last executing test programs:

8m39.422261129s ago: executing program 1 (id=1151):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x8000002000000, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f00000002c0)={0x2, &(0x7f0000000040)=[{0x20, 0x4, 0x0, 0xfffff02c}, {0x6, 0x8}]}, 0x10)
ioctl$MEDIA_IOC_REQUEST_ALLOC(0xffffffffffffffff, 0x80047c05, &(0x7f0000000100)=<r2=>0xffffffffffffffff)
ioctl$VIDIOC_DQBUF(0xffffffffffffffff, 0xc0585611, 0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$KVM_CHECK_EXTENSION(0xffffffffffffffff, 0xae03, 0x9f)
syz_genetlink_get_family_id$netlbl_mgmt(0x0, r3)
sendmsg$NLBL_MGMT_C_ADD(r3, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={0x0, 0x14}}, 0x0)
r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$inet_int(r4, 0x0, 0xb, &(0x7f0000000040)=0x3, 0x4)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000700)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a34000000000a01020000000000000000070000000900010073797a30000000000900010073797a300000000008000240000000024c000000090a010400000000000000000700000008000a40fffffffd0900020073797a31000000000900010073797a3000000000080005400000001708000640ffffff0008000340000000389c1100000c0a01010000000000000000070000000900020073797a31000000000900010073797a3000000000701103806c1100800800034000000002541102"], 0x1244}}, 0x0)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r4, 0x0, 0x1a, &(0x7f0000000240)={0x1, 'veth0_to_team\x00'}, 0x18)
ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r2, 0x8982, &(0x7f0000000200)={0x0, 'sit0\x00', {0x4}, 0x10})
syz_emit_ethernet(0x0, 0x0, 0x0)
r6 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(0xffffffffffffffff, 0x84, 0x22, &(0x7f0000000280)={0x3f5d, 0x5a5142e6834ce5e6, 0x1, 0x7, <r7=>0x0}, &(0x7f0000000300)=0x10)
setsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r6, 0x84, 0x18, &(0x7f0000000340)={r7, 0x3}, 0x8)
write$P9_RSTATu(0xffffffffffffffff, 0x0, 0x230)
openat$sequencer2(0xffffffffffffff9c, 0x0, 0x0, 0x0)

8m35.656712076s ago: executing program 1 (id=1156):
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000080), r1)
syz_io_uring_setup(0x5c2, 0x0, 0x0, 0x0)
r2 = openat$sndseq(0xffffffffffffff9c, 0x0, 0x62181)
write$sndseq(r2, &(0x7f0000000000), 0x0)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r2, 0x4040534e, &(0x7f00000000c0)={0x2a2, @time})
socket$alg(0x26, 0x5, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = add_key$keyring(&(0x7f00000001c0), &(0x7f00000002c0)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffd)
add_key(&(0x7f0000000040)='ceph\x00', 0x0, &(0x7f0000000340)="01000722625a90", 0x7, r3)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40800}, 0x0)
r5 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r5, 0x4601, &(0x7f0000000040)={0x578, 0x258, 0x0, 0x140, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {0x0, 0x0, 0x1}, 0x0, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0xad3, 0x0, 0x0, 0x0, 0x80000000, 0x25, 0x0, 0x0, 0x4})
r6 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$ARPT_SO_SET_REPLACE(r6, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x1c, 0x4, 0x410, 0x108, 0x0, 0x0, 0x328, 0x328, 0x328, 0x7fffffe, 0x0, {[{{@uncond, 0xc0, 0x108, 0x0, {0x3ed}}, @unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x81, 'syz1\x00', {0x6}}}}, {{@arp={@broadcast, @loopback, 0x0, 0xffffff00, 0xfe, 0x8, {@mac=@broadcast, {[0xff, 0x0, 0x0, 0x0, 0x0, 0xff]}}, {@mac, {[0x0, 0x0, 0xff, 0xff]}}, 0x0, 0x0, 0xffff, 0x4000, 0xf7fe, 0x2, 'gretap0\x00', 'bridge_slave_0\x00'}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@mac=@broadcast, @empty, @multicast1, @private=0xa010101, 0x1, 0x1}}}, {{@uncond, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @mac=@dev={'\xaa\xaa\xaa\xaa\xaa', 0x12}, @empty, @broadcast, 0x1, 0x1}}}], {{'\x00', 0xc0, 0xe8}, {0x28, '\x00', 0x2}}}}, 0x460)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_COMPAT_GET(r7, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)=ANY=[@ANYBLOB="34000000000b010800b840430715ad7fc91c0000004140e13f8d5492b1cb30a0f50000"], 0x34}}, 0x0)

8m32.756830081s ago: executing program 1 (id=1161):
syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
syz_open_dev$vim2m(&(0x7f0000000040), 0x7, 0x2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000820004000000000000000c00850000000f00000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
chdir(&(0x7f0000000000)='./file0\x00')
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xe, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r3 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
ioctl$sock_netrom_SIOCDELRT(r3, 0x890c, &(0x7f00000001c0)={0x1, @null, @netrom={'nr', 0x0}, 0x2, 'syz1\x00', @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, 0x560, 0x1, [@bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast, @null, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}]})
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
r5 = socket$inet(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000300)={'bond0\x00', <r6=>0x0})
r7 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000001c0)=@newqdisc={0xa4, 0x24, 0xf0b, 0x70bd2b, 0x0, {0x0, 0x0, 0x12, r6, {}, {0xffff, 0xffff}, {0x2}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x74, 0x2, [@TCA_TAPRIO_ATTR_FLAGS={0x8, 0xa, 0x2}, @TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1], 0x0, [0x8, 0x4, 0x2, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3], [0x0, 0x8]}}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x10, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8, 0x4, 0x4000000}]}]}]}}]}, 0xa4}}, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r4, 0x6, 0x13, 0x0, 0x0)
getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x1c, 0x0, 0x0)
msgget(0x3, 0x710)
r8 = syz_open_dev$evdev(&(0x7f0000000200), 0xa2, 0x40000)
ioctl$EVIOCGKEYCODE(r8, 0x80084504, &(0x7f0000000240)=""/98)

8m30.828969353s ago: executing program 1 (id=1164):
sync()
sync()
sync()
sync()
sync()
sync()
sync()
sync()
sync()
sync()
sync()
sync()
sync()
sync()
sync()
sync()
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0x5, 0x7ee8}}, './file0\x00'})
sync()
sync()
ioctl$BTRFS_IOC_SCRUB_CANCEL(r0, 0x941c, 0x0)
sync()
sync()
sync()
sync()
sync()
sync()
sync()

8m27.469942327s ago: executing program 1 (id=1168):
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x14, 0x4, 0x4, 0x10002, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0xffffffff, 0x0, 0x0, @void, @value, @void, @value=0x180}, 0x48)
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
sendmsg$inet(r0, &(0x7f0000001200)={&(0x7f0000000100)={0x2, 0x4e20, @broadcast}, 0x10, &(0x7f00000011c0)=[{&(0x7f0000000140)="704beff090", 0x5}, {0x0}], 0x2}, 0x8040)
socket$nl_route(0x10, 0x3, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = socket$inet_smc(0x2b, 0x1, 0x0)
bind$inet(r3, &(0x7f0000000040)={0x2, 0x4e21, @empty}, 0x10)
sendto$inet(r3, 0x0, 0x0, 0x200408c4, &(0x7f0000000200)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x20}}, 0x10)
sendto$inet(r3, 0x0, 0x0, 0x24000015, 0x0, 0x0)
shutdown(r3, 0x0)
r4 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x84, 0x2c, 0xd27, 0x30bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r5, {0x0, 0xf}, {}, {0x7}}, [@filter_kind_options=@f_matchall={{0xd}, {0x50, 0x2, [@TCA_MATCHALL_ACT={0x4c, 0x2, [@m_gact={0x48, 0x1, 0x0, 0x0, {{0x9}, {0x1c, 0x2, 0x0, 0x1, [@TCA_GACT_PARMS={0x18, 0x2, {0x6, 0x9, 0x3, 0x80000001}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x2, 0x2}}}}]}]}}]}, 0x84}, 0x1, 0x0, 0x0, 0x10}, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000440)={{{@in, @in=@initdev}}, {{@in6}, 0x0, @in6=@remote}}, &(0x7f00000001c0)=0xe8)
getsockopt$inet6_IPV6_IPSEC_POLICY(r2, 0x29, 0x22, &(0x7f00000006c0)={{{@in=@loopback, @in6=@private1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r8=>0x0}}, {{@in=@local}, 0x0, @in=@broadcast}}, &(0x7f0000000540)=0xe8)
sendmsg$nl_generic(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000007c0)={0x1a0, 0x3b, 0x107, 0x0, 0x0, {0x1, 0x7c}, [@nested={0x4, 0xfc}, @nested={0xc, 0x1, 0x0, 0x1, [@typed={0x6, 0x6, 0x0, 0x0, @str='\x80\n'}]}, @nested={0x34, 0x2, 0x0, 0x1, [@nested={0x2d, 0x72, 0x0, 0x1, [@generic="28d5dd89189d0df02be63d160e651b4a4d3e8d02b3f93cd0b2b2b64c935695c1421e5ca428a5c366df"]}]}, @nested={0x147, 0x120, 0x0, 0x1, [@nested={0x10, 0x139, 0x0, 0x1, [@nested={0x4, 0x119}, @typed={0x8, 0x4, 0x0, 0x0, @fd=r7}]}, @nested={0x4f, 0x51, 0x0, 0x1, [@nested={0x4, 0x103}, @nested={0x4, 0x38}, @generic="a46e66b9eed4c2da10f6e9e208cbd2d553676cfa3aefef2e2b3891ee55324aa4c32d8f5874c4ae46f6e168bf5befe1fc3ca2a3be0882d244385934447e396f", @typed={0x4, 0xae}]}, @typed={0x8, 0x7a, 0x0, 0x0, @ipv4=@broadcast}, @generic="9a3e85a5f78cb477944960bde645ec64e0423674f462bf8df9e61f7a7e86a0e5d348cb2cba3cff525e52361492fc827cb1f2ec2d9aaaf73741bc7c5668be3b4789625d36f66534944ee8a6a4e78153c3b9ef509eba18fd265d1d4b2c465b9b529357c582bbb0782c92ca54738166d7989e8673f725d21ed9262b34a94f1c8816b22d43157ca0e4399bd3880d8b0f452c7f4003bb65cbf5c9818095fae1797736c014c09116bb56e48bba9a04f7b82afe982f877767a5a0b05dfe61", @nested={0x20, 0xa2, 0x0, 0x1, [@typed={0x8, 0xb, 0x0, 0x0, @uid=r8}, @typed={0x4, 0x107}, @typed={0x8, 0x9, 0x0, 0x0, @fd=r0}, @nested={0x4, 0x5e}, @nested={0x4, 0x14c}]}]}]}, 0x1a0}}, 0xc000)
r9 = openat$tun(0xffffffffffffff9c, &(0x7f0000000380), 0x4a301, 0x0)
ioctl$TUNSETIFF(r9, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8d11})
socket$kcm(0x2, 0xa, 0x2)
r10 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r10, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=@allocspi={0x154, 0x16, 0x1, 0x0, 0x0, {{{@in6=@private1={0xfc, 0x1, '\x00', 0x2}, @in=@remote, 0x0, 0xfb, 0x0, 0x0, 0x0, 0x20, 0x0, 0x4}, {@in6=@empty, 0x4d3, 0x6c}, @in=@remote, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, {0x9}, {}, 0x70bd26, 0x10000002, 0x2}, 0x4, 0x5}, [@migrate={0x50, 0x11, [{@in6=@mcast2, @in=@multicast2, @in=@multicast1, @in6=@local, 0x32, 0x0, 0x0, 0x3507, 0xa, 0xa}]}, @sec_ctx={0xc, 0x8, {0x8, 0x8, 0x0, 0x17}}]}, 0x154}, 0x1, 0x0, 0x0, 0x48001}, 0x0)
ioctl$TUNSETQUEUE(r9, 0x400454d9, &(0x7f0000000000)={'\x00', 0x400})
write$tun(r9, &(0x7f0000000440)=ANY=[], 0x3e)

8m19.472911558s ago: executing program 1 (id=1180):
r0 = openat$audio(0xffffffffffffff9c, 0x0, 0x40000000040201, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f00000005c0)={0x26, 'hash\x00', 0x0, 0x0, 'streebog256-generic\x00'}, 0x58)
r3 = accept4(r2, 0x0, 0x0, 0x0)
write$dsp(0xffffffffffffffff, 0x0, 0x0)
capget(0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_io_capa_request={{0x31, 0x6}, {@fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}}}, 0x9)
sendmsg$nl_route_sched(r3, &(0x7f0000013a40)={0x0, 0x0, &(0x7f0000013a00)={&(0x7f00000158c0), 0x10b8c}}, 0x0)

8m2.65277692s ago: executing program 32 (id=1180):
r0 = openat$audio(0xffffffffffffff9c, 0x0, 0x40000000040201, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f00000005c0)={0x26, 'hash\x00', 0x0, 0x0, 'streebog256-generic\x00'}, 0x58)
r3 = accept4(r2, 0x0, 0x0, 0x0)
write$dsp(0xffffffffffffffff, 0x0, 0x0)
capget(0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_io_capa_request={{0x31, 0x6}, {@fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}}}, 0x9)
sendmsg$nl_route_sched(r3, &(0x7f0000013a40)={0x0, 0x0, &(0x7f0000013a00)={&(0x7f00000158c0), 0x10b8c}}, 0x0)

2m43.964477014s ago: executing program 3 (id=2050):
syz_init_net_socket$llc(0x1a, 0x1, 0x0)
r0 = syz_io_uring_setup(0x497, &(0x7f0000000400)={0x0, 0x7079, 0x0, 0x4, 0x316}, &(0x7f0000000340)=<r1=>0x0, &(0x7f0000000280)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r0, 0x3516, 0x0, 0x0, 0x0, 0x0)

2m43.571778712s ago: executing program 3 (id=2055):
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000180)=0x100000001, 0x4)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x3)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x1a01, 0x0)
ioctl$EVIOCGPROP(r1, 0x40047438, &(0x7f0000000180)=""/246)
writev(r1, &(0x7f0000000340)=[{&(0x7f00000000c0)="5a294ab87ac0b8b5a99d3b9e0c2ffce6d2ba995e80295e51b847130b4d41a06c6b6fe1e95c93b2ac6b39d6e38d4e885b9c1ec2d5e16dd7b92c8fa154bbbcff5990574bda585c34fd4a1f49d7219119e2d06cf23a22d24b45", 0x58}, {&(0x7f0000000500)="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", 0x550}], 0x2)

2m43.300491291s ago: executing program 3 (id=2058):
r0 = syz_usb_connect(0x3, 0x73, &(0x7f0000000400)=ANY=[@ANYBLOB="12010000396d0940fd101315ce7e0102030109026100010000000009040001"], 0x0)
syz_usb_control_io$printer(r0, &(0x7f0000000100)={0xc, 0x0, 0x0}, 0x0)
syz_usb_control_io$printer(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$uac1(r0, &(0x7f0000000940)={0x14, 0x0, &(0x7f0000000900)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0xf8ff}}}, &(0x7f0000000b80)={0x44, &(0x7f0000000980)={0x40, 0xc, 0x7, "171334fc2b5b1d"}, &(0x7f00000009c0)={0x0, 0xa, 0x1, 0xf}, 0x0, 0x0, 0x0, &(0x7f0000000ac0)={0x20, 0x83, 0x1, ','}, 0x0, &(0x7f0000000b40)={0x20, 0x85, 0x3, "1f6c6a"}})

2m39.75895073s ago: executing program 3 (id=2076):
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000200)='./file0/../file0/../file0/../file0/../file0\x00', &(0x7f0000000040)='devtmpfs\x00', 0x0, 0x0)
chroot(&(0x7f0000000300)='./file0/../file0/../file0/../file0\x00')
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x0)
pivot_root(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0/../file0/../file0/../file0\x00')

2m38.824641449s ago: executing program 3 (id=2078):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000200)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f0000000140)=@gcm_128={{0x303}, "00000100ebffffff", "2607080d7f4fcf00fd4ef2dece6c7c58", '\x00', "006e34e400"}, 0x28)
sendto$inet6(r0, 0x0, 0x0, 0x8080, 0x0, 0x0)

2m38.50972524s ago: executing program 3 (id=2082):
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f00000000c0))
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x103)
socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$inet6(0xa, 0x80003, 0xff)
setsockopt$inet6_int(r1, 0x29, 0x16, &(0x7f0000fcb000), 0x4)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(0xffffffffffffffff, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(0xffffffffffffffff, 0xc01064b5, 0x0)
r2 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r2, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[<r3=>0x0], 0x1})
r4 = creat(&(0x7f0000000280)='./file0\x00', 0x0)
close(r4)
socket(0x22, 0x2, 0x3)
ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(r2, 0xc02064b9, &(0x7f0000000dc0)={&(0x7f0000000240)=[0x0, 0x0, 0x0], &(0x7f0000000200), 0x3, r3})
sendmsg$NL80211_CMD_START_AP(r4, &(0x7f0000000400)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x48, 0x0, 0x100, 0x70bd2a, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_AUTH_TYPE={0x8, 0x35, 0x5}, @NL80211_ATTR_AUTH_TYPE={0x8}, @NL80211_ATTR_PRIVACY={0x4}, @NL80211_ATTR_P2P_CTWINDOW={0x5, 0xa2, 0x8}, @NL80211_ATTR_AUTH_TYPE={0x8, 0x35, 0x3}, @NL80211_ATTR_HIDDEN_SSID={0x8, 0x7e, 0x2}]}, 0x48}, 0x1, 0x0, 0x0, 0x4020000}, 0x20040000)

2m38.045425273s ago: executing program 33 (id=2082):
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f00000000c0))
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x103)
socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$inet6(0xa, 0x80003, 0xff)
setsockopt$inet6_int(r1, 0x29, 0x16, &(0x7f0000fcb000), 0x4)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(0xffffffffffffffff, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(0xffffffffffffffff, 0xc01064b5, 0x0)
r2 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r2, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[<r3=>0x0], 0x1})
r4 = creat(&(0x7f0000000280)='./file0\x00', 0x0)
close(r4)
socket(0x22, 0x2, 0x3)
ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(r2, 0xc02064b9, &(0x7f0000000dc0)={&(0x7f0000000240)=[0x0, 0x0, 0x0], &(0x7f0000000200), 0x3, r3})
sendmsg$NL80211_CMD_START_AP(r4, &(0x7f0000000400)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x48, 0x0, 0x100, 0x70bd2a, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_AUTH_TYPE={0x8, 0x35, 0x5}, @NL80211_ATTR_AUTH_TYPE={0x8}, @NL80211_ATTR_PRIVACY={0x4}, @NL80211_ATTR_P2P_CTWINDOW={0x5, 0xa2, 0x8}, @NL80211_ATTR_AUTH_TYPE={0x8, 0x35, 0x3}, @NL80211_ATTR_HIDDEN_SSID={0x8, 0x7e, 0x2}]}, 0x48}, 0x1, 0x0, 0x0, 0x4020000}, 0x20040000)

15.454659066s ago: executing program 6 (id=2546):
fsopen(&(0x7f00000029c0)='vfat\x00', 0x0)
socket$rxrpc(0x21, 0x2, 0xa)
syz_open_dev$sndctrl(&(0x7f0000000040), 0x8d, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x82, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000000)={0x3})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f0000000b40)="f30f09ba6100b8c400ef66b9eb0a00000f3266b9830000c066b84700000066ba000000000f30f2a60fc75add650fdabc755ac09af67f0066b98004000066b8532ebe1866ba0bffd3710f3066b9830500000f32", 0x53}], 0x1, 0x21, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

15.368770265s ago: executing program 5 (id=2548):
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000000)={'sit0\x00', &(0x7f00000002c0)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x18, 0x4, 0x0, 0x0, 0x60, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast, @remote, {[@timestamp={0x44, 0x18, 0x0, 0x0, 0x0, [0x401, 0x0, 0x0, 0x0, 0x0]}, @timestamp_prespec={0x44, 0x4, 0xc0}, @timestamp_prespec={0x44, 0x2c, 0x0, 0x3, 0x0, [{@dev}, {@multicast2}, {@private=0xa010101}, {}, {@broadcast, 0x1052b1}]}, @noop, @noop]}}}}})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000240), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0xd000})
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'wlan1\x00'})
ioctl$KVM_RUN(r4, 0xae80, 0x0)

12.689966192s ago: executing program 4 (id=2551):
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r0, &(0x7f0000000040)={0x28, 0x0, 0x2710, @local}, 0x10)
listen(r0, 0x0)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r1, &(0x7f0000000640)={0x28, 0x0, 0x2710}, 0x10)
r2 = accept(r0, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=@base={0x12, 0x4, 0x4, 0xa4, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000140)={r3, &(0x7f0000000300), &(0x7f00000002c0)=@tcp6=r2}, 0x47)
recvmmsg(r2, &(0x7f0000000480)=[{{0x0, 0x0, 0x0}, 0x7}], 0x1, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000980)='sys_exit\x00', r4}, 0x10)
ioctl$sock_kcm_SIOCKCMCLONE(r2, 0x89e2, 0x0)
mmap(&(0x7f0000a4a000/0x4000)=nil, 0x4000, 0xb635773f06ebbee5, 0x80010, 0xffffffffffffffff, 0x57d86000)

