
[ 1860.869956][ T3533] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1860.870493][ T3533] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1860.877206][ T3533] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1860.878152][ T3533] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1861.164230][T15061] usb 5-1: Using ep0 maxpacket: 32
[ 1861.176999][T15061] usb 5-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[ 1861.177027][T15061] usb 5-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config
[ 1861.177046][T15061] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1861.181929][T15061] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1861.182020][T15061] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1861.182042][T15061] usb 5-1: Product: syz
[ 1861.182056][T15061] usb 5-1: Manufacturer: syz
[ 1861.182070][T15061] usb 5-1: SerialNumber: syz
[ 1861.478028][T13296] usb 4-1: Quirk or no altset; falling back to MIDI 1.0
[ 1861.478219][T13296] usb 4-1: selecting invalid altsetting 0
[ 1861.637126][ T6604] usb 2-1: new high-speed USB device number 13 using dummy_hcd
[ 1861.817585][ T6604] usb 2-1: Using ep0 maxpacket: 32
[ 1861.821627][ T6604] usb 2-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[ 1861.821658][ T6604] usb 2-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xDB, changing to 0x8B
[ 1861.821684][ T6604] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 28739, setting to 1024
[ 1861.821712][ T6604] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024
[ 1861.821735][ T6604] usb 2-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[ 1861.847241][ T6604] usb 2-1: New USB device found, idVendor=2040, idProduct=4901, bcdDevice=47.77
[ 1861.847273][ T6604] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1861.847294][ T6604] usb 2-1: Product: syz
[ 1861.847308][ T6604] usb 2-1: Manufacturer: syz
[ 1861.847323][ T6604] usb 2-1: SerialNumber: syz
[ 1861.969684][ T6604] usb 2-1: config 0 descriptor??
[ 1861.979130][T16016] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[ 1862.238423][ T3783] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1862.238446][ T3783] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1862.438685][ T6604] hdpvr 2-1:0.0: unexpected answer of status request, len -71
[ 1862.438713][ T6604] hdpvr 2-1:0.0: device init failed
[ 1862.438808][ T6604] hdpvr 2-1:0.0: probe with driver hdpvr failed with error -12
[ 1863.416143][ T6604] usb 2-1: USB disconnect, device number 13
[ 1863.604155][ T3783] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1863.604179][ T3783] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1863.634722][T13296] snd-usb-audio 4-1:8.0: probe with driver snd-usb-audio failed with error -12
[ 1863.658262][T15061] usb 5-1: 0:2 : does not exist
[ 1863.686028][T13296] usb 4-1: USB disconnect, device number 14
[ 1863.769405][T15061] usb 5-1: USB disconnect, device number 15
[ 1863.941737][T16042] udevd[16042]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:8.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1864.085294][T15964] udevd[15964]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1864.104212][T15944] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1865.130007][ T5801] Bluetooth: Unexpected continuation frame (len 10)
[ 1865.270827][T16058] siw: device registration error -23
[ 1868.718694][T15944] veth0_vlan: entered promiscuous mode
[ 1868.742682][T15944] veth1_vlan: entered promiscuous mode
[ 1868.793328][T15944] veth0_macvtap: entered promiscuous mode
[ 1868.845030][T15944] veth1_macvtap: entered promiscuous mode
[ 1868.932501][T15944] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1868.981354][T15944] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1869.016098][T10222] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1869.016408][T10222] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1869.016449][T10222] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1869.016486][T10222] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1869.433349][T16114] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2060'.
[ 1870.138635][   T37] kauditd_printk_skb: 4 callbacks suppressed
[ 1870.138704][   T37] audit: type=1326 audit(2000001368.230:1943): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16115 comm="syz.5.2051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f183740eec9 code=0x7ffc0000
[ 1870.140702][   T37] audit: type=1326 audit(2000001368.230:1944): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16115 comm="syz.5.2051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f183740eec9 code=0x7ffc0000
[ 1870.142390][   T37] audit: type=1326 audit(2000001368.240:1945): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16115 comm="syz.5.2051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=448 compat=0 ip=0x7f183740eec9 code=0x7ffc0000
[ 1870.142589][   T37] audit: type=1326 audit(2000001368.240:1946): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16115 comm="syz.5.2051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f183740eec9 code=0x7ffc0000
[ 1870.142640][   T37] audit: type=1326 audit(2000001368.240:1947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16115 comm="syz.5.2051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f183740eec9 code=0x7ffc0000
[ 1870.142741][   T37] audit: type=1326 audit(2000001368.240:1948): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16115 comm="syz.5.2051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7f1837410d5c code=0x7ffc0000
[ 1870.145046][   T37] audit: type=1326 audit(2000001368.250:1949): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16115 comm="syz.5.2051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7f1837410c94 code=0x7ffc0000
[ 1870.145149][   T37] audit: type=1326 audit(2000001368.250:1950): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16115 comm="syz.5.2051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7f1837410c94 code=0x7ffc0000
[ 1870.145732][   T37] audit: type=1326 audit(2000001368.250:1951): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16115 comm="syz.5.2051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f183740eec9 code=0x7ffc0000
[ 1870.146330][   T37] audit: type=1326 audit(2000001368.250:1952): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16115 comm="syz.5.2051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f183740eec9 code=0x7ffc0000
[ 1871.570449][T16118] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -12
[ 1871.570500][T16118] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -12
[ 1871.570520][T16118] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[ 1872.885859][ T4559] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1872.886136][ T4559] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1873.195649][ T6841] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1873.195672][ T6841] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1873.315261][T16153] netlink: 14 bytes leftover after parsing attributes in process `syz.5.2064'.