12.67671649s ago: executing program 5 (id=2552):
r0 = io_uring_setup(0x30d7, &(0x7f00000000c0)={0x0, 0xf487, 0x800, 0x0, 0x1d})
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f0000000180))
r1 = openat$userio(0xffffffffffffff9c, &(0x7f0000000140), 0x200, 0x0)
read(r1, &(0x7f0000000040)=""/53, 0x35)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
r5 = syz_open_dev$ndb(0x0, 0x0, 0xc8400)
r6 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r7 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
r8 = dup3(r7, r6, 0x0)
ioctl$NBD_SET_SOCK(r5, 0xab00, r8)
ioctl$EVIOCSABS3F(r8, 0x401845ff, &(0x7f0000002240)={0x2, 0x2, 0x5, 0x7, 0x7, 0x80000001})
ioctl$KVM_SET_NESTED_STATE(r4, 0x4080aebf, &(0x7f00000001c0)={{0x2, 0x0, 0x80, {0x80a0000, 0x3000}}, "7ba5fb70baa71a4510b20049824d3890e633325b692953025c8059784042ad974946ce88510875912123798b3e8c642f0915c6bf18c8d63ff77b1f3b7db2112ed47c0dba4e55df2697186584c86b2e66c88aad562eed57b396aab5f2f6dd4bea33cafc05627df6f4e1c794cca411082c1e7efb30726301da255b65c8c89acdd174e07ba099c7f60beca4443dd46ad7c39543f394c17a4f689de0682b8169a5ca68851369865bdc48e3e98eaabf0b39e1a808f79825f24516d0abb10f526e5d99440c145ea7a8c7aa566cd257450ce5a8d93cb07a0427e4e4ed3adfa0d9a9d98ab39215516e98ea54417cb8aadbcabede33127c36a8fbf36628310d8269b3dca129b6e120831941b28013c8c02bff60535b70451a3d48dbb94a43ca59cbca7201ebccf0c76579919dc279f3613ab57f61f826ea44bcde972cbef0ad46cc178da0b0442132daab0ef8831f995a4e0885aac50b86ee1a22dce5be92b6be453513647026903e4529d2ce6625a8b2de41b6093c32b64cca2cf17ecc0028c1285627e484b07188db20635d4577cac7837ef904596d9965a6528537a48f341a5a7aba7551e471a7eaae7d20dcfb8719c7a88ed8543422ad11132441f00a8b8f3bd1883b346c82b2c675a39a1b8ecb858bdf51ea3986bbf5a4a2b88c87d9af43ee1bb49759040df0881eb13f17e9437416c1891ec446107526e4b75e13d3079befc84360fdd648e56f69edae428689c8117f94a902c7741caa07c0674bc50e3912dc44cc50b446cf65005aa578acf532b3b753bd96fa45667ff89c1742dfddec3a781c6502297b32e66f95d48cdc697f3284c165e58ccaca9c49e6e9049b51e4c5b69d0150c17b40963467ed97bedb380b7ec6fa98a281f968992c2f4fbf9de9f58cd8ff4f0abb075540be13a1458c674e8c8531f94b6f8950b25f5ad865b2477995adce816728e8ba85781d4f0a13fd8588e18200ff3b9f94416214cb91ee7df61392c1a25139852b0708060985d630a144fda7b92f9df515c74fc8f58156941f59b0c5cab52754bc9aada431cc1684aec6df4ada4d99ce6ad8874e1f8014c5debb8bf1a4d8af97d1032d9a48a17dc7a629a9eb68f46e6ed8b580bd59f496db376f19d9b517251cc571b216d31d1d5445f8841e09002f4bf749e547df574dcfdb8d410750ab4cb3ff6a4cde94fb8ab8b7f95650787e60232ddad6be069a5ed3320e25ea1cc7ac4de4defb67fccd5b7de3250af97295dbb88971eeb2306118a7027d80b2c6886ae773fa36efa84320d79f74edd126394f77e5ed6d7c034f8c587edc2d36751a7e4a355eaae27a71c00150ff3f72d90755420a976a36af05c8593399ed51a8903e80c96710c8397344ccbead1ccef4589e04b11c85d4063246ff86c92982572bb879157925953fc048da12195d0933631acda742d2513465e670fe683c312e4bf4837de8f86349a799dc6d6c93e025c685c1aaf6451da4d431b9982f64de58eba735e37b4f9b4b257922bb88595260710ccabe7dfe39ef83610c70fa8fde2217f1b869a889fd3123cc639164ac054d61217398b6c95fb19c967981fa595326c164d08d1a8819458f637052c7b828b191e45755a445462d0b066e5928f25aadb86541b9e317665f2693cc5e563b17ad0beee9df101279ce85305b4fbbdaf0faa26c35e77bc2f9586dcfbedd3f4113c33fe51a941b47af7ecb5685b8ed0090335548ec76728402f58b3ed4d7f99385f4298aa619f5966087d65c395997ad6cd8b060f3446f2f271a9399948c0cfa23cec7b5092b75d3fdfbf207c26fbfe7df705c4bd5521f5f215c47636bf9e0ea3d3069eb89c5e0fdc3f5382590f0ff2e36325f4cb0c8b2fc4fa27b04d2fe96d71e0ef5e1bcfc3344451da1b9997b6b4e230787c6c9646b222f0506070fd24f44692bbbe55b90f1f6a97d46e8ab1e1c5650ddfdf8f277c55111012e633da22be6c248952f3d850dd8e20ddb6b9adf6ca16d40d7ada9c907ba19644a604c66de47fb5bdc035c8b9f2bf6beadf56f59a05d8cc2fabfee532cefa674583ee755a60b536e5bc69a0fbd3ac994b74002cd03295dda708cc9f88f83447cda483aabc2e673250f0dd25d6425b4630d33405158ab5a0d5e11fea150e53fa3a8aefcae4768d4a6282845e0b1ec3376a6eb1770b9436f3d4c11ea67d6584d6fbbf457c1af32c1e6c69e566cbd560f2724a09604e73192ce6ee9b4f1d5a836373a05e33d0dce238fd063fecd4e860281e97a8a9c27192e49c66ff73521c98405667cccb3d975828722546d0b36bd5695ec7706770f8072b51f3f63448955405017235518b2fd7c1763bea2e8bce2f5e532e7fc6d07093eaeefca13b8d4a9230787fe262238be01df4ca16c26c741aa9cc556d046f5bc69124c956d05149c5d1a8a1087d406a6aaede36d57a41c8ba0420ad2bfe1aff93214d32b53b598d68058f72793c9852bdbefbfc7e16e3ed6b1508348a2639d1d942b8a51c7b674cb84dbf7d991968d6f5866fc48f00fb3c9b3c4d404feb789376376125d10c1a3ab44a04565c957b2cc06af2367a506af86d619c641ac44c23f66162fb215c9f0bf4c9a65f9788f986c26bc591503aa8736300d93735e7beb79a7d3efc4a86efd75a1961a7e0697964ae7f5fecf9a6c091fc4760c28ec8c9ab8e6ded3f7a78d6b581a9ef85771e6614cb0dba0a90443414c4a7975a7135546e92fdb63138655e50b8570ea05e6924425173490abc747fd19c6c5c1217992705bc688a51606d848f746b1a3d4291f8a5fe725f8a7255efcbe1aa303362fa32a5684a8e5d6e51df62e8dcfa64875ebc77141c74310b0608d7ae45bc49107ff6bf36bb29d6890e829573afbb0cfaf80aa9978712fe7dc66e26b8931d1663332f419315226ea9c1cfe593d0c03bb59a4c3dca6be3dac6dcdfc6c40fce14833cc8010a6763bed5f358af403b06200ec6f2b3565762402107aeea5235acda64bd03af37a85cd57b6538fc6d9d9bc8f22a5e3c01fcffc35a55a5a30ec478132eebfda06883307e93771c4578f806b63ea9bbe5c9fad7d296365e47a803f3f8e5c5818f41b1fc5559adaec7883857e59e520236a79003f62e1d4dce88d6eeb75a10dab736edea388e1e810811e2d418dd45308f3e3e8dd13223d969e8c3328a94b389ffc1507645cecafb33d0e31c6594ee2a1a66ee76688bfa100eb14bfb7a2b57cf40620319156c9840ab0826c5aebb43fbd6cd2b854098f582ad3f3ff528015a53c14acc4069cecf0033f861442583a39d89f0715c07d8fb9a89e9c48dfc39c089df5f079e9906106a47cc437247412b9f85cff653e1d5b9e0b3b4486f905648a8cbf61efc7ebb9854672801a345f3dd840935a76cdbe676a1c438baeddba47acdd4737322d0cf748069fd132ad4a89a18ce1b5ab9aadefe7f79b7155c217a8acdb2572cf6093f254243015e638b71df5c43eb07435c8ff22101c8617f9ddd4d099ca3e68c4e8d0de4a7d7ea7ecf20c385793696dae3ef4eb08d5f82a552d196f0befd1b6df84a08d95b03d848b9990ad8550d8b6b069a02dfbfeb684d9d9ae95ccd182d2fbeddda4ad855cfec49d34f9a10c3bb1dd589ec69dd176448dd47e259b84f578ce5ae1d74f708497d47b9fa0042439a56c2cfbe8ae1ee2894a72fc65905c47ececa59a86e7356d429054ae647adfbd348999f1ef8189d889c92b747dac640f9ccecf0684f64636f555a8850e24043090d6a3529bf0cfa45280679131f272e580616adb65c45a508f69375e0b88830574df9adaf3b4469bb27ae1170ab13258f199fae279dcfa4bd355af87d3e2409b96d1700ee1fa478ae28c838858e93ec47eccec1c8fe9eaf542a71b83b890b99a3a9e69422b0e36c5ffdadbb2e73ee0c77057e6b0b9429756648e40c9d8cbaa9d4fdf43e9850816ef7c13e7f1a8a1a1709d0b4a438ca57f8334debefad2ff45d1c234dcc2b98c3af4487466aae06c10ebdf39be41ae48bbfeb7d1622787187e6cd28bf0977876dca4ad4120b43f9c1a2b9e0158dbaf25bd4fa9e298549d0cfe44ad75ab479a71fcf525e545d0a36b9b104e8b531efb9f03f632757d6b32e97e1c63a65d283058e94689756b4dc223d1c9372cc39455da77e4e6aabaa16ad0f987a5fdf123830460a22f52063ffc0079fcef0441a17f6f797ec0278c9a0f66b198960ef499eeb4218144d9ba391393433062818af554547b61be41c95cc8eb43b5923c335639d37498d3fcefc760ffc7ebc74695b149cadf68724a637c3ec8f48b621d46cda854b3ec187b36eda5fd3d79fde2d2980eb51dfc273330ddb6e75215a5660b6d54a82c977c12b38f949d3dad96aa05bb0c370be2e13a819e0274d57e991d2eaa498441e654e5ebd23377e9344c572c7e2d28b3612f46d1cd398f74d0db07a185d7aedb422883912d206e8ed13f9a5250f520cefabac21a3f72afa64ceea7291abbcc15488406f3a206b6def7ebbd883477a1dd811a04150b52e65d76356328ab4374bd002e58a61f32c618e6744b98780bb972a33283006abadbbeae8688f5302208480247ec9b094673754d676514798f34eb16d7ed5ec95e18c4d30706d425e624f8cde226d3fb4e3ad0c317fc17991a932303020a5bfa50e3053bcb622089658f6692e253626e2e7120e5255c00c0a9a3a08742c7030acfe598d44b6ef0b3935540ff88abbc88c6f5acd0e291829b563f9e6e3f98956b204d37774cffed30c943fc0bbcbdec68dde23b46d57fcde7ece0daa57494afc39ddd1439149041b18643182f7417387a6fdaff12dc264b2e2b57321021e77d632d664051051c5c0cdd2f15176f206dfbac829a8585ade8d86377cacd19e62e7bbb8522b182dc5500ab54458ac23ab854a86d12fb788d3fd8d101c366e3c7ad432c300ac55b209233ea07ae97887854a4d655ec0c39daa6f1d026fe7a77c557cdf3c590d9f4c48d44d2797a748b423b21ec2fe1fb00ca9a29005d08df779cc83dcc48c276c109209b9d7b365256084a57fbcae0f4400c039ff9de0d26b96fee71d4df0ab7f319f6ee75ca24e560fc01169d1216fb55d56445070eb7ff41520785730aab3e0c16e8bc6ecad8716b2f60f56ae839febee1b136faa9ab6f56203a2b31d26e9d641c4d763ca0ccf221ab8154c1db57121be6284f67a33f4063a4f4ee61c1f0a579e793a0d657efaf22d47611006a13d6fb0bd76944e812f652f0bf6f6f810034a3b357325ca45d1eb305b861f2a5b96f08ae5a82295fb574d19308f2e41c3ded0219131686ad43ecea74f5ceb2ba024a60ae708854b8026859a3b7c6537ca1dab462f462bde56e83816b685e83d2bc7b977cf905e5affa9579a04e8e0849a5175f2975dd9dbe5e37381ebcfa04e42e36c25a812b540f1e69d557730432b978667d363c25a841e15512547834e54a2d711d0893852260e0fbd2bfc55f2f61e61d0129fb4a6900dc9926154d55bf44cdc33b24af025091ceda7cc62ab1d86f240460de6a17c6603c8ec3b88e689c52b793fa64dcf719dd280fba24b5503a5aafa3800b9abca5a7a3c8eb1f2dbbe40d91d237fc82e9df75c62e47b840965e38e260d6e93ba1ac40f4ceb33f589d52aac8d6b4719b4312364ad2b262c9563f06deceff4a60e1c6428e298b090d77cde32f19144e473f6db8bd65d467d82234f30c0766bcba4eb769d07189c69e6349ee0227879c3a57d988b38869b0e623e3a6833f58ec7da55a2a3abdcf31f5f6fb1a451ea59e0147de612541fee562e82b0eaa8956548d6b3303a6a7e12afb49591fc6b1", "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"})
close_range(r0, 0xffffffffffffffff, 0x0)

12.613072775s ago: executing program 6 (id=2553):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="0c06da8008000180fff00100fa78e152732382fdf5e07f1d55b0308228c36e05bd0cf765d72b4a7c6294b23c180b92a7d0"], 0x24}}, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$alg(0x26, 0x5, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000004ec0)=[{{0x0, 0x0, &(0x7f0000000100)=[{0x0}], 0x1}, 0x5}], 0x1, 0x2000, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000440)=ANY=[], 0x528}}, 0x4800)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r2 = accept4(r1, 0x0, 0x0, 0x80800)
sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000000)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r3, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r4, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)

12.552932834s ago: executing program 0 (id=2554):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000180)='net\x00')
pipe(&(0x7f0000000080)={<r4=>0xffffffffffffffff})
vmsplice(r4, 0x0, 0x0, 0x0)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000100), 0x4)
getdents64(r3, &(0x7f0000000340)=""/79, 0x4f)

12.395976986s ago: executing program 6 (id=2555):
socket$inet_tcp(0x2, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000d00)={0x0, 0x0, &(0x7f0000000ac0)={&(0x7f0000000540)=ANY=[@ANYBLOB="68000000140001000000000000000000fe8000000000000000000000000000aa", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\f\x00\b\x00\b\x00\b'], 0x68}}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r4}, 0x10)
request_key(&(0x7f0000000400)='ceph\x00', &(0x7f00000004c0)={'syz', 0x3}, &(0x7f0000000500)='[{/[\'+!\x00', 0xfffffffffffffffc)
close(0xffffffffffffffff)
socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
connect$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
r5 = accept(0xffffffffffffffff, 0x0, 0x0)
sendmsg$AUDIT_USER_AVC(r5, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
openat$sndseq(0xffffffffffffff9c, 0x0, 0x0)

12.278231513s ago: executing program 4 (id=2556):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='net_prio.prioidx\x00', 0x275a, 0x0)
quotactl_fd$Q_SETQUOTA(r0, 0xffffffff80000800, 0x0, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0xfffffffffffffff1, 0x4, 0x0, 0x4, 0x7fffffff})
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0x11, &(0x7f0000000480)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0xf, 0x0, 0x0, 0x0, 0xf}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [@btf_id={0x18, 0x2, 0x3, 0x0, 0x1}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}}}, &(0x7f0000000040)='syzkaller\x00', 0x398, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r5, 0x0)
r6 = syz_open_dev$video(&(0x7f0000000040), 0x7, 0x0)
r7 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r7, 0x7a7, &(0x7f0000000200)=0xa0000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r7, 0x7a0, &(0x7f0000000280)={@local})
ioctl$IOCTL_VMCI_QUEUEPAIR_ALLOC(r7, 0x7a8, &(0x7f0000001340)={{@local}, @any, 0x0, 0x4})
recvfrom$inet6(r5, &(0x7f00000000c0)=""/87, 0x57, 0x40000001, &(0x7f0000000600)={0xa, 0x4e22, 0x4, @empty, 0x6}, 0x1c)
ioctl$IOCTL_VMCI_QUEUEPAIR_SETPF(r7, 0x7a9, &(0x7f0000000180)={{@local}, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x20000007, 0xffffffffffffdffb})
ioctl$VIDIOC_ENUMINPUT(r6, 0xc050561a, &(0x7f0000000200)={0x0, "80a246be445c94f43a16d380ec570000aa2e5a00", 0x3, 0x0, 0x5, 0x7, 0x606020a, 0x2})
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000048c0)={0xffffffffffffffff, &(0x7f00000047c0), &(0x7f0000000300)=@buf="360b04cb2de8e31ff5a49deed41c9d42a5b8871060fdb428fc525b9cf3d084b579a1cde6bc2669b4fdd96cdbc22d16129135ff2f4fd0bbf66288a37881f8003a97eaa288310f96ec0578e81fb828490a4d63db065d2ded4e8212205b94cde0b38da3c12a8d497ea2b6b9c4213d3ccd5420578227c8f01b1a38d1db915a5d3fd611d52d1a61168f6ee2e319581698f1416647dd106a2f30670b73e42aeb3e0ed243e5b80c25159b26db85c02ca25b6675cecf5268dd4e6a5e06aedc28fb488fe1ba1792df0f65d720118f"}, 0x20)
recvmmsg(r5, &(0x7f00000002c0)=[{{0x0, 0x0, &(0x7f0000001c80)=[{&(0x7f0000000a00)=""/157, 0x9d}], 0x1, 0x0, 0xffffffffffffff1f}}], 0x1, 0x2, 0x0)
setsockopt$inet6_tcp_int(r5, 0x6, 0x19, &(0x7f0000000080), 0x4)
keyctl$KEYCTL_WATCH_KEY(0x20, 0x0, 0xffffffffffffffff, 0x52)

11.279179529s ago: executing program 0 (id=2557):
r0 = socket$xdp(0x2c, 0x3, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$XDP_RX_RING(r0, 0x11b, 0x2, &(0x7f0000001980)=0x100, 0x4)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000280)={'batadv_slave_1\x00', <r2=>0x0})
r3 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r3, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/74, 0x328000, 0x1000}, 0x1c)
setsockopt$XDP_UMEM_COMPLETION_RING(r3, 0x11b, 0x6, &(0x7f0000000080)=0x1, 0x4)
r4 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$XDP_RX_RING(r3, 0x11b, 0x2, &(0x7f0000001980)=0x100, 0x4)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r4, 0x8933, &(0x7f0000000200)={'batadv_slave_1\x00', <r5=>0x0})
setsockopt$XDP_UMEM_FILL_RING(r3, 0x11b, 0x5, &(0x7f0000000140)=0x1, 0x4)
bind$xdp(r3, &(0x7f0000000100)={0x2c, 0x0, r5}, 0x10)
bind$xdp(r0, &(0x7f0000000240)={0x2c, 0x1, r2, 0x0, r3}, 0x10)

11.204927374s ago: executing program 5 (id=2559):
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f0000000800)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000300)={0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000240), 0x800}, 0x38)
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(0xffffffffffffffff, 0x40345410, &(0x7f0000000180)={{0x0, 0x2}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x24}}, 0x0)
process_vm_writev(0xffffffffffffffff, 0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000380)=""/161, 0xa1}, {&(0x7f0000000480)=""/170, 0xaa}, {0x0}], 0x3, 0x0)
setsockopt$inet_sctp_SCTP_RECVNXTINFO(r0, 0x84, 0x21, &(0x7f0000000040)=0x1ff5, 0x4)
bpf$MAP_LOOKUP_BATCH(0x19, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000680), 0x0, 0x6c}, 0x38)

10.128497327s ago: executing program 4 (id=2560):
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0x40}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x7528e000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000002c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fd\x00')
statx(r3, &(0x7f0000000040)='.\x00', 0x0, 0x80, 0x0)
syz_open_dev$vbi(0x0, 0x0, 0x2)
bind$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x0, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b00000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f00000002c0)=ANY=[@ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

10.08249778s ago: executing program 6 (id=2561):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000040)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_open_dev$loop(0x0, 0x2, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
r6 = dup(r5)
ioctl$KVM_SET_CPUID(r6, 0x4008ae8a, &(0x7f0000000280)={0x1, 0x0, [{0xd, 0xffff8000, 0x88, 0x5, 0x10}]})

9.932922767s ago: executing program 2 (id=2562):
prlimit64(0x0, 0xe, &(0x7f0000000180)={0xc, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x10, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000004340)={0x6, 0xc, &(0x7f00000007c0)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {}, {}, {0x4}, {0x6, 0x0, 0xa}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x33}}]}, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x94)
socket$inet(0x2, 0x2, 0x0)

9.680429537s ago: executing program 0 (id=2563):
preadv(0xffffffffffffffff, 0x0, 0x0, 0x21, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r3, 0x6, 0x17, &(0x7f0000000280)=0xbd, 0x4)

8.567981712s ago: executing program 4 (id=2564):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
sendmsg$NL80211_CMD_SET_COALESCE(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
getpid()
openat$vcsa(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r1, 0x84, 0x13, &(0x7f0000000040)=0x3ff, 0x4)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000900)=[@in={0x2, 0x4e23, @loopback}, @in6={0xa, 0x0, 0x0, @loopback}], 0x2c)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f0000000140)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3f8, 0x0, 0x32}, 0x9c)
sendto$inet6(r1, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)

7.402186166s ago: executing program 2 (id=2565):
socket$inet_tcp(0x2, 0x1, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
accept4(r0, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f0000000280), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = syz_io_uring_setup(0xd1, &(0x7f0000000340)={0x0, 0x8425, 0x400, 0x1, 0x8f}, &(0x7f0000000080)=<r3=>0x0, &(0x7f00000001c0)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f0000000240)})
io_uring_enter(r2, 0x47ba, 0x0, 0x0, 0x0, 0x0)

7.256855212s ago: executing program 6 (id=2566):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00'}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000002700)=""/102392, 0x18ff8)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r1, 0x0, 0x60, &(0x7f0000000cc0)={'filter\x00', 0x3b, 0x4, 0x4c8, 0x1e8, 0x2f8, 0x3e0, 0x2f8, 0x3e0, 0x3e0, 0x4, 0x0, {[{{@uncond, 0xc0, 0x1e8}, @unspec=@SECMARK={0x128, 'SECMARK\x00', 0x0, {0x0, 0x0, 'system_u:object_r:update_modules_exec_t:s0\x00'}}}, {{@arp={@broadcast, @dev, 0x0, 0x0, 0x0, 0x0, {@mac=@broadcast}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_to_batadv\x00', 'veth1_to_hsr\x00'}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@mac=@remote, @empty, @multicast2, @loopback}}}, {{@uncond, 0xc0, 0xe8}, @unspec=@STANDARD={0x28, '\x00', 0x0, 0xffffffffffffffff}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x520)
r2 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r2, 0x3b81, &(0x7f00000002c0)={0xc, 0x0, <r3=>0x0})
ioctl$IOMMU_IOAS_MAP$PAGES(r2, 0x3b85, &(0x7f00000000c0)={0x28, 0x7, r3, 0x0, &(0x7f0000ffa000/0x3000)=nil, 0x3000})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r2, 0x3ba0, &(0x7f00000001c0)={0x48, 0x5, r3, 0x0, <r4=>0xffffffffffffffff})
ioctl$IOMMU_TEST_OP_ACCESS_RW(r2, 0x3ba0, &(0x7f0000000300)={0x48, 0x8, r4, 0x0, 0x2fff, 0x3, &(0x7f0000000140)="c6360a"})

7.247620205s ago: executing program 0 (id=2567):
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$devlink(&(0x7f00000016c0), 0xffffffffffffffff)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000340)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000180)={0xc, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000840)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x1, 0x0, 0x9}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x4c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1, 0x0, 0x1000}, [@NFTA_SET_ID={0x8}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x1e}, @NFTA_SET_DESC={0xc, 0x9, 0x0, 0x1, [@NFTA_SET_DESC_SIZE={0x8, 0x1, 0x1, 0x0, 0x6000}]}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_EXPRESSIONS={0x4}]}], {0x14, 0x10}}, 0x94}}, 0x0)

7.200786868s ago: executing program 5 (id=2568):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='net_prio.prioidx\x00', 0x275a, 0x0)
quotactl_fd$Q_SETQUOTA(r0, 0xffffffff80000800, 0x0, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0xfffffffffffffff1, 0x4, 0x0, 0x4, 0x7fffffff})
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0x11, &(0x7f0000000480)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0xf, 0x0, 0x0, 0x0, 0xf}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [@btf_id={0x18, 0x2, 0x3, 0x0, 0x1}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}}}, &(0x7f0000000040)='syzkaller\x00', 0x398, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r5, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000400)=ANY=[@ANYRESOCT=r5, @ANYRESOCT=r4, @ANYRESDEC=r3, @ANYRESOCT=r3], 0x48)
r6 = syz_open_dev$video(&(0x7f0000000040), 0x7, 0x0)
r7 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r7, 0x7a0, &(0x7f0000000280)={@local})
ioctl$IOCTL_VMCI_QUEUEPAIR_ALLOC(r7, 0x7a8, &(0x7f0000001340)={{@local}, @any, 0x0, 0x4})
recvfrom$inet6(r5, &(0x7f00000000c0)=""/87, 0x57, 0x40000001, &(0x7f0000000600)={0xa, 0x4e22, 0x4, @empty, 0x6}, 0x1c)
ioctl$IOCTL_VMCI_QUEUEPAIR_SETPF(r7, 0x7a9, &(0x7f0000000180)={{@local}, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x20000007, 0xffffffffffffdffb})
ioctl$VIDIOC_ENUMINPUT(r6, 0xc050561a, &(0x7f0000000200)={0x0, "80a246be445c94f43a16d380ec570000aa2e5a00", 0x3, 0x0, 0x5, 0x7, 0x606020a, 0x2})
msync(&(0x7f00003fc000/0x3000)=nil, 0x3000, 0x4)
recvmmsg(r5, &(0x7f00000002c0)=[{{0x0, 0x0, &(0x7f0000001c80)=[{&(0x7f0000000a00)=""/157, 0x9d}], 0x1, 0x0, 0xffffffffffffff1f}}], 0x1, 0x2, 0x0)
setsockopt$inet6_tcp_int(r5, 0x6, 0x19, &(0x7f0000000080), 0x4)
keyctl$KEYCTL_WATCH_KEY(0x20, 0x0, 0xffffffffffffffff, 0x52)
syz_usb_connect(0x0, 0x24, &(0x7f0000000b40)={{0x12, 0x1, 0x0, 0x96, 0x90, 0x34, 0x20, 0x2058, 0x1005, 0xb5f6, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x3d, 0x0, 0x0, 0x51, 0x8e, 0x3f}}]}}]}}, 0x0)

5.335689843s ago: executing program 2 (id=2569):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0x149802, 0x0)
r5 = dup(r4)
sendfile(r4, r5, 0x0, 0x80006)
fanotify_init(0x200, 0x0)

4.873761046s ago: executing program 0 (id=2570):
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x9, 0x2)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nbd(&(0x7f0000000000), 0xffffffffffffffff)
r4 = syz_open_dev$ndb(&(0x7f0000000000), 0x0, 0x200)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={<r5=>0xffffffffffffffff})
ioctl$NBD_SET_SOCK(r4, 0xab00, r5)
r6 = dup3(r4, r0, 0x80000)
ioctl$NBD_DO_IT(r6, 0xab03)
sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)={0x1c, r3, 0x1, 0x70bd2b, 0x8, {}, [@NBD_ATTR_INDEX={0x8, 0x1, 0x0}]}, 0x1c}}, 0x20000004)

4.387534249s ago: executing program 4 (id=2571):
socket(0x15, 0x5, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x6, 0x0, 0x0)
read$msr(r0, &(0x7f0000002700)=""/102392, 0x18ff8)
fsopen(0x0, 0x0)
socket(0x10, 0x3, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x275a, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x83, &(0x7f0000000000)=@assoc_value={<r2=>0x0}, &(0x7f00000004c0)=0x27)
getsockopt$inet_sctp_SCTP_CONTEXT(r1, 0x84, 0x11, &(0x7f0000000040)={r2, 0x9}, &(0x7f0000000080)=0x8)

3.18474483s ago: executing program 2 (id=2572):
socket$inet_tcp(0x2, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000d00)={0x0, 0x0, &(0x7f0000000ac0)={&(0x7f0000000540)=ANY=[@ANYBLOB="68000000140001000000000000000000fe8000000000000000000000000000aa", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\f\x00\b\x00\b\x00\b'], 0x68}}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r4}, 0x10)
request_key(&(0x7f0000000400)='ceph\x00', &(0x7f00000004c0)={'syz', 0x3}, &(0x7f0000000500)='[{/[\'+!\x00', 0xfffffffffffffffc)
close(0xffffffffffffffff)
socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
connect$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
r5 = accept(0xffffffffffffffff, 0x0, 0x0)
sendmsg$AUDIT_USER_AVC(r5, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
openat$sndseq(0xffffffffffffff9c, 0x0, 0x0)

3.184131754s ago: executing program 6 (id=2573):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='net_prio.prioidx\x00', 0x275a, 0x0)
quotactl_fd$Q_SETQUOTA(r0, 0xffffffff80000800, 0x0, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0xfffffffffffffff1, 0x4, 0x0, 0x4, 0x7fffffff})
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0x11, &(0x7f0000000480)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0xf, 0x0, 0x0, 0x0, 0xf}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [@btf_id={0x18, 0x2, 0x3, 0x0, 0x1}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}}}, &(0x7f0000000040)='syzkaller\x00', 0x398, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r5, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000400)=ANY=[@ANYRESOCT=r5, @ANYRESOCT=r4, @ANYRESDEC=r3, @ANYRESOCT=r3], 0x48)
r7 = syz_open_dev$video(&(0x7f0000000040), 0x7, 0x0)
ioctl$IOCTL_VMCI_VERSION2(0xffffffffffffffff, 0x7a7, &(0x7f0000000200)=0xa0000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(0xffffffffffffffff, 0x7a0, &(0x7f0000000280)={@local})
ioctl$IOCTL_VMCI_QUEUEPAIR_ALLOC(0xffffffffffffffff, 0x7a8, &(0x7f0000001340)={{@local}, @any, 0x0, 0x4})
recvfrom$inet6(r5, &(0x7f00000000c0)=""/87, 0x57, 0x40000001, &(0x7f0000000600)={0xa, 0x4e22, 0x4, @empty, 0x6}, 0x1c)
ioctl$IOCTL_VMCI_QUEUEPAIR_SETPF(0xffffffffffffffff, 0x7a9, &(0x7f0000000180)={{@local}, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x20000007, 0xffffffffffffdffb})
ioctl$VIDIOC_ENUMINPUT(r7, 0xc050561a, &(0x7f0000000200)={0x0, "80a246be445c94f43a16d380ec570000aa2e5a00", 0x3, 0x0, 0x5, 0x7, 0x606020a, 0x2})
msync(&(0x7f00003fc000/0x3000)=nil, 0x3000, 0x4)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000048c0)={r6, &(0x7f00000047c0), &(0x7f0000000300)=@buf="360b04cb2de8e31ff5a49deed41c9d42a5b8871060fdb428fc525b9cf3d084b579a1cde6bc2669b4fdd96cdbc22d16129135ff2f4fd0bbf66288a37881f8003a97eaa288310f96ec0578e81fb828490a4d63db065d2ded4e8212205b94cde0b38da3c12a8d497ea2b6b9c4213d3ccd5420578227c8f01b1a38d1db915a5d3fd611d52d1a61168f6ee2e319581698f1416647dd106a2f30670b73e42aeb3e0ed243e5b80c25159b26db85c02ca25b6675cecf5268dd4e6a5e06aedc28fb488fe1ba1792df0f65d720118f"}, 0x20)
recvmmsg(r5, &(0x7f00000002c0)=[{{0x0, 0x0, &(0x7f0000001c80)=[{&(0x7f0000000a00)=""/157, 0x9d}], 0x1, 0x0, 0xffffffffffffff1f}}], 0x1, 0x2, 0x0)
setsockopt$inet6_tcp_int(r5, 0x6, 0x19, &(0x7f0000000080), 0x4)
keyctl$KEYCTL_WATCH_KEY(0x20, 0x0, 0xffffffffffffffff, 0x52)
syz_usb_connect(0x0, 0x24, &(0x7f0000000b40)={{0x12, 0x1, 0x0, 0x96, 0x90, 0x34, 0x20, 0x2058, 0x1005, 0xb5f6, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x3d, 0x0, 0x0, 0x51, 0x8e, 0x3f}}]}}]}}, 0x0)

3.093608641s ago: executing program 0 (id=2574):
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000002540)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000140)=0x15)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f00000002c0)=0x7e)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000540)=0x9)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000180)=0x3)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000300))
sendmsg$NFULNL_MSG_CONFIG(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x20000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4000010}, 0x40004d0)
r5 = socket$inet(0xa, 0x801, 0x84)
listen(r5, 0x4)
setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX(r5, 0x84, 0x6e, &(0x7f00000000c0)=[@in={0x2, 0x0, @multicast1}], 0x10)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000040)=0x9)
ioctl$TIOCSTI(r4, 0x5412, 0x0)
close_range(r3, 0xffffffffffffffff, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0xb, 0x59032, 0xffffffffffffffff, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x44, 0x30, 0x1, 0x0, 0x0, {}, [{0x30, 0x1, [@m_ife={0x2c, 0x1, 0x0, 0x0, {{0x8}, {0x4}, {0x4}, {0xc}, {0xc}}}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x804}, 0x4080)
syz_emit_ethernet(0x78, &(0x7f0000000440)={@remote, @empty, @void, {@generic={0x86dd, "a1cc5a4418bdfaf0d7e662c29154c78a11bb907791552cb38ad474bd208f97c164ade1cf7281e626b28882bb2e64ecc91b9e251d7abf4407fcbe6352c1fca8f1b7aff4ded857587847d71d7a570016063463fd13fb4bb28f913510b81bfce0bfbc1761334de97c8d913f"}}}, 0x0)
get_mempolicy(0x0, 0x0, 0x0, &(0x7f0000a88000/0x2000)=nil, 0x3)

2.67679293s ago: executing program 5 (id=2575):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
bpf$MAP_CREATE(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mknodat$loop(0xffffffffffffffff, &(0x7f0000001600)='./file1\x00', 0x0, 0x0)
r3 = syz_open_dev$I2C(&(0x7f0000000040), 0x0, 0x0)
ioctl$I2C_SMBUS(r3, 0x720, &(0x7f00000000c0)={0x0, 0x0, 0x5, &(0x7f0000000080)={0x0, "90f541a5e64f61909103f1fbbc2bd3c9f144d76e44c7b2986eb5e52829e7cb8393"}})
rename(&(0x7f00000003c0)='./file0\x00', 0x0)

1.138952909s ago: executing program 2 (id=2576):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$VHOST_SET_OWNER(r0, 0xaf01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000300)={0x1, 0x0, 0x0, &(0x7f0000000480)=""/92, 0x0})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000003380))
r1 = eventfd2(0x76, 0x1)
ioctl$VHOST_SET_VRING_ERR(r0, 0x4008af22, &(0x7f00000001c0)={0x0, r1})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000240)={0x0, 0x0, 0x0, &(0x7f0000000600)=""/175, 0x0, 0x1000})
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000000)={0x0, r1})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000140)=0x1)
ioctl$VHOST_VSOCK_SET_GUEST_CID(r0, 0x4008af60, &(0x7f0000000040)={@my=0x1})
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001780)=""/4091})
symlinkat(&(0x7f0000001040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, 0x0)
connect$vsock_stream(r2, &(0x7f0000000200)={0x28, 0x0, 0x0, @my=0x1}, 0x10)

65.139572ms ago: executing program 5 (id=2577):
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
getsockopt$bt_hci(0xffffffffffffffff, 0x84, 0x81, &(0x7f0000000080)=""/4076, 0x0)
r1 = socket$inet(0x2, 0x801, 0x0)
pipe2(&(0x7f0000000100)={0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
splice(r1, 0x0, r2, 0x0, 0x7ffff000, 0x2)
gettid()
clock_settime(0x0, &(0x7f0000003c80)={0x77359400})
open(&(0x7f00000000c0)='./bus\x00', 0x14103e, 0x0)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)

8.040164ms ago: executing program 4 (id=2578):
r0 = syz_usb_connect(0x0, 0x1cb, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000122f0d4071040403dfe4000000010902b901010000003f0904"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$uac1(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$printer(r0, 0x0, &(0x7f0000000540)={0x34, &(0x7f0000000200)={0x20, 0x17}, 0x0, 0x0, 0x0, 0x0, 0x0})

0s ago: executing program 2 (id=2579):
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(0xffffffffffffffff, 0xc01064b5, 0x0)
ioctl$DRM_IOCTL_MODE_GETPLANE(0xffffffffffffffff, 0xc02064b6, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
init_module(&(0x7f0000000200)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}}, 0x40, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000032680)=""/102392, 0x18ff8)
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, 0xffffffffffffffff, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x7, 0x8, &(0x7f00000001c0)=@framed={{0x18, 0x8}, [@map_fd={0x18, 0x0, 0x0}, @generic={0x2c}, @initr0]}, &(0x7f0000000000)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = socket$netlink(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$mptcp(0x0, 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000006800)={&(0x7f0000000080)={0x3c, r4, 0x615, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x28, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @mcast2}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0xa}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x1}]}]}, 0x3c}, 0x5}, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000040)={r2, 0xe0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x1, &(0x7f0000001380)}}, 0x10)
setsockopt$MRT6_ADD_MIF(0xffffffffffffffff, 0x29, 0xca, &(0x7f0000000040)={0x0, 0x1, 0x6, 0x0, 0xffffff8f}, 0xc)
keyctl$dh_compute(0x17, &(0x7f0000000400), 0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000440)={'wp384\x00'}})
r5 = add_key$user(&(0x7f0000000300), &(0x7f0000000340)={'syz', 0x2}, &(0x7f0000000380)="e5c2294c1b2320a637341ca25cee94d6e98bec518473cd84a472b2a579562831f13f15f2dd78aef4b156675cafd115895f806be28bbeac2b50ff25fc2d649006c2511b8200eb155b537da8f547dd23009955049301b7a9", 0x57, 0xfffffffffffffffa)
r6 = add_key$user(&(0x7f0000000280), &(0x7f0000000000)={'syz', 0x3}, &(0x7f00000000c0)="b8", 0x1, 0xfffffffffffffffe)
r7 = add_key$user(&(0x7f0000000200), &(0x7f00000005c0), &(0x7f0000000340), 0x584, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000080)={r6, r7, r7}, 0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={'crct10dif\x00'}})
keyctl$dh_compute(0x17, &(0x7f0000000400)={0x0, r5, r6}, &(0x7f0000000580)=""/96, 0x60, 0x0)
setsockopt$MRT6_ADD_MFC_PROXY(0xffffffffffffffff, 0x29, 0xd2, &(0x7f00000000c0)={{0xa, 0x0, 0x0, @mcast2}, {0xa, 0x0, 0x0, @mcast1}, 0x0, {[0x691, 0x0, 0x2]}}, 0x5c)

kernel console output (not intermixed with test programs):