[ 1874.032823][T16173] QAT: Stopping all acceleration devices.
[ 1877.589333][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1879.584841][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1879.638546][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1879.964322][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1880.912970][   T37] kauditd_printk_skb: 1 callbacks suppressed
[ 1880.913021][   T37] audit: type=1326 audit(2000001379.470:1954): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16218 comm="syz.7.2083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba7e34eec9 code=0x7ffc0000
[ 1880.913354][   T37] audit: type=1326 audit(2000001379.470:1955): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16218 comm="syz.7.2083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba7e34eec9 code=0x7ffc0000
[ 1880.913658][   T37] audit: type=1326 audit(2000001379.470:1956): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16218 comm="syz.7.2083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=448 compat=0 ip=0x7fba7e34eec9 code=0x7ffc0000
[ 1880.914212][   T37] audit: type=1326 audit(2000001379.470:1957): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16218 comm="syz.7.2083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba7e34eec9 code=0x7ffc0000
[ 1880.914483][   T37] audit: type=1326 audit(2000001379.470:1958): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16218 comm="syz.7.2083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba7e34eec9 code=0x7ffc0000
[ 1880.914754][   T37] audit: type=1326 audit(2000001379.470:1959): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16218 comm="syz.7.2083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7fba7e350d5c code=0x7ffc0000
[ 1880.914959][   T37] audit: type=1326 audit(2000001379.470:1960): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16218 comm="syz.7.2083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7fba7e350c94 code=0x7ffc0000
[ 1880.915307][   T37] audit: type=1326 audit(2000001379.470:1961): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16218 comm="syz.7.2083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7fba7e350c94 code=0x7ffc0000
[ 1880.915654][   T37] audit: type=1326 audit(2000001379.470:1962): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16218 comm="syz.7.2083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba7e34eec9 code=0x7ffc0000
[ 1881.014684][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1881.016362][   T37] audit: type=1326 audit(2000001379.470:1963): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16218 comm="syz.7.2083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba7e34eec9 code=0x7ffc0000
[ 1881.362712][T16230] netlink: 'syz.7.2088': attribute type 10 has an invalid length.
[ 1881.401950][T16230] team0: Device dummy0 is up. Set it down before adding it as a team port
[ 1885.544494][T16290] QAT: Invalid ioctl 1073935638
[ 1886.433868][T16298] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2113'.
[ 1886.466236][T16300] netlink: 28 bytes leftover after parsing attributes in process `syz.7.2110'.
[ 1888.275239][   T37] kauditd_printk_skb: 3 callbacks suppressed
[ 1888.275258][   T37] audit: type=1326 audit(2000001386.870:1967): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16319 comm="syz.7.2118" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba7e34eec9 code=0x7ffc0000
[ 1888.278979][   T37] audit: type=1326 audit(2000001386.880:1968): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16319 comm="syz.7.2118" exe="/root/syz-executor" sig=0 arch=c000003e syscall=218 compat=0 ip=0x7fba7e34eec9 code=0x7ffc0000
[ 1888.279032][   T37] audit: type=1326 audit(2000001386.880:1969): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16319 comm="syz.7.2118" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba7e34eec9 code=0x7ffc0000
[ 1888.279306][   T37] audit: type=1326 audit(2000001386.880:1970): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16319 comm="syz.7.2118" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba7e34eec9 code=0x7ffc0000
[ 1891.926475][   T37] audit: type=1400 audit(2000001390.480:1971): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="^" requested=w pid=16347 comm="syz.5.2127" daddr=fe80::bb dest=20003
[ 1893.522310][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1893.740478][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1894.001222][T16359] netlink: 20 bytes leftover after parsing attributes in process `syz.5.2128'.
[ 1895.409312][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1896.241178][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1897.565058][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1898.369226][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1898.816469][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1899.620438][T16416] netlink: 'syz.3.2146': attribute type 3 has an invalid length.