 attributes in process `syz.3.1155'.
[  624.148325][   T12] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  624.832358][ T3456] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  624.847535][T10224] x_tables: unsorted underflow at hook 3
[  624.854074][T10224] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1156'.
[  628.015503][T10259] 9pnet_virtio: no channels available for device syz
[  630.323714][   T12] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  630.898175][T10279] 9pnet_virtio: no channels available for device syz
[  630.980961][ T6410] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  631.239431][T10275] netlink: 'syz.1.1168': attribute type 2 has an invalid length.
[  631.856657][T10283] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  631.866464][T10283] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  632.701658][T10275] : entered promiscuous mode
[  633.290061][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[  633.296864][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[  635.087603][T10303] netlink: zone id is out of range
[  635.092983][T10303] netlink: zone id is out of range
[  635.099075][T10303] netlink: zone id is out of range
[  635.104530][T10303] netlink: zone id is out of range
[  635.109887][T10303] netlink: zone id is out of range
[  635.115258][T10303] netlink: zone id is out of range
[  635.120594][T10303] netlink: zone id is out of range
[  635.126029][T10303] netlink: zone id is out of range
[  635.131361][T10303] netlink: zone id is out of range
[  635.136815][T10303] netlink: zone id is out of range
[  635.577782][   T29] audit: type=1800 audit(1738896441.537:83): pid=10302 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.4.1174" name="SYSV00000000" dev="hugetlbfs" ino=1 res=0 errno=0
[  636.630369][ T6410] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  637.135286][   T12] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  638.490331][T10310] 9pnet_virtio: no channels available for device syz
[  638.508373][T10313] kvm: MONITOR instruction emulated as NOP!
[  642.203156][T10333] netdevsim netdevsim2: Direct firmware load for ./file0 failed with error -2
[  642.213933][T10333] netdevsim netdevsim2: Falling back to sysfs fallback for: ./file0
[  643.333226][T10342] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  643.343992][   T29] audit: type=1326 audit(1738896449.656:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10336 comm="syz.2.1185" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feda558cde9 code=0x7ffc0000
[  644.270719][   T29] audit: type=1326 audit(1738896449.656:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10336 comm="syz.2.1185" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feda558cde9 code=0x7ffc0000
[  644.293202][   T29] audit: type=1326 audit(1738896449.656:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10336 comm="syz.2.1185" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7feda558cde9 code=0x7ffc0000
[  645.333904][   T29] audit: type=1326 audit(1738896449.656:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10336 comm="syz.2.1185" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feda558cde9 code=0x7ffc0000
[  645.515090][   T29] audit: type=1326 audit(1738896449.656:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10336 comm="syz.2.1185" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feda558cde9 code=0x7ffc0000
[  645.559124][   T29] audit: type=1326 audit(1738896449.656:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10336 comm="syz.2.1185" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7feda558cde9 code=0x7ffc0000
[  645.633786][   T29] audit: type=1326 audit(1738896449.656:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10336 comm="syz.2.1185" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feda558cde9 code=0x7ffc0000
[  646.888270][   T29] audit: type=1326 audit(1738896449.656:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10336 comm="syz.2.1185" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feda558cde9 code=0x7ffc0000
[  646.941910][   T29] audit: type=1326 audit(1738896449.656:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10336 comm="syz.2.1185" exe="/root/syz-executor" sig=0 arch=c000003e syscall=285 compat=0 ip=0x7feda558cde9 code=0x7ffc0000
[  647.063780][   T29] audit: type=1326 audit(1738896449.656:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10336 comm="syz.2.1185" exe="/root/syz-executor" sig=0 arch=c000003e syscall=96 compat=0 ip=0xffffffffff600000 code=0x7ffc0000
[  649.892697][T10365] 9pnet_virtio: no channels available for device syz
[  650.422838][T10369] 9pnet_virtio: no channels available for device syz
[  652.801767][T10372] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1194'.
[  653.296650][T10387] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1198'.
[  657.695886][T10399] /dev/sg0: Can't lookup blockdev
[  657.718533][T10399] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[  657.745115][T10399] CIFS mount error: No usable UNC path provided in device string!
[  657.745115][T10399] 
[  657.756976][T10399] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  659.992167][T10409] 9pnet_virtio: no channels available for device syz
[  662.500479][ T5842] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  662.513062][ T5842] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  662.522514][ T5842] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  662.533572][ T5842] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  662.546048][ T5842] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  662.555793][ T5842] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  662.841177][T10427] lo speed is unknown, defaulting to 1000
[  664.906757][T10443] xt_hashlimit: max too large, truncated to 1048576
[  664.915388][T10443] x_tables: ip6_tables: TCPMSS target: only valid for protocol 6
[  665.010789][ T5842] Bluetooth: hci5: command tx timeout
[  668.093341][T10460] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1216'.
[  668.297509][T10462] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1215'.
[  668.306618][T10462] lo speed is unknown, defaulting to 1000
[  668.531264][ T5842] Bluetooth: hci5: command tx timeout
[  670.056479][T10475] 9pnet_virtio: no channels available for device syz
[  670.747848][ T5842] Bluetooth: hci5: command tx timeout
[  671.160325][T10483] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  672.970252][ T5842] Bluetooth: hci5: command tx timeout
[  676.403881][T10509] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1228'.
[  677.714194][T10427] chnl_net:caif_netlink_parms(): no params data found
[  677.964305][T10522] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1229'.
[  678.775333][T10522] lo speed is unknown, defaulting to 1000
[  680.197517][T10525] 9pnet_virtio: no channels available for device syz
[  680.772573][T10536] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  682.493573][T10427] bridge0: port 1(bridge_slave_0) entered blocking state
[  682.526045][T10427] bridge0: port 1(bridge_slave_0) entered disabled state
[  683.475768][T10427] bridge_slave_0: entered allmulticast mode
[  683.634023][T10427] bridge_slave_0: entered promiscuous mode
[  683.672108][T10427] bridge0: port 2(bridge_slave_1) entered blocking state
[  683.778344][T10427] bridge0: port 2(bridge_slave_1) entered disabled state
[  683.797451][T10427] bridge_slave_1: entered allmulticast mode
[  683.819689][T10427] bridge_slave_1: entered promiscuous mode
[  685.119064][T10427] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  685.173763][T10565] batman_adv: batadv0: Adding interface: dummy0
[  685.372695][T10565] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  685.404113][T10565] batman_adv: batadv0: Interface activated: dummy0
[  686.321166][T10427] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  686.342237][T10574] tipc: Started in network mode
[  686.347374][T10574] tipc: Node identity 7f000001, cluster identity 4711
[  686.356181][T10574] tipc: Enabled bearer <udp:syz2>, priority 10
[  686.609602][T10427] team0: Port device team_slave_0 added
[  686.818142][T10427] team0: Port device team_slave_1 added
[  687.058036][T10590] No control pipe specified
[  687.798069][   T51] tipc: Node number set to 2130706433
[  688.683056][T10592] pim6reg: entered allmulticast mode
[  688.707601][T10427] batman_adv: batadv0: Adding interface: batadv_slave_0
[  689.733059][T10427] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  689.758996][    C1] vkms_vblank_simulate: vblank timer overrun
[  689.807567][T10427] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  689.821471][T10600] 9pnet_virtio: no channels available for device syz
[  689.859868][T10427] batman_adv: batadv0: Adding interface: batadv_slave_1
[  689.871407][T10427] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  689.897383][    C1] vkms_vblank_simulate: vblank timer overrun
[  690.003806][T10427] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  690.212429][T10610] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1249'.
[  694.697018][T10427] hsr_slave_0: entered promiscuous mode
[  694.704836][T10427] hsr_slave_1: entered promiscuous mode
[  694.789694][T10628] netlink: 252 bytes leftover after parsing attributes in process `syz.0.1253'.
[  694.798864][T10628] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1253'.
[  695.806887][T10631] netlink: 'syz.2.1255': attribute type 3 has an invalid length.
[  695.814670][T10631] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.1255'.
[  695.827508][T10631] trusted_key: syz.2.1255 sent an empty control message without MSG_MORE.
[  698.847221][   T29] kauditd_printk_skb: 5 callbacks suppressed
[  698.915753][   T29] audit: type=1326 audit(1738896501.580:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10636 comm="syz.3.1257" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97c518cde9 code=0x7ffc0000
[  699.211824][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[  699.279330][   T29] audit: type=1326 audit(1738896501.580:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10636 comm="syz.3.1257" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97c518cde9 code=0x7ffc0000
[  699.397089][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[  699.409528][   T29] audit: type=1326 audit(1738896501.580:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10636 comm="syz.3.1257" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f97c518cde9 code=0x7ffc0000
[  699.431207][   T29] audit: type=1326 audit(1738896501.580:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10636 comm="syz.3.1257" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97c518cde9 code=0x7ffc0000
[  699.491841][   T29] audit: type=1326 audit(1738896501.580:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10636 comm="syz.3.1257" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97c518cde9 code=0x7ffc0000
[  699.565169][   T29] audit: type=1326 audit(1738896501.580:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10636 comm="syz.3.1257" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f97c518cde9 code=0x7ffc0000
[  699.596614][   T29] audit: type=1326 audit(1738896501.580:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10636 comm="syz.3.1257" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97c518cde9 code=0x7ffc0000
[  699.639362][   T29] audit: type=1326 audit(1738896501.580:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10636 comm="syz.3.1257" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97c518cde9 code=0x7ffc0000
[  699.804157][   T29] audit: type=1326 audit(1738896501.580:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10636 comm="syz.3.1257" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f97c518cde9 code=0x7ffc0000
[  699.859007][   T29] audit: type=1326 audit(1738896501.580:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10636 comm="syz.3.1257" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97c518cde9 code=0x7ffc0000
[  700.031915][T10656] 9pnet_virtio: no channels available for device syz
[  701.162547][T10658] overlay: Unknown parameter 'uid<00000000000000000000'
[  701.238757][T10427] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  701.253959][T10427] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  701.283645][T10427] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  701.448741][T10427] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  701.821351][T10427] 8021q: adding VLAN 0 to HW filter on device bond0
[  701.847358][T10427] 8021q: adding VLAN 0 to HW filter on device team0
[  702.930026][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  702.937344][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  703.942859][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  703.950056][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  705.622792][T10692] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1268'.
[  707.937231][T10427] 8021q: adding VLAN 0 to HW filter on device batadv0
[  710.088143][T10718] Invalid ELF header type: 0 != 1
[  710.149437][T10722] 9pnet_virtio: no channels available for device syz
[  710.965565][T10718] could not allocate digest TFM handle crct10dif
[  711.140261][T10734] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1276'.
[  711.914208][   T29] kauditd_printk_skb: 4 callbacks suppressed
[  711.914233][   T29] audit: type=1326 audit(1738896513.806:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10729 comm="syz.2.1277" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7feda558cde9 code=0x0
[  711.941598][    C1] vkms_vblank_simulate: vblank timer overrun
[  712.230383][T10741] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1279'.
[  712.687058][T10749] delete_channel: no stack
[  713.427862][T10743] delete_channel: no stack
[  713.450320][T10427] veth0_vlan: entered promiscuous mode
[  713.496720][T10427] veth1_vlan: entered promiscuous mode
[  714.808149][T10427] veth0_macvtap: entered promiscuous mode
[  714.849968][T10427] veth1_macvtap: entered promiscuous mode
[  714.888809][T10427] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  715.019228][T10427] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  715.029394][T10427] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  716.122369][T10764] Cannot find add_set index 0 as target
[  716.540580][T10427] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  716.621574][T10427] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  716.679331][T10427] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  716.723167][T10427] batman_adv: batadv0: Interface activated: batadv_slave_0
[  716.776490][T10760] syz.4.1283: attempt to access beyond end of device
[  716.776490][T10760] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  716.950402][T10427] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  716.982937][T10427] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  716.992795][T10427] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  717.045429][T10427] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  717.073635][T10427] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  717.085193][T10772] Invalid ELF header type: 0 != 1
[  717.112616][T10427] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  717.794533][T10427] batman_adv: batadv0: Interface activated: batadv_slave_1
[  718.064228][T10772] could not allocate digest TFM handle crct10dif
[  718.133358][T10427] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  718.193532][T10427] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  718.228882][T10427] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  718.291303][T10427] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  720.132626][T10803] veth0_vlan: left promiscuous mode
[  720.153882][T10803] veth0_vlan: entered promiscuous mode
[  722.228702][T10811] netlink: 'syz.4.1295': attribute type 9 has an invalid length.
[  726.575794][T10826] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1297'.
[  726.708220][   T54] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  726.720271][T10835] Invalid ELF header type: 0 != 1
[  726.762733][   T54] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  726.793543][   T54] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  726.803131][   T54] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  726.811063][   T54] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  726.837379][   T54] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  728.578038][ T7508] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  729.622995][ T5842] Bluetooth: hci1: command tx timeout
[  729.831901][T10827] lo speed is unknown, defaulting to 1000
[  730.163152][T10840] could not allocate digest TFM handle crct10dif
[  730.221904][ T7508] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  730.798123][T10863] netlink: 'syz.2.1302': attribute type 10 has an invalid length.
[  730.861051][T10864] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1302'.
[  730.958249][T10863] bridge0: port 1(erspan0) entered disabled state
[  731.051633][T10864] erspan0: left allmulticast mode
[  731.056823][T10864] erspan0: left promiscuous mode
[  731.062233][T10864] bridge0: port 1(erspan0) entered disabled state
[  731.843867][ T5842] Bluetooth: hci1: command tx timeout
[  733.068679][ T7508] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  733.437811][ T7508] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  733.636431][T10889] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  734.038168][ T5842] Bluetooth: hci1: command tx timeout
[  734.804018][    C0] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  735.511894][T10902] 9pnet_virtio: no channels available for device syz
[  736.632140][ T5842] Bluetooth: hci1: command tx timeout
[  738.326139][T10932] qnx4: no qnx4 filesystem (no root dir).
[  739.968203][ T7508] bridge_slave_1: left allmulticast mode
[  739.974807][ T7508] bridge_slave_1: left promiscuous mode
[  740.054081][ T7508] bridge0: port 2(bridge_slave_1) entered disabled state
[  741.050948][ T7508] bridge_slave_0: left allmulticast mode
[  741.063198][ T7508] bridge_slave_0: left promiscuous mode
[  741.123304][ T7508] bridge0: port 1(bridge_slave_0) entered disabled state
[  744.441502][T10977] 9pnet_virtio: no channels available for device syz
[  747.637088][T11006] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1325'.
[  751.697656][T11049] 9pnet_virtio: no channels available for device syz
[  751.827425][ T7508] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  752.938216][ T7508] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  752.987557][ T7508] bond0 (unregistering): Released all slaves
[  753.060745][T10827] chnl_net:caif_netlink_parms(): no params data found
[  753.296879][T11017] bridge0: port 1(bridge_slave_0) entered blocking state
[  753.304114][T11017] bridge0: port 1(bridge_slave_0) entered forwarding state
[  755.114931][   T58] libceph: connect (1)[c::]:6789 error -101
[  755.276514][   T58] libceph: mon0 (1)[c::]:6789 connect error
[  755.629622][ T5907] libceph: connect (1)[c::]:6789 error -101
[  755.635796][ T5907] libceph: mon0 (1)[c::]:6789 connect error
[  756.586416][ T5907] libceph: connect (1)[c::]:6789 error -101
[  756.623825][ T5907] libceph: mon0 (1)[c::]:6789 connect error
[  756.922046][T10827] bridge0: port 1(bridge_slave_0) entered blocking state
[  757.446861][T10827] bridge0: port 1(bridge_slave_0) entered disabled state
[  757.454208][T10827] bridge_slave_0: entered allmulticast mode
[  757.475928][T10827] bridge_slave_0: entered promiscuous mode
[  757.487312][T10827] bridge0: port 2(bridge_slave_1) entered blocking state
[  757.505409][T10827] bridge0: port 2(bridge_slave_1) entered disabled state
[  757.516477][T10827] bridge_slave_1: entered allmulticast mode
[  757.528381][T10827] bridge_slave_1: entered promiscuous mode
[  757.557369][ T5913] libceph: connect (1)[c::]:6789 error -101
[  757.675562][T11069] ceph: No mds server is up or the cluster is laggy
[  757.692911][ T5913] libceph: mon0 (1)[c::]:6789 connect error
[  758.845987][ T7508] hsr_slave_0: left promiscuous mode
[  759.738033][ T7508] hsr_slave_1: left promiscuous mode
[  759.764115][ T7508] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  759.841846][ T7508] batman_adv: batadv0: Removing interface: batadv_slave_0
[  759.853856][ T7508] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  759.913295][ T7508] batman_adv: batadv0: Removing interface: batadv_slave_1
[  760.069594][T11131] loop7: detected capacity change from 0 to 16384
[  760.253450][T11134] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 32 prio class 0
[  760.315218][ T7508] veth1_macvtap: left promiscuous mode
[  760.330570][ T7508] veth0_macvtap: left promiscuous mode
[  760.338714][ T7508] veth1_vlan: left promiscuous mode
[  760.360938][ T7508] veth0_vlan: left promiscuous mode
[  761.199145][T11131] loop7: detected capacity change from 16384 to 16382
[  761.662595][T11147] smc: removing ib device syz1
[  762.696960][T11150] overlayfs: failed to clone upperpath
[  764.417486][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[  764.423853][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[  765.400150][T11164] overlayfs: failed to clone upperpath
[  766.727673][ T7508] team0 (unregistering): Port device team_slave_1 removed
[  766.826824][ T7508] team0 (unregistering): Port device team_slave_0 removed
[  768.554402][T11171] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1352'.
[  768.621003][T10827] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  768.661336][T10827] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  769.918263][T10827] team0: Port device team_slave_0 added
[  771.151039][T11193] net_ratelimit: 5 callbacks suppressed
[  771.151074][T11193] TCP: out of memory -- consider tuning tcp_mem
[  771.173232][T10827] team0: Port device team_slave_1 added
[  772.948213][T10827] batman_adv: batadv0: Adding interface: batadv_slave_0
[  772.955239][T10827] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  773.064762][T10827] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  773.090682][T11204] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  773.100584][T11204] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  773.241972][T10827] batman_adv: batadv0: Adding interface: batadv_slave_1
[  773.273303][T10827] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  773.356379][T10827] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  773.558354][T11207] netlink: 52 bytes leftover after parsing attributes in process `syz.3.1360'.
[  773.870960][T10827] hsr_slave_0: entered promiscuous mode
[  773.878020][T10827] hsr_slave_1: entered promiscuous mode
[  774.651906][T11212] No control pipe specified
[  775.069344][T11227] vivid-006: disconnect
[  777.304718][T11224] vivid-006: reconnect
[  777.345690][T11222] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  778.699822][    T9] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[  778.939153][    T9] usb 4-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  778.972221][    T9] usb 4-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  779.002389][    T9] usb 4-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  779.023784][    T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  779.047777][T11243] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  779.080984][T10827] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  779.109708][    T9] usb 4-1: Quirk or no altset; falling back to MIDI 1.0
[  779.176318][T10827] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  780.048220][T10827] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  780.096324][T10827] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  780.296453][T10827] 8021q: adding VLAN 0 to HW filter on device bond0
[  781.194080][T10827] 8021q: adding VLAN 0 to HW filter on device team0
[  781.240760][T10118] usb 4-1: USB disconnect, device number 11
[  781.260603][ T7508] bridge0: port 1(bridge_slave_0) entered blocking state
[  781.267788][ T7508] bridge0: port 1(bridge_slave_0) entered forwarding state
[  781.355441][ T6410] bridge0: port 2(bridge_slave_1) entered blocking state
[  781.362660][ T6410] bridge0: port 2(bridge_slave_1) entered forwarding state
[  781.515190][T10827] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  781.702298][T11276] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1378'.
[  781.711693][T11276] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1378'.
[  781.720750][T11276] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1378'.
[  782.049359][T11281] netlink: 268 bytes leftover after parsing attributes in process `syz.0.1377'.
[  782.625782][T11276] SET target dimension over the limit!
[  782.645690][T11280] netlink: 1 bytes leftover after parsing attributes in process `syz.0.1377'.
[  784.988217][    T9] IPVS: starting estimator thread 0...
[  786.183218][T11292] IPVS: using max 28 ests per chain, 67200 per kthread
[  791.243153][T11326] netlink: 'syz.2.1387': attribute type 10 has an invalid length.
[  791.992021][   T54] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  792.003684][   T54] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  792.012528][   T54] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  792.022557][   T54] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  792.031560][   T54] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  792.038941][   T54] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  795.424013][T11352] overlayfs: failed to clone lowerpath
[  795.575959][T11354] overlayfs: failed to clone upperpath
[  796.420115][T11330] lo speed is unknown, defaulting to 1000
[  796.471874][ T5842] Bluetooth: hci5: command tx timeout
[  798.704885][ T5842] Bluetooth: hci5: command tx timeout
[  799.431202][T11375] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1399'.
[  799.440940][T11375] netlink: 'syz.0.1399': attribute type 21 has an invalid length.
[  800.915062][ T5842] Bluetooth: hci5: command tx timeout
[  803.138384][ T5842] Bluetooth: hci5: command tx timeout
[  803.461441][T11413] program syz.3.1406 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  807.141392][T11435] 9pnet_virtio: no channels available for device syz
[  807.632760][T11433] netlink: 412 bytes leftover after parsing attributes in process `syz.3.1413'.
[  807.636610][T11330] chnl_net:caif_netlink_parms(): no params data found
[  807.709593][T11436] netlink: 'syz.3.1413': attribute type 2 has an invalid length.
[  808.645280][T11330] bridge0: port 1(bridge_slave_0) entered blocking state
[  808.657555][T11330] bridge0: port 1(bridge_slave_0) entered disabled state
[  808.665782][T11330] bridge_slave_0: entered allmulticast mode
[  808.673139][T11330] bridge_slave_0: entered promiscuous mode
[  808.793507][T11330] bridge0: port 2(bridge_slave_1) entered blocking state
[  808.805545][T11330] bridge0: port 2(bridge_slave_1) entered disabled state
[  808.818382][T11330] bridge_slave_1: entered allmulticast mode
[  808.825555][T11330] bridge_slave_1: entered promiscuous mode
[  809.512959][ T7508] bridge_slave_1: left allmulticast mode
[  809.518657][ T7508] bridge_slave_1: left promiscuous mode
[  809.550532][ T7508] bridge0: port 2(bridge_slave_1) entered disabled state
[  809.592962][T11457] random: crng reseeded on system resumption
[  809.605790][ T7508] bridge_slave_0: left allmulticast mode
[  809.620317][ T7508] bridge_slave_0: left promiscuous mode
[  809.638481][ T7508] bridge0: port 1(bridge_slave_0) entered disabled state
[  809.934762][T11462] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  810.675586][   T51] usb 5-1: new full-speed USB device number 10 using dummy_hcd
[  811.085839][T11475] xt_socket: unknown flags 0x50
[  812.034980][T11477] 9pnet_virtio: no channels available for device syz
[  812.114767][   T51] usb 5-1: unable to get BOS descriptor or descriptor too short
[  812.128540][T11480] 9pnet_virtio: no channels available for device syz
[  812.174817][   T51] usb 5-1: not running at top speed; connect to a high speed hub
[  812.191768][   T51] usb 5-1: config 17 has an invalid interface number: 8 but max is 1
[  812.202996][   T51] usb 5-1: config 17 has 1 interface, different from the descriptor's value: 2
[  812.225921][   T51] usb 5-1: config 17 has no interface number 0
[  812.232202][   T51] usb 5-1: config 17 interface 8 altsetting 6 endpoint 0x3 has an invalid bInterval 116, changing to 4
[  812.244102][   T51] usb 5-1: config 17 interface 8 altsetting 6 endpoint 0x3 has invalid maxpacket 30307, setting to 1023
[  812.259178][   T51] usb 5-1: config 17 interface 8 has no altsetting 0
[  812.294958][   T51] usb 5-1: New USB device found, idVendor=0763, idProduct=2001, bcdDevice=2c.ff
[  812.304458][   T51] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  812.488875][   T51] usb 5-1: Product: syz
[  812.493316][   T51] usb 5-1: Manufacturer: syz
[  812.498361][   T51] usb 5-1: SerialNumber: syz
[  814.068338][   T51] usb 5-1: selecting invalid altsetting 0
[  814.074184][   T51] usb 5-1: 8:6 : no UAC_FORMAT_TYPE desc
[  814.096344][   T51] usb 5-1: selecting invalid altsetting 0
[  814.130676][   T51] usb 5-1: USB disconnect, device number 10
[  815.280452][T11501] overlayfs: failed to clone upperpath
[  815.365401][T11501] Invalid ELF header magic: != ELF
[  815.723028][T11510] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  816.095673][   T29] audit: type=1326 audit(1738896611.256:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11504 comm="syz.3.1434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97c518cde9 code=0x7ffc0000
[  816.195790][   T29] audit: type=1326 audit(1738896611.256:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11504 comm="syz.3.1434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97c518cde9 code=0x7ffc0000
[  816.316127][ T7508] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  816.317143][   T29] audit: type=1326 audit(1738896611.312:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11504 comm="syz.3.1434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f97c518cde9 code=0x7ffc0000
[  816.347254][   T29] audit: type=1326 audit(1738896611.321:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11504 comm="syz.3.1434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97c518cde9 code=0x7ffc0000
[  816.370379][   T29] audit: type=1326 audit(1738896611.321:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11504 comm="syz.3.1434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97c518cde9 code=0x7ffc0000
[  816.424422][ T7508] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  816.457474][ T7508] bond0 (unregistering): Released all slaves
[  816.474479][   T29] audit: type=1326 audit(1738896611.396:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11504 comm="syz.3.1434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f97c518cde9 code=0x7ffc0000
[  816.550031][   T29] audit: type=1326 audit(1738896611.396:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11504 comm="syz.3.1434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97c518cde9 code=0x7ffc0000
[  816.601935][T11330] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  816.640778][   T29] audit: type=1326 audit(1738896611.396:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11504 comm="syz.3.1434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97c518cde9 code=0x7ffc0000
[  816.705068][   T29] audit: type=1326 audit(1738896611.452:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11504 comm="syz.3.1434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f97c518cde9 code=0x7ffc0000
[  816.777963][T11330] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  816.830120][   T29] audit: type=1326 audit(1738896611.546:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11504 comm="syz.3.1434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97c518cde9 code=0x7ffc0000
[  817.179950][ T7508] hsr_slave_0: left promiscuous mode
[  817.558816][ T7508] hsr_slave_1: left promiscuous mode
[  818.119982][ T7508] batman_adv: batadv0: Removing interface: batadv_slave_0
[  818.138959][ T7508] batman_adv: batadv0: Removing interface: batadv_slave_1
[  823.191926][ T7508] team0 (unregistering): Port device team_slave_1 removed
[  824.342725][ T7508] team0 (unregistering): Port device team_slave_0 removed
[  826.999156][T11330] team0: Port device team_slave_0 added
[  827.037294][ T5842] Bluetooth: hci2: ACL packet for unknown connection handle 0
[  827.161098][T11330] team0: Port device team_slave_1 added
[  827.228819][T11569] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1449'.
[  827.291196][T11330] batman_adv: batadv0: Adding interface: batadv_slave_0
[  827.520479][T11571] ip6t_rpfilter: only valid in 'raw' or 'mangle' table, not ''
[  827.618919][T11330] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  827.703917][T11330] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  827.747350][T11330] batman_adv: batadv0: Adding interface: batadv_slave_1
[  827.852633][T11330] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  827.915748][T11330] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  827.941610][ T5842] Bluetooth: hci4: command 0x0406 tx timeout
[  829.260166][T11330] hsr_slave_0: entered promiscuous mode
[  829.271100][T11330] hsr_slave_1: entered promiscuous mode
[  829.294369][T11584] 9pnet_virtio: no channels available for device syz
[  830.200068][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[  830.206540][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[  831.342604][T11595] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1455'.
[  832.541459][T11599] fuse: Bad value for 'fd'
[  832.990819][T11603] netlink: 'syz.4.1456': attribute type 4 has an invalid length.
[  834.998495][T11615] Invalid ELF header type: 0 != 1
[  835.039477][T11614] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1458'.
[  835.048595][T11614] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1458'.
[  835.176482][   T29] kauditd_printk_skb: 11 callbacks suppressed
[  835.176507][   T29] audit: type=1326 audit(1738896629.103:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11606 comm="syz.3.1458" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f97c518cde9 code=0x0
[  836.092157][T11611] could not allocate digest TFM handle crct10dif
[  836.992669][    T9] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  837.193763][    T9] usb 5-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  837.227231][    T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  837.318109][    T9] usb 5-1: config 0 descriptor??
[  838.117320][    T9] cp210x 5-1:0.0: cp210x converter detected
[  838.149250][    T9] usb 5-1: cp210x converter now attached to ttyUSB0
[  838.175740][    T9] usb 5-1: USB disconnect, device number 11
[  838.464609][    T9] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  838.478002][    T9] cp210x 5-1:0.0: device disconnected
[  838.880262][T11645] tipc: Started in network mode
[  838.885293][T11645] tipc: Node identity 7, cluster identity 4711
[  838.891849][T11645] tipc: Node number set to 7
[  838.897094][T11645] tipc: Cannot configure node identity twice
[  840.631178][T11330] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  841.232512][T11654] 9pnet_fd: Insufficient options for proto=fd
[  842.038164][T10118] usb 4-1: new full-speed USB device number 12 using dummy_hcd
[  842.050030][T11330] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  842.099267][T11330] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  842.344314][T11330] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  843.732349][T11657] veth0_to_team: entered promiscuous mode
[  843.738205][T11657] veth0_to_team: entered allmulticast mode
[  844.129020][T11330] 8021q: adding VLAN 0 to HW filter on device bond0
[  844.163361][T11668] Invalid ELF header type: 0 != 1
[  844.179315][T11330] 8021q: adding VLAN 0 to HW filter on device team0
[  844.207892][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  844.215128][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  844.257542][ T6087] bridge0: port 2(bridge_slave_1) entered blocking state
[  844.264728][ T6087] bridge0: port 2(bridge_slave_1) entered forwarding state
[  844.362334][T10118] usb 4-1: new high-speed USB device number 13 using dummy_hcd
[  844.662908][T10118] usb 4-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  844.678126][T10118] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  844.702872][T11668] could not allocate digest TFM handle crct10dif
[  844.731355][T10118] usb 4-1: config 0 descriptor??
[  844.972036][T10118] cp210x 4-1:0.0: cp210x converter detected
[  845.154929][T11674] IPVS: ovf: UDP 0.0.0.0:0 - no destination available
[  845.170005][ T5907] IPVS: starting estimator thread 0...
[  845.527072][T11685] IPVS: using max 23 ests per chain, 55200 per kthread
[  847.814517][T11330] 8021q: adding VLAN 0 to HW filter on device batadv0
[  848.928091][T10118] cp210x 4-1:0.0: failed to get vendor val 0x370c size 13: -71
[  848.942627][T10118] cp210x 4-1:0.0: GPIO initialisation failed: -71
[  848.962765][T10118] usb 4-1: cp210x converter now attached to ttyUSB0
[  848.971617][T10118] usb 4-1: USB disconnect, device number 13
[  849.004124][T10118] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  849.035576][T10118] cp210x 4-1:0.0: device disconnected
[  851.421982][T11721] ip_tunnel: non-ECT from 0.0.0.0 with TOS=0x3
[  851.545603][T11722] Process accounting resumed
[  852.836674][T11736] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1486'.
[  853.764114][T11738] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1487'.
[  854.712607][T11742] 8021q: adding VLAN 0 to HW filter on device bond0
[  854.742966][T11738] tmpfs: Unknown parameter 'usbquota_block_hardlimi'
[  854.840075][T11332] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  854.851504][T11332] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  854.860372][T11738] block device autoloading is deprecated and will be removed.
[  854.870466][T11332] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  854.890271][T11742] bond0: (slave rose0): Enslaving as an active interface with an up link
[  854.927477][T11332] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  854.945721][T11332] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  854.954000][T11332] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  854.990109][T11738] syz.4.1487: attempt to access beyond end of device
[  854.990109][T11738] md2: rw=2048, sector=0, nr_sectors = 8 limit=0
[  855.229675][T11764] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  855.497982][T11772] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1493'.
[  856.421519][T11764] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  857.210600][T11332] Bluetooth: hci1: command tx timeout
[  857.646509][T11756] lo speed is unknown, defaulting to 1000
[  859.856350][T11332] Bluetooth: hci1: command tx timeout
[  859.976019][T11809] Invalid ELF header type: 0 != 1
[  861.789326][T11816] could not allocate digest TFM handle crct10dif
[  861.856053][T11811] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  861.931268][T11814] No control pipe specified
[  862.065143][T11332] Bluetooth: hci1: command tx timeout
[  863.158451][T11756] chnl_net:caif_netlink_parms(): no params data found
[  863.684498][T11844] netlink: 48 bytes leftover after parsing attributes in process `syz.0.1506'.
[  864.460061][T11332] Bluetooth: hci1: command tx timeout
[  864.705872][T11830] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  864.715569][T11830] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  866.041579][T11756] bridge0: port 1(bridge_slave_0) entered blocking state
[  866.053046][T11756] bridge0: port 1(bridge_slave_0) entered disabled state
[  866.832811][T11756] bridge_slave_0: entered allmulticast mode
[  866.845322][T11756] bridge_slave_0: entered promiscuous mode
[  866.937502][T11756] bridge0: port 2(bridge_slave_1) entered blocking state
[  866.945230][T11756] bridge0: port 2(bridge_slave_1) entered disabled state
[  866.963595][T11756] bridge_slave_1: entered allmulticast mode
[  866.978923][T11756] bridge_slave_1: entered promiscuous mode
[  867.143632][T11878] Invalid ELF header type: 0 != 1
[  867.256333][T11879] ip6t_rpfilter: only valid in 'raw' or 'mangle' table, not '
'
[  867.277509][T11756] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  867.371176][T11756] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  867.560205][   T12] bridge_slave_1: left allmulticast mode
[  867.589242][   T12] bridge_slave_1: left promiscuous mode
[  867.625605][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  867.645735][T11875] could not allocate digest TFM handle crct10dif
[  867.664858][   T12] bridge_slave_0: left allmulticast mode
[  867.674217][T11895] RDS: rds_bind could not find a transport for ::ffff:172.30.1.5, load rds_tcp or rds_rdma?
[  867.685344][   T12] bridge_slave_0: left promiscuous mode
[  867.701831][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  870.040720][    T9] usb 4-1: new high-speed USB device number 14 using dummy_hcd
[  870.233414][    T9] usb 4-1: Using ep0 maxpacket: 8
[  870.249950][    T9] usb 4-1: config 0 has an invalid interface number: 128 but max is 0
[  870.262188][    T9] usb 4-1: config 0 has no interface number 0
[  870.296871][    T9] usb 4-1: config 0 interface 128 has no altsetting 0
[  870.358968][    T9] usb 4-1: New USB device found, idVendor=0c72, idProduct=0012, bcdDevice=4a.2f
[  870.378058][    T9] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  870.391018][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  870.408146][    T9] usb 4-1: Product: syz
[  870.412628][    T9] usb 4-1: Manufacturer: syz
[  870.431026][    T9] usb 4-1: SerialNumber: syz
[  870.443295][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  870.471651][    T9] usb 4-1: config 0 descriptor??
[  870.482368][    T9] peak_usb 4-1:0.128: probe with driver peak_usb failed with error 128
[  870.511936][   T12] bond0 (unregistering): Released all slaves
[  870.552299][T11756] team0: Port device team_slave_0 added
[  870.603130][T11756] team0: Port device team_slave_1 added
[  870.700438][    T9] usb 4-1: USB disconnect, device number 14
[  870.775145][T11756] batman_adv: batadv0: Adding interface: batadv_slave_0
[  870.814557][T11756] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  871.134513][T11756] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  871.158566][T11756] batman_adv: batadv0: Adding interface: batadv_slave_1
[  871.171070][T11756] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  871.607166][T11756] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  872.711079][T11935] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1528'.
[  873.067364][   T12] hsr_slave_0: left promiscuous mode
[  873.094744][   T12] hsr_slave_1: left promiscuous mode
[  873.106456][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  873.120330][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  873.154144][   T29] audit: type=1800 audit(1738896664.620:136): pid=11940 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.4.1529" name="SYSV00000000" dev="tmpfs" ino=0 res=0 errno=0
[  873.239125][T11945] ip6t_rpfilter: only valid in 'raw' or 'mangle' table, not '
'
[  874.932916][T11956] netlink: 'syz.0.1535': attribute type 19 has an invalid length.
[  875.005604][T11959] 9pnet_fd: Insufficient options for proto=fd
[  875.286672][   T12] team0 (unregistering): Port device team_slave_1 removed
[  875.474356][   T12] team0 (unregistering): Port device team_slave_0 removed
[  876.029909][T11975] 9pnet_fd: Insufficient options for proto=fd
[  878.961383][   T51] usb 4-1: new high-speed USB device number 15 using dummy_hcd
[  879.501649][   T51] usb 4-1: Using ep0 maxpacket: 32
[  879.527670][   T51] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 175
[  879.726051][   T51] usb 4-1: New USB device found, idVendor=13b1, idProduct=0042, bcdDevice=58.16
[  879.735221][   T51] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  879.743614][   T51] usb 4-1: Product: syz
[  879.749741][   T51] usb 4-1: Manufacturer: syz
[  879.754393][   T51] usb 4-1: SerialNumber: syz
[  879.770029][   T51] usb 4-1: config 0 descriptor??
[  879.778674][T11991] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  879.828728][T11756] hsr_slave_0: entered promiscuous mode
[  879.840365][   T51] usb 4-1: Warning: ath10k USB support is incomplete, don't expect anything to work!
[  879.856909][T11756] hsr_slave_1: entered promiscuous mode
[  880.055710][    T9] usb 4-1: USB disconnect, device number 15
[  880.062315][   T11] usb 4-1: Failed to submit usb control message: -71
[  880.080190][   T11] usb 4-1: unable to send the bmi data to the device: -71
[  880.105348][   T11] usb 4-1: unable to get target info from device
[  880.111853][   T11] usb 4-1: could not get target info (-71)
[  880.117759][   T11] usb 4-1: could not probe fw (-71)
[  880.380303][T12014] 9pnet_virtio: no channels available for device syz
[  881.459468][T12043] netlink: 'syz.2.1562': attribute type 4 has an invalid length.
[  881.545596][T11756] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  882.326642][T11756] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  882.357865][T11756] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  882.462766][T11756] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  882.764136][T11756] 8021q: adding VLAN 0 to HW filter on device bond0
[  882.820752][T11756] 8021q: adding VLAN 0 to HW filter on device team0
[  882.848760][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[  882.856082][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[  882.888537][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[  882.895830][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[  883.463791][T11756] 8021q: adding VLAN 0 to HW filter on device batadv0
[  883.544302][   T25] usb 4-1: new high-speed USB device number 16 using dummy_hcd
[  883.724631][   T25] usb 4-1: Using ep0 maxpacket: 8
[  883.731915][   T25] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  883.751775][   T25] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  883.766779][   T25] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  883.791876][   T25] usb 4-1: Product: syz
[  883.823778][   T25] usb 4-1: Manufacturer: syz
[  883.837341][   T25] usb 4-1: SerialNumber: syz
[  883.857217][   T25] usb 4-1: bad CDC descriptors
[  883.872422][T12099] infiniband syz0: set down
[  883.877809][T12099] infiniband syz0: added ipvlan1
[  883.929045][T12099] RDS/IB: syz0: added
[  883.933230][T12099] smc: adding ib device syz0 with port count 1
[  883.939724][T12099] smc:    ib device syz0 port 1 has pnetid 
[  884.017084][T11756] veth0_vlan: entered promiscuous mode
[  884.097144][T11756] veth1_vlan: entered promiscuous mode
[  884.104819][ T5907] usb 4-1: USB disconnect, device number 16
[  884.186862][T11756] veth0_macvtap: entered promiscuous mode
[  884.211538][T11756] veth1_macvtap: entered promiscuous mode
[  884.260300][T11756] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  884.281413][T11756] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  884.301539][T11756] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  884.312345][T11756] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  884.322196][T11756] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  884.333279][T11756] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  884.346196][T11756] batman_adv: batadv0: Interface activated: batadv_slave_0
[  884.380998][T11756] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  884.408870][T11756] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  884.429886][T11756] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  884.451522][T11756] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  884.461424][T11756] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  884.494044][T11756] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  884.527435][T11756] batman_adv: batadv0: Interface activated: batadv_slave_1
[  884.553023][T11756] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  884.567256][T11756] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  884.634164][T12119] ip6t_rpfilter: only valid in 'raw' or 'mangle' table, not ''
[  884.673334][T11756] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  884.898719][T11756] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  885.559105][ T6085] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  885.595367][ T6085] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  885.644946][T11235] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  885.670036][T11235] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  887.288430][T12166] xt_TCPMSS: Only works on TCP SYN packets
[  891.379718][T12205] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1623'.
[  891.736339][   T29] audit: type=1326 audit(1738896682.009:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12220 comm="syz.4.1633" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fc95c18cde9 code=0x0
[  891.828923][   T51] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  891.895348][T12229] 9pnet_virtio: no channels available for device syz
[  892.007725][   T51] usb 6-1: config 0 has an invalid interface number: 255 but max is 0
[  892.025301][   T51] usb 6-1: config 0 has no interface number 0
[  892.035077][   T51] usb 6-1: too many endpoints for config 0 interface 255 altsetting 255: 255, using maximum allowed: 30
[  892.051490][   T51] usb 6-1: config 0 interface 255 altsetting 255 has 0 endpoint descriptors, different from the interface descriptor's value: 255
[  892.173223][   T51] usb 6-1: config 0 interface 255 has no altsetting 0
[  892.738813][   T51] usb 6-1: New USB device found, idVendor=08fd, idProduct=0002, bcdDevice=ca.fd
[  893.015451][   T51] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  893.024053][   T51] usb 6-1: Product: syz
[  893.033384][   T51] usb 6-1: Manufacturer: syz
[  893.046474][   T51] usb 6-1: SerialNumber: syz
[  893.058331][   T51] usb 6-1: config 0 descriptor??
[  893.450153][   T51] usb 6-1: USB disconnect, device number 2
[  894.288929][ T5916] usb 4-1: new high-speed USB device number 17 using dummy_hcd
[  894.635482][ T5916] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  894.686611][ T5916] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  894.733058][ T5916] usb 4-1: New USB device found, idVendor=1d34, idProduct=000a, bcdDevice= 0.00
[  894.766690][ T5916] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  894.818439][ T5916] usb 4-1: config 0 descriptor??
[  895.110586][   T51] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  895.114802][T12277] 9pnet_virtio: no channels available for device syz
[  895.698677][   T51] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  895.740684][   T51] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[  895.763131][   T51] usb 5-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  895.780334][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[  895.787117][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[  895.818075][   T51] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  895.838036][   T51] usb 5-1: SerialNumber: syz
[  895.911731][ T5916] hid-led 0003:1D34:000A.0006: probe with driver hid-led failed with error -71
[  895.943920][ T5916] usb 4-1: USB disconnect, device number 17
[  896.089069][   T51] usb 5-1: 0:2 : does not exist
[  896.174815][   T51] usb 5-1: USB disconnect, device number 12
[  899.116923][T12319] netdevsim netdevsim5 netdevsim0: entered promiscuous mode
[  899.136620][T12319] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  900.524358][T12332] pim6reg: entered allmulticast mode
[  904.152958][T12358] sp0: Synchronizing with TNC
[  905.817902][ T5907] usb 4-1: new high-speed USB device number 18 using dummy_hcd
[  905.907775][ T5916] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[  906.790417][ T5907] usb 4-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  906.803697][ T5907] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  906.846490][ T5907] usb 4-1: config 0 descriptor??
[  906.848102][ T5916] usb 5-1: Using ep0 maxpacket: 8
[  906.874733][ T5907] cp210x 4-1:0.0: cp210x converter detected
[  906.893814][ T5916] usb 5-1: New USB device found, idVendor=1de1, idProduct=c102, bcdDevice=1f.cb
[  906.920189][ T5916] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  906.944026][ T5916] usb 5-1: Product: syz
[  906.948797][ T5916] usb 5-1: Manufacturer: syz
[  906.953465][ T5916] usb 5-1: SerialNumber: syz
[  906.980599][ T5916] usb 5-1: config 0 descriptor??
[  907.005392][ T5916] gm12u320 5-1:0.0: [drm:gm12u320_set_ecomode] *ERROR* Misc. req. error -22
[  907.020114][ T5916] gm12u320 5-1:0.0: probe with driver gm12u320 failed with error -5
[  907.054492][ T5916] usb-storage 5-1:0.0: USB Mass Storage device detected
[  907.096221][ T5916] usb-storage 5-1:0.0: device ignored
[  907.224538][ T5916] usb 5-1: USB disconnect, device number 13
[  907.541878][ T5907] cp210x 4-1:0.0: failed to get vendor val 0x000e size 678: -71
[  907.569739][ T5907] cp210x 4-1:0.0: GPIO initialisation failed: -71
[  907.629326][ T5907] usb 4-1: cp210x converter now attached to ttyUSB0
[  907.658363][ T5907] usb 4-1: USB disconnect, device number 18
[  907.749693][T12421] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1693'.
[  907.758910][T12421] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1693'.
[  908.612394][ T5907] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  908.621471][ T5907] cp210x 4-1:0.0: device disconnected
[  908.824538][T12434] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1702'.
[  908.857984][T12434] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1702'.
[  909.772999][T12444] netlink: 4093 bytes leftover after parsing attributes in process `syz.4.1704'.
[  909.831100][T12439] netlink: 4093 bytes leftover after parsing attributes in process `syz.4.1704'.
[  911.861988][T11332] Bluetooth: hci1: command tx timeout
[  912.599675][ T5907] usb 4-1: new high-speed USB device number 19 using dummy_hcd
[  912.794883][ T5907] usb 4-1: config 0 has an invalid interface number: 1 but max is 0
[  912.807776][ T5907] usb 4-1: config 0 has no interface number 0