[ 1899.620465][T16416] netlink: 199836 bytes leftover after parsing attributes in process `syz.3.2146'.
[ 1899.773005][T16423] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2147'.
[ 1899.803013][   T37] audit: type=1400 audit(2000001398.400:1972): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="^" requested=w pid=16422 comm="syz.7.2149" daddr=fe80::bb dest=20001
[ 1899.945037][T16426] netlink: 'syz.5.2152': attribute type 1 has an invalid length.
[ 1899.945059][T16426] netlink: 'syz.5.2152': attribute type 1 has an invalid length.
[ 1899.945071][T16426] netlink: 224 bytes leftover after parsing attributes in process `syz.5.2152'.
[ 1901.354606][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1901.552471][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1901.761999][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1902.036142][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1902.137042][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1903.646033][   T49] usb 5-1: new high-speed USB device number 16 using dummy_hcd
[ 1903.706086][T13150] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[ 1903.806348][   T49] usb 5-1: Using ep0 maxpacket: 32
[ 1903.876784][T13150] usb 6-1: Using ep0 maxpacket: 16
[ 1903.906813][T13150] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[ 1903.906844][T13150] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[ 1903.906869][T13150] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[ 1903.906890][T13150] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0
[ 1904.176687][   T49] usb 5-1: New USB device found, idVendor=174f, idProduct=6a31, bcdDevice=26.3f
[ 1904.176730][   T49] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1904.176748][   T49] usb 5-1: Product: syz
[ 1904.176762][   T49] usb 5-1: Manufacturer: syz
[ 1904.176776][   T49] usb 5-1: SerialNumber: syz
[ 1904.244586][   T49] usb 5-1: config 0 descriptor??
[ 1904.245501][T13150] usb 6-1: New USB device found, idVendor=1286, idProduct=2046, bcdDevice=b4.5b
[ 1904.245529][T13150] usb 6-1: New USB device strings: Mfr=1, Product=130, SerialNumber=3
[ 1904.245549][T13150] usb 6-1: Product: syz
[ 1904.245563][T13150] usb 6-1: Manufacturer: syz
[ 1904.245577][T13150] usb 6-1: SerialNumber: syz
[ 1904.293162][T13150] usb 6-1: config 0 descriptor??
[ 1904.305643][T13150] usb 6-1: NFC: intf ffff888039bdc000 id ffffffff8e0adb60
[ 1904.438400][   T49] gspca_main: stk1135-2.14.0 probing 174f:6a31
[ 1904.736777][T13150] nfcmrvl 6-1:0.0: NFC: registered with nci successfully
[ 1904.838699][T13150] usb 6-1: USB disconnect, device number 2
[ 1904.842427][T13150] usb 6-1: NFC: intf ffff888039bdc000
[ 1905.035319][   T49] gspca_stk1135: reg_w 0x0 err -71
[ 1905.036502][   T49] gspca_stk1135: serial bus timeout: status=0x00
[ 1905.036517][   T49] gspca_stk1135: Sensor write failed
[ 1905.036545][   T49] gspca_stk1135: serial bus timeout: status=0x00
[ 1905.036553][   T49] gspca_stk1135: Sensor write failed
[ 1905.036581][   T49] gspca_stk1135: serial bus timeout: status=0x00
[ 1905.036590][   T49] gspca_stk1135: Sensor read failed
[ 1905.036619][   T49] gspca_stk1135: serial bus timeout: status=0x00
[ 1905.036628][   T49] gspca_stk1135: Sensor read failed
[ 1905.036635][   T49] gspca_stk1135: Detected sensor type unknown (0x0)
[ 1905.036678][   T49] gspca_stk1135: serial bus timeout: status=0x00
[ 1905.036688][   T49] gspca_stk1135: Sensor read failed
[ 1905.036718][   T49] gspca_stk1135: serial bus timeout: status=0x00
[ 1905.036727][   T49] gspca_stk1135: Sensor read failed
[ 1905.036757][   T49] gspca_stk1135: serial bus timeout: status=0x00
[ 1905.036767][   T49] gspca_stk1135: Sensor write failed
[ 1905.036795][   T49] gspca_stk1135: serial bus timeout: status=0x00
[ 1905.036805][   T49] gspca_stk1135: Sensor write failed
[ 1905.036901][   T49] stk1135 5-1:0.0: probe with driver stk1135 failed with error -71
[ 1905.136461][   T49] usb 5-1: USB disconnect, device number 16
[ 1909.983030][T16545] netlink: 8 bytes leftover after parsing attributes in process `syz.7.2186'.
[ 1910.034749][T16546] netlink: 1108 bytes leftover after parsing attributes in process `syz.5.2188'.
[ 1910.478399][T16558] netlink: 'syz.1.2192': attribute type 10 has an invalid length.