[  912.869079][ T5907] usb 4-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b
[  912.879181][ T5907] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  912.887236][ T5907] usb 4-1: Product: syz
[  912.920637][ T5907] usb 4-1: Manufacturer: syz
[  912.925338][ T5907] usb 4-1: SerialNumber: syz
[  912.965505][ T5907] usb 4-1: config 0 descriptor??
[  913.323200][ T5907] usb 4-1: dvb_usb_v2: found a 'E3C EC168 reference design' in warm state
[  913.360407][ T5907] usb 4-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  913.391479][ T5907] dvbdev: DVB: registering new adapter (E3C EC168 reference design)
[  913.400599][ T5907] usb 4-1: media controller created
[  914.348500][ T5907] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  914.464961][T11332] Bluetooth: hci4: unexpected event for opcode 0x1405
[  914.476341][ T5907] i2c i2c-1: ec100: i2c rd failed=-71 reg=33
[  914.568989][ T5907] usb 4-1: USB disconnect, device number 19
[  916.162690][T12541] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(3)
[  916.169530][T12541] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  916.184155][T12541] vhci_hcd vhci_hcd.0: Device attached
[  916.288667][ T5907] usb 5-1: new high-speed USB device number 14 using dummy_hcd
[  916.394940][ T5913] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  916.459062][T10118] usb 4-1: new high-speed USB device number 20 using dummy_hcd
[  916.469743][T11479] usb 39-1: new low-speed USB device number 2 using vhci_hcd
[  916.477848][ T5907] usb 5-1: Using ep0 maxpacket: 8
[  916.487877][ T5907] usb 5-1: config 150 has an invalid interface number: 204 but max is 1
[  916.497063][ T5907] usb 5-1: config 150 has no interface number 0
[  916.503839][ T5907] usb 5-1: config 150 interface 204 has no altsetting 0
[  916.510940][ T5907] usb 5-1: config 150 interface 1 has no altsetting 0
[  916.520402][ T5907] usb 5-1: New USB device found, idVendor=04e2, idProduct=1424, bcdDevice=c7.eb
[  916.531430][ T5907] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  916.539607][ T5907] usb 5-1: Product: syz
[  916.544337][ T5907] usb 5-1: Manufacturer: syz
[  916.548974][ T5907] usb 5-1: SerialNumber: syz
[  916.630157][T10118] usb 4-1: Using ep0 maxpacket: 16
[  916.659786][T10118] usb 4-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 9.00
[  916.682843][T10118] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  916.707754][T10118] usb 4-1: Product: syz
[  916.711966][T10118] usb 4-1: Manufacturer: syz
[  916.747011][T10118] usb 4-1: SerialNumber: syz
[  916.795339][T10118] usb 4-1: config 0 descriptor??
[  916.816969][ T5913] usb 6-1: Using ep0 maxpacket: 32
[  916.824546][ T5913] usb 6-1: config 0 has an invalid interface number: 51 but max is 0
[  916.832705][ T5913] usb 6-1: config 0 has no interface number 0
[  916.846476][ T5907] xr_serial 5-1:150.204: xr_serial converter detected
[  916.856012][T10118] ftdi_sio 4-1:0.0: FTDI USB Serial Device converter detected
[  916.864219][T10118] usb 4-1: Detected FT232H
[  916.871676][ T5913] usb 6-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  916.882611][ T5913] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  916.890860][ T5913] usb 6-1: Product: syz
[  916.895469][ T5913] usb 6-1: Manufacturer: syz
[  916.902770][ T5913] usb 6-1: SerialNumber: syz
[  917.648558][T10118] ftdi_sio ttyUSB0: Unable to read latency timer: -71
[  917.667804][T12542] vhci_hcd: connection closed
[  917.680675][T10118] ftdi_sio ttyUSB0: Unable to write latency timer: -71
[  917.703713][ T6085] vhci_hcd: stop threads
[  917.716245][ T6085] vhci_hcd: release socket
[  917.732173][T10118] ftdi_sio 4-1:0.0: GPIO initialisation failed: -71
[  917.732444][ T5913] usb 6-1: config 0 descriptor??
[  917.750970][ T6085] vhci_hcd: disconnect device
[  917.752716][ T5913] quatech2 6-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  917.761287][T10118] usb 4-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  917.780228][T10118] usb 4-1: USB disconnect, device number 20
[  917.789387][T10118] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  917.807233][T10118] ftdi_sio 4-1:0.0: device disconnected
[  917.827354][T11479] vhci_hcd: vhci_device speed not set
[  917.870712][ T5907] xr_serial ttyUSB1: Failed to set reg 0x0c: -71
[  917.877289][ T5907] xr_serial ttyUSB1: probe with driver xr_serial failed with error -71
[  917.888532][ T5907] usb 5-1: USB disconnect, device number 14
[  917.896001][ T5907] xr_serial 5-1:150.204: device disconnected
[  917.973471][ T5913] usb 6-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[  917.987979][ T5913] usb 6-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[  918.422729][    C1] usb 6-1: qt2_read_bulk_callback - non-zero urb status: -71
[  918.427356][T10118] usb 6-1: USB disconnect, device number 3
[  918.470346][T10118] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[  918.538072][T10118] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[  918.572928][T10118] quatech2 6-1:0.51: device disconnected
[  920.035179][T11332] Bluetooth: hci3: command 0x0406 tx timeout
[  922.294817][T12635] Invalid option length (1048261) for dns_resolver key
[  922.603096][T12640] 9pnet_virtio: no channels available for device syz
[  922.873518][T11332] Bluetooth: hci2: command 0x0406 tx timeout
[  924.692101][T12665] Invalid ELF header type: 0 != 1
[  925.568154][T11332] Bluetooth: hci2: command 0x0406 tx timeout
[  925.927119][    T9] usb 4-1: new high-speed USB device number 21 using dummy_hcd
[  926.358614][    T9] usb 4-1: Using ep0 maxpacket: 32
[  926.365964][    T9] usb 4-1: config index 0 descriptor too short (expected 35577, got 27)
[  926.398978][    T9] usb 4-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[  926.418565][    T9] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 92
[  926.449601][    T9] usb 4-1: config 1 has no interface number 0
[  926.464866][    T9] usb 4-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  926.493223][    T9] usb 4-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  926.507231][T12674] could not allocate digest TFM handle crct10dif
[  926.707138][    T9] usb 4-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[  926.727668][    T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  927.720723][    T9] snd_usb_pod 4-1:1.1: Line 6 Pocket POD found
[  927.751516][ T5842] Bluetooth: hci3: command 0x0406 tx timeout
[  928.015513][    T9] snd_usb_pod 4-1:1.1: set_interface failed
[  928.022806][    T9] snd_usb_pod 4-1:1.1: Line 6 Pocket POD now disconnected
[  928.045941][    T9] snd_usb_pod 4-1:1.1: probe with driver snd_usb_pod failed with error -71
[  928.057834][    T9] usb 4-1: USB disconnect, device number 21
[  928.443082][ T5916] usb 6-1: new full-speed USB device number 4 using dummy_hcd
[  928.925804][T12702] tipc: Started in network mode
[  928.932978][T12702] tipc: Node identity aaaaaaaaaa41, cluster identity 4711
[  928.941618][T12702] tipc: Enabled bearer <eth:geneve1>, priority 10
[  928.969784][ T5916] usb 6-1: config 0 has an invalid interface number: 5 but max is 0
[  929.089587][ T5916] usb 6-1: config 0 has no interface number 0
[  929.096099][ T5916] usb 6-1: New USB device found, idVendor=0bda, idProduct=0177, bcdDevice=7d.0b
[  929.106594][ T5916] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  929.127989][ T5916] usb 6-1: config 0 descriptor??
[  929.146436][ T5916] ums-realtek 6-1:0.5: USB Mass Storage device detected
[  929.365697][T11479] usb 6-1: USB disconnect, device number 4
[  930.137161][ T5916] tipc: Node number set to 15444650
[  930.931860][T12753] batadv_slave_1: entered promiscuous mode
[  930.968432][T12753] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1823'.
[  931.179841][   T29] audit: type=1326 audit(1738896718.855:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12728 comm="syz.4.1812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc95c18cde9 code=0x7fc00000
[  932.347504][T12776] kernel read not supported for file /eth0 (pid: 12776 comm: syz.3.1833)
[  932.369149][T11479] usb 5-1: new high-speed USB device number 15 using dummy_hcd
[  932.390463][   T29] audit: type=1800 audit(1738896720.033:139): pid=12776 uid=0 auid=0 ses=1 subj=_ op=collect_data cause=failed comm="syz.3.1833" name="eth0" dev="mqueue" ino=24028 res=0 errno=0
[  932.549351][T11479] usb 5-1: Using ep0 maxpacket: 16
[  932.569005][T11479] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  932.614817][T11479] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  932.670689][T11479] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  932.761982][T11479] usb 5-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  932.804957][T11479] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  932.855178][T11479] usb 5-1: config 0 descriptor??
[  933.254246][T12795] 9pnet_virtio: no channels available for device syz
[  933.733089][T11479] microsoft 0003:045E:07DA.0007: unknown main item tag 0x0
[  933.745772][T11479] microsoft 0003:045E:07DA.0007: unknown main item tag 0x0
[  933.771748][T11479] microsoft 0003:045E:07DA.0007: unknown main item tag 0x0
[  933.786730][T11479] microsoft 0003:045E:07DA.0007: unknown main item tag 0x0
[  933.799804][T11479] microsoft 0003:045E:07DA.0007: unknown main item tag 0x0
[  933.828300][T11479] microsoft 0003:045E:07DA.0007: unknown main item tag 0x0
[  933.861904][T11479] microsoft 0003:045E:07DA.0007: unknown main item tag 0x0
[  933.879205][T11479] microsoft 0003:045E:07DA.0007: unknown main item tag 0x0
[  933.887029][T11479] microsoft 0003:045E:07DA.0007: unknown main item tag 0x0
[  933.894295][T11479] microsoft 0003:045E:07DA.0007: unknown main item tag 0x0
[  933.922698][T11479] microsoft 0003:045E:07DA.0007: unknown main item tag 0x0
[  933.931564][T11479] microsoft 0003:045E:07DA.0007: unknown main item tag 0x0
[  933.948772][T11479] microsoft 0003:045E:07DA.0007: unknown main item tag 0x0
[  933.956060][T11479] microsoft 0003:045E:07DA.0007: unknown main item tag 0x0
[  933.997218][T11479] microsoft 0003:045E:07DA.0007: unknown main item tag 0x0
[  934.055857][T11479] input: HID 045e:07da as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/0003:045E:07DA.0007/input/input20
[  934.232673][T11479] microsoft 0003:045E:07DA.0007: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.4-1/input0
[  935.034358][T11479] usb 5-1: USB disconnect, device number 15
[  935.095284][T12817] netlink: 87 bytes leftover after parsing attributes in process `syz.5.1848'.
[  935.445821][T12832] 9pnet_virtio: no channels available for device syz
[  936.069114][T12853] 9pnet_fd: Insufficient options for proto=fd
[  941.550336][T12882] program syz.4.1871 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  943.177423][T12893] overlayfs: failed to clone upperpath
[  944.122184][ T5913] usb 4-1: new high-speed USB device number 22 using dummy_hcd
[  945.083298][T12891] Failed to enqueue queue_pair DETACH event datagram for context (ID=0x10)
[  946.442545][T12913] IPVS: ovf: UDP 0.0.0.0:0 - no destination available
[  947.309708][T12938] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1889'.
[  948.125301][ T5913] usb 5-1: new high-speed USB device number 16 using dummy_hcd
[  948.669941][ T5913] usb 5-1: Using ep0 maxpacket: 32
[  948.699757][ T5913] usb 5-1: config 0 has an invalid interface number: 61 but max is 0
[  948.720904][ T5913] usb 5-1: config 0 has no interface number 0
[  948.745184][ T5913] usb 5-1: New USB device found, idVendor=2058, idProduct=1005, bcdDevice=b5.f6
[  948.769638][ T5913] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  948.783353][ T5913] usb 5-1: Product: syz
[  948.789303][ T5913] usb 5-1: Manufacturer: syz
[  948.796217][ T5913] usb 5-1: SerialNumber: syz
[  948.812778][ T5913] usb 5-1: config 0 descriptor??
[  948.937913][ T5913] viperboard 5-1:0.61: version 0.00 found at bus 005 address 016
[  948.986331][ T5913] viperboard-i2c viperboard-i2c.2.auto: failure setting i2c_bus_freq to 100
[  949.017996][ T5913] viperboard-i2c viperboard-i2c.2.auto: probe with driver viperboard-i2c failed with error -5
[  950.909318][ T5916] usb 5-1: USB disconnect, device number 16
[  952.734852][T13021] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  952.865736][T13026] 9pnet_virtio: no channels available for device syz
[  953.271726][T13041] 9pnet_virtio: no channels available for device syz
[  953.566745][T13049] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1929'.
[  955.881528][T13068] 9pnet_virtio: no channels available for device syz
[  956.423961][T13067] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  956.906255][T13077] 9pnet_virtio: no channels available for device syz
[  957.561044][T13101] loop2: detected capacity change from 0 to 7
[  957.579123][T13101] Dev loop2: unable to read RDB block 7
[  957.584944][T13101]  loop2: unable to read partition table
[  957.591363][T13099] geneve2: entered promiscuous mode
[  957.599896][T13099] geneve2: entered allmulticast mode
[  957.610974][T13101] loop2: partition table beyond EOD, truncated
[  957.630586][T13101] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  958.072255][T13112] 9pnet_virtio: no channels available for device syz
[  959.442753][T13135] 9pnet_virtio: no channels available for device syz
[  960.012732][T13143] 9pnet_virtio: no channels available for device syz
[  960.341863][T13150] Invalid ELF header type: 0 != 1
[  960.624461][T13162] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1973'.
[  960.704138][T13150] could not allocate digest TFM handle crct10dif
[  961.076891][T13172] 9pnet_virtio: no channels available for device syz
[  961.295567][T13175] 9pnet_virtio: no channels available for device syz
[  961.649175][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[  961.655720][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[  961.828304][T13018] Set syz1 is full, maxelem 65536 reached
[  962.334683][T13190] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1980'.
[  962.343967][T13190] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1980'.
[  963.740946][T13201] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1984'.
[  964.424050][ T5842] Bluetooth: hci4: unexpected event for opcode 0x1005
[  964.431817][ T5842] Bluetooth: hci4: connection err: -111
[  964.459758][ T5916] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  964.524652][T13207] kernel read not supported for file /! (pid: 13207 comm: syz.4.1990)
[  964.563838][   T29] audit: type=1800 audit(1738896750.134:140): pid=13207 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.4.1990" name=217F dev="mqueue" ino=36213 res=0 errno=0
[  964.583125][T13214] 9pnet_fd: Insufficient options for proto=fd
[  964.647911][ T5916] usb 6-1: Using ep0 maxpacket: 16
[  964.656165][ T5916] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  964.667464][ T5916] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  964.694949][ T5916] usb 6-1: New USB device found, idVendor=05ac, idProduct=8241, bcdDevice= 0.00
[  964.704196][ T5916] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  964.724955][ T5916] usb 6-1: config 0 descriptor??
[  964.776150][T13222] lo speed is unknown, defaulting to 1000
[  965.979412][ T5916] appleir 0003:05AC:8241.0008: unknown main item tag 0x0
[  965.986568][ T5916] appleir 0003:05AC:8241.0008: unknown main item tag 0x0
[  966.009939][ T5916] appleir 0003:05AC:8241.0008: unknown main item tag 0x0
[  966.017108][ T5916] appleir 0003:05AC:8241.0008: unknown main item tag 0x0
[  966.036583][ T5916] appleir 0003:05AC:8241.0008: unknown main item tag 0x0
[  966.046012][ T5916] appleir 0003:05AC:8241.0008: No inputs registered, leaving
[  966.067258][ T5916] appleir 0003:05AC:8241.0008: hiddev0,hidraw0: USB HID v0.00 Device [HID 05ac:8241] on usb-dummy_hcd.5-1/input0
[  966.089684][ T5916] usb 6-1: USB disconnect, device number 5
[  966.180851][T13232] 9pnet_virtio: no channels available for device syz
[  966.302044][T13236] 9pnet_virtio: no channels available for device syz
[  966.935308][T13250] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2001'.
[  967.844779][T13257] 9pnet_virtio: no channels available for device syz
[  968.322744][T13268] netlink: 'syz.2.2011': attribute type 3 has an invalid length.
[  968.358334][T13268] netlink: 'syz.2.2011': attribute type 7 has an invalid length.
[  968.423887][T13268] netlink: 198084 bytes leftover after parsing attributes in process `syz.2.2011'.
[  969.572306][T13293] netlink: 1 bytes leftover after parsing attributes in process `syz.0.2022'.
[  969.738873][T13298] input: syz0 as /devices/virtual/input/input21
[  969.891970][T13304] netlink: 'syz.0.2025': attribute type 11 has an invalid length.
[  970.416818][T13324] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2033'.
[  970.676165][T13335] af_packet: tpacket_rcv: packet too big, clamped from 117 to 4294967272. macoff=96
[  970.717145][T13338] 9pnet_virtio: no channels available for device syz
[  971.257873][T13349] Invalid ELF header type: 0 != 1
[  971.836341][T13352] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2044'.
[  971.845330][T13352] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2044'.
[  972.347859][   T29] audit: type=1326 audit(1738896757.412:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13346 comm="syz.0.2044" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f613198cde9 code=0x0
[  973.729705][T13355] could not allocate digest TFM handle crct10dif
[  974.157093][ T5913] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  974.363426][ T5913] usb 6-1: Using ep0 maxpacket: 32
[  974.398692][ T5913] usb 6-1: New USB device found, idVendor=055f, idProduct=d001, bcdDevice=88.92
[  974.518011][ T5913] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  974.542488][ T5913] usb 6-1: config 0 descriptor??
[  974.558685][ T5913] gspca_main: nw80x-2.14.0 probing 055f:d001
[  974.691610][T13393] netlink: 'syz.0.2059': attribute type 1 has an invalid length.
[  974.729413][T13397] overlayfs: failed to clone lowerpath
[  974.819034][ T5879] usb 4-1: new high-speed USB device number 23 using dummy_hcd
[  974.890907][T13402] Invalid ELF header type: 0 != 1
[  975.005629][T13405] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2057'.
[  975.014966][T13405] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2057'.
[  975.408852][ T5913] gspca_nw80x: reg_r err -110
[  975.719641][ T5879] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  975.748953][ T5879] usb 4-1: config 0 interface 0 has no altsetting 0
[  975.794480][   T29] audit: type=1326 audit(1738896759.984:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13394 comm="syz.4.2057" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fc95c18cde9 code=0x0
[  975.802479][ T5913] nw80x 6-1:0.0: probe with driver nw80x failed with error -110
[  975.840401][ T5879] usb 4-1: New USB device found, idVendor=10fd, idProduct=1513, bcdDevice=7e.ce
[  975.862692][ T5879] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  975.866358][T13398] 8021q: adding VLAN 0 to HW filter on device bond2
[  975.877295][ T5879] usb 4-1: Product: syz
[  975.887957][ T5879] usb 4-1: Manufacturer: syz
[  975.892607][ T5879] usb 4-1: SerialNumber: syz
[  975.902324][T13402] could not allocate digest TFM handle crct10dif
[  975.938107][T13398] bond1: (slave bond2): making interface the new active one
[  975.951230][ T5879] usb 4-1: config 0 descriptor??
[  975.977230][ T5879] dvb-usb: found a 'MSI DIGI VOX mini II DVB-T USB2.0' in warm state.
[  975.978567][T13398] bond1: (slave bond2): Enslaving as an active interface with an up link
[  976.012807][ T5879] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  976.027569][ T5879] dvbdev: DVB: registering new adapter (MSI DIGI VOX mini II DVB-T USB2.0)
[  976.048493][ T5879] usb 4-1: media controller created
[  976.090683][ T5879] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  976.187751][ T5879] DVB: Unable to find symbol tda10046_attach()
[  976.200301][ T5879] dvb-usb: no frontend was attached by 'MSI DIGI VOX mini II DVB-T USB2.0'
[  976.215679][ T5879] dvb-usb: MSI DIGI VOX mini II DVB-T USB2.0 successfully initialized and connected.
[  977.158721][T11479] usb 6-1: USB disconnect, device number 6
[  977.190250][ T5879] dvb_usb_m920x 4-1:0.0: probe with driver dvb_usb_m920x failed with error -71
[  977.204876][ T5879] usb 4-1: USB disconnect, device number 23
[  977.398838][T13438] netlink: 'syz.5.2072': attribute type 12 has an invalid length.
[  977.427727][T13438] netlink: 'syz.5.2072': attribute type 29 has an invalid length.
[  977.435621][T13438] netlink: 148 bytes leftover after parsing attributes in process `syz.5.2072'.
[  977.483795][T13438] netlink: 'syz.5.2072': attribute type 1 has an invalid length.
[  977.524505][T13438] netlink: 'syz.5.2072': attribute type 2 has an invalid length.
[  977.532438][T13438] netlink: 39 bytes leftover after parsing attributes in process `syz.5.2072'.
[  979.138014][    T9] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  979.341206][    T9] usb 6-1: Using ep0 maxpacket: 16
[  979.368940][    T9] usb 6-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF3, changing to 0x83
[  979.368983][    T9] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  979.372515][    T9] usb 6-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  979.372567][    T9] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  979.372591][    T9] usb 6-1: Product: syz
[  979.372779][    T9] usb 6-1: Manufacturer: syz
[  979.372798][    T9] usb 6-1: SerialNumber: syz
[  979.392122][    T9] usb 6-1: config 0 descriptor??
[  979.404600][    T9] em28xx 6-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  979.404878][    T9] em28xx 6-1:0.0: Audio interface 0 found (Vendor Class)
[  980.070127][    T9] em28xx 6-1:0.0: unknown em28xx chip ID (0)
[  980.071257][    T9] em28xx 6-1:0.0: Config register raw data: 0xfffffffb
[  980.287338][    T9] em28xx 6-1:0.0: AC97 chip type couldn't be determined
[  980.287373][    T9] em28xx 6-1:0.0: No AC97 audio processor
[  980.291113][    T9] usb 6-1: USB disconnect, device number 7
[  980.292052][    T9] em28xx 6-1:0.0: Disconnecting em28xx
[  980.305419][    T9] em28xx 6-1:0.0: Freeing device
[  980.349085][T11332] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  980.351759][T11332] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  980.352787][T11332] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  980.353808][T11332] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  980.356204][T11332] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  980.360584][T11332] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  980.407314][T13465] lo speed is unknown, defaulting to 1000
[  980.871988][T13465] chnl_net:caif_netlink_parms(): no params data found
[  981.045313][T13465] bridge0: port 1(bridge_slave_0) entered blocking state
[  981.059061][T13465] bridge0: port 1(bridge_slave_0) entered disabled state
[  981.067594][T13465] bridge_slave_0: entered allmulticast mode
[  981.075143][T13465] bridge_slave_0: entered promiscuous mode
[  981.084763][T13465] bridge0: port 2(bridge_slave_1) entered blocking state
[  981.092031][T13465] bridge0: port 2(bridge_slave_1) entered disabled state
[  981.100056][T13465] bridge_slave_1: entered allmulticast mode
[  981.108940][T13465] bridge_slave_1: entered promiscuous mode
[  981.173270][T13479] 9pnet_virtio: no channels available for device syz
[  981.282910][T13465] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  981.331503][T13465] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  981.439184][T13486] Invalid ELF header type: 0 != 1
[  981.497097][T13465] team0: Port device team_slave_0 added
[  981.693638][T13465] team0: Port device team_slave_1 added
[  981.725471][ T5913] usb 5-1: new high-speed USB device number 17 using dummy_hcd
[  982.573180][T11332] Bluetooth: hci4: command tx timeout
[  982.678047][T13486] could not allocate digest TFM handle crct10dif
[  982.769829][ T5913] usb 5-1: config index 0 descriptor too short (expected 3133, got 61)
[  982.808478][ T5913] usb 5-1: config 0 has an invalid interface number: 156 but max is 1
[  982.847861][ T5913] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  982.891482][ T5913] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 2
[  982.910999][T13465] batman_adv: batadv0: Adding interface: batadv_slave_0
[  982.928320][ T5913] usb 5-1: config 0 has no interface number 0
[  982.935918][T13465] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  982.971060][T13465] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  982.973099][ T5913] usb 5-1: config 0 interface 156 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0
[  982.985652][T13465] batman_adv: batadv0: Adding interface: batadv_slave_1
[  983.000220][T13465] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  983.031848][T13465] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  983.047262][ T5913] usb 5-1: config 0 interface 156 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7
[  983.068652][ T5913] usb 5-1: config 0 interface 156 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  983.081169][ T5913] usb 5-1: config 0 interface 156 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  983.108647][ T5913] usb 5-1: New USB device found, idVendor=abcd, idProduct=cdee, bcdDevice= 5.b9
[  983.118602][ T5913] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  983.151111][ T5913] usb 5-1: config 0 descriptor??
[  983.164220][ T5913] gspca_main: spca561-2.14.0 probing abcd:cdee
[  983.181589][T13465] hsr_slave_0: entered promiscuous mode
[  983.193148][T13465] hsr_slave_1: entered promiscuous mode
[  983.199372][T13465] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  983.207502][T13465] Cannot create hsr debugfs directory
[  983.412580][ T5913] spca561 5-1:0.156: probe with driver spca561 failed with error -22
[  983.448230][ T5913] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  983.455292][ T5913] usb 5-1: MIDIStreaming interface descriptor not found
[  983.540649][ T5913] usb 5-1: USB disconnect, device number 17
[  983.768349][T13465] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  983.799670][T13465] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  983.815757][T13465] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  983.874675][T13465] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  984.147918][T13465] 8021q: adding VLAN 0 to HW filter on device bond0
[  984.153144][T13501] F2FS-fs (loop5): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[  984.207900][T13501] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  984.223766][T13465] 8021q: adding VLAN 0 to HW filter on device team0
[  984.261905][T13501] F2FS-fs (loop5): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[  984.288671][ T7506] bridge0: port 1(bridge_slave_0) entered blocking state
[  984.296059][ T7506] bridge0: port 1(bridge_slave_0) entered forwarding state
[  984.303149][T13501] F2FS-fs (loop5): Can't find valid F2FS filesystem in 2th superblock
[  984.351036][ T7506] bridge0: port 2(bridge_slave_1) entered blocking state
[  984.358364][ T7506] bridge0: port 2(bridge_slave_1) entered forwarding state
[  984.391557][T13502] F2FS-fs (loop5): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[  984.464345][T13502] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  984.494277][T13502] F2FS-fs (loop5): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[  984.502834][T13504] netlink: 'syz.4.2095': attribute type 1 has an invalid length.
[  984.516799][T13502] F2FS-fs (loop5): Can't find valid F2FS filesystem in 2th superblock
[  984.581416][T13504] bond2: entered promiscuous mode
[  984.608515][T13504] bond2: entered allmulticast mode
[  984.655792][T13507] batadv1: entered promiscuous mode
[  984.682216][T13507] 8021q: adding VLAN 0 to HW filter on device batadv1
[  984.711361][T13507] bond2: (slave batadv1): making interface the new active one
[  984.752203][T13507] batadv1: entered allmulticast mode
[  984.759402][T13507] bond2: (slave batadv1): Enslaving as an active interface with an up link
[  984.793433][ T5842] Bluetooth: hci4: command tx timeout
[  984.950680][T13465] 8021q: adding VLAN 0 to HW filter on device batadv0
[  985.168297][T13528] Invalid ELF header type: 0 != 1
[  985.610778][ T5842] Bluetooth: hci1: command 0x0406 tx timeout
[  985.870187][T13540] loop2: detected capacity change from 0 to 7
[  985.904171][T13532] could not allocate digest TFM handle crct10dif
[  985.907052][T13540] Dev loop2: unable to read RDB block 7
[  985.943027][T13540]  loop2: unable to read partition table
[  986.004696][T13465] veth0_vlan: entered promiscuous mode
[  986.012165][T13540] loop2: partition table beyond EOD, truncated
[  986.028204][T13540] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  986.069792][T13465] veth1_vlan: entered promiscuous mode
[  986.172888][T13465] veth0_macvtap: entered promiscuous mode
[  986.208697][T13465] veth1_macvtap: entered promiscuous mode
[  986.280538][T13465] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  986.343452][T13465] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  987.253396][T11332] Bluetooth: hci4: command tx timeout
[  987.404694][T13465] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  987.429513][T13465] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  988.383234][T13465] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  988.636360][T13465] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  988.646845][T13465] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  988.657888][T13465] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  989.475921][ T5842] Bluetooth: hci4: command tx timeout
[  989.727330][T13465] batman_adv: batadv0: Interface activated: batadv_slave_0
[  990.799935][T13465] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  990.836644][T13465] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  991.195335][T13465] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  991.309148][T13465] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  991.410396][T13465] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  991.517828][T13465] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  991.527721][T13465] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  991.559512][T13465] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  991.572835][T13465] batman_adv: batadv0: Interface activated: batadv_slave_1
[  991.585131][T13465] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  991.594068][T13465] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  991.603734][T13465] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  991.634160][T13465] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  991.753092][ T5907] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  991.819441][  T997] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  991.839865][  T997] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  991.922320][ T6410] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  991.940206][ T6410] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  992.076764][T13580] Invalid ELF header type: 0 != 1
[  992.950460][T13581] could not allocate digest TFM handle crct10dif
[  993.167044][T13595] input: syz0 as /devices/virtual/input/input22
[  993.339296][T13601] syzkaller0: entered allmulticast mode
[  993.390997][T13601] syzkaller0 (unregistering): left allmulticast mode
[  993.477416][T13607] team_slave_0: entered promiscuous mode
[  993.484185][T13607] team_slave_1: entered promiscuous mode
[  993.490371][T13607] macsec1: entered promiscuous mode
[  993.495737][T13607] team0: entered promiscuous mode
[  993.507373][T13607] team0: Device macsec1 is already an upper device of the team interface
[  993.536220][T13607] team0: left promiscuous mode
[  993.543399][T13607] team_slave_0: left promiscuous mode
[  993.548962][T13607] team_slave_1: left promiscuous mode
[  993.626868][T13609] lo speed is unknown, defaulting to 1000
[  995.387897][ T5913] usb 5-1: new high-speed USB device number 18 using dummy_hcd
[  995.580851][ T5913] usb 5-1: Using ep0 maxpacket: 32
[  995.601099][ T5913] usb 5-1: config 0 has an invalid interface number: 61 but max is 0
[  995.630480][ T5913] usb 5-1: config 0 has no interface number 0
[  995.666616][ T5913] usb 5-1: New USB device found, idVendor=2058, idProduct=1005, bcdDevice=b5.f6
[  995.687338][ T5913] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  995.695963][ T5913] usb 5-1: Product: syz
[  995.711771][ T5913] usb 5-1: Manufacturer: syz
[  995.716929][ T5913] usb 5-1: SerialNumber: syz
[  995.754014][ T5913] usb 5-1: config 0 descriptor??
[  995.869744][ T5913] viperboard 5-1:0.61: version 0.00 found at bus 005 address 018
[  996.033090][ T5913] viperboard-i2c viperboard-i2c.2.auto: failure setting i2c_bus_freq to 100
[  996.053705][ T5913] viperboard-i2c viperboard-i2c.2.auto: probe with driver viperboard-i2c failed with error -5
[  997.085084][T13641] tipc: Started in network mode
[  997.096442][T13641] tipc: Node identity ac1414aa, cluster identity 4711
[  997.137688][T13641] tipc: Enabled bearer <udp:syz2>, priority 10
[  997.277378][T11479] usb 5-1: USB disconnect, device number 18
[  997.957011][T13656] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2143'.
[  998.327721][    T9] tipc: Node number set to 2886997162
[  999.916499][T13693] cgroup: Unknown subsys name 'cpuset'
[ 1000.022612][T13692] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[ 1000.462752][T13710] Invalid ELF header type: 0 != 1
[ 1000.686384][T13710] could not allocate digest TFM handle crct10dif
[ 1000.977439][T13730] netlink: 'syz.5.2166': attribute type 8 has an invalid length.
[ 1001.314310][T13737] 9pnet_virtio: no channels available for device syz
[ 1006.254061][   T25] usb 5-1: new high-speed USB device number 19 using dummy_hcd
[ 1006.645124][   T25] usb 5-1: Using ep0 maxpacket: 32
[ 1006.653271][   T25] usb 5-1: config 0 has an invalid interface number: 61 but max is 0
[ 1006.662014][   T25] usb 5-1: config 0 has no interface number 0
[ 1006.674065][   T25] usb 5-1: New USB device found, idVendor=2058, idProduct=1005, bcdDevice=b5.f6
[ 1006.683800][   T25] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1006.692321][   T25] usb 5-1: Product: syz
[ 1006.696732][   T25] usb 5-1: Manufacturer: syz
[ 1006.701757][   T25] usb 5-1: SerialNumber: syz
[ 1006.709624][   T25] usb 5-1: config 0 descriptor??
[ 1006.863475][   T25] viperboard 5-1:0.61: version 0.00 found at bus 005 address 019
[ 1006.883678][   T25] viperboard-i2c viperboard-i2c.2.auto: failure setting i2c_bus_freq to 100
[ 1006.892928][   T25] viperboard-i2c viperboard-i2c.2.auto: probe with driver viperboard-i2c failed with error -5
[ 1007.998836][T13798] Invalid ELF header type: 0 != 1
[ 1008.081224][T11479] usb 5-1: USB disconnect, device number 19
[ 1008.337943][T13798] could not allocate digest TFM handle crct10dif
[ 1008.546724][T13808] 9pnet_virtio: no channels available for device syz
[ 1009.028667][T13815] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[ 1012.353200][T13851] 9pnet_virtio: no channels available for device syz
[ 1012.939023][T13859] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2208'.
[ 1012.948407][T13859] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2208'.
[ 1012.993237][T13674] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[ 1013.001232][   T29] audit: type=1326 audit(1738896795.436:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13856 comm="syz.2.2208" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7feda558cde9 code=0x0
[ 1013.294515][T13674] usb 6-1: Using ep0 maxpacket: 16
[ 1013.748765][T13674] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1013.769675][T13674] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1013.890912][T13674] usb 6-1: New USB device found, idVendor=05ac, idProduct=8241, bcdDevice= 0.00
[ 1013.900170][T13674] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1013.914224][T13674] usb 6-1: config 0 descriptor??
[ 1014.385714][T13872] IPVS: ovf: UDP 0.0.0.0:0 - no destination available
[ 1014.400776][T13674] appleir 0003:05AC:8241.0009: unknown main item tag 0x0
[ 1014.431592][T13674] appleir 0003:05AC:8241.0009: unknown main item tag 0x0
[ 1014.449396][T13674] appleir 0003:05AC:8241.0009: unknown main item tag 0x0
[ 1014.466806][T13674] appleir 0003:05AC:8241.0009: unknown main item tag 0x0
[ 1014.475666][T13674] appleir 0003:05AC:8241.0009: unknown main item tag 0x0
[ 1014.492971][T13674] appleir 0003:05AC:8241.0009: No inputs registered, leaving
[ 1014.522444][T13674] appleir 0003:05AC:8241.0009: hiddev0,hidraw0: USB HID v0.00 Device [HID 05ac:8241] on usb-dummy_hcd.5-1/input0
[ 1014.529125][T13872] syzkaller0: entered promiscuous mode
[ 1014.551447][T13872] syzkaller0: entered allmulticast mode
[ 1014.788326][   T25] usb 6-1: USB disconnect, device number 9
[ 1015.209297][T13898] overlayfs: failed to clone upperpath
[ 1022.342334][T13951] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2235'.
[ 1022.378910][T13951] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2235'.
[ 1025.982698][   T29] audit: type=1800 audit(1738896807.568:144): pid=13989 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.6.2250" name="bus" dev="tmpfs" ino=2 res=0 errno=0
[ 1027.131848][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[ 1027.138346][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[ 1029.318071][T13675] usb 5-1: new high-speed USB device number 20 using dummy_hcd
[ 1030.335227][T13675] usb 5-1: Using ep0 maxpacket: 32
[ 1030.385754][T13675] usb 5-1: config 0 has an invalid interface number: 61 but max is 0
[ 1030.537934][T13675] usb 5-1: config 0 has no interface number 0
[ 1030.881071][T13675] usb 5-1: New USB device found, idVendor=2058, idProduct=1005, bcdDevice=b5.f6
[ 1031.030155][T13675] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1031.038229][T13675] usb 5-1: Product: syz
[ 1031.094471][T13675] usb 5-1: Manufacturer: syz
[ 1031.182928][T13675] usb 5-1: SerialNumber: syz
[ 1031.191408][T13675] usb 5-1: config 0 descriptor??
[ 1031.308661][T13675] viperboard 5-1:0.61: version 0.00 found at bus 005 address 020
[ 1031.349095][T13675] viperboard-i2c viperboard-i2c.2.auto: failure setting i2c_bus_freq to 100
[ 1031.435540][T14054] erofs (device nullb0): cannot find valid erofs superblock
[ 1031.472280][T13675] viperboard-i2c viperboard-i2c.2.auto: probe with driver viperboard-i2c failed with error -5
[ 1031.490012][T13675] usb 5-1: USB disconnect, device number 20
[ 1031.609184][T14057] bridge0: port 3(netdevsim2) entered blocking state
[ 1031.621649][T14057] bridge0: port 3(netdevsim2) entered disabled state
[ 1031.652273][T14057] netdevsim netdevsim0 netdevsim2: entered allmulticast mode
[ 1031.667697][T14058] input: syz0 as /devices/virtual/input/input23
[ 1031.671769][T14057] netdevsim netdevsim0 netdevsim2: entered promiscuous mode
[ 1031.717180][T14057] bridge0: port 3(netdevsim2) entered blocking state
[ 1031.724058][T14057] bridge0: port 3(netdevsim2) entered forwarding state
[ 1033.328099][   T29] audit: type=1804 audit(1738896814.453:145): pid=14083 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz.5.2283" name="/newroot/110/file0/file0" dev="ramfs" ino=40087 res=1 errno=0
[ 1034.259461][ T5913] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[ 1034.516497][ T5913] usb 6-1: Using ep0 maxpacket: 32
[ 1034.617832][ T5913] usb 6-1: config 0 has an invalid interface number: 61 but max is 0
[ 1034.693459][ T5913] usb 6-1: config 0 has no interface number 0
[ 1034.704532][T14089] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2285'.
[ 1034.717176][ T5913] usb 6-1: New USB device found, idVendor=2058, idProduct=1005, bcdDevice=b5.f6
[ 1034.738746][ T5913] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1034.755919][ T5913] usb 6-1: Product: syz
[ 1034.766213][ T5913] usb 6-1: Manufacturer: syz
[ 1034.779035][ T5913] usb 6-1: SerialNumber: syz
[ 1034.790716][ T5913] usb 6-1: config 0 descriptor??
[ 1034.808376][T14091] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1034.927579][ T5913] viperboard 6-1:0.61: version 0.00 found at bus 006 address 010
[ 1034.939725][ T5913] viperboard-i2c viperboard-i2c.2.auto: failure setting i2c_bus_freq to 100
[ 1034.948895][ T5913] viperboard-i2c viperboard-i2c.2.auto: probe with driver viperboard-i2c failed with error -5
[ 1035.610777][ T5842] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[ 1035.621940][ T5842] Bluetooth: hci2: Injecting HCI hardware error event
[ 1035.640740][T11332] Bluetooth: hci2: hardware error 0x00
[ 1037.501052][T13676] usb 6-1: USB disconnect, device number 10
[ 1038.044132][T11332] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[ 1038.300765][T13676] usb 6-1: new high-speed USB device number 11 using dummy_hcd
[ 1038.746525][T14123] lo speed is unknown, defaulting to 1000
[ 1038.950471][T13676] usb 6-1: Using ep0 maxpacket: 32
[ 1038.962695][T13676] usb 6-1: config 0 has an invalid interface number: 61 but max is 0
[ 1038.980845][T13676] usb 6-1: config 0 has no interface number 0
[ 1038.991263][T13676] usb 6-1: New USB device found, idVendor=2058, idProduct=1005, bcdDevice=b5.f6
[ 1039.000573][T13676] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1039.018034][T13676] usb 6-1: Product: syz
[ 1039.022264][T13676] usb 6-1: Manufacturer: syz
[ 1039.027311][T13676] usb 6-1: SerialNumber: syz
[ 1039.306481][T13676] usb 6-1: config 0 descriptor??
[ 1039.982614][T13676] viperboard 6-1:0.61: version 0.00 found at bus 006 address 011
[ 1039.986808][T11479] usb 5-1: new full-speed USB device number 21 using dummy_hcd
[ 1040.049801][T13676] viperboard-i2c viperboard-i2c.2.auto: failure setting i2c_bus_freq to 100
[ 1040.077363][T13676] viperboard-i2c viperboard-i2c.2.auto: probe with driver viperboard-i2c failed with error -5
[ 1040.167075][T14131] No such timeout policy "syz1"
[ 1040.196745][T11479] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 1040.208187][T11479] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1040.218486][T11479] usb 5-1: New USB device found, idVendor=04f3, idProduct=0755, bcdDevice= 0.00
[ 1040.229095][T11479] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1040.254095][T11479] usb 5-1: config 0 descriptor??
[ 1040.770463][T11479] elan 0003:04F3:0755.000A: failed to start in urb: -90
[ 1040.826137][T11479] elan 0003:04F3:0755.000A: hidraw0: USB HID v13.01 Device [HID 04f3:0755] on usb-dummy_hcd.4-1/input0
[ 1040.975859][T13676] usb 6-1: USB disconnect, device number 11
[ 1041.107326][ T5913] usb 5-1: USB disconnect, device number 21
[ 1042.929476][T11479] usb 6-1: new high-speed USB device number 12 using dummy_hcd
[ 1043.251854][T11479] usb 6-1: Using ep0 maxpacket: 32
[ 1043.365129][T11479] usb 6-1: config 0 has an invalid interface number: 61 but max is 0
[ 1043.418983][T11479] usb 6-1: config 0 has no interface number 0
[ 1043.448641][T11479] usb 6-1: New USB device found, idVendor=2058, idProduct=1005, bcdDevice=b5.f6
[ 1043.472221][T11479] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1043.481810][T11479] usb 6-1: Product: syz
[ 1043.486130][T11479] usb 6-1: Manufacturer: syz
[ 1043.490758][T11479] usb 6-1: SerialNumber: syz
[ 1043.502981][T11479] usb 6-1: config 0 descriptor??
[ 1043.866339][T11479] viperboard 6-1:0.61: version 0.00 found at bus 006 address 012
[ 1043.895950][T11479] viperboard-i2c viperboard-i2c.2.auto: failure setting i2c_bus_freq to 100
[ 1043.916287][T11479] viperboard-i2c viperboard-i2c.2.auto: probe with driver viperboard-i2c failed with error -5
[ 1043.940448][T14174] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2313'.
[ 1043.949562][T14174] lo speed is unknown, defaulting to 1000
[ 1046.157328][T13674] usb 6-1: USB disconnect, device number 12
[ 1046.412179][T14194] overlayfs: failed to clone upperpath
[ 1046.449961][T14194] Process accounting resumed
[ 1047.148950][T14210] No control pipe specified
[ 1051.407095][ T5913] usb 5-1: new high-speed USB device number 22 using dummy_hcd
[ 1051.537615][T14253] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2334'.
[ 1051.699191][ T5913] usb 5-1: Using ep0 maxpacket: 32
[ 1052.130460][ T5913] usb 5-1: config 0 has an invalid interface number: 61 but max is 0
[ 1052.148777][ T5913] usb 5-1: config 0 has no interface number 0
[ 1052.165285][ T5913] usb 5-1: New USB device found, idVendor=2058, idProduct=1005, bcdDevice=b5.f6
[ 1052.202465][ T5913] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1052.216127][ T5913] usb 5-1: Product: syz
[ 1052.228872][ T5913] usb 5-1: Manufacturer: syz
[ 1052.238100][ T5913] usb 5-1: SerialNumber: syz
[ 1052.365853][ T5913] usb 5-1: config 0 descriptor??
[ 1052.594492][T14267] No control pipe specified
[ 1053.499362][ T5913] viperboard 5-1:0.61: version 0.00 found at bus 005 address 022
[ 1054.003482][ T5913] viperboard-i2c viperboard-i2c.2.auto: failure setting i2c_bus_freq to 100
[ 1054.021828][ T5913] viperboard-i2c viperboard-i2c.2.auto: probe with driver viperboard-i2c failed with error -5
[ 1054.619533][T11479] usb 5-1: USB disconnect, device number 22
[ 1054.897613][T14293] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[ 1055.267456][T11479] usb 6-1: new low-speed USB device number 13 using dummy_hcd
[ 1055.460340][T11479] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 1055.474134][T11479] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1055.484537][T11479] usb 6-1: New USB device found, idVendor=056a, idProduct=00d0, bcdDevice= 4.00
[ 1055.493821][T11479] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1055.505773][T11479] usb 6-1: config 0 descriptor??
[ 1055.980765][T11479] wacom 0003:056A:00D0.000B: Unknown device_type for 'HID 056a:00d0'. Assuming pen.
[ 1055.996580][T11479] wacom 0003:056A:00D0.000B: hidraw0: USB HID vff.fe Device [HID 056a:00d0] on usb-dummy_hcd.5-1/input0
[ 1056.086716][T14326] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2353'.
[ 1056.096028][T14326] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2353'.
[ 1056.171567][   T29] audit: type=1326 audit(1738896835.798:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14321 comm="syz.2.2353" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7feda558cde9 code=0x0
[ 1057.026246][T11479] input: Wacom Bamboo 2FG Pen as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/0003:056A:00D0.000B/input/input24
[ 1057.213062][T11479] usb 6-1: USB disconnect, device number 13
[ 1057.712872][T14336] overlayfs: failed to clone upperpath
[ 1058.782050][T14349] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2362'.
[ 1058.816651][T14349] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2362'.
[ 1058.844992][T14349] netlink: 32 bytes leftover after parsing attributes in process `syz.5.2362'.
[ 1061.040483][T14367] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2367'.
[ 1061.049659][T14367] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2367'.
[ 1061.195425][   T29] audit: type=1326 audit(1738896840.438:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14363 comm="syz.2.2367" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7feda558cde9 code=0x0
[ 1066.023837][T14422] kvm: pic: level sensitive irq not supported
[ 1066.023957][T14422] kvm: pic: non byte read
[ 1066.127790][T11479] usb 5-1: new high-speed USB device number 23 using dummy_hcd
[ 1066.296823][T14425] kvm: pic: non byte write
[ 1066.322822][T14425] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3832186367 (7664372734 ns) > initial count (4194322 ns). Using initial count to start timer.
[ 1066.506576][T11479] usb 5-1: Using ep0 maxpacket: 16
[ 1066.522205][T11479] usb 5-1: config 0 has an invalid interface number: 105 but max is 0
[ 1066.539056][T11479] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1066.554788][T11479] usb 5-1: config 0 has no interface number 0
[ 1066.574190][T11479] usb 5-1: New USB device found, idVendor=046d, idProduct=08f3, bcdDevice= b.28
[ 1066.583474][T11479] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1066.591740][T11479] usb 5-1: Product: syz
[ 1066.595925][T11479] usb 5-1: Manufacturer: syz
[ 1066.600605][T11479] usb 5-1: SerialNumber: syz
[ 1066.752005][T14435] No control pipe specified
[ 1067.473645][T11479] usb 5-1: config 0 descriptor??
[ 1067.504691][T11479] usb 5-1: Found UVC 0.00 device syz (046d:08f3)
[ 1067.520919][T11479] usb 5-1: No valid video chain found.
[ 1067.775441][T11479] usb 5-1: USB disconnect, device number 23
[ 1067.946718][T14443] overlayfs: failed to resolve './bus': -2
[ 1068.227411][T14451] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2392'.
[ 1068.236633][T14451] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2392'.
[ 1068.273759][   T29] audit: type=1326 audit(1738896847.145:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14442 comm="syz.0.2392" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f613198cde9 code=0x0
[ 1070.338210][T14470] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2400'.
[ 1070.347401][T14470] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2400'.
[ 1070.489159][   T29] audit: type=1326 audit(1738896849.147:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14464 comm="syz.2.2400" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7feda558cde9 code=0x0
[ 1071.288280][T14477] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1071.810686][T14490] No control pipe specified
[ 1074.338907][T14512] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22
[ 1074.347134][T14512] netdevsim netdevsim2: Direct firmware load for . failed with error -22
[ 1074.355799][T14512] netdevsim netdevsim2: Falling back to sysfs fallback for: .
[ 1074.484623][T14515] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[ 1076.037644][T14527] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2415'.
[ 1076.047843][T14527] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2415'.
[ 1076.110864][   T29] audit: type=1326 audit(1738896854.469:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14521 comm="syz.2.2415" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7feda558cde9 code=0x0
[ 1078.167351][T14549] overlayfs: failed to clone upperpath
[ 1078.238857][T14550] overlayfs: failed to clone upperpath
[ 1078.593094][T13674] usb 5-1: new high-speed USB device number 24 using dummy_hcd
[ 1079.482441][T13674] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1079.501376][T13674] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[ 1079.545962][T13674] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 1079.598109][T13674] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1079.613737][T14553] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[ 1079.636754][T13674] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[ 1079.897864][   T29] audit: type=1326 audit(1738896858.024:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14551 comm="syz.4.2425" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fc95c18cde9 code=0x0
[ 1081.033562][   T29] audit: type=1326 audit(1738896859.081:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14558 comm="syz.5.2427" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fbd9338cde9 code=0x0
[ 1082.364619][ T5913] usb 5-1: USB disconnect, device number 24
[ 1084.270017][   T29] audit: type=1326 audit(1738896862.083:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14612 comm="syz.4.2442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc95c18cde9 code=0x7ffc0000
[ 1084.305582][   T29] audit: type=1326 audit(1738896862.083:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14612 comm="syz.4.2442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc95c18cde9 code=0x7ffc0000
[ 1084.335143][   T29] audit: type=1326 audit(1738896862.093:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14612 comm="syz.4.2442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fc95c18cde9 code=0x7ffc0000
[ 1084.357196][   T29] audit: type=1326 audit(1738896862.093:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14612 comm="syz.4.2442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc95c18cde9 code=0x7ffc0000
[ 1084.462003][   T29] audit: type=1326 audit(1738896862.093:157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14612 comm="syz.4.2442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc95c18cde9 code=0x7ffc0000
[ 1084.530487][T14619] netlink: 'syz.2.2445': attribute type 17 has an invalid length.
[ 1084.582704][   T29] audit: type=1326 audit(1738896862.093:158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14612 comm="syz.4.2442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fc95c18b750 code=0x7ffc0000
[ 1084.641209][   T29] audit: type=1326 audit(1738896862.093:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14612 comm="syz.4.2442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fc95c18b750 code=0x7ffc0000
[ 1084.801195][   T29] audit: type=1326 audit(1738896862.093:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14612 comm="syz.4.2442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc95c18cde9 code=0x7ffc0000
[ 1084.900703][   T29] audit: type=1326 audit(1738896862.093:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14612 comm="syz.4.2442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc95c18cde9 code=0x7ffc0000
[ 1084.924506][   T29] audit: type=1326 audit(1738896862.093:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14612 comm="syz.4.2442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fc95c18b750 code=0x7ffc0000
[ 1085.275968][T14636] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2452'.
[ 1086.374659][T14636] ipvlan2: entered promiscuous mode
[ 1086.397827][T14636] 8021q: adding VLAN 0 to HW filter on device ipvlan2
[ 1086.405892][T14636] bond0: (slave ipvlan2): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond.
[ 1088.491532][T14664] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2457'.
[ 1088.500812][T14664] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2457'.
[ 1088.772180][T14672] netlink: 'syz.5.2462': attribute type 4 has an invalid length.
[ 1090.498719][T14684] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[ 1090.506513][    C0] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[ 1091.613776][    C0] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[ 1092.725617][    C0] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[ 1092.826950][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[ 1092.833620][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[ 1093.837429][    C0] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[ 1094.949266][    C0] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[ 1095.354535][T14730] 8021q: adding VLAN 0 to HW filter on device team0