[ 1910.661675][T16558] veth0_vlan: left promiscuous mode
[ 1910.695207][T16558] veth0_vlan: entered promiscuous mode
[ 1910.823945][T16558] team0: Device veth0_vlan failed to register rx_handler
[ 1912.470185][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1912.747269][T16583] netlink: 'syz.5.2198': attribute type 11 has an invalid length.
[ 1912.747297][T16583] netlink: 'syz.5.2198': attribute type 11 has an invalid length.
[ 1912.747311][T16583] netlink: 224 bytes leftover after parsing attributes in process `syz.5.2198'.
[ 1913.153206][T16595] netlink: 'syz.3.2202': attribute type 3 has an invalid length.
[ 1913.156403][T16595] netlink: 'syz.3.2202': attribute type 3 has an invalid length.
[ 1913.156497][T16595] netlink: 'syz.3.2202': attribute type 3 has an invalid length.
[ 1913.156576][T16595] netlink: 'syz.3.2202': attribute type 3 has an invalid length.
[ 1913.156653][T16595] netlink: 'syz.3.2202': attribute type 3 has an invalid length.
[ 1913.156724][T16595] netlink: 'syz.3.2202': attribute type 3 has an invalid length.
[ 1913.156818][T16595] netlink: 'syz.3.2202': attribute type 3 has an invalid length.
[ 1913.156888][T16595] netlink: 'syz.3.2202': attribute type 3 has an invalid length.
[ 1913.156969][T16595] netlink: 'syz.3.2202': attribute type 3 has an invalid length.
[ 1914.716420][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1914.788197][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1914.888610][ T1319] ieee802154 phy0 wpan0: encryption failed: -22
[ 1914.892113][ T1319] ieee802154 phy1 wpan1: encryption failed: -22
[ 1914.928476][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1916.224610][T16664] netlink: 28 bytes leftover after parsing attributes in process `syz.7.2229'.
[ 1917.133613][T16701] tmpfs: Bad value for 'mpol'
[ 1917.466464][T16709] validate_nla: 43 callbacks suppressed
[ 1917.466489][T16709] netlink: 'syz.7.2247': attribute type 27 has an invalid length.
[ 1917.466504][T16709] netlink: 'syz.7.2247': attribute type 3 has an invalid length.
[ 1917.466518][T16709] netlink: 132 bytes leftover after parsing attributes in process `syz.7.2247'.
[ 1918.397709][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1918.608028][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1919.915183][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1920.395196][T16755] overlay: Bad value for 'workdir'
[ 1920.783619][T16761] block device autoloading is deprecated and will be removed.
[ 1929.952801][T16859] openvswitch: netlink: Either Ethernet header or EtherType is required.
[ 1930.728536][T16872] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2301'.
[ 1939.795113][   T37] audit: type=1326 audit(2000001438.390:1973): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16992 comm="syz.1.2340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f88da5eeec9 code=0x7ffc0000
[ 1939.825098][   T37] audit: type=1326 audit(2000001438.420:1974): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16992 comm="syz.1.2340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=302 compat=0 ip=0x7f88da5eeec9 code=0x7ffc0000
[ 1939.826002][   T37] audit: type=1326 audit(2000001438.420:1975): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16992 comm="syz.1.2340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f88da5eeec9 code=0x7ffc0000
[ 1939.826050][   T37] audit: type=1326 audit(2000001438.420:1976): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16992 comm="syz.1.2340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f88da5eeec9 code=0x7ffc0000
[ 1940.304401][T17009] netlink: 'syz.7.2345': attribute type 1 has an invalid length.
[ 1940.822509][T17019] netlink: 'syz.3.2348': attribute type 2 has an invalid length.
[ 1940.822534][T17019] netlink: 5356 bytes leftover after parsing attributes in process `syz.3.2348'.
[ 1941.216267][T17026] netlink: 'syz.1.2351': attribute type 23 has an invalid length.
[ 1941.486836][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1942.194645][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1942.550094][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1942.705620][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1942.925046][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1943.457961][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1944.759865][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1944.988996][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1945.206900][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1948.876516][ T5801] Bluetooth: hci2: command 0x0406 tx timeout
[ 1958.099366][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1958.366221][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1959.264931][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1959.364563][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1960.099871][T17299] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2444'.
[ 1960.295484][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1961.618606][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1962.242520][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1962.504169][   T37] audit: type=1400 audit(2000001461.100:1977): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="^" requested=w pid=17317 comm="syz.5.2449" daddr=fe80::bb
[ 1962.520173][T17319] netlink: 'syz.3.2447': attribute type 2 has an invalid length.
[ 1962.945270][T17327] netlink: 1284 bytes leftover after parsing attributes in process `syz.5.2452'.
[ 1963.086973][T17319] : entered promiscuous mode
[ 1963.425814][T17339] netlink: 'syz.3.2458': attribute type 11 has an invalid length.
[ 1963.430348][T17339] netlink: 448 bytes leftover after parsing attributes in process `syz.3.2458'.
[ 1963.867093][ T6604] usb 2-1: new high-speed USB device number 14 using dummy_hcd
[ 1964.096270][ T6604] usb 2-1: Using ep0 maxpacket: 32
[ 1964.107375][ T6604] usb 2-1: config 0 has an invalid interface number: 151 but max is 0
[ 1964.107403][ T6604] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1964.107423][ T6604] usb 2-1: config 0 has no interface number 0
[ 1964.107475][ T6604] usb 2-1: config 0 interface 151 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 1964.161303][ T6604] usb 2-1: New USB device found, idVendor=0499, idProduct=6bb7, bcdDevice=68.2f
[ 1964.161335][ T6604] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1964.161354][ T6604] usb 2-1: Product: syz
[ 1964.161369][ T6604] usb 2-1: Manufacturer: syz
[ 1964.161384][ T6604] usb 2-1: SerialNumber: syz
[ 1964.218858][ T6604] usb 2-1: config 0 descriptor??
[ 1964.329633][T14222] Bluetooth: hci3: command 0x0406 tx timeout
[ 1964.959235][ T6604] usb 2-1: USB disconnect, device number 14
[ 1965.903985][T16020] udevd[16020]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.151/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1966.566197][T17378] QAT: failed to copy from user cfg_data.
[ 1966.957901][T17387] netlink: 'syz.4.2473': attribute type 10 has an invalid length.
[ 1967.096661][T17387] veth0_vlan: left promiscuous mode
[ 1967.103325][T17387] veth0_vlan: entered promiscuous mode
[ 1967.128469][T17387] team0: Device veth0_vlan failed to register rx_handler
[ 1967.212572][T17392] bridge1: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[ 1967.680337][T17400] tmpfs: Bad value for 'mpol'
[ 1968.040223][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1968.729010][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1969.380856][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1970.053351][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1970.321675][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1970.889551][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1972.168794][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1972.753202][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1972.794139][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1973.073627][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1973.209389][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1973.550696][T17445] program syz.4.2490 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1974.710076][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1975.383198][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1975.537232][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1975.783418][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1975.817655][ T5801] Bluetooth: hci4: command 0x0406 tx timeout
[ 1975.890219][T17467] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2498'.
[ 1975.890257][T17467] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2498'.
[ 1975.963505][T17468] netlink: 'syz.4.2497': attribute type 5 has an invalid length.
[ 1976.093063][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1976.606552][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1976.612331][ T1319] ieee802154 phy0 wpan0: encryption failed: -22
[ 1976.612414][ T1319] ieee802154 phy1 wpan1: encryption failed: -22
[ 1976.682647][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1976.792025][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1976.815406][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1977.267982][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1977.349218][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1977.777258][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1978.266884][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1978.483620][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1979.034850][T17512] sctp: [Deprecated]: syz.5.2513 (pid 17512) Use of int in maxseg socket option.
[ 1979.034850][T17512] Use struct sctp_assoc_value instead
[ 1990.284985][T17565] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2527'.
[ 1990.285068][T17565] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2527'.
[ 1990.285244][T17565] netlink: 108 bytes leftover after parsing attributes in process `syz.1.2527'.
[ 1990.285260][T17565] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2527'.
[ 1990.406317][T13167] usb 2-1: new high-speed USB device number 15 using dummy_hcd
[ 1990.416453][T17559] netlink: 3 bytes leftover after parsing attributes in process `syz.7.2525'.
[ 1992.252109][T17592] netlink: 'syz.4.2534': attribute type 1 has an invalid length.
[ 1992.551512][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1993.805293][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1994.319390][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1994.616896][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1995.384120][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1995.705181][T17629] ieee802154 phy0 wpan0: encryption failed: -22
[ 1996.187351][   T37] audit: type=1326 audit(2000001494.770:1978): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17639 comm="syz.1.2550" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f88da5eeec9 code=0x7ffc0000
[ 1996.187417][   T37] audit: type=1326 audit(2000001494.790:1979): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17639 comm="syz.1.2550" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f88da5eeec9 code=0x7ffc0000
[ 1996.192590][   T37] audit: type=1326 audit(2000001494.790:1980): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17639 comm="syz.1.2550" exe="/root/syz-executor" sig=0 arch=c000003e syscall=38 compat=0 ip=0x7f88da5eeec9 code=0x7ffc0000
[ 1996.192651][   T37] audit: type=1326 audit(2000001494.790:1981): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17639 comm="syz.1.2550" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f88da5eeec9 code=0x7ffc0000
[ 1996.192710][   T37] audit: type=1326 audit(2000001494.790:1982): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17639 comm="syz.1.2550" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f88da5eeec9 code=0x7ffc0000
[ 1996.246045][T13167] usb 5-1: new high-speed USB device number 17 using dummy_hcd
[ 1996.705975][T13167] usb 5-1: Using ep0 maxpacket: 32
[ 1996.711852][T13167] usb 5-1: New USB device found, idVendor=0c72, idProduct=000d, bcdDevice=27.9b
[ 1996.711883][T13167] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1996.711904][T13167] usb 5-1: Product: syz
[ 1996.711919][T13167] usb 5-1: Manufacturer: syz
[ 1996.711933][T13167] usb 5-1: SerialNumber: syz
[ 1996.999291][T13167] usb 5-1: config 0 descriptor??
[ 1998.239651][T13167] peak_usb 5-1:0.0 can0: unable to request usb[type=0 value=0] err=-71
[ 1998.239685][T13167] peak_usb 5-1:0.0: unable to read PCAN-USB Pro bootloader info (err -71)
[ 1998.963775][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1999.784267][T13167] peak_usb 5-1:0.0: probe with driver peak_usb failed with error -71
[ 1999.871239][T13167] usb 5-1: USB disconnect, device number 17
[ 2000.128351][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2000.390134][T17714] netlink: 96 bytes leftover after parsing attributes in process `syz.1.2578'.
[ 2000.804043][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2000.982216][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2001.179040][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2001.450107][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2006.145529][T17755] batadv1: entered promiscuous mode
[ 2008.797875][   T37] audit: type=1326 audit(2000001507.400:1983): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17777 comm="syz.7.2594" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba7e34eec9 code=0x7ffc0000
[ 2008.798233][   T37] audit: type=1326 audit(2000001507.400:1984): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17777 comm="syz.7.2594" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba7e34eec9 code=0x7ffc0000
[ 2008.822048][   T37] audit: type=1326 audit(2000001507.420:1985): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17777 comm="syz.7.2594" exe="/root/syz-executor" sig=0 arch=c000003e syscall=453 compat=0 ip=0x7fba7e34eec9 code=0x7ffc0000
[ 2008.822616][   T37] audit: type=1326 audit(2000001507.420:1986): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17777 comm="syz.7.2594" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba7e34eec9 code=0x7ffc0000
[ 2008.822671][   T37] audit: type=1326 audit(2000001507.420:1987): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17777 comm="syz.7.2594" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba7e34eec9 code=0x7ffc0000
[ 2009.492181][T17796] netlink: 'syz.7.2601': attribute type 30 has an invalid length.
[ 2010.450802][T17800] orangefs_mount: mount request failed with -4
[ 2010.786979][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2010.997232][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2011.343970][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2012.673485][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2013.346291][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2013.853148][T17874] dlm: non-version read from control device 36
[ 2014.409092][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2014.690036][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2014.923788][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2016.168582][T17915] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2645'.
[ 2016.279213][   T37] audit: type=1326 audit(2000001514.880:1988): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17917 comm="syz.4.2647" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f854d5feec9 code=0x7ffc0000
[ 2016.280292][   T37] audit: type=1326 audit(2000001514.880:1989): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17917 comm="syz.4.2647" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f854d5feec9 code=0x7ffc0000
[ 2016.284132][   T37] audit: type=1326 audit(2000001514.880:1990): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17917 comm="syz.4.2647" exe="/root/syz-executor" sig=0 arch=c000003e syscall=424 compat=0 ip=0x7f854d5feec9 code=0x7ffc0000
[ 2016.284853][   T37] audit: type=1326 audit(2000001514.880:1991): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17917 comm="syz.4.2647" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f854d5feec9 code=0x7ffc0000
[ 2018.624347][    C1] vkms_vblank_simulate: vblank timer overrun
[ 2018.757032][    C1] vkms_vblank_simulate: vblank timer overrun
[ 2019.646144][T17963] ------------[ cut here ]------------
[ 2019.646161][T17963] faux_driver vkms: [drm] vblank wait timed out on crtc 0
[ 2019.646789][T17963] WARNING: CPU: 0 PID: 17963 at drivers/gpu/drm/drm_vblank.c:1308 drm_wait_one_vblank+0x571/0x5b0
[ 2019.646997][T17963] Modules linked in:
[ 2019.647019][T17963] CPU: 0 UID: 0 PID: 17963 Comm: syz.7.2661 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[ 2019.647044][T17963] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 2019.647057][T17963] RIP: 0010:drm_wait_one_vblank+0x571/0x5b0
[ 2019.647084][T17963] Code: ff df 80 3c 08 00 74 08 4c 89 e7 e8 89 5c f4 fc 4d 8b 2c 24 48 c7 c7 00 be 52 8b 4c 89 fe 4c 89 ea 44 89 f1 e8 e0 f4 56 fc 90 <0f> 0b 90 90 49 bd 00 00 00 00 00 fc ff df e9 a7 fc ff ff 44 89 f9
[ 2019.647104][T17963] RSP: 0018:ffffc9000a96fac0 EFLAGS: 00010246
[ 2019.647124][T17963] RAX: e8b6600528812d00 RBX: 1ffff11004845401 RCX: 0000000000080000
[ 2019.647141][T17963] RDX: ffffc90016e63000 RSI: 0000000000000709 RDI: 000000000000070a
[ 2019.647156][T17963] RBP: ffffc9000a96fbc0 R08: 0000000000000000 R09: 0000000000000000
[ 2019.647169][T17963] R10: dffffc0000000000 R11: ffffed101710487b R12: ffff888142bf3000
[ 2019.647185][T17963] R13: ffffffff8b566e40 R14: 0000000000000000 R15: ffffffff8b580b60
[ 2019.647201][T17963] FS:  00007fba7c5ae6c0(0000) GS:ffff888126bcb000(0000) knlGS:0000000000000000
[ 2019.647221][T17963] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2019.647237][T17963] CR2: 00007f2a242e30a0 CR3: 0000000077850000 CR4: 00000000003526f0
[ 2019.647257][T17963] Call Trace:
[ 2019.647266][T17963]  <TASK>
[ 2019.647281][T17963]  ? __pfx_drm_wait_one_vblank+0x10/0x10
[ 2019.647310][T17963]  ? __pfx_autoremove_wake_function+0x10/0x10
[ 2019.647387][T17963]  ? rt_spin_unlock+0x161/0x200
[ 2019.647505][T17963]  ? drm_vblank_get+0x148/0x260
[ 2019.647529][T17963]  ? __pfx_drm_fb_helper_ioctl+0x10/0x10
[ 2019.647597][T17963]  drm_fb_helper_ioctl+0x116/0x140
[ 2019.647636][T17963]  do_fb_ioctl+0x459/0x750
[ 2019.647739][T17963]  ? __pfx_do_fb_ioctl+0x10/0x10
[ 2019.647767][T17963]  ? smack_log+0xef/0x3f0
[ 2019.647846][T17963]  ? smk_tskacc+0x2fc/0x370
[ 2019.647887][T17963]  ? __pfx_smack_file_ioctl+0x10/0x10
[ 2019.647932][T17963]  ? __fget_files+0x3a6/0x420
[ 2019.647999][T17963]  ? __fget_files+0x2a/0x420
[ 2019.648033][T17963]  ? bpf_lsm_file_ioctl+0x9/0x20
[ 2019.648068][T17963]  ? __pfx_fb_ioctl+0x10/0x10
[ 2019.648098][T17963]  __se_sys_ioctl+0xff/0x170
[ 2019.648127][T17963]  do_syscall_64+0xfa/0xfa0
[ 2019.648189][T17963]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2019.648235][T17963]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2019.648288][T17963]  ? clear_bhb_loop+0x60/0xb0
[ 2019.648316][T17963]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2019.648338][T17963] RIP: 0033:0x7fba7e34eec9
[ 2019.648358][T17963] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2019.648376][T17963] RSP: 002b:00007fba7c5ae038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2019.648398][T17963] RAX: ffffffffffffffda RBX: 00007fba7e5a5fa0 RCX: 00007fba7e34eec9
[ 2019.648413][T17963] RDX: 0000000000000000 RSI: 0000000040044620 RDI: 0000000000000003
[ 2019.648427][T17963] RBP: 00007fba7e3d1f91 R08: 0000000000000000 R09: 0000000000000000
[ 2019.648441][T17963] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2019.648454][T17963] R13: 00007fba7e5a6038 R14: 00007fba7e5a5fa0 R15: 00007fff304f4fa8
[ 2019.648492][T17963]  </TASK>
[ 2019.648503][T17963] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 2019.648520][T17963] CPU: 0 UID: 0 PID: 17963 Comm: syz.7.2661 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[ 2019.648543][T17963] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 2019.648556][T17963] Call Trace:
[ 2019.648565][T17963]  <TASK>
[ 2019.648573][T17963]  dump_stack_lvl+0x99/0x250
[ 2019.648631][T17963]  ? __asan_memcpy+0x40/0x70
[ 2019.648665][T17963]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2019.648692][T17963]  ? __pfx__printk+0x10/0x10
[ 2019.648742][T17963]  vpanic+0x237/0x6d0
[ 2019.648764][T17963]  ? __pfx_vpanic+0x10/0x10
[ 2019.648798][T17963]  panic+0xb9/0xc0
[ 2019.648819][T17963]  ? __pfx_panic+0x10/0x10
[ 2019.648859][T17963]  __warn+0x31b/0x4b0
[ 2019.648879][T17963]  ? drm_wait_one_vblank+0x571/0x5b0
[ 2019.648908][T17963]  ? drm_wait_one_vblank+0x571/0x5b0
[ 2019.648934][T17963]  report_bug+0x2be/0x4f0
[ 2019.649011][T17963]  ? drm_wait_one_vblank+0x571/0x5b0
[ 2019.649037][T17963]  ? drm_wait_one_vblank+0x571/0x5b0
[ 2019.649064][T17963]  ? drm_wait_one_vblank+0x573/0x5b0
[ 2019.649090][T17963]  handle_bug+0x84/0x160
[ 2019.649119][T17963]  exc_invalid_op+0x1a/0x50
[ 2019.649149][T17963]  asm_exc_invalid_op+0x1a/0x20
[ 2019.649169][T17963] RIP: 0010:drm_wait_one_vblank+0x571/0x5b0
[ 2019.649195][T17963] Code: ff df 80 3c 08 00 74 08 4c 89 e7 e8 89 5c f4 fc 4d 8b 2c 24 48 c7 c7 00 be 52 8b 4c 89 fe 4c 89 ea 44 89 f1 e8 e0 f4 56 fc 90 <0f> 0b 90 90 49 bd 00 00 00 00 00 fc ff df e9 a7 fc ff ff 44 89 f9
[ 2019.649214][T17963] RSP: 0018:ffffc9000a96fac0 EFLAGS: 00010246
[ 2019.649233][T17963] RAX: e8b6600528812d00 RBX: 1ffff11004845401 RCX: 0000000000080000
[ 2019.649248][T17963] RDX: ffffc90016e63000 RSI: 0000000000000709 RDI: 000000000000070a
[ 2019.649263][T17963] RBP: ffffc9000a96fbc0 R08: 0000000000000000 R09: 0000000000000000
[ 2019.649278][T17963] R10: dffffc0000000000 R11: ffffed101710487b R12: ffff888142bf3000
[ 2019.649294][T17963] R13: ffffffff8b566e40 R14: 0000000000000000 R15: ffffffff8b580b60
[ 2019.649336][T17963]  ? __pfx_drm_wait_one_vblank+0x10/0x10
[ 2019.649364][T17963]  ? __pfx_autoremove_wake_function+0x10/0x10
[ 2019.649395][T17963]  ? rt_spin_unlock+0x161/0x200
[ 2019.649419][T17963]  ? drm_vblank_get+0x148/0x260
[ 2019.649443][T17963]  ? __pfx_drm_fb_helper_ioctl+0x10/0x10
[ 2019.649471][T17963]  drm_fb_helper_ioctl+0x116/0x140
[ 2019.649500][T17963]  do_fb_ioctl+0x459/0x750
[ 2019.649534][T17963]  ? __pfx_do_fb_ioctl+0x10/0x10
[ 2019.649561][T17963]  ? smack_log+0xef/0x3f0
[ 2019.649607][T17963]  ? smk_tskacc+0x2fc/0x370
[ 2019.649655][T17963]  ? __pfx_smack_file_ioctl+0x10/0x10
[ 2019.649697][T17963]  ? __fget_files+0x3a6/0x420
[ 2019.649726][T17963]  ? __fget_files+0x2a/0x420
[ 2019.649759][T17963]  ? bpf_lsm_file_ioctl+0x9/0x20
[ 2019.649779][T17963]  ? __pfx_fb_ioctl+0x10/0x10
[ 2019.649809][T17963]  __se_sys_ioctl+0xff/0x170
[ 2019.649836][T17963]  do_syscall_64+0xfa/0xfa0
[ 2019.649860][T17963]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2019.649885][T17963]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2019.649908][T17963]  ? clear_bhb_loop+0x60/0xb0
[ 2019.649936][T17963]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2019.649957][T17963] RIP: 0033:0x7fba7e34eec9
[ 2019.649975][T17963] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2019.649993][T17963] RSP: 002b:00007fba7c5ae038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2019.650014][T17963] RAX: ffffffffffffffda RBX: 00007fba7e5a5fa0 RCX: 00007fba7e34eec9
[ 2019.650029][T17963] RDX: 0000000000000000 RSI: 0000000040044620 RDI: 0000000000000003
[ 2019.650043][T17963] RBP: 00007fba7e3d1f91 R08: 0000000000000000 R09: 0000000000000000
[ 2019.650057][T17963] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2019.650070][T17963] R13: 00007fba7e5a6038 R14: 00007fba7e5a5fa0 R15: 00007fff304f4fa8
[ 2019.650107][T17963]  </TASK>
[ 2019.650436][T17963] Kernel Offset: disabled