[ 1095.583282][T14738] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2481'.
[ 1096.061166][    C0] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[ 1096.377392][T14730] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[ 1096.564615][   T29] kauditd_printk_skb: 24 callbacks suppressed
[ 1096.570836][   T29] audit: type=1326 audit(1738896873.561:187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14734 comm="syz.6.2482" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f44b718cde9 code=0x0
[ 1096.756959][T14738] lo speed is unknown, defaulting to 1000
[ 1097.172908][    C0] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[ 1097.409386][T14747] random: crng reseeded on system resumption
[ 1097.567975][T14750] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2485'.
[ 1097.745741][T14752] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2484'.
[ 1097.755039][T14752] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2484'.
[ 1097.812909][   T29] audit: type=1326 audit(1738896874.777:188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14744 comm="syz.2.2484" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7feda558cde9 code=0x0
[ 1098.284959][    C0] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[ 1099.396581][    C0] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[ 1100.508397][    C0] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[ 1101.620336][    C0] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[ 1102.732005][    C0] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[ 1103.039046][T14790] overlayfs: failed to clone upperpath
[ 1103.843842][    C0] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[ 1104.378484][ T5913] usb 6-1: new high-speed USB device number 14 using dummy_hcd
[ 1104.598507][ T5913] usb 6-1: config 0 has an invalid interface number: 172 but max is 0
[ 1104.607007][ T5913] usb 6-1: config 0 has no interface number 0
[ 1104.625951][ T5913] usb 6-1: New USB device found, idVendor=2304, idProduct=020f, bcdDevice=3b.de
[ 1104.635264][ T5913] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1104.643285][ T5913] usb 6-1: Product: syz
[ 1104.647843][ T5913] usb 6-1: Manufacturer: syz
[ 1104.652486][ T5913] usb 6-1: SerialNumber: syz
[ 1104.662269][ T5913] usb 6-1: config 0 descriptor??
[ 1104.681579][ T5913] dvb-usb: found a 'Pinnacle 400e DVB-S USB2.0' in warm state.
[ 1104.699116][ T5913] dvb-usb: bulk message failed: -22 (4/0)
[ 1104.704999][ T5913] ttusb2: there might have been an error during control message transfer. (rlen = 0, was 0)
[ 1104.731588][ T5913] dvb-usb: bulk message failed: -22 (5/0)
[ 1104.737378][ T5913] ttusb2: there might have been an error during control message transfer. (rlen = 0, was 0)
[ 1104.755330][ T5913] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[ 1104.786978][ T5913] dvbdev: DVB: registering new adapter (Pinnacle 400e DVB-S USB2.0)
[ 1104.808408][ T5913] usb 6-1: media controller created
[ 1104.893502][ T5913] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[ 1104.955656][    C0] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[ 1104.956335][ T5913] ttusb2: set interface to alts=3 failed
[ 1105.539790][T14820] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2505'.
[ 1105.551929][T14820] lo speed is unknown, defaulting to 1000
[ 1106.067493][    C0] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[ 1106.175976][ T5913] DVB: Unable to find symbol tda10086_attach()
[ 1106.182517][ T5913] dvb-usb: no frontend was attached by 'Pinnacle 400e DVB-S USB2.0'
[ 1106.191662][ T5913] dvb-usb: bulk message failed: -22 (4/0)
[ 1106.335247][ T5913] ttusb2: there might have been an error during control message transfer. (rlen = 0, was 0)
[ 1106.356171][ T5913] dvb-usb: bulk message failed: -22 (5/0)
[ 1106.361926][ T5913] ttusb2: there might have been an error during control message transfer. (rlen = 0, was 0)
[ 1106.420889][ T5913] dvb-usb: Pinnacle 400e DVB-S USB2.0 successfully initialized and connected.
[ 1106.453817][ T5913] usb 6-1: USB disconnect, device number 14
[ 1106.552264][ T5913] dvb-usb: Pinnacle 400e DVB-S USB2.0 successfully deinitialized and disconnected.
[ 1107.179498][    C0] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[ 1108.291129][    C0] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[ 1109.402979][    C0] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[ 1110.030318][T14858] overlayfs: failed to clone upperpath
[ 1110.218870][T14861] netlink: 24 bytes leftover after parsing attributes in process `syz.6.2517'.
[ 1110.228044][T14861] netlink: 20 bytes leftover after parsing attributes in process `syz.6.2517'.
[ 1110.333600][   T29] audit: type=1326 audit(1738896886.441:189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14854 comm="syz.6.2517" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f44b718cde9 code=0x0
[ 1110.514789][    C0] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[ 1111.626599][    C0] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[ 1112.101900][ T5842] Bluetooth: hci4: command 0x0406 tx timeout
[ 1112.738473][    C0] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[ 1113.850278][    C0] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[ 1114.119927][T14893] 8021q: adding VLAN 0 to HW filter on device macvlan2
[ 1114.962087][    C0] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[ 1115.336207][   T29] audit: type=1804 audit(1738896891.146:190): pid=14900 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz.5.2530" name="/newroot/156/bus/file0" dev="overlay" ino=869 res=1 errno=0
[ 1116.073920][    C0] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[ 1117.185716][    C0] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[ 1117.239250][T14913] overlayfs: failed to clone upperpath
[ 1118.297654][    C0] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[ 1119.409584][    C0] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[ 1120.521180][    C0] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[ 1121.633034][    C0] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[ 1122.744841][    C0] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[ 1123.856653][    C0] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[ 1124.968564][    C0] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[ 1126.080324][    C0] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[ 1126.788388][T14990] netlink: 24 bytes leftover after parsing attributes in process `syz.6.2555'.
[ 1127.192174][    C0] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[ 1128.303944][    C0] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[ 1129.415792][    C0] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[ 1130.528864][    C0] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[ 1131.639442][    C0] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[ 1132.463152][T13668] usb 6-1: new high-speed USB device number 15 using dummy_hcd
[ 1132.655495][T13668] usb 6-1: Using ep0 maxpacket: 32
[ 1132.751255][    C0] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[ 1132.784457][T13668] usb 6-1: config 0 has an invalid interface number: 61 but max is 0
[ 1132.868107][T13668] usb 6-1: config 0 has no interface number 0
[ 1132.879310][T15032] x_tables: unsorted underflow at hook 3
[ 1132.917967][T13668] usb 6-1: New USB device found, idVendor=2058, idProduct=1005, bcdDevice=b5.f6
[ 1133.350328][T13668] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1133.358426][T13668] usb 6-1: Product: syz
[ 1133.387059][T13668] usb 6-1: Manufacturer: syz
[ 1133.552350][T13668] usb 6-1: SerialNumber: syz
[ 1133.559638][T13668] usb 6-1: config 0 descriptor??
[ 1133.763216][T13668] viperboard 6-1:0.61: version 0.00 found at bus 006 address 015
[ 1133.863106][    C0] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[ 1134.191731][T13668] viperboard-i2c viperboard-i2c.2.auto: failure setting i2c_bus_freq to 100
[ 1134.201883][T13668] viperboard-i2c viperboard-i2c.2.auto: probe with driver viperboard-i2c failed with error -5
[ 1134.975233][    C0] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[ 1135.220475][T13673] usb 6-1: USB disconnect, device number 15
[ 1135.651349][T15051] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2572'.
[ 1136.086844][    C0] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[ 1137.198557][    C0] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[ 1250.326563][    C1] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[ 1250.333657][    C1] rcu: 	0-...!: (7 ticks this GP) idle=cf94/1/0x4000000000000000 softirq=57386/57388 fqs=0
[ 1250.346382][    C1] rcu: 	Tasks blocked on level-0 rcu_node (CPUs 0-1): P15056/1:b..l
[ 1250.354427][    C1] rcu: 	(detected by 1, t=10506 jiffies, g=60673, q=55 ncpus=2)
[ 1250.362085][    C1] Sending NMI from CPU 1 to CPUs 0:
[ 1250.362204][    C0] NMI backtrace for cpu 0
[ 1250.362268][    C0] CPU: 0 UID: 0 PID: 15066 Comm: syz.5.2577 Not tainted 6.14.0-rc1-syzkaller-00081-gbb066fe812d6 #0
[ 1250.362297][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 1250.362313][    C0] RIP: 0010:advance_sched+0x51c/0xca0
[ 1250.362397][    C0] Code: 00 48 89 44 24 38 44 89 e0 48 8d 6b 80 48 ff c8 48 89 84 24 90 00 00 00 45 31 ff 49 bc 00 00 00 00 00 fc ff df 4c 89 74 24 28 <bf> 10 00 00 00 4c 89 fe e8 e7 23 d0 f7 49 83 ff 0f 48 89 6c 24 40
[ 1250.362411][    C0] RSP: 0018:ffffc90000007c70 EFLAGS: 00000046
[ 1250.362427][    C0] RAX: 0000000000000001 RBX: ffff888079207940 RCX: ffff888079207940
[ 1250.362439][    C0] RDX: ffff888031f0da00 RSI: 0000000000000002 RDI: 0000000000000000
[ 1250.362450][    C0] RBP: ffff8880792078c0 R08: ffffffff89ef3e6f R09: fffff52000000f7c
[ 1250.362462][    C0] R10: dffffc0000000000 R11: fffff52000000f7c R12: dffffc0000000000
[ 1250.362474][    C0] R13: 18297f6178000000 R14: ffff888079207800 R15: 0000000000000000
[ 1250.362486][    C0] FS:  00007fbd9420f6c0(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000
[ 1250.362500][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1250.362511][    C0] CR2: 0000200000003c80 CR3: 0000000065db6000 CR4: 00000000003526f0
[ 1250.362525][    C0] DR0: 0000000000000006 DR1: 0000000000003609 DR2: 000000000000029f
[ 1250.362535][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1250.362545][    C0] Call Trace:
[ 1250.362554][    C0]  <NMI>
[ 1250.362573][    C0]  ? nmi_cpu_backtrace+0x3c2/0x4d0
[ 1250.362597][    C0]  ? __pfx_lock_acquire+0x10/0x10
[ 1250.362633][    C0]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[ 1250.362649][    C0]  ? nmi_handle+0x2a/0x5a0
[ 1250.362684][    C0]  ? nmi_cpu_backtrace_handler+0xc/0x20
[ 1250.362709][    C0]  ? nmi_handle+0x14f/0x5a0
[ 1250.362731][    C0]  ? nmi_handle+0x2a/0x5a0
[ 1250.362761][    C0]  ? advance_sched+0x51c/0xca0
[ 1250.362777][    C0]  ? default_do_nmi+0x63/0x160
[ 1250.362795][    C0]  ? exc_nmi+0x123/0x1f0
[ 1250.362810][    C0]  ? end_repeat_nmi+0xf/0x53
[ 1250.362839][    C0]  ? advance_sched+0x4df/0xca0
[ 1250.362857][    C0]  ? advance_sched+0x51c/0xca0
[ 1250.362874][    C0]  ? advance_sched+0x51c/0xca0
[ 1250.362892][    C0]  ? advance_sched+0x51c/0xca0
[ 1250.362909][    C0]  </NMI>
[ 1250.362914][    C0]  <IRQ>
[ 1250.362922][    C0]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 1250.362948][    C0]  ? __pfx_advance_sched+0x10/0x10
[ 1250.362965][    C0]  __hrtimer_run_queues+0x59b/0xd30
[ 1250.363001][    C0]  ? __pfx___hrtimer_run_queues+0x10/0x10
[ 1250.363024][    C0]  ? sched_clock+0x4a/0x70
[ 1250.363042][    C0]  ? read_tsc+0x9/0x20
[ 1250.363058][    C0]  ? ktime_get_update_offsets_now+0x38e/0x3b0
[ 1250.363082][    C0]  hrtimer_interrupt+0x403/0xa40
[ 1250.363117][    C0]  __sysvec_apic_timer_interrupt+0x110/0x420
[ 1250.363144][    C0]  sysvec_apic_timer_interrupt+0xa1/0xc0
[ 1250.363166][    C0]  </IRQ>
[ 1250.363172][    C0]  <TASK>
[ 1250.363178][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1250.363201][    C0] RIP: 0010:raw_spin_rq_unlock_irq+0x19/0x90
[ 1250.363228][    C0] Code: 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 41 57 41 56 53 48 89 fb eb 18 48 89 df e8 fe e7 60 0a e8 39 5e 37 00 fb 5b <41> 5e 41 5f c3 cc cc cc cc f3 0f 1e fa 49 bf 00 00 00 00 00 fc ff
[ 1250.363243][    C0] RSP: 0018:ffffc90003cc7988 EFLAGS: 00000282
[ 1250.363257][    C0] RAX: 5301b510b4e09400 RBX: ffff8880b863e7c0 RCX: ffffffff9a3ca903
[ 1250.363269][    C0] RDX: dffffc0000000000 RSI: ffffffff8c0aa680 RDI: ffffffff8c5fb600
[ 1250.363282][    C0] RBP: ffffc90003cc7b90 R08: ffffffff901a2877 R09: 1ffffffff203450e
[ 1250.363294][    C0] R10: dffffc0000000000 R11: fffffbfff203450f R12: ffff8880280782d0
[ 1250.363306][    C0] R13: 1ffff110170c7ebb R14: ffff8880b863f5f0 R15: dffffc0000000000
[ 1250.363329][    C0]  __schedule+0x1a75/0x4c40
[ 1250.363361][    C0]  ? __pfx___schedule+0x10/0x10
[ 1250.363381][    C0]  ? irqentry_exit+0x63/0x90
[ 1250.363401][    C0]  ? lockdep_hardirqs_on+0x99/0x150
[ 1250.363431][    C0]  preempt_schedule_irq+0xfb/0x1c0
[ 1250.363451][    C0]  ? __pfx_preempt_schedule_irq+0x10/0x10
[ 1250.363478][    C0]  irqentry_exit+0x5e/0x90
[ 1250.363498][    C0]  asm_sysvec_call_function_single+0x1a/0x20
[ 1250.363521][    C0] RIP: 0010:futex_wake+0x0/0x5c0
[ 1250.363549][    C0] Code: 5d 41 5e 41 5f 5d e9 bf 15 2e 03 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 <f3> 0f 1e fa 55 48 89 e5 41 57 41 56 41 55 41 54 53 48 83 e4 e0 48
[ 1250.363562][    C0] RSP: 0018:ffffc90003cc7d18 EFLAGS: 00000297
[ 1250.363576][    C0] RAX: 0000000000000004 RBX: 1ffff92000798fac RCX: 00000000ffffffff
[ 1250.363586][    C0] RDX: 00000000000f4240 RSI: 0000000000000002 RDI: 00007fbd935a608c
[ 1250.363597][    C0] RBP: ffffc90003cc7de8 R08: 0000000000000005 R09: ffffffff81b23582
[ 1250.363608][    C0] R10: 000000000000000d R11: ffff888031f0da00 R12: 0000000000000001
[ 1250.363628][    C0] R13: 0000000000000000 R14: dffffc0000000000 R15: 0000000000000002
[ 1250.363641][    C0]  ? do_futex+0x142/0x560
[ 1250.363662][    C0]  do_futex+0x392/0x560
[ 1250.363682][    C0]  ? __pfx_do_futex+0x10/0x10
[ 1250.363703][    C0]  __se_sys_futex+0x3f9/0x480
[ 1250.363723][    C0]  ? __pfx___se_sys_futex+0x10/0x10
[ 1250.363740][    C0]  ? __x64_sys_futex+0x21/0xf0
[ 1250.363758][    C0]  ? __sanitizer_cov_trace_pc+0x46/0x70
[ 1250.363779][    C0]  ? __x64_sys_futex+0x21/0xf0
[ 1250.363797][    C0]  do_syscall_64+0xf3/0x230
[ 1250.363821][    C0]  ? clear_bhb_loop+0x35/0x90
[ 1250.363845][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1250.363868][    C0] RIP: 0033:0x7fbd9338cde9
[ 1250.363904][    C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1250.363917][    C0] RSP: 002b:00007fbd9420f0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1250.363933][    C0] RAX: ffffffffffffffda RBX: 00007fbd935a6088 RCX: 00007fbd9338cde9
[ 1250.363945][    C0] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fbd935a608c
[ 1250.363955][    C0] RBP: 00007fbd935a6080 R08: 7fffffffffffffff R09: 0000000000000000
[ 1250.363967][    C0] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd935a608c
[ 1250.363977][    C0] R13: 0000000000000000 R14: 00007ffcb736ff00 R15: 00007ffcb736ffe8
[ 1250.363996][    C0]  </TASK>
[ 1250.364175][    C1] task:syz.0.2574      state:R  running task     stack:23392 pid:15056 tgid:15047 ppid:5828   task_flags:0x400040 flags:0x00004002
[ 1250.978852][    C1] Call Trace:
[ 1250.982146][    C1]  <TASK>
[ 1250.985093][    C1]  __schedule+0x18bc/0x4c40
[ 1250.989640][    C1]  ? __pfx___schedule+0x10/0x10
[ 1250.994508][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1251.000523][    C1]  ? preempt_schedule_irq+0xf0/0x1c0
[ 1251.005838][    C1]  preempt_schedule_irq+0xfb/0x1c0
[ 1251.010966][    C1]  ? __pfx_preempt_schedule_irq+0x10/0x10
[ 1251.016703][    C1]  ? __pfx___folio_batch_add_and_move+0x10/0x10
[ 1251.022976][    C1]  irqentry_exit+0x5e/0x90
[ 1251.027413][    C1]  asm_sysvec_reschedule_ipi+0x1a/0x20
[ 1251.032904][    C1] RIP: 0010:___pte_offset_map+0x13c/0x380
[ 1251.038656][    C1] Code: c2 e0 c2 15 8c e8 e4 63 8b ff 48 8d 5c 24 40 4c 89 e8 48 c1 e8 03 42 80 3c 30 00 74 08 4c 89 ef e8 59 b3 13 00 4c 89 6c 24 10 <4d> 8b 6d 00 48 89 d8 48 c1 e8 03 42 80 3c 30 00 74 08 48 89 df e8
[ 1251.058280][    C1] RSP: 0000:ffffc9000baa7140 EFLAGS: 00000246
[ 1251.064377][    C1] RAX: 1ffff1100ca1e202 RBX: ffffc9000baa7180 RCX: 0000000000080000
[ 1251.072371][    C1] RDX: ffffc9000bd41000 RSI: 000000000007ffff RDI: 0000000000080000
[ 1251.080359][    C1] RBP: ffffc9000baa71f0 R08: ffffffff820fbb12 R09: 1ffffffff2858708
[ 1251.088344][    C1] R10: dffffc0000000000 R11: fffffbfff2858709 R12: 1ffff92001754e2c
[ 1251.096326][    C1] R13: ffff8880650f1010 R14: dffffc0000000000 R15: ffffc9000baa7280
[ 1251.104316][    C1]  ? ___pte_offset_map+0xb2/0x380
[ 1251.109376][    C1]  ? __pfx____pte_offset_map+0x10/0x10
[ 1251.114857][    C1]  ? shmem_allowable_huge_orders+0x40b/0x420
[ 1251.120873][    C1]  __pte_offset_map_lock+0xc7/0x300
[ 1251.126122][    C1]  ? __pfx___pte_offset_map_lock+0x10/0x10
[ 1251.131959][    C1]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[ 1251.137623][    C1]  finish_fault+0x707/0x11d0
[ 1251.142251][    C1]  ? __pfx_finish_fault+0x10/0x10
[ 1251.147293][    C1]  ? __pfx_lock_release+0x10/0x10
[ 1251.152346][    C1]  ? __do_fault+0x24e/0x390
[ 1251.156866][    C1]  __handle_mm_fault+0x4c6f/0x70f0
[ 1251.162003][    C1]  ? mark_lock+0x9a/0x360
[ 1251.166382][    C1]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1251.171875][    C1]  ? __pfx_lock_acquire+0x10/0x10
[ 1251.176922][    C1]  ? do_raw_spin_lock+0x14f/0x370
[ 1251.181980][    C1]  ? follow_page_pte+0x25a/0x1460
[ 1251.187022][    C1]  ? follow_page_pte+0x86a/0x1460
[ 1251.192065][    C1]  ? __pfx_lock_release+0x10/0x10
[ 1251.197123][    C1]  ? do_raw_spin_unlock+0x13c/0x8b0
[ 1251.202357][    C1]  ? __pfx___might_resched+0x10/0x10
[ 1251.207665][    C1]  handle_mm_fault+0x2c1/0x7e0
[ 1251.212486][    C1]  __get_user_pages+0x1a92/0x4140
[ 1251.217600][    C1]  ? __pfx___get_user_pages+0x10/0x10
[ 1251.223000][    C1]  ? __pfx_mt_find+0x10/0x10
[ 1251.227641][    C1]  populate_vma_page_range+0x264/0x330
[ 1251.233132][    C1]  ? __pfx_populate_vma_page_range+0x10/0x10
[ 1251.239145][    C1]  ? userfaultfd_unmap_complete+0x30c/0x360
[ 1251.245084][    C1]  __mm_populate+0x27a/0x460
[ 1251.249710][    C1]  ? __pfx___mm_populate+0x10/0x10
[ 1251.254871][    C1]  vm_mmap_pgoff+0x303/0x430
[ 1251.259510][    C1]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 1251.264657][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1251.271010][    C1]  ? do_syscall_64+0x100/0x230
[ 1251.275799][    C1]  ? ksys_mmap_pgoff+0xdf/0x720
[ 1251.280680][    C1]  ? __x64_sys_mmap+0x7f/0x140
[ 1251.285488][    C1]  do_syscall_64+0xf3/0x230
[ 1251.290020][    C1]  ? clear_bhb_loop+0x35/0x90
[ 1251.294722][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1251.300639][    C1] RIP: 0033:0x7f613198cde9
[ 1251.305069][    C1] RSP: 002b:00007f61327a8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 1251.313505][    C1] RAX: ffffffffffffffda RBX: 00007f6131ba5fa0 RCX: 00007f613198cde9
[ 1251.321499][    C1] RDX: b635773f06ebbeee RSI: 0000000000b36000 RDI: 0000200000000000
[ 1251.329492][    C1] RBP: 00007f6131a0e2a0 R08: ffffffffffffffff R09: 0000000000000000
[ 1251.337482][    C1] R10: 0000000000008031 R11: 0000000000000246 R12: 0000000000000000
[ 1251.345473][    C1] R13: 0000000000000000 R14: 00007f6131ba5fa0 R15: 00007ffd2904d398
[ 1251.353479][    C1]  </TASK>
[ 1251.356532][    C1] rcu: rcu_preempt kthread starved for 10506 jiffies! g60673 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=1
[ 1251.367742][    C1] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[ 1251.377725][    C1] rcu: RCU grace-period kthread stack dump:
[ 1251.383624][    C1] task:rcu_preempt     state:R  running task     stack:25104 pid:17    tgid:17    ppid:2      task_flags:0x208040 flags:0x00004000
[ 1251.397174][    C1] Call Trace:
[ 1251.400470][    C1]  <TASK>
[ 1251.403430][    C1]  __schedule+0x18bc/0x4c40
[ 1251.408015][    C1]  ? __pfx___schedule+0x10/0x10
[ 1251.412925][    C1]  ? __pfx_lock_release+0x10/0x10
[ 1251.417990][    C1]  ? __pfx___mod_timer+0x10/0x10
[ 1251.422953][    C1]  ? schedule+0x90/0x320
[ 1251.427224][    C1]  schedule+0x14b/0x320
[ 1251.431431][    C1]  schedule_timeout+0x15a/0x290
[ 1251.436308][    C1]  ? __pfx_schedule_timeout+0x10/0x10
[ 1251.441709][    C1]  ? __pfx_process_timeout+0x10/0x10
[ 1251.447041][    C1]  ? prepare_to_swait_event+0x330/0x350
[ 1251.452639][    C1]  ? __pfx_rcu_gp_kthread+0x10/0x10
[ 1251.457878][    C1]  rcu_gp_fqs_loop+0x2df/0x1330
[ 1251.462774][    C1]  ? rcu_gp_init+0x1256/0x1630
[ 1251.467571][    C1]  ? __pfx_rcu_gp_init+0x10/0x10
[ 1251.472535][    C1]  ? __pfx_rcu_gp_fqs_loop+0x10/0x10
[ 1251.477849][    C1]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[ 1251.483790][    C1]  ? finish_swait+0xd4/0x1e0
[ 1251.488404][    C1]  ? __pfx_rcu_gp_kthread+0x10/0x10
[ 1251.493650][    C1]  rcu_gp_kthread+0xa7/0x3b0
[ 1251.498299][    C1]  ? __pfx_rcu_gp_kthread+0x10/0x10
[ 1251.503523][    C1]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[ 1251.509447][    C1]  ? __kthread_parkme+0x169/0x1d0
[ 1251.514524][    C1]  ? __pfx_rcu_gp_kthread+0x10/0x10
[ 1251.519749][    C1]  kthread+0x7a9/0x920
[ 1251.523845][    C1]  ? __pfx_kthread+0x10/0x10
[ 1251.528464][    C1]  ? __pfx_rcu_gp_kthread+0x10/0x10
[ 1251.533697][    C1]  ? __pfx_kthread+0x10/0x10
[ 1251.538315][    C1]  ? __pfx_kthread+0x10/0x10
[ 1251.542929][    C1]  ? __pfx_kthread+0x10/0x10
[ 1251.547557][    C1]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1251.552783][    C1]  ? lockdep_hardirqs_on+0x99/0x150
[ 1251.557999][    C1]  ? __pfx_kthread+0x10/0x10
[ 1251.562612][    C1]  ret_from_fork+0x4b/0x80
[ 1251.567052][    C1]  ? __pfx_kthread+0x10/0x10
[ 1251.571663][    C1]  ret_from_fork_asm+0x1a/0x30
[ 1251.576460][    C1]  </TASK>
[ 1251.579518][    C1] rcu: Stack dump where RCU GP kthread last ran:
[ 1251.585855][    C1] CPU: 1 UID: 0 PID: 7506 Comm: kworker/u8:13 Not tainted 6.14.0-rc1-syzkaller-00081-gbb066fe812d6 #0
[ 1251.596803][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 1251.606877][    C1] Workqueue: events_unbound toggle_allocation_gate
[ 1251.613429][    C1] RIP: 0010:smp_call_function_many_cond+0x1ba4/0x2d30
[ 1251.620242][    C1] Code: 03 84 c0 75 7e 45 8b 65 00 44 89 e6 83 e6 01 31 ff e8 b0 e8 0b 00 41 83 e4 01 4c 8b 64 24 68 75 07 e8 60 e4 0b 00 eb 41 f3 90 <48> b8 00 00 00 00 00 fc ff df 0f b6 04 03 84 c0 75 11 41 f7 45 00
[ 1251.639883][    C1] RSP: 0018:ffffc9000b1cf640 EFLAGS: 00000293
[ 1251.645981][    C1] RAX: ffffffff81b37985 RBX: 1ffff110170c8c75 RCX: ffff888058195a00
[ 1251.653975][    C1] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[ 1251.661958][    C1] RBP: ffffc9000b1cf840 R08: ffffffff81b37950 R09: 1ffffffff2858708
[ 1251.669956][    C1] R10: dffffc0000000000 R11: fffffbfff2858709 R12: ffff8880b873f9c8
[ 1251.677947][    C1] R13: ffff8880b86463a8 R14: ffff8880b873f9c0 R15: 0000000000000000
[ 1251.685928][    C1] FS:  0000000000000000(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000
[ 1251.694869][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1251.701499][    C1] CR2: 000000110c28e6a2 CR3: 000000000e738000 CR4: 00000000003526f0
[ 1251.709497][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000001000
[ 1251.717479][    C1] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400
[ 1251.725556][    C1] Call Trace:
[ 1251.728855][    C1]  <IRQ>
[ 1251.731741][    C1]  ? rcu_check_gp_kthread_starvation+0x278/0x310
[ 1251.738129][    C1]  ? print_other_cpu_stall+0x1481/0x15c0
[ 1251.743823][    C1]  ? __pfx_print_other_cpu_stall+0x10/0x10
[ 1251.749682][    C1]  ? kvm_check_and_clear_guest_paused+0x6a/0xd0
[ 1251.755984][    C1]  ? rcu_sched_clock_irq+0xa26/0x10e0
[ 1251.761400][    C1]  ? __pfx_rcu_sched_clock_irq+0x10/0x10
[ 1251.767076][    C1]  ? update_process_times+0x242/0x2f0
[ 1251.772479][    C1]  ? tick_nohz_handler+0x37c/0x500
[ 1251.777628][    C1]  ? __pfx_tick_nohz_handler+0x10/0x10
[ 1251.783142][    C1]  ? __hrtimer_run_queues+0x551/0xd30
[ 1251.788564][    C1]  ? __pfx___hrtimer_run_queues+0x10/0x10
[ 1251.794312][    C1]  ? sched_clock+0x4a/0x70
[ 1251.798854][    C1]  ? read_tsc+0x9/0x20
[ 1251.802952][    C1]  ? ktime_get_update_offsets_now+0x38e/0x3b0
[ 1251.809039][    C1]  ? hrtimer_interrupt+0x403/0xa40
[ 1251.814195][    C1]  ? __sysvec_apic_timer_interrupt+0x110/0x420
[ 1251.820383][    C1]  ? sysvec_apic_timer_interrupt+0xa1/0xc0
[ 1251.826199][    C1]  </IRQ>
[ 1251.829138][    C1]  <TASK>
[ 1251.832078][    C1]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1251.838276][    C1]  ? smp_call_function_many_cond+0x1b90/0x2d30
[ 1251.844448][    C1]  ? smp_call_function_many_cond+0x1bc5/0x2d30
[ 1251.850629][    C1]  ? smp_call_function_many_cond+0x1ba4/0x2d30
[ 1251.856809][    C1]  ? kmem_cache_alloc_bulk_noprof+0x156/0x7c0
[ 1251.862896][    C1]  ? kmem_cache_alloc_bulk_noprof+0x156/0x7c0
[ 1251.869014][    C1]  ? __pfx___text_poke+0x10/0x10
[ 1251.873984][    C1]  ? __pfx_smp_call_function_many_cond+0x10/0x10
[ 1251.880355][    C1]  ? __pfx___might_resched+0x10/0x10
[ 1251.885659][    C1]  ? __pfx___mutex_trylock_common+0x10/0x10
[ 1251.891579][    C1]  ? __pfx_do_sync_core+0x10/0x10
[ 1251.896631][    C1]  on_each_cpu_cond_mask+0x3f/0x80
[ 1251.901772][    C1]  text_poke_bp_batch+0x352/0xb30
[ 1251.906816][    C1]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1251.912815][    C1]  ? arch_jump_label_transform_apply+0x17/0x30
[ 1251.918986][    C1]  ? __pfx_text_poke_bp_batch+0x10/0x10
[ 1251.924546][    C1]  ? arch_jump_label_transform_queue+0x9b/0x100
[ 1251.930801][    C1]  ? process_scheduled_works+0x976/0x1840
[ 1251.936553][    C1]  text_poke_finish+0x30/0x50
[ 1251.941244][    C1]  arch_jump_label_transform_apply+0x1c/0x30
[ 1251.947249][    C1]  static_key_enable_cpuslocked+0x136/0x260
[ 1251.953194][    C1]  static_key_enable+0x1a/0x20
[ 1251.957974][    C1]  toggle_allocation_gate+0xbc/0x260
[ 1251.963269][    C1]  ? __pfx_toggle_allocation_gate+0x10/0x10
[ 1251.969193][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1251.975551][    C1]  process_scheduled_works+0xa66/0x1840
[ 1251.981136][    C1]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1251.987137][    C1]  ? assign_work+0x364/0x3d0
[ 1251.991743][    C1]  worker_thread+0x870/0xd30
[ 1251.996361][    C1]  ? __kthread_parkme+0x169/0x1d0
[ 1252.001414][    C1]  ? __pfx_worker_thread+0x10/0x10
[ 1252.006542][    C1]  kthread+0x7a9/0x920
[ 1252.010623][    C1]  ? __pfx_kthread+0x10/0x10
[ 1252.015251][    C1]  ? __pfx_worker_thread+0x10/0x10
[ 1252.020381][    C1]  ? __pfx_kthread+0x10/0x10
[ 1252.025091][    C1]  ? __pfx_kthread+0x10/0x10
[ 1252.029724][    C1]  ? __pfx_kthread+0x10/0x10
[ 1252.034334][    C1]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1252.039551][    C1]  ? lockdep_hardirqs_on+0x99/0x150
[ 1252.044792][    C1]  ? __pfx_kthread+0x10/0x10
[ 1252.049399][    C1]  ret_from_fork+0x4b/0x80
[ 1252.053842][    C1]  ? __pfx_kthread+0x10/0x10
[ 1252.058487][    C1]  ret_from_fork_asm+0x1a/0x30
[ 1252.063302][    C1]  </TASK